$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6205efa3-adeb-4c79-a841-af02822a7d3f.roa File: 6205efa3-adeb-4c79-a841-af02822a7d3f.roa (raw, json) Hash identifier: OLfngqAlrMkHWJ/qBjr3ClbG1C011zdd/ebilqscWxI= Subject key identifier: 82:FF:09:37:9C:1C:BF:8D:12:82:8F:40:41:E1:C2:3E:92:F6:A8:D5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BDC6D2BC90D9EC2778CEEE5A74696628178AFF6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6205efa3-adeb-4c79-a841-af02822a7d3f.roa Signing time: Tue 19 Aug 2025 00:21:20 +0000 ROA not before: Tue 19 Aug 2025 00:21:20 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 66.152.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:dc:6d:2b:c9:0d:9e:c2:77:8c:ee:e5:a7:46:96:62:81:78:af:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:21:20 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=7084c62e9a2a9e5f3dd730fdb6172c7c8b4994475c0d73d9bd6477a728d5e36d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7f:4a:59:fd:f4:4e:29:7d:b0:47:a1:65:6a: d8:af:f2:06:98:e7:a0:de:d3:e4:1a:a5:96:f4:44: c2:0c:3e:fe:b7:d2:74:f6:0e:7a:24:ae:1a:e5:ac: bd:3a:89:03:76:5b:96:f7:ff:bf:84:04:5b:bf:60: 50:59:05:83:60:ff:e0:4b:9a:e3:79:10:11:4c:75: 3c:cf:5b:42:5e:f7:4c:4c:d7:6a:37:6c:51:2b:8a: 0f:b6:12:4f:bb:34:40:62:38:e1:0a:e5:1f:56:cd: b2:5d:69:74:71:7d:c1:e8:f3:e7:79:33:b4:b1:39: b9:2c:a2:fd:17:4d:43:5c:7d:d9:93:09:5b:e7:ca: 36:a6:1c:08:f6:7e:89:d4:d2:3b:4e:19:fe:b1:cc: a6:85:20:6e:21:2a:ae:49:7e:23:21:57:a1:70:1f: ff:c8:10:e9:f3:12:b9:6b:98:33:d8:70:50:04:c5: 98:05:fe:19:dd:a6:c4:70:fb:46:e4:d1:39:9e:48: d4:e8:f4:6c:6a:e0:c4:75:c7:6e:f3:44:1b:de:75: 94:87:60:d0:48:82:49:1b:91:c2:3a:ff:c9:1b:ab: ca:51:62:16:d0:2d:43:83:be:73:dd:61:ee:07:64: c5:71:4e:7e:12:47:a8:8a:68:eb:6e:dc:31:d5:40: 79:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:FF:09:37:9C:1C:BF:8D:12:82:8F:40:41:E1:C2:3E:92:F6:A8:D5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6205efa3-adeb-4c79-a841-af02822a7d3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.152.0.0/18 Signature Algorithm: sha256WithRSAEncryption 24:66:b5:91:43:12:13:d4:da:4f:be:01:c3:62:3f:02:c1:28: 7c:aa:3b:a3:ab:71:6f:9d:19:62:f5:86:d9:99:ec:7a:33:2c: c7:af:c8:d3:2b:bc:0d:82:31:7f:b4:74:fb:ad:5f:e0:f3:8d: 56:af:e1:da:76:c1:32:14:8d:44:bc:1d:b9:57:d1:fe:b1:39: b2:de:a9:94:c3:a0:02:91:73:75:cd:99:bb:d9:82:29:bb:60: ae:5c:b5:06:d8:fb:c9:ed:30:20:8c:2a:a6:c1:d5:91:08:0e: 5d:7d:65:f7:6f:58:5f:11:ad:2b:62:3b:0a:d8:96:5c:8c:fd: 22:99:74:37:9d:ff:5a:41:3a:4c:1a:27:63:da:00:4f:55:a5: e5:24:b4:49:1d:88:47:b5:e2:29:4f:4c:5c:33:02:5f:2d:8d: 7f:50:34:3e:1d:ae:17:62:89:a5:d1:d9:c8:ae:b4:8c:da:b9: b1:52:94:e9:6e:d2:dd:b2:44:5d:8c:dd:2d:67:ed:d5:e1:10: a4:6a:00:9d:08:3a:6a:3c:1c:b6:e5:75:1c:2c:1d:a4:78:b7: 58:c3:c3:23:29:8f:67:d8:c4:2e:e6:fa:e5:be:ba:2c:f0:e1: ba:e2:eb:c1:69:88:f0:dc:1e:b0:17:5c:6a:c2:eb:a1:fe:65: b7:4d:c5:a6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa9xtK8kNnsJ3jO7lp0aWYoF4r/YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDAyMTIwWhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MDg0YzYyZTlhMmE5ZTVmM2RkNzMwZmRiNjE3MmM3Yzhi NDk5NDQ3NWMwZDczZDliZDY0NzdhNzI4ZDVlMzZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6f0pZ/fROKX2wR6Flativ8gaY56De0+QapZb0RMIMPv63 0nT2DnokrhrlrL06iQN2W5b3/7+EBFu/YFBZBYNg/+BLmuN5EBFMdTzPW0Je90xM 12o3bFErig+2Ek+7NEBiOOEK5R9WzbJdaXRxfcHo8+d5M7SxObksov0XTUNcfdmT CVvnyjamHAj2fonU0jtOGf6xzKaFIG4hKq5JfiMhV6FwH//IEOnzErlrmDPYcFAE xZgF/hndpsRw+0bk0TmeSNTo9Gxq4MR1x27zRBvedZSHYNBIgkkbkcI6/8kbq8pR YhbQLUODvnPdYe4HZMVxTn4SR6iKaOtu3DHVQHmzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgv8JN5wcv40Sgo9AQeHCPpL2qNUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyMDVlZmEzLWFkZWItNGM3OS1hODQxLWFmMDI4MjJhN2QzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZCmAAwDQYJKoZIhvcNAQELBQADggEBACRmtZFDEhPU2k++AcNiPwLBKHyq O6OrcW+dGWL1htmZ7HozLMevyNMrvA2CMX+0dPutX+DzjVav4dp2wTIUjUS8HblX 0f6xObLeqZTDoAKRc3XNmbvZgim7YK5ctQbY+8ntMCCMKqbB1ZEIDl19ZfdvWF8R rStiOwrYllyM/SKZdDed/1pBOkwaJ2PaAE9VpeUktEkdiEe14ilPTFwzAl8tjX9Q ND4drhdiiaXR2ciutIzaubFSlOlu0t2yRF2M3S1n7dXhEKRqAJ0IOmo8HLbldRws HaR4t1jDwyMpj2fYxC7m+uW+uizw4bri68FpiPDcHrAXXGrC66H+ZbdNxaY= -----END CERTIFICATE-----Generated at Sat Aug 23 12:23:30 2025 by rpki-client