$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d50dae9-a2f6-42d1-a23e-9f361c3fed24.roa File: 5d50dae9-a2f6-42d1-a23e-9f361c3fed24.roa (raw, json) Hash identifier: 8QatasRSmeWQWP+xKc3THbKiDJhoFDeRmM0obRY5AII= Subject key identifier: BA:6F:11:8C:F5:62:C1:7B:58:75:02:90:B3:BD:95:1A:9C:58:FB:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FFE252913BA5C012572DEB8381A0BE07E5183BB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d50dae9-a2f6-42d1-a23e-9f361c3fed24.roa Signing time: Tue 19 Aug 2025 00:21:25 +0000 ROA not before: Tue 19 Aug 2025 00:21:25 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 66.240.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:fe:25:29:13:ba:5c:01:25:72:de:b8:38:1a:0b:e0:7e:51:83:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:21:25 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=70595b2c5e737e641f5cf1e0fc251f8b4f8953085ff632727cc36bd7f7b83a27, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:07:0b:ef:34:37:d8:c7:18:f4:b2:55:58:d2: 83:37:57:f6:95:b0:6d:02:5b:7a:f7:41:7c:2e:17: 07:55:a7:2c:fe:a1:34:c4:f4:f7:94:ab:85:9c:98: 93:d7:eb:ad:32:a8:81:74:d3:34:c7:88:34:39:59: 27:76:75:c5:d4:b4:6a:32:52:5f:a2:4f:47:71:c2: 2d:9a:74:5c:f1:95:db:9b:ae:9c:57:ba:a2:f4:25: 00:18:5d:f5:ea:a1:5e:49:8f:17:75:3e:0a:81:0f: d3:4a:a5:e2:01:84:0d:be:81:19:f2:53:0d:b0:84: ea:9c:ce:75:d2:73:08:2a:d7:f6:da:44:7e:72:82: c1:ec:54:ba:10:1f:e1:73:dd:b0:59:60:7f:84:0a: 51:b2:02:77:62:1b:26:e4:f4:c4:0c:b1:91:b1:29: 9b:22:ec:b7:67:4d:2e:e0:2a:a0:40:51:93:19:21: 11:ac:ba:1d:cd:ef:28:86:f4:b1:14:96:8d:6b:fd: 8b:5d:d2:1e:bb:0a:40:cc:40:a1:e6:eb:e3:3f:c0: 88:53:cc:db:5e:f5:dc:c5:85:77:8a:da:38:85:be: 43:2a:2a:22:80:45:f3:ed:16:9e:1b:c4:01:f6:1b: 99:74:be:3a:9f:fa:b1:20:be:5d:20:ca:cc:b8:99: fe:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:6F:11:8C:F5:62:C1:7B:58:75:02:90:B3:BD:95:1A:9C:58:FB:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d50dae9-a2f6-42d1-a23e-9f361c3fed24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.240.64.0/18 Signature Algorithm: sha256WithRSAEncryption c3:07:d5:53:bf:fd:60:ff:d2:34:06:a0:09:f9:11:b5:cc:54: 20:5d:75:d9:dd:ca:a0:c5:2a:41:25:40:f0:13:a3:a8:64:d6: d6:59:f5:95:7f:52:97:17:a7:f7:c7:7f:5c:09:7c:7e:cb:16: a1:d3:af:d1:f0:6a:a0:e7:c8:b7:68:f7:de:3e:9d:c3:36:5e: c3:e9:0b:2b:c5:96:d3:7a:ae:16:31:a1:25:63:c8:19:14:8d: 3c:fa:9b:f2:19:25:08:a0:99:43:75:ae:4a:0e:32:12:12:6f: 06:78:94:53:d0:59:6d:f6:06:cc:41:aa:ee:39:3a:11:55:4e: 14:4c:89:aa:04:02:fd:8e:11:fe:f5:92:fb:50:2e:be:3b:e5: e0:d9:fa:dd:f4:a6:ad:89:1d:9d:5a:07:ed:f3:19:4b:ae:60: 77:eb:ef:81:64:45:c7:ef:2e:4c:a1:31:1c:e0:2b:dc:6a:ac: 34:c2:64:42:30:f7:6e:82:49:8d:fc:f2:9b:16:24:df:ad:f3: 24:af:46:43:9f:95:89:4e:a2:32:c9:6f:88:07:09:77:58:5c: 95:e9:36:db:90:86:ca:17:3c:8e:bd:c1:62:5d:5f:23:99:d7: f3:9c:bb:22:be:a7:cb:a3:a3:1f:1a:f5:02:9d:c8:76:b9:16: dd:9d:2d:ba -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT/4lKRO6XAElct64OBoL4H5Rg7swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDAyMTI1WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MDU5NWIyYzVlNzM3ZTY0MWY1Y2YxZTBmYzI1MWY4YjRm ODk1MzA4NWZmNjMyNzI3Y2MzNmJkN2Y3YjgzYTI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrBwvvNDfYxxj0slVY0oM3V/aVsG0CW3r3QXwuFwdVpyz+ oTTE9PeUq4WcmJPX660yqIF00zTHiDQ5WSd2dcXUtGoyUl+iT0dxwi2adFzxldub rpxXuqL0JQAYXfXqoV5Jjxd1PgqBD9NKpeIBhA2+gRnyUw2whOqcznXScwgq1/ba RH5ygsHsVLoQH+Fz3bBZYH+EClGyAndiGybk9MQMsZGxKZsi7LdnTS7gKqBAUZMZ IRGsuh3N7yiG9LEUlo1r/Ytd0h67CkDMQKHm6+M/wIhTzNte9dzFhXeK2jiFvkMq KiKARfPtFp4bxAH2G5l0vjqf+rEgvl0gysy4mf6JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUum8RjPViwXtYdQKQs72VGpxY+3EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVkNTBkYWU5LWEyZjYtNDJkMS1hMjNlLTlmMzYxYzNmZWQyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZC8EAwDQYJKoZIhvcNAQELBQADggEBAMMH1VO//WD/0jQGoAn5EbXMVCBd ddndyqDFKkElQPATo6hk1tZZ9ZV/UpcXp/fHf1wJfH7LFqHTr9HwaqDnyLdo994+ ncM2XsPpCyvFltN6rhYxoSVjyBkUjTz6m/IZJQigmUN1rkoOMhISbwZ4lFPQWW32 BsxBqu45OhFVThRMiaoEAv2OEf71kvtQLr475eDZ+t30pq2JHZ1aB+3zGUuuYHfr 74FkRcfvLkyhMRzgK9xqrDTCZEIw926CSY388psWJN+t8ySvRkOflYlOojLJb4gH CXdYXJXpNtuQhsoXPI69wWJdXyOZ1/OcuyK+p8ujox8a9QKdyHa5Ft2dLbo= -----END CERTIFICATE-----Generated at Sat Aug 23 08:10:43 2025 by rpki-client