$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5423a80a-be1f-4708-a5ef-17ccc2a1a025.roa File: 5423a80a-be1f-4708-a5ef-17ccc2a1a025.roa (raw, json) Hash identifier: /3n/xQJqHA7gtwYG/gduzzKw9JvqaFcHG10jHHWg+Qc= Subject key identifier: 8B:C0:00:5C:68:33:B7:05:71:A8:88:6E:9C:5F:B9:EF:D1:F9:B9:94 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B326A564E5A3A87E1541AF668876660D8CE54FE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5423a80a-be1f-4708-a5ef-17ccc2a1a025.roa Signing time: Fri 08 Aug 2025 00:10:22 +0000 ROA not before: Fri 08 Aug 2025 00:10:22 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.228.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:32:6a:56:4e:5a:3a:87:e1:54:1a:f6:68:87:66:60:d8:ce:54:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:10:22 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=e8405ca818de190d5a6541b14620f7586c2c3b76ee9d25e638a89cbf026780fc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5a:a2:2b:c8:a7:f8:91:78:8f:ce:be:ac:30: 77:89:e5:36:ed:39:d0:ae:ea:ec:af:01:ae:cb:c6: 04:ac:d0:7e:87:69:5d:63:7d:3f:f8:8a:16:95:3b: ef:95:d2:c0:09:56:0a:95:dd:14:d9:ff:fc:e4:e9: 77:7b:13:f4:12:a7:81:e9:3e:61:0a:1e:72:63:93: 5d:3d:52:42:c2:47:23:00:cb:b2:1c:1e:21:f5:bc: 1f:65:c9:e6:47:19:d3:5c:56:28:f8:02:b1:37:51: 60:34:fd:23:b9:13:64:6a:d9:bb:6a:2c:4d:b4:5e: 9f:da:1b:51:4e:8d:eb:86:7c:76:2d:55:12:78:d0: b3:0e:1d:82:51:56:65:82:00:9b:e9:82:9d:2f:dc: b4:bb:ef:e8:0b:e6:62:76:39:0f:ea:29:03:55:fb: fd:66:ba:07:67:49:b5:cc:44:94:f0:87:e1:e8:17: b3:c8:f1:eb:bf:3c:1e:64:c0:3e:d0:23:94:b9:ac: 16:6c:8c:ea:f2:30:90:03:f1:16:df:29:f1:49:42: 78:9a:79:a8:93:3d:a7:c9:fd:d7:2a:e3:a7:9a:43: 82:2a:17:d5:28:2c:16:b0:b5:49:62:7c:3a:ea:b7: 1e:a7:e1:ea:14:ba:26:62:d0:c2:8a:0d:63:bb:f6: a8:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:C0:00:5C:68:33:B7:05:71:A8:88:6E:9C:5F:B9:EF:D1:F9:B9:94 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5423a80a-be1f-4708-a5ef-17ccc2a1a025.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.228.192.0/18 Signature Algorithm: sha256WithRSAEncryption 19:0d:85:e9:c2:82:00:bb:50:ba:94:6b:f5:22:41:8f:62:36: 67:d0:5e:79:cd:87:56:d1:0e:f8:0d:2e:c6:f2:a7:6a:7c:a5: 2d:8f:e7:91:e3:d3:63:3b:0e:6b:64:a1:7c:38:71:13:db:e3: a3:b4:56:38:d0:b5:18:15:2e:55:ae:40:04:3e:08:ef:d6:a9: 77:bc:76:8b:b1:8d:51:4e:cb:f4:8c:21:97:71:24:d1:88:96: 9a:1d:61:ac:d3:0b:c3:fa:95:15:a4:ea:4e:03:32:22:d9:87: 4e:54:0d:5f:c8:0c:b6:76:db:4c:55:62:7e:48:6a:e0:95:90: 27:78:64:29:e6:47:ce:58:94:fc:f0:1a:f9:f0:e6:c5:aa:d0: 5d:a6:f8:e6:52:49:31:51:c6:f2:81:51:17:4c:b9:0d:8b:22: c9:f4:9c:5d:5a:f3:59:3e:50:6a:52:91:d3:95:45:83:6d:f1: 81:60:a0:51:60:c8:4e:24:3e:93:30:91:49:bb:6c:d1:d8:e6: d6:3d:f7:2b:e2:c3:1c:52:86:27:4c:ce:3a:27:b0:91:de:6a: 31:d2:46:9c:78:bf:dc:4d:98:24:f8:ba:70:8c:e5:5b:8e:40: a0:ce:a1:3a:c6:d5:ef:7f:a4:6d:a9:53:11:2d:ee:bb:e8:32: e2:13:65:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWzJqVk5aOofhVBr2aIdmYNjOVP4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAxMDIyWhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlODQwNWNhODE4ZGUxOTBkNWE2NTQxYjE0NjIwZjc1ODZj MmMzYjc2ZWU5ZDI1ZTYzOGE4OWNiZjAyNjc4MGZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxWqIryKf4kXiPzr6sMHeJ5TbtOdCu6uyvAa7LxgSs0H6H aV1jfT/4ihaVO++V0sAJVgqV3RTZ//zk6Xd7E/QSp4HpPmEKHnJjk109UkLCRyMA y7IcHiH1vB9lyeZHGdNcVij4ArE3UWA0/SO5E2Rq2btqLE20Xp/aG1FOjeuGfHYt VRJ40LMOHYJRVmWCAJvpgp0v3LS77+gL5mJ2OQ/qKQNV+/1mugdnSbXMRJTwh+Ho F7PI8eu/PB5kwD7QI5S5rBZsjOryMJAD8RbfKfFJQniaeaiTPafJ/dcq46eaQ4Iq F9UoLBawtUlifDrqtx6n4eoUuiZi0MKKDWO79qjHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUi8AAXGgztwVxqIhunF+579H5uZQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0MjNhODBhLWJlMWYtNDcwOC1hNWVmLTE3Y2NjMmExYTAyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYX5MAwDQYJKoZIhvcNAQELBQADggEBABkNhenCggC7ULqUa/UiQY9iNmfQ XnnNh1bRDvgNLsbyp2p8pS2P55Hj02M7DmtkoXw4cRPb46O0VjjQtRgVLlWuQAQ+ CO/WqXe8douxjVFOy/SMIZdxJNGIlpodYazTC8P6lRWk6k4DMiLZh05UDV/IDLZ2 20xVYn5IauCVkCd4ZCnmR85YlPzwGvnw5sWq0F2m+OZSSTFRxvKBURdMuQ2LIsn0 nF1a81k+UGpSkdOVRYNt8YFgoFFgyE4kPpMwkUm7bNHY5tY99yviwxxShidMzjon sJHeajHSRpx4v9xNmCT4unCM5VuOQKDOoTrG1e9/pG2pUxEt7rvoMuITZfc= -----END CERTIFICATE-----Generated at Sat Aug 23 08:17:39 2025 by rpki-client