$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91ea0496-867b-4435-a47a-de477b4827c7.roa File: 91ea0496-867b-4435-a47a-de477b4827c7.roa (raw, json) Hash identifier: 0q7K2CotyQgXEdvglyv81dO3/SS3/WEyuGIHHvKmbzE= Subject key identifier: 0C:A3:C2:82:24:D6:71:BA:20:4A:4D:65:6D:1A:74:CA:75:CA:32:E2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02BFD43506F5BBAD44DB6A5E8B172F8AF2733FE4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91ea0496-867b-4435-a47a-de477b4827c7.roa Signing time: Sat 16 Aug 2025 00:20:35 +0000 ROA not before: Sat 16 Aug 2025 00:20:35 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 44.233.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:bf:d4:35:06:f5:bb:ad:44:db:6a:5e:8b:17:2f:8a:f2:73:3f:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:20:35 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=9e93a86cb11bbf1d6198608796c3c0ecc0ca4ffedb8f6c5ed0fc163d317faa50, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ae:73:4f:6a:d6:3b:78:5c:9f:5c:5a:58:83: a2:d1:99:f3:e7:e0:0d:6d:cd:94:21:57:af:6b:61: a8:da:88:bd:09:39:8b:e8:3e:a4:55:10:18:a6:b1: cc:a3:0a:69:25:7f:2f:81:40:c9:72:83:1e:78:6d: fd:07:38:57:e3:ab:7e:43:c8:cf:3f:a8:95:ae:27: 95:9a:c6:67:00:86:b6:7f:66:87:4d:09:b6:50:81: 47:44:b1:dd:ec:3f:eb:0a:da:cd:c2:43:b5:6c:4a: d7:d6:9b:6b:b1:eb:27:77:58:59:cd:32:dd:5c:3b: e2:8c:0d:3a:61:2f:cc:fb:d9:1a:7e:cd:be:c2:6e: e0:0a:34:3e:39:de:d3:7b:3e:98:b0:a3:2d:d8:0b: 04:95:12:99:96:80:25:28:d7:f4:b9:14:a8:ce:03: c8:80:dd:ba:63:28:5f:32:9a:07:16:3f:1f:6b:ba: 4c:72:46:10:c0:6e:2f:7c:b5:6d:31:0e:3d:56:d2: 5d:7d:a0:95:5e:e9:a4:47:69:20:04:71:da:71:a1: a2:d3:34:bf:b1:29:dd:7a:b4:8f:27:99:c1:b2:71: 2a:e9:1e:da:aa:ed:c7:48:28:2e:c6:41:86:0f:15: 73:d6:70:5d:db:2e:78:4d:cd:aa:63:28:83:ab:d5: 9f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A3:C2:82:24:D6:71:BA:20:4A:4D:65:6D:1A:74:CA:75:CA:32:E2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91ea0496-867b-4435-a47a-de477b4827c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.233.118.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:49:50:89:3a:a9:ee:bf:3e:dc:8f:2c:d8:5e:8e:52:a4:25: df:66:0f:72:a1:6e:3d:22:ef:68:7d:93:79:e8:8c:86:3f:b7: 8e:a9:0e:bb:80:ef:9a:c0:46:23:a5:a3:75:e8:20:7e:ee:ad: 3f:2d:1d:93:54:3c:cb:bc:8a:f7:2e:5f:95:a0:00:a5:ad:1b: f6:40:72:45:df:c3:38:2c:fc:7b:35:52:7b:84:22:f5:34:ed: 05:c0:de:94:9b:c8:c1:2e:02:f4:0e:5f:4b:5e:dc:20:af:fb: 90:dd:25:0c:28:aa:b0:48:d7:51:7b:89:32:95:9b:fb:4e:4d: 59:d1:08:d6:ff:fb:a3:1d:30:35:0f:67:85:5f:54:79:5e:0a: 01:e2:db:c7:3e:a7:48:3f:70:f1:40:e3:ef:4c:6b:11:9e:4a: 12:4d:f1:13:32:a5:0f:8a:66:fa:8f:bb:dd:d4:14:a7:87:5c: f3:fb:3b:2c:c7:d4:20:4e:b8:78:a0:3e:4e:75:fc:d9:a0:bc: 35:78:4f:65:04:94:bd:69:95:75:21:52:40:31:e7:14:8e:e5: eb:b0:73:c5:0d:fb:1f:42:d9:88:f6:b8:1e:6d:31:a2:e6:1e: 24:b1:c8:70:b6:a1:de:cc:2f:b2:42:e5:76:15:e3:84:5b:84: 3b:99:99:a1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAr/UNQb1u61E22peixcvivJzP+QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAyMDM1WhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTkzYTg2Y2IxMWJiZjFkNjE5ODYwODc5NmMzYzBlY2Mw Y2E0ZmZlZGI4ZjZjNWVkMGZjMTYzZDMxN2ZhYTUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWrnNPatY7eFyfXFpYg6LRmfPn4A1tzZQhV69rYajaiL0J OYvoPqRVEBimscyjCmklfy+BQMlygx54bf0HOFfjq35DyM8/qJWuJ5WaxmcAhrZ/ ZodNCbZQgUdEsd3sP+sK2s3CQ7VsStfWm2ux6yd3WFnNMt1cO+KMDTphL8z72Rp+ zb7CbuAKND453tN7Ppiwoy3YCwSVEpmWgCUo1/S5FKjOA8iA3bpjKF8ymgcWPx9r ukxyRhDAbi98tW0xDj1W0l19oJVe6aRHaSAEcdpxoaLTNL+xKd16tI8nmcGycSrp Htqq7cdIKC7GQYYPFXPWcF3bLnhNzapjKIOr1Z8tAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDKPCgiTWcbogSk1lbRp0ynXKMuIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkxZWEwNDk2LTg2N2ItNDQzNS1hNDdhLWRlNDc3YjQ4MjdjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAs6XYwDQYJKoZIhvcNAQELBQADggEBAJxJUIk6qe6/PtyPLNhejlKkJd9m D3Khbj0i72h9k3nojIY/t46pDruA75rARiOlo3XoIH7urT8tHZNUPMu8ivcuX5Wg AKWtG/ZAckXfwzgs/Hs1UnuEIvU07QXA3pSbyMEuAvQOX0te3CCv+5DdJQwoqrBI 11F7iTKVm/tOTVnRCNb/+6MdMDUPZ4VfVHleCgHi28c+p0g/cPFA4+9MaxGeShJN 8RMypQ+KZvqPu93UFKeHXPP7OyzH1CBOuHigPk51/NmgvDV4T2UElL1plXUhUkAx 5xSO5euwc8UN+x9C2Yj2uB5tMaLmHiSxyHC2od7ML7JC5XYV44RbhDuZmaE= -----END CERTIFICATE-----Generated at Sat Aug 23 06:57:35 2025 by rpki-client