$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f6d0499-6523-42dc-96f7-6d729660d8b6.roa File: 9f6d0499-6523-42dc-96f7-6d729660d8b6.roa (raw, json) Hash identifier: aO+zSH6wL1Zz7DmFcfTZd7+b7u8+TAGiN1KrOYHmnXc= Subject key identifier: 1E:21:03:6D:56:88:A4:4D:91:7A:34:A2:7C:59:71:E1:14:E6:05:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 27346360EDDC77088F011F63D4AFCD82091C9E3C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f6d0499-6523-42dc-96f7-6d729660d8b6.roa Signing time: Sat 16 Aug 2025 00:22:16 +0000 ROA not before: Sat 16 Aug 2025 00:22:16 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.238.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:34:63:60:ed:dc:77:08:8f:01:1f:63:d4:af:cd:82:09:1c:9e:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:22:16 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=76336ddeff14369d81e1fe234b530ffdff086b0dd595425ba0e8239178484c15, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:7d:c9:c3:38:75:06:b9:02:1f:89:fa:ee:83: ac:62:44:0e:9c:a3:0d:f8:8a:b2:1b:1d:ab:eb:10: 61:57:a3:8a:15:29:cf:3e:77:bc:a8:2d:27:17:32: 7a:26:21:21:1f:4c:34:c1:82:91:eb:14:41:5e:bb: ee:a1:3f:b3:db:af:5f:fa:05:39:79:8a:c3:39:2b: 1b:49:30:da:c7:7e:e9:b0:af:b8:98:4e:f2:a4:b7: 99:88:48:41:fd:cc:8d:65:e8:94:4d:12:b5:b6:a1: 5b:82:c0:8e:90:f4:df:d5:6b:a0:0f:17:6b:01:9e: 56:fd:d6:4a:29:95:03:c2:39:79:6e:45:47:b8:99: 5f:02:9b:01:d8:31:3c:72:f0:f5:03:76:b1:11:b6: ba:f3:37:86:fc:7b:db:35:d9:a6:ff:f0:08:9b:d7: 8f:66:12:1e:36:ef:b0:63:28:73:db:04:18:7f:4f: 5f:cb:fb:33:d0:91:30:e2:70:6b:e1:c4:93:8f:2d: 18:ba:0c:82:a7:2b:c6:d7:72:02:b8:e5:6f:7a:42: 09:5f:48:b8:54:06:65:d1:7e:76:1e:99:96:f5:ce: fb:b2:61:05:ae:4d:47:64:a4:80:72:04:63:4e:57: a5:4b:7a:b5:c4:b1:79:4e:43:13:dc:b4:db:d3:f5: 42:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:21:03:6D:56:88:A4:4D:91:7A:34:A2:7C:59:71:E1:14:E6:05:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f6d0499-6523-42dc-96f7-6d729660d8b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.238.128.0/17 Signature Algorithm: sha256WithRSAEncryption 10:2e:62:88:1d:a4:95:a7:be:1a:f7:73:f5:9f:9c:67:3b:ea: 44:2a:ba:3a:50:00:65:d3:ec:10:02:1e:f9:36:b5:41:36:51: 2c:e4:c6:dd:84:ac:21:ca:65:cc:aa:a9:d7:a4:7d:77:b8:94: fe:6a:08:3a:c2:42:2b:74:dd:19:8c:ea:47:fa:d9:1e:7d:47: 1e:6c:35:ae:06:08:30:c5:2c:bc:ee:d6:19:7f:96:cb:84:39: e9:e0:39:b6:67:bc:5a:2f:54:7e:e4:f6:f6:5e:3b:68:ec:43: b0:50:20:82:7b:38:a6:e4:ab:69:86:18:f2:38:22:59:de:2d: 2a:0c:1d:26:fb:05:32:7f:1a:64:d4:61:4a:b2:17:7d:ef:b8: cd:9c:31:a1:72:ec:46:93:ee:ca:9a:9b:32:1c:ac:64:f4:7f: 0e:9f:cf:a7:d6:d0:5f:86:55:76:e0:d4:2f:47:d7:80:cb:d5: 8b:d9:26:a2:f4:f1:f7:29:ea:a9:34:e0:65:b8:b0:db:7c:e1: a7:83:02:b4:1a:95:46:17:aa:17:87:df:d1:e3:d9:6a:ba:fd: 05:49:8e:0a:fe:ce:eb:38:11:6d:b0:9b:92:d1:25:d5:d7:4d: ad:84:d4:34:2e:a1:86:4a:5b:eb:85:03:77:7d:08:5f:17:7b: c5:9d:60:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJzRjYO3cdwiPAR9j1K/NggkcnjwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAyMjE2WhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NjMzNmRkZWZmMTQzNjlkODFlMWZlMjM0YjUzMGZmZGZm MDg2YjBkZDU5NTQyNWJhMGU4MjM5MTc4NDg0YzE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkfcnDOHUGuQIfifrug6xiRA6cow34irIbHavrEGFXo4oV Kc8+d7yoLScXMnomISEfTDTBgpHrFEFeu+6hP7Pbr1/6BTl5isM5KxtJMNrHfumw r7iYTvKkt5mISEH9zI1l6JRNErW2oVuCwI6Q9N/Va6APF2sBnlb91koplQPCOXlu RUe4mV8CmwHYMTxy8PUDdrERtrrzN4b8e9s12ab/8Aib149mEh4277BjKHPbBBh/ T1/L+zPQkTDicGvhxJOPLRi6DIKnK8bXcgK45W96QglfSLhUBmXRfnYemZb1zvuy YQWuTUdkpIByBGNOV6VLerXEsXlOQxPctNvT9UKHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHiEDbVaIpE2RejSifFlx4RTmBZYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmNmQwNDk5LTY1MjMtNDJkYy05NmY3LTZkNzI5NjYwZDhiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcX7oAwDQYJKoZIhvcNAQELBQADggEBABAuYogdpJWnvhr3c/WfnGc76kQq ujpQAGXT7BACHvk2tUE2USzkxt2ErCHKZcyqqdekfXe4lP5qCDrCQit03RmM6kf6 2R59Rx5sNa4GCDDFLLzu1hl/lsuEOengObZnvFovVH7k9vZeO2jsQ7BQIIJ7OKbk q2mGGPI4IlneLSoMHSb7BTJ/GmTUYUqyF33vuM2cMaFy7EaT7sqamzIcrGT0fw6f z6fW0F+GVXbg1C9H14DL1YvZJqL08fcp6qk04GW4sNt84aeDArQalUYXqheH39Hj 2Wq6/QVJjgr+zus4EW2wm5LRJdXXTa2E1DQuoYZKW+uFA3d9CF8Xe8WdYDc= -----END CERTIFICATE-----Generated at Sat Aug 23 08:23:08 2025 by rpki-client