$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5f20d090-8e13-4bdc-bfb7-1fe336e788b4.roa File: 5f20d090-8e13-4bdc-bfb7-1fe336e788b4.roa (raw, json) Hash identifier: z4Tz7riLoOQw8aUtgaqwFEgyPImAss/pOATwd70KLAc= Subject key identifier: 62:ED:03:6D:DC:C9:CE:B9:DA:2B:5A:6B:50:17:B1:87:A4:5C:D6:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59C19C5FADEA15859B8783CC9D2350474A45327C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5f20d090-8e13-4bdc-bfb7-1fe336e788b4.roa Signing time: Fri 15 Aug 2025 00:30:21 +0000 ROA not before: Fri 15 Aug 2025 00:30:21 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.33.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c1:9c:5f:ad:ea:15:85:9b:87:83:cc:9d:23:50:47:4a:45:32:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 15 00:30:21 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=489ae99c0f53abec1431cda7e174d472e8908ff8e47368f331dc92e2631cc62e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:91:b7:01:d0:29:3a:8e:49:b0:9b:c0:07:61: ec:be:5d:91:5d:f5:b4:3c:d3:dd:4d:bd:08:84:b5: 2f:9a:c9:da:fb:c4:c3:a9:32:80:8e:a9:be:b1:f4: 7e:c1:d9:77:01:d1:04:04:30:1b:69:fa:39:c5:40: b6:d1:b3:a1:09:89:c4:22:68:31:f8:b8:9a:b0:3d: 2f:74:da:a6:97:1a:5e:36:26:fb:7d:fb:ae:b0:e0: 6a:00:da:d1:ca:2a:37:c0:1b:f0:4b:6e:64:1d:1e: b6:60:70:d1:ac:1b:7c:98:0b:d1:e2:6b:ed:fb:35: 37:11:da:90:79:07:b6:e8:d4:bd:de:a3:ef:1c:cf: 3f:5e:04:20:3d:da:00:9e:ed:10:08:25:c5:f1:39: 7e:f6:0f:51:51:8c:40:51:77:04:f8:fe:2a:13:3c: e3:8f:83:13:54:d7:00:a2:fb:07:41:ab:25:a4:d7: 25:da:36:6c:e1:27:8c:b5:48:40:cf:c8:0d:7e:02: e2:b6:79:13:0d:64:92:49:cc:ca:93:35:d5:86:89: e7:7e:4c:f2:eb:19:54:79:63:46:d8:c9:b1:64:02: d1:94:40:33:e4:36:8e:7b:ff:aa:3f:85:45:0e:af: e8:d6:33:ba:86:88:82:d9:b6:dc:b4:13:3e:a8:2a: f2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:ED:03:6D:DC:C9:CE:B9:DA:2B:5A:6B:50:17:B1:87:A4:5C:D6:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5f20d090-8e13-4bdc-bfb7-1fe336e788b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.33.128.0/20 Signature Algorithm: sha256WithRSAEncryption b3:80:e7:76:9b:37:4b:ec:a7:d1:47:67:07:0d:46:b9:ad:18: 03:20:3e:25:d8:42:b2:92:40:bc:85:da:f7:97:23:da:3a:f1: bc:55:fb:ec:8d:42:0d:a9:e1:69:32:78:05:10:76:b6:30:10: b6:e8:1d:ab:8c:45:94:42:b9:e7:64:37:e5:15:ab:96:e6:a1: 46:3d:3e:3a:b7:54:53:22:91:d2:6a:fd:cf:c0:e8:7f:66:8e: 8b:fb:d7:d9:10:0e:65:dd:31:ab:5e:7f:aa:c8:2a:44:08:74: 3a:39:77:57:42:38:72:86:4b:ae:29:2b:23:f5:55:2f:1f:be: 08:65:37:4d:23:9c:46:8d:f5:72:51:f3:9e:7c:f2:39:e4:48: a2:12:ea:f1:e2:c5:3d:d4:ef:0e:b2:b0:c5:65:1d:50:f7:c1: 49:f8:5c:92:cb:48:1b:20:d3:59:36:8f:47:b1:3e:24:5e:38: bb:b5:88:eb:01:22:aa:66:53:8e:c6:c6:f0:10:b7:1e:1c:b7: 75:31:a9:12:30:7c:83:72:fc:9b:a8:e5:a9:67:ff:24:d7:0d: 3e:ca:db:90:d7:35:0e:4f:5b:6d:d6:55:e7:9e:40:a0:99:d0: 18:b6:7f:e7:59:fd:2a:1e:ff:7a:bb:71:92:ca:b9:c1:31:b1: b2:e0:43:0a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWcGcX63qFYWbh4PMnSNQR0pFMnwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE1MDAzMDIxWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODlhZTk5YzBmNTNhYmVjMTQzMWNkYTdlMTc0ZDQ3MmU4 OTA4ZmY4ZTQ3MzY4ZjMzMWRjOTJlMjYzMWNjNjJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5kbcB0Ck6jkmwm8AHYey+XZFd9bQ8091NvQiEtS+aydr7 xMOpMoCOqb6x9H7B2XcB0QQEMBtp+jnFQLbRs6EJicQiaDH4uJqwPS902qaXGl42 Jvt9+66w4GoA2tHKKjfAG/BLbmQdHrZgcNGsG3yYC9Hia+37NTcR2pB5B7bo1L3e o+8czz9eBCA92gCe7RAIJcXxOX72D1FRjEBRdwT4/ioTPOOPgxNU1wCi+wdBqyWk 1yXaNmzhJ4y1SEDPyA1+AuK2eRMNZJJJzMqTNdWGied+TPLrGVR5Y0bYybFkAtGU QDPkNo57/6o/hUUOr+jWM7qGiILZtty0Ez6oKvJDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYu0DbdzJzrnaK1prUBexh6Rc1okwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVmMjBkMDkwLThlMTMtNGJkYy1iZmI3LTFmZTMzNmU3ODhiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATMIYAwDQYJKoZIhvcNAQELBQADggEBALOA53abN0vsp9FHZwcNRrmtGAMg PiXYQrKSQLyF2veXI9o68bxV++yNQg2p4WkyeAUQdrYwELboHauMRZRCuedkN+UV q5bmoUY9Pjq3VFMikdJq/c/A6H9mjov719kQDmXdMatef6rIKkQIdDo5d1dCOHKG S64pKyP1VS8fvghlN00jnEaN9XJR85588jnkSKIS6vHixT3U7w6ysMVlHVD3wUn4 XJLLSBsg01k2j0exPiReOLu1iOsBIqpmU47GxvAQtx4ct3UxqRIwfINy/Juo5aln /yTXDT7K25DXNQ5PW23WVeeeQKCZ0Bi2f+dZ/Soe/3q7cZLKucExsbLgQwo= -----END CERTIFICATE-----Generated at Sat Aug 23 12:22:12 2025 by rpki-client