$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9827ecd3-75ce-449e-9930-c4d237b2e2f2.roa File: 9827ecd3-75ce-449e-9930-c4d237b2e2f2.roa (raw, json) Hash identifier: bQN9qbdLzze1wTb5jymMtNaPYmsL5B4jwqFp69N2NUM= Subject key identifier: 35:DD:46:01:F1:EA:6B:0A:D7:49:7E:AC:C7:18:BB:B8:3F:45:7B:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46BE885EB3C9DE261FDEA07B48400D1A23B57872 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9827ecd3-75ce-449e-9930-c4d237b2e2f2.roa Signing time: Mon 18 Aug 2025 15:32:20 +0000 ROA not before: Mon 18 Aug 2025 15:32:20 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.177.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:be:88:5e:b3:c9:de:26:1f:de:a0:7b:48:40:0d:1a:23:b5:78:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:32:20 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=669eadfc8bf5d89c9a8b0104b8a568ec2c5bce916bb54d2d4e16d7342798163c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1a:4e:bf:a7:b8:8f:94:79:18:f6:a5:32:48: 5d:cc:a3:2b:b5:71:a9:5b:8d:09:9f:37:45:f7:14: 02:9e:ab:1e:38:72:f4:93:67:b8:17:56:7f:52:08: 4a:00:b7:ef:6e:a5:2e:be:0b:c7:5a:b7:78:d5:35: 4d:4e:04:70:db:15:ad:aa:4b:8c:0e:69:5a:34:d3: d2:db:02:f4:5c:99:73:10:8c:1c:86:e8:31:11:ee: 27:58:55:85:b0:97:fc:e6:74:cf:61:f0:51:54:b6: 0a:5b:d9:b6:20:3e:1f:0d:b9:ad:7c:13:dc:d2:7a: e5:d7:7d:ab:e0:24:99:6f:bb:63:12:27:c7:ec:85: 7b:af:03:3c:47:57:31:1e:b7:92:88:33:ad:1c:2b: 76:41:4b:6e:ce:1b:37:5f:a8:71:6e:03:3a:b1:1b: f4:11:4a:0e:65:5a:d9:e8:c4:8c:ee:9e:3b:79:b9: d6:82:cd:01:00:fc:d6:df:01:77:32:b9:90:61:3d: 5d:ea:35:45:87:cc:b5:a0:82:c2:5a:ea:8b:94:16: 72:cd:d1:e1:0c:9f:e2:4a:97:43:aa:52:3b:92:b3: 55:d9:c6:2c:19:9b:fc:cd:5a:fd:48:72:7b:88:d2: 66:f2:c3:38:c4:0f:27:8a:9e:9c:9b:8e:cb:7a:60: 94:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:DD:46:01:F1:EA:6B:0A:D7:49:7E:AC:C7:18:BB:B8:3F:45:7B:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9827ecd3-75ce-449e-9930-c4d237b2e2f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.177.24.0/21 Signature Algorithm: sha256WithRSAEncryption 04:fc:e6:fd:94:fc:84:50:42:3a:17:a2:6e:e2:7c:5a:c3:3d: 82:2b:d5:bb:44:f4:9c:80:d4:09:d2:49:f1:39:10:ea:e6:8d: 3c:38:99:b9:ec:93:66:fe:45:a2:2e:5d:48:e7:93:aa:e4:a1: f3:07:62:42:9a:ff:62:41:76:15:c5:3c:48:16:be:86:9a:de: 52:b1:bd:9e:1a:c5:04:b9:bc:df:de:e1:a8:e7:76:a2:03:3e: 4d:e3:80:01:d9:31:57:d9:fb:d5:8f:3e:da:d1:ec:fc:e7:dd: 0f:49:0a:d7:ca:ee:0f:17:38:a5:3a:5e:04:1f:92:e7:00:41: a2:48:c7:e4:e6:2f:f0:1f:1c:39:d1:fe:c1:94:a7:2b:6e:bf: da:e0:bb:17:15:62:9c:ae:41:45:ba:5d:2c:3a:32:67:98:b0: 89:e5:14:a8:be:37:1f:96:a0:1b:33:13:93:63:7f:fb:6b:de: ed:b9:0a:38:d3:35:ac:b5:be:c5:1b:1d:d0:c4:fa:72:d0:37: 78:89:5c:8a:f1:ff:66:86:2d:54:00:1c:44:cd:46:5c:f2:74: 75:a8:98:e5:b2:d4:ba:9f:26:cc:b0:2b:cc:11:58:05:95:9a: 25:aa:f0:e0:fb:92:62:49:66:99:42:9f:47:0a:94:e1:80:be: 78:e9:ae:7c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURr6IXrPJ3iYf3qB7SEANGiO1eHIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUzMjIwWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NjllYWRmYzhiZjVkODljOWE4YjAxMDRiOGE1NjhlYzJj NWJjZTkxNmJiNTRkMmQ0ZTE2ZDczNDI3OTgxNjNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGGk6/p7iPlHkY9qUySF3Moyu1calbjQmfN0X3FAKeqx44 cvSTZ7gXVn9SCEoAt+9upS6+C8dat3jVNU1OBHDbFa2qS4wOaVo009LbAvRcmXMQ jByG6DER7idYVYWwl/zmdM9h8FFUtgpb2bYgPh8Nua18E9zSeuXXfavgJJlvu2MS J8fshXuvAzxHVzEet5KIM60cK3ZBS27OGzdfqHFuAzqxG/QRSg5lWtnoxIzunjt5 udaCzQEA/NbfAXcyuZBhPV3qNUWHzLWggsJa6ouUFnLN0eEMn+JKl0OqUjuSs1XZ xiwZm/zNWv1IcnuI0mbywzjEDyeKnpybjst6YJSrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNd1GAfHqawrXSX6sxxi7uD9Fe7EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4MjdlY2QzLTc1Y2UtNDQ5ZS05OTMwLWM0ZDIzN2IyZTJmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPRsRgwDQYJKoZIhvcNAQELBQADggEBAAT85v2U/IRQQjoXom7ifFrDPYIr 1btE9JyA1AnSSfE5EOrmjTw4mbnsk2b+RaIuXUjnk6rkofMHYkKa/2JBdhXFPEgW voaa3lKxvZ4axQS5vN/e4ajndqIDPk3jgAHZMVfZ+9WPPtrR7Pzn3Q9JCtfK7g8X OKU6XgQfkucAQaJIx+TmL/AfHDnR/sGUpytuv9rguxcVYpyuQUW6XSw6MmeYsInl FKi+Nx+WoBszE5Njf/tr3u25CjjTNay1vsUbHdDE+nLQN3iJXIrx/2aGLVQAHETN RlzydHWomOWy1LqfJsywK8wRWAWVmiWq8OD7kmJJZplCn0cKlOGAvnjprnw= -----END CERTIFICATE-----Generated at Sat Aug 23 10:30:11 2025 by rpki-client