$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa File: 5307b426-3578-4099-8905-82473e6dd0a6.roa (raw, json) Hash identifier: IUxat8TX7WJnGlI+RvfHBa4THGq5cmrOKIjk+Y3+VVo= Subject key identifier: 1B:F5:00:F8:F7:7D:B2:4A:AF:26:59:66:C5:53:16:11:93:55:D3:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 17B65B1C9606ECF952FDFAF58E87E8DB1C2FA395 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa Signing time: Sat 16 Aug 2025 00:22:14 +0000 ROA not before: Sat 16 Aug 2025 00:22:14 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 206.72.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:b6:5b:1c:96:06:ec:f9:52:fd:fa:f5:8e:87:e8:db:1c:2f:a3:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:22:14 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=ecc07756ad317fd4eb04d70de6f02aaebb35b7fa7b0efbebc5763c2f4c764f7b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:45:8a:d7:8d:d4:c7:e3:e9:d3:b9:f4:82:9d: c8:a4:59:a0:71:b9:cb:45:67:82:bf:1e:0f:b0:9c: cb:bb:b6:af:4c:4c:95:54:43:9d:40:fe:14:c6:85: 41:de:3f:2f:2c:da:e3:8f:b4:f6:8c:34:81:ae:21: c5:b6:1a:98:a1:a2:b0:38:41:22:70:71:32:32:02: c2:93:2c:aa:ed:ab:87:14:ee:5e:85:b2:b3:7f:72: 66:66:e1:ed:48:6a:ed:a1:99:53:c9:c1:c1:50:a1: 13:95:af:f9:fe:06:19:62:2c:3f:15:32:f2:ce:a1: c0:55:54:37:90:89:06:ee:ad:98:b3:8e:22:c2:77: a1:57:19:75:11:76:0a:73:37:98:bf:c7:61:dd:c4: 8b:0b:4c:87:53:18:fd:85:1e:a0:c6:39:17:65:c0: ce:0a:b0:10:66:1d:b4:ff:93:5c:d0:e0:5e:4f:f7: 9d:c3:45:a9:f4:c3:36:31:5b:8e:a2:ec:66:56:7a: ab:c6:1c:ec:90:15:54:1d:17:24:4c:ab:c2:17:6a: 31:c0:0e:82:1a:15:69:fb:1c:67:5b:e8:b2:11:be: bb:15:80:dd:fd:19:a2:bc:9b:0c:7c:78:43:b5:34: 88:9b:76:19:95:30:84:1b:94:66:ef:c2:44:23:89: 83:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:F5:00:F8:F7:7D:B2:4A:AF:26:59:66:C5:53:16:11:93:55:D3:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.72.209.0/24 Signature Algorithm: sha256WithRSAEncryption 42:5b:76:12:4a:e9:86:89:1e:65:80:7c:25:da:04:75:c6:d2: f6:47:31:70:89:f4:fa:ce:d4:9d:32:d7:fc:18:c9:e7:7f:1a: 7d:71:c9:9c:39:d6:4e:09:f2:ce:f1:6e:dd:6e:b3:f6:2a:9d: af:ca:5b:ec:36:4a:94:1a:82:f4:39:b9:f0:ae:8a:25:61:09: f2:ff:0c:29:54:4e:ce:01:00:c0:f0:4a:c8:4b:9c:26:d7:f9: 0d:56:b7:cb:66:dd:af:64:01:34:9b:e7:3d:1d:91:b3:e2:bd: a4:cc:be:b0:5a:84:20:47:4c:0a:ee:54:68:83:b3:b7:2f:1e: 46:d6:8a:ee:1f:f7:a2:de:d3:db:7f:2d:15:c4:4a:8c:45:54: 07:0b:14:cd:c3:37:44:d6:63:5d:c9:52:49:ea:09:b8:41:22: c9:87:65:0d:c8:43:44:13:e4:e3:fb:84:16:e1:bc:15:ac:4c: 80:d4:6b:62:63:c3:1b:ba:f2:40:6b:f6:a5:6e:ff:94:fa:f2: f6:4f:4a:ba:74:31:da:82:1d:2b:e2:ed:ac:0b:ea:54:a1:f4: 46:81:07:98:d3:d9:33:66:ce:52:ce:04:02:d6:7f:f5:cd:91: a6:23:ed:3d:7c:d6:e1:e3:32:eb:fa:8e:9e:13:17:40:84:6c: 6a:f6:2c:ba -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF7ZbHJYG7PlS/fr1jofo2xwvo5UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAyMjE0WhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlY2MwNzc1NmFkMzE3ZmQ0ZWIwNGQ3MGRlNmYwMmFhZWJi MzViN2ZhN2IwZWZiZWJjNTc2M2MyZjRjNzY0ZjdiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVRYrXjdTH4+nTufSCncikWaBxuctFZ4K/Hg+wnMu7tq9M TJVUQ51A/hTGhUHePy8s2uOPtPaMNIGuIcW2GpihorA4QSJwcTIyAsKTLKrtq4cU 7l6FsrN/cmZm4e1Iau2hmVPJwcFQoROVr/n+BhliLD8VMvLOocBVVDeQiQburZiz jiLCd6FXGXURdgpzN5i/x2HdxIsLTIdTGP2FHqDGORdlwM4KsBBmHbT/k1zQ4F5P 953DRan0wzYxW46i7GZWeqvGHOyQFVQdFyRMq8IXajHADoIaFWn7HGdb6LIRvrsV gN39GaK8mwx8eEO1NIibdhmVMIQblGbvwkQjiYObAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG/UA+Pd9skqvJllmxVMWEZNV0wYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzMDdiNDI2LTM1NzgtNDA5OS04OTA1LTgyNDczZTZkZDBhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADOSNEwDQYJKoZIhvcNAQELBQADggEBAEJbdhJK6YaJHmWAfCXaBHXG0vZH MXCJ9PrO1J0y1/wYyed/Gn1xyZw51k4J8s7xbt1us/Yqna/KW+w2SpQagvQ5ufCu iiVhCfL/DClUTs4BAMDwSshLnCbX+Q1Wt8tm3a9kATSb5z0dkbPivaTMvrBahCBH TAruVGiDs7cvHkbWiu4f96Le09t/LRXESoxFVAcLFM3DN0TWY13JUknqCbhBIsmH ZQ3IQ0QT5OP7hBbhvBWsTIDUa2Jjwxu68kBr9qVu/5T68vZPSrp0MdqCHSvi7awL 6lSh9EaBB5jT2TNmzlLOBALWf/XNkaYj7T181uHjMuv6jp4TF0CEbGr2LLo= -----END CERTIFICATE-----Generated at Sat Aug 23 10:37:53 2025 by rpki-client