$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f90d252-f884-488d-a5b2-22cc02e756fe.roa File: 6f90d252-f884-488d-a5b2-22cc02e756fe.roa (raw, json) Hash identifier: bF6YgfnBXdF/SJkXO+F+I9PGGTJ5ZkYrtlSKdNOWF3Q= Subject key identifier: E4:DE:A4:5A:05:D6:C6:B4:CE:06:FD:41:35:41:01:B4:CD:01:49:13 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7E8944C8BE0BB9DE254F6EF95C17DD2502A8899A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f90d252-f884-488d-a5b2-22cc02e756fe.roa Signing time: Tue 12 Aug 2025 00:11:45 +0000 ROA not before: Tue 12 Aug 2025 00:11:45 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.54.176.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:89:44:c8:be:0b:b9:de:25:4f:6e:f9:5c:17:dd:25:02:a8:89:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:11:45 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=86213f7894bf42cd9282edeb6ab401eb883390255df400425202c00562a36d29, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d1:1d:fb:12:8c:75:62:e6:07:7a:dc:6f:aa: 29:7b:b8:28:4f:20:c5:c3:85:6d:b8:67:02:a5:53: 14:33:91:64:4e:a8:91:e0:1c:c2:60:cf:ac:86:c7: 9f:76:10:49:d3:16:53:ce:75:d2:4d:f4:57:4f:01: fa:d3:cb:ad:0c:48:ac:f3:f4:61:d0:63:c4:fe:0c: 39:c9:82:8e:bc:5b:0d:c7:2c:79:2c:04:3b:ea:8b: 1d:37:52:4e:79:ca:46:cd:21:31:9e:2c:8e:c2:5b: 56:bf:63:7e:69:04:a1:c9:ad:ec:81:e5:d1:2f:f1: 33:70:f6:3f:d9:b5:97:7a:ca:fc:3c:72:ee:7d:a4: ae:b6:ff:36:d4:a5:c1:e5:c8:9a:c5:b4:59:c5:f1: ba:2c:9c:8c:0f:4d:31:97:aa:43:19:76:3e:14:20: 7b:98:da:f8:5a:96:75:00:b5:64:0f:08:73:cd:04: ac:cb:ba:20:c2:54:22:0b:cd:f5:cd:99:88:62:25: 6a:d3:79:7b:29:a4:8f:b8:32:40:1f:18:e3:5c:fa: 23:71:98:94:e1:b0:20:0d:f3:24:fc:19:4c:50:12: 71:86:93:46:8c:1f:1e:8d:69:ad:54:a5:2e:e9:1a: 01:38:89:c7:78:39:ef:1a:bb:8f:06:7f:27:53:ae: fc:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:DE:A4:5A:05:D6:C6:B4:CE:06:FD:41:35:41:01:B4:CD:01:49:13 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f90d252-f884-488d-a5b2-22cc02e756fe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.54.176.0/21 Signature Algorithm: sha256WithRSAEncryption 9b:e4:63:99:0f:f8:af:93:3f:0a:da:38:1d:ed:08:6a:98:d8: 64:9b:eb:50:15:c9:b5:90:b6:92:79:4c:ce:0e:92:15:52:00: 23:9f:73:ba:90:66:88:f2:4c:03:95:88:b0:05:00:30:4a:f1: 57:8b:fa:47:5a:b6:6b:30:7f:ed:b9:15:21:32:0c:48:d9:21: 63:2a:62:e2:f0:da:7a:df:bc:2d:51:13:c2:16:47:2a:91:64: 18:a8:5e:5c:71:e9:77:15:8a:13:17:6a:c6:04:dd:71:93:bc: 2c:69:32:bc:39:f4:f4:3c:91:97:c1:df:63:b7:d6:ce:42:3e: 90:06:7e:f1:f5:37:73:3f:40:74:bd:60:59:ad:6b:4a:0d:bb: 8c:7a:1e:f3:24:19:bf:80:c5:9b:ab:a9:c0:d3:96:56:e9:f6: 94:7c:b6:97:49:78:b8:8c:10:e2:4e:ec:79:64:26:05:00:4c: 91:d4:df:f7:41:27:44:42:11:ea:c8:c2:d1:d1:bc:a9:be:f1: e4:74:42:a4:eb:6f:f7:59:f1:fb:cb:da:48:43:f1:91:63:7b: cc:6a:bd:9f:76:9f:89:ae:44:f7:d9:d3:4f:d9:0a:00:eb:d2: 7f:23:b1:71:04:ad:6e:c9:e6:1a:2f:45:71:be:79:24:83:56: 81:19:d1:85 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfolEyL4Lud4lT275XBfdJQKoiZowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAxMTQ1WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NjIxM2Y3ODk0YmY0MmNkOTI4MmVkZWI2YWI0MDFlYjg4 MzM5MDI1NWRmNDAwNDI1MjAyYzAwNTYyYTM2ZDI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC10R37Eox1YuYHetxvqil7uChPIMXDhW24ZwKlUxQzkWRO qJHgHMJgz6yGx592EEnTFlPOddJN9FdPAfrTy60MSKzz9GHQY8T+DDnJgo68Ww3H LHksBDvqix03Uk55ykbNITGeLI7CW1a/Y35pBKHJreyB5dEv8TNw9j/ZtZd6yvw8 cu59pK62/zbUpcHlyJrFtFnF8bosnIwPTTGXqkMZdj4UIHuY2vhalnUAtWQPCHPN BKzLuiDCVCILzfXNmYhiJWrTeXsppI+4MkAfGONc+iNxmJThsCAN8yT8GUxQEnGG k0aMHx6Naa1UpS7pGgE4icd4Oe8au48GfydTrvxbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5N6kWgXWxrTOBv1BNUEBtM0BSRMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmOTBkMjUyLWY4ODQtNDg4ZC1hNWIyLTIyY2MwMmU3NTZmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPRNrAwDQYJKoZIhvcNAQELBQADggEBAJvkY5kP+K+TPwraOB3tCGqY2GSb 61AVybWQtpJ5TM4OkhVSACOfc7qQZojyTAOViLAFADBK8VeL+kdatmswf+25FSEy DEjZIWMqYuLw2nrfvC1RE8IWRyqRZBioXlxx6XcVihMXasYE3XGTvCxpMrw59PQ8 kZfB32O31s5CPpAGfvH1N3M/QHS9YFmta0oNu4x6HvMkGb+AxZurqcDTllbp9pR8 tpdJeLiMEOJO7HlkJgUATJHU3/dBJ0RCEerIwtHRvKm+8eR0QqTrb/dZ8fvL2khD 8ZFje8xqvZ92n4muRPfZ00/ZCgDr0n8jsXEErW7J5hovRXG+eSSDVoEZ0YU= -----END CERTIFICATE-----Generated at Sat Aug 23 09:03:55 2025 by rpki-client