$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52a2b218-2a29-4964-b153-565ac1d505cf.roa File: 52a2b218-2a29-4964-b153-565ac1d505cf.roa (raw, json) Hash identifier: R5i4WHxCeWfSCRRNEXV4uP+WL1+ZmeTTkU2rOJodvUA= Subject key identifier: 45:FC:BB:13:FC:C8:55:97:93:8A:92:29:DF:3F:81:38:36:3A:04:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D4333068D1D3E3DE681FA7CC9A063E5FD2C4AFA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52a2b218-2a29-4964-b153-565ac1d505cf.roa Signing time: Tue 19 Aug 2025 00:21:18 +0000 ROA not before: Tue 19 Aug 2025 00:21:18 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.59.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:43:33:06:8d:1d:3e:3d:e6:81:fa:7c:c9:a0:63:e5:fd:2c:4a:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:21:18 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=85cb1f7896a0fe55179d1e122e6d980c688fd1133d10c283d82a5c479ef75982, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8c:6e:2a:4f:a8:f0:b9:bf:11:bf:4f:ec:f4: da:95:9d:2c:8f:8c:5c:4d:d3:47:d2:a2:64:dc:dd: 70:3f:cf:85:cc:b6:18:c7:e3:4e:27:1f:1f:cc:94: 4a:50:f6:8f:78:04:46:aa:e5:40:fc:97:89:dc:3f: 0b:a9:37:24:7b:89:97:a6:75:6b:eb:e5:81:d8:75: bd:0d:8f:23:0a:12:01:02:6e:c7:be:e5:68:76:2d: d3:63:41:4d:3a:2b:4b:e2:e9:20:59:44:e3:62:f2: f5:fd:be:ea:55:8c:c1:9a:e4:62:4e:6a:31:28:55: 0e:7a:84:75:69:54:28:34:28:df:b8:a4:4f:a1:f1: 82:5a:5c:e0:8f:b4:da:82:af:5a:7b:7d:ae:d6:3c: f7:02:13:6c:41:bc:09:72:a7:6b:91:1e:a2:10:90: ca:96:00:8d:06:d6:8b:cb:6d:84:8b:a2:9e:e0:4a: 30:1f:2d:2c:4c:4b:09:b9:19:f1:51:b7:c9:9e:48: c4:a7:a6:51:81:00:d1:90:57:40:a7:58:84:0c:4d: 33:f8:9a:a0:b8:20:a3:60:df:6d:03:b0:48:04:cb: 4b:92:92:7c:64:2d:75:fe:2a:a7:97:e8:f4:e3:6d: be:ce:69:c5:03:83:61:f3:16:73:94:03:94:a5:cb: 92:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:FC:BB:13:FC:C8:55:97:93:8A:92:29:DF:3F:81:38:36:3A:04:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52a2b218-2a29-4964-b153-565ac1d505cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.59.0.0/18 Signature Algorithm: sha256WithRSAEncryption 89:5b:08:a1:8f:ad:5b:d2:f4:8e:d1:79:fd:12:59:41:2f:3d: fe:ab:09:65:59:a0:5f:f2:3e:13:4f:65:3b:4f:70:81:67:0a: 94:e9:ec:d7:1d:0b:7a:8c:9d:1a:e4:bd:86:65:77:0c:32:62: d4:40:e4:bc:b2:cc:1f:dd:34:3b:27:3a:c1:f0:38:e2:e7:63: 80:d7:ba:ab:48:3f:6d:23:11:9d:1d:8a:39:26:57:20:1a:ed: 9b:fc:1d:c4:d3:d4:dd:38:0f:2c:33:71:ad:c7:bc:4b:d2:a3: 02:02:19:0e:e2:ea:f3:11:f5:42:2e:9f:af:97:58:27:3b:5a: c7:c8:d5:6d:3e:83:43:ce:7e:9f:ef:df:87:17:4a:03:d4:52: e8:91:f3:3f:d0:6b:23:f3:1b:12:6d:de:e4:91:ff:b5:ba:a0: bc:32:4d:0c:20:78:0c:2f:21:45:f7:81:de:c3:ef:04:00:57: b2:ec:1f:d0:5f:14:8f:49:96:ac:ad:88:f3:ac:4c:5d:47:a5: d9:52:c9:bd:c4:be:4f:5c:87:86:fc:48:ea:f3:5a:a5:38:e3: 03:0e:2c:e7:96:fa:33:9c:38:a4:01:da:26:75:46:1d:6d:75: 8b:9a:65:ec:d1:8f:3a:2d:43:16:fb:92:0a:31:ff:d4:28:e9: b7:f4:0d:27 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHUMzBo0dPj3mgfp8yaBj5f0sSvowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDAyMTE4WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NWNiMWY3ODk2YTBmZTU1MTc5ZDFlMTIyZTZkOTgwYzY4 OGZkMTEzM2QxMGMyODNkODJhNWM0NzllZjc1OTgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHjG4qT6jwub8Rv0/s9NqVnSyPjFxN00fSomTc3XA/z4XM thjH404nHx/MlEpQ9o94BEaq5UD8l4ncPwupNyR7iZemdWvr5YHYdb0NjyMKEgEC bse+5Wh2LdNjQU06K0vi6SBZRONi8vX9vupVjMGa5GJOajEoVQ56hHVpVCg0KN+4 pE+h8YJaXOCPtNqCr1p7fa7WPPcCE2xBvAlyp2uRHqIQkMqWAI0G1ovLbYSLop7g SjAfLSxMSwm5GfFRt8meSMSnplGBANGQV0CnWIQMTTP4mqC4IKNg320DsEgEy0uS knxkLXX+KqeX6PTjbb7OacUDg2HzFnOUA5Sly5KfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURfy7E/zIVZeTipIp3z+BODY6BF0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyYTJiMjE4LTJhMjktNDk2NC1iMTUzLTU2NWFjMWQ1MDVjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZAOwAwDQYJKoZIhvcNAQELBQADggEBAIlbCKGPrVvS9I7Ref0SWUEvPf6r CWVZoF/yPhNPZTtPcIFnCpTp7NcdC3qMnRrkvYZldwwyYtRA5LyyzB/dNDsnOsHw OOLnY4DXuqtIP20jEZ0dijkmVyAa7Zv8HcTT1N04Dywzca3HvEvSowICGQ7i6vMR 9UIun6+XWCc7WsfI1W0+g0POfp/v34cXSgPUUuiR8z/QayPzGxJt3uSR/7W6oLwy TQwgeAwvIUX3gd7D7wQAV7LsH9BfFI9JlqytiPOsTF1HpdlSyb3Evk9ch4b8SOrz WqU44wMOLOeW+jOcOKQB2iZ1Rh1tdYuaZezRjzotQxb7kgox/9Qo6bf0DSc= -----END CERTIFICATE-----Generated at Sat Aug 23 07:00:18 2025 by rpki-client