$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa File: 9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa (raw, json) Hash identifier: qkNszDPWSs5SN1OpSNbc61+RcD8jR1XLQde5hTCLWds= Subject key identifier: 22:47:CF:92:36:63:89:4E:25:03:9F:E7:34:6A:2F:6C:57:4C:B9:36 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 509A2C7455D46D4F0953134C09244CFEFD5882FA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa Signing time: Fri 08 Aug 2025 00:22:01 +0000 ROA not before: Fri 08 Aug 2025 00:22:01 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 57.251.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:9a:2c:74:55:d4:6d:4f:09:53:13:4c:09:24:4c:fe:fd:58:82:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:22:01 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=300cdbd60fc698dbc8f3b20e851dc053180bd5afea320b3bee8210407bf9ad68, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:96:9d:2c:9c:87:27:2f:0e:f0:f2:73:22:e7: 4c:36:60:a9:8c:a5:2b:d1:d8:95:b7:7f:3d:75:db: 8f:7b:1d:b5:07:c9:64:57:9c:e4:55:45:72:d5:10: 8a:86:52:4b:2a:1f:05:37:26:2a:9d:56:d0:2a:30: 54:38:3e:c3:d7:16:2d:d2:74:7b:ad:d8:2a:c3:93: 37:e3:fe:3b:41:79:6d:38:53:38:7e:01:6b:6d:74: be:04:d3:d1:dd:85:a6:ec:e6:98:1d:c6:86:8a:a8: 4a:9e:24:bb:79:22:dd:75:94:ef:3a:0e:a1:e0:84: 4e:a5:64:3d:36:7a:f0:e5:27:c4:54:b7:ae:71:2e: 50:df:d3:a4:24:e2:ac:b4:1d:5b:dd:a1:ea:48:6b: ec:c6:ea:da:68:57:e2:a9:ea:d2:8a:c7:9d:1c:14: fd:f1:c1:76:e1:0b:76:4c:a8:3c:16:d8:00:31:ee: a5:ba:95:b6:7c:54:fe:b5:3a:b0:81:2c:f3:bd:be: 89:a4:32:4d:8d:1b:98:e6:af:25:fe:37:58:ed:65: e3:c9:c9:c5:4f:2d:a4:51:f5:39:ab:69:ce:b8:c7: e1:22:0f:84:6f:f9:18:e6:37:c3:f8:4a:64:7c:e6: 34:f2:30:69:6c:57:d2:63:5d:4e:a1:19:95:38:4f: 7d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:47:CF:92:36:63:89:4E:25:03:9F:E7:34:6A:2F:6C:57:4C:B9:36 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.251.0.0/16 Signature Algorithm: sha256WithRSAEncryption a8:f8:96:b4:f3:31:37:c6:78:c9:51:da:86:cc:51:59:d5:dc: 60:fc:74:5e:f3:63:7d:b9:75:95:a3:2a:a9:99:c5:d8:ce:94: 38:d6:f8:d9:41:d4:b5:84:7f:1f:4b:9c:f7:a2:f2:bc:7c:43: 46:c9:b0:0b:16:e9:69:f0:63:90:49:11:94:9f:35:c9:9a:2b: cb:5d:f0:c4:b6:f7:16:f1:c2:5d:24:bb:b4:08:34:eb:f2:f3: cf:c6:9e:e9:e8:85:a1:e2:5d:4b:95:61:c4:e0:f0:3a:56:81: 5d:5d:e8:82:8e:5a:4d:ae:bd:3a:c6:c8:d4:51:04:bc:17:28: e8:14:1d:a5:bf:00:55:7b:cd:d5:a3:b2:c9:bb:b9:b3:e2:ba: e7:ef:96:a0:93:99:af:6e:29:17:d5:4e:41:ec:fd:fa:9c:52: 02:06:6f:e8:4b:a5:e1:f0:6b:f5:4f:25:a6:53:a9:45:dc:80: c8:bc:93:47:14:e7:e2:2e:b9:5f:0f:1b:a0:d3:c6:bd:06:93: 87:82:26:33:7c:2e:e8:6d:a1:9d:e2:5f:da:9e:0e:54:75:0f: 49:d2:74:a5:27:08:b0:32:cd:10:b4:ff:3d:76:73:ca:c9:49: a6:d0:88:ba:3d:e1:54:e4:bf:87:ea:d7:30:ef:7c:3d:21:45: a4:03:67:90 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUJosdFXUbU8JUxNMCSRM/v1YgvowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAyMjAxWhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDBjZGJkNjBmYzY5OGRiYzhmM2IyMGU4NTFkYzA1MzE4 MGJkNWFmZWEzMjBiM2JlZTgyMTA0MDdiZjlhZDY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTlp0snIcnLw7w8nMi50w2YKmMpSvR2JW3fz112497HbUH yWRXnORVRXLVEIqGUksqHwU3JiqdVtAqMFQ4PsPXFi3SdHut2CrDkzfj/jtBeW04 Uzh+AWttdL4E09Hdhabs5pgdxoaKqEqeJLt5It11lO86DqHghE6lZD02evDlJ8RU t65xLlDf06Qk4qy0HVvdoepIa+zG6tpoV+Kp6tKKx50cFP3xwXbhC3ZMqDwW2AAx 7qW6lbZ8VP61OrCBLPO9vomkMk2NG5jmryX+N1jtZePJycVPLaRR9Tmrac64x+Ei D4Rv+RjmN8P4SmR85jTyMGlsV9JjXU6hGZU4T32tAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIkfPkjZjiU4lA5/nNGovbFdMuTYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhOGQ1ZGI0LWU1N2EtNDNkNC1iMzdiLWY3NTk3MWM0YTg1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5+zANBgkqhkiG9w0BAQsFAAOCAQEAqPiWtPMxN8Z4yVHahsxRWdXcYPx0 XvNjfbl1laMqqZnF2M6UONb42UHUtYR/H0uc96LyvHxDRsmwCxbpafBjkEkRlJ81 yZory13wxLb3FvHCXSS7tAg06/Lzz8ae6eiFoeJdS5VhxODwOlaBXV3ogo5aTa69 OsbI1FEEvBco6BQdpb8AVXvN1aOyybu5s+K65++WoJOZr24pF9VOQez9+pxSAgZv 6Eul4fBr9U8lplOpRdyAyLyTRxTn4i65Xw8boNPGvQaTh4ImM3wu6G2hneJf2p4O VHUPSdJ0pScIsDLNELT/PXZzyslJptCIuj3hVOS/h+rXMO98PSFFpANnkA== -----END CERTIFICATE-----Generated at Sat Aug 23 08:09:23 2025 by rpki-client