$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5af66b92-7c00-4307-9785-0c5ccb72cbb6.roa File: 5af66b92-7c00-4307-9785-0c5ccb72cbb6.roa (raw, json) Hash identifier: iWNU87H2arHjHsAFG320hQEwF+XaYzs0ZmViNZ58m4Y= Subject key identifier: 93:F3:01:6F:9E:C9:BD:EB:A9:21:86:E1:8E:00:E5:DC:F5:A7:8B:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3DE32E71170CED06FA070B8A84244EA68643EBEF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5af66b92-7c00-4307-9785-0c5ccb72cbb6.roa Signing time: Sat 16 Aug 2025 00:31:46 +0000 ROA not before: Sat 16 Aug 2025 00:31:46 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 44.213.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:e3:2e:71:17:0c:ed:06:fa:07:0b:8a:84:24:4e:a6:86:43:eb:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:31:46 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=d9ab4d48576e28ce4c21ab65fe89146a28343db00e9d97ffae1ba8851afe4853, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3f:27:71:09:94:e8:8e:34:fd:cb:04:86:d8: aa:a9:a5:a9:17:52:3d:c5:30:69:86:c2:59:7c:b4: 5a:35:3f:80:48:82:91:d2:af:47:2e:6b:66:77:f1: 0d:85:26:47:ad:97:c4:05:97:8b:eb:51:ef:7a:3e: 26:54:b1:3b:0d:48:06:7e:90:af:39:c4:2b:39:4f: 17:96:5f:c9:7f:2c:8f:f8:65:86:5d:e6:e4:64:ab: e1:b4:13:88:fd:b3:7d:b1:5e:5b:f1:78:51:a8:cf: 58:e3:10:e3:d2:b5:86:82:1e:d1:36:6a:fe:76:5f: c2:78:7c:e7:c6:dd:a7:39:73:79:e1:98:af:c3:c5: 48:0b:d1:32:64:b4:bb:d9:2c:2d:01:bb:46:12:0d: 4b:ab:ad:7d:18:dd:ca:af:d7:3c:33:d3:e8:46:05: 6e:4b:5f:23:21:9d:e1:8a:17:a3:6f:44:98:62:84: 4d:6b:d8:4d:6d:23:6b:62:52:dd:f4:b6:f0:d2:ce: 4c:1b:de:17:8f:b3:8c:81:52:5c:9b:81:27:4b:f4: d1:a2:b8:8a:d2:ec:2f:7d:77:28:50:ec:3c:96:48: 0a:b7:7b:79:b8:66:2c:14:d6:4f:b4:91:ba:e3:03: 4f:0d:be:0c:66:f3:29:5c:b4:ac:0f:5d:ff:a5:33: 74:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:F3:01:6F:9E:C9:BD:EB:A9:21:86:E1:8E:00:E5:DC:F5:A7:8B:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5af66b92-7c00-4307-9785-0c5ccb72cbb6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.213.98.0/24 Signature Algorithm: sha256WithRSAEncryption d7:9b:35:18:fc:4c:56:8a:27:c2:36:9a:c7:20:10:b7:a4:41: d4:c2:7d:96:b9:46:0b:16:55:16:ce:99:05:43:f8:87:6d:9b: b1:55:d2:6a:0f:65:48:90:13:08:d3:69:a3:ac:7d:c9:4b:c8: 9c:03:d4:e3:ac:ef:60:68:c7:86:80:ac:7d:30:b2:95:26:69: 6b:b2:9a:c3:91:02:b8:cd:e8:71:58:fa:ac:76:5a:87:22:5e: f0:bb:d5:e5:0d:e7:e2:5b:ef:a1:19:26:b4:aa:bc:f7:03:7a: 99:28:2e:0b:fd:a9:8f:63:05:1d:7c:d7:52:71:cd:76:89:aa: 47:fc:26:db:2d:47:50:3a:27:5c:9c:2b:06:b9:6d:f3:23:0b: ff:f1:9a:63:c1:4f:f8:ce:3a:e9:d5:91:85:28:39:94:1b:fe: 0b:d1:0a:4c:5d:86:9c:8f:b6:06:f0:9f:b6:85:d6:b5:07:e4: 36:f2:74:79:d1:91:7a:fb:dd:20:00:e7:0c:b1:02:85:fc:c0: 79:f6:68:8d:f4:e0:ad:6c:73:58:c5:07:a0:6e:ce:3d:0d:59: c8:e5:58:38:1b:7d:49:4e:20:18:c0:4c:72:40:cd:0d:fc:03: 83:4f:8b:20:19:ae:4d:1e:1b:c1:fa:ba:ec:59:4e:ed:99:f8: 77:8f:96:29 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPeMucRcM7Qb6BwuKhCROpoZD6+8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAzMTQ2WhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOWFiNGQ0ODU3NmUyOGNlNGMyMWFiNjVmZTg5MTQ2YTI4 MzQzZGIwMGU5ZDk3ZmZhZTFiYTg4NTFhZmU0ODUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIPydxCZTojjT9ywSG2KqppakXUj3FMGmGwll8tFo1P4BI gpHSr0cua2Z38Q2FJketl8QFl4vrUe96PiZUsTsNSAZ+kK85xCs5TxeWX8l/LI/4 ZYZd5uRkq+G0E4j9s32xXlvxeFGoz1jjEOPStYaCHtE2av52X8J4fOfG3ac5c3nh mK/DxUgL0TJktLvZLC0Bu0YSDUurrX0Y3cqv1zwz0+hGBW5LXyMhneGKF6NvRJhi hE1r2E1tI2tiUt30tvDSzkwb3hePs4yBUlybgSdL9NGiuIrS7C99dyhQ7DyWSAq3 e3m4ZiwU1k+0kbrjA08Nvgxm8ylctKwPXf+lM3RVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUk/MBb57JveupIYbhjgDl3PWni8UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhZjY2YjkyLTdjMDAtNDMwNy05Nzg1LTBjNWNjYjcyY2JiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAs1WIwDQYJKoZIhvcNAQELBQADggEBANebNRj8TFaKJ8I2mscgELekQdTC fZa5RgsWVRbOmQVD+Idtm7FV0moPZUiQEwjTaaOsfclLyJwD1OOs72Box4aArH0w spUmaWuymsORArjN6HFY+qx2WociXvC71eUN5+Jb76EZJrSqvPcDepkoLgv9qY9j BR1811JxzXaJqkf8JtstR1A6J1ycKwa5bfMjC//xmmPBT/jOOunVkYUoOZQb/gvR CkxdhpyPtgbwn7aF1rUH5DbydHnRkXr73SAA5wyxAoX8wHn2aI304K1sc1jFB6Bu zj0NWcjlWDgbfUlOIBjATHJAzQ38A4NPiyAZrk0eG8H6uuxZTu2Z+HePlik= -----END CERTIFICATE-----Generated at Sat Aug 23 08:15:54 2025 by rpki-client