$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b6a3d4f1-4012-46aa-82b4-dbbf7dcdb991.roa File: b6a3d4f1-4012-46aa-82b4-dbbf7dcdb991.roa (raw, json) Hash identifier: D20FMCMGhwJcruxByJAeHN/U4HDEE901L1hpIYCRLNc= Subject key identifier: E8:59:43:FE:F0:43:3B:65:25:73:47:F9:6C:5F:60:10:BD:46:7E:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 34C6409868EFCAA7D0DC6A3EFDAF3757DD356FBB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b6a3d4f1-4012-46aa-82b4-dbbf7dcdb991.roa Signing time: Fri 22 Aug 2025 00:41:35 +0000 ROA not before: Fri 22 Aug 2025 00:41:35 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.52.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:c6:40:98:68:ef:ca:a7:d0:dc:6a:3e:fd:af:37:57:dd:35:6f:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 22 00:41:35 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=77d3e39352020fc36621e38f1122c39d9d5b7e2230365a9c978cff9a48bca1a8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f5:c2:b1:1f:79:69:7f:ff:8a:1d:27:6e:9a: 14:bb:3a:41:39:6c:89:4f:d5:48:4a:79:34:bd:9d: 34:90:99:26:11:65:f4:2b:09:9e:2a:6e:15:22:e9: ed:e0:ca:f7:df:6b:2e:35:46:91:05:c4:b5:34:25: 7b:1e:de:81:e4:70:61:15:fc:19:aa:d1:bc:b5:f6: 40:c4:9e:f2:71:3c:b6:48:08:b8:47:44:12:e6:45: 61:2e:8f:f7:d8:35:ae:7f:da:53:70:cb:28:b4:f4: ef:fc:a8:bb:aa:f8:a4:0a:53:16:8f:e2:e7:5e:4d: a5:6c:b8:72:d6:4e:4c:d1:42:43:94:6f:d9:1e:20: 76:19:68:70:83:a9:03:b5:20:28:cd:9f:82:db:d0: 84:87:19:3c:bc:70:83:63:8d:de:49:f1:9d:23:50: 43:9a:52:83:ac:e7:e8:0b:ea:5f:56:d2:14:51:0b: ad:0b:4e:f8:46:d3:e0:c8:10:de:0c:4e:b5:0a:4a: fb:8a:3a:dc:7b:48:65:5c:95:0f:11:82:c8:17:5c: 22:41:86:16:c7:96:78:2e:4a:95:a6:1f:b3:c2:3f: 37:5f:80:e7:7d:cb:f7:06:80:d5:48:5e:94:18:50: 68:e0:4c:e2:4d:12:c0:5a:c7:de:92:62:66:8d:53: 04:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:59:43:FE:F0:43:3B:65:25:73:47:F9:6C:5F:60:10:BD:46:7E:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b6a3d4f1-4012-46aa-82b4-dbbf7dcdb991.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.52.101.0/24 Signature Algorithm: sha256WithRSAEncryption 86:39:1d:e9:85:7c:4e:ac:a8:96:06:8b:82:78:bf:e0:7b:a2: 6a:4d:ca:e2:21:39:5a:30:8d:e5:87:af:11:65:ed:ac:e6:56: 89:05:08:b4:5b:30:86:d5:a2:75:5a:be:20:19:e3:dc:11:c4: e4:13:c3:9d:0b:79:27:e1:12:6e:1c:d0:4b:fc:92:12:2a:f0: c2:cd:9d:ee:15:30:f0:54:26:5c:eb:45:dc:dd:d2:10:90:8b: fb:e1:d6:d7:01:35:c8:39:e6:b4:02:74:2d:1c:a4:f2:9d:47: 84:24:d8:a6:3c:49:5a:8e:94:cf:77:ba:be:ec:b7:1e:ac:a8: b5:b6:de:76:25:43:6b:6b:24:e8:f5:76:7a:b0:ee:9e:b0:e3: e9:79:e9:bc:e2:80:b1:a2:0a:dc:84:50:99:06:1e:82:f4:d6: 4a:e8:47:05:57:2e:2b:26:27:f9:02:f1:ec:de:8b:66:b8:49: 2a:24:d4:c4:05:26:35:20:fb:45:cb:e6:fe:46:a5:aa:70:f1: 3b:e5:cb:6d:54:46:c2:d0:a3:d3:e4:2b:41:92:a6:c2:02:97: e2:d2:c3:59:d2:3c:87:90:83:b8:31:98:5b:fb:0f:0a:08:f6: cf:d3:1d:a6:34:cb:02:aa:72:82:11:2f:cb:d1:d5:9b:22:ff: ce:6b:3a:3b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNMZAmGjvyqfQ3Go+/a83V901b7swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIyMDA0MTM1WhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3N2QzZTM5MzUyMDIwZmMzNjYyMWUzOGYxMTIyYzM5ZDlk NWI3ZTIyMzAzNjVhOWM5NzhjZmY5YTQ4YmNhMWE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDG9cKxH3lpf/+KHSdumhS7OkE5bIlP1UhKeTS9nTSQmSYR ZfQrCZ4qbhUi6e3gyvffay41RpEFxLU0JXse3oHkcGEV/Bmq0by19kDEnvJxPLZI CLhHRBLmRWEuj/fYNa5/2lNwyyi09O/8qLuq+KQKUxaP4udeTaVsuHLWTkzRQkOU b9keIHYZaHCDqQO1ICjNn4Lb0ISHGTy8cINjjd5J8Z0jUEOaUoOs5+gL6l9W0hRR C60LTvhG0+DIEN4MTrUKSvuKOtx7SGVclQ8RgsgXXCJBhhbHlnguSpWmH7PCPzdf gOd9y/cGgNVIXpQYUGjgTOJNEsBax96SYmaNUwRHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6FlD/vBDO2Ulc0f5bF9gEL1Gfn8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I2YTNkNGYxLTQwMTItNDZhYS04MmI0LWRiYmY3ZGNkYjk5MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABANGUwDQYJKoZIhvcNAQELBQADggEBAIY5HemFfE6sqJYGi4J4v+B7ompN yuIhOVowjeWHrxFl7azmVokFCLRbMIbVonVaviAZ49wRxOQTw50LeSfhEm4c0Ev8 khIq8MLNne4VMPBUJlzrRdzd0hCQi/vh1tcBNcg55rQCdC0cpPKdR4Qk2KY8SVqO lM93ur7stx6sqLW23nYlQ2trJOj1dnqw7p6w4+l56bzigLGiCtyEUJkGHoL01kro RwVXLismJ/kC8ezei2a4SSok1MQFJjUg+0XL5v5Gpapw8Tvly21URsLQo9PkK0GS psICl+LSw1nSPIeQg7gxmFv7DwoI9s/THaY0ywKqcoIRL8vR1Zsi/85rOjs= -----END CERTIFICATE-----Generated at Sat Aug 23 06:42:26 2025 by rpki-client