$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c3b9896d-fe24-4be4-8de9-1739a2278787.roa File: c3b9896d-fe24-4be4-8de9-1739a2278787.roa (raw, json) Hash identifier: ubXvjhRqSGf87F43Do2kxVqrheQknGzjZf0K3xBbXnI= Subject key identifier: 57:42:41:E9:09:B2:C1:84:C7:D0:50:99:83:03:F9:A3:52:00:55:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 508661D009892CA1524196128535E2B21ACB701D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c3b9896d-fe24-4be4-8de9-1739a2278787.roa Signing time: Sat 16 Aug 2025 00:22:23 +0000 ROA not before: Sat 16 Aug 2025 00:22:23 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 7224 IP address blocks: 24.110.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:86:61:d0:09:89:2c:a1:52:41:96:12:85:35:e2:b2:1a:cb:70:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:22:23 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=a76c2cd5ae99bbc61f96248b3fa84656894c66364a558043ece1af71f7d36c7a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:05:4f:25:a7:9b:06:55:5f:7d:8d:87:9e:4f: 62:83:61:3b:ed:4f:43:fd:de:f1:fc:ec:51:f3:e8: 1e:a7:2d:b4:77:de:77:73:c6:2d:74:15:d6:c3:1f: 83:37:50:ef:45:60:d0:41:b2:72:73:68:27:b2:40: 19:0b:68:6c:a1:b6:1e:1a:e2:d9:c3:b5:0c:80:ea: 13:aa:3f:6d:91:d8:2d:d5:30:0d:e3:f0:d3:9e:82: be:fc:b3:8d:78:33:19:d6:30:f1:e1:23:57:c2:c6: ea:a6:35:66:04:93:26:2f:ac:6f:7e:ba:1e:a0:18: 66:8c:21:2f:fd:d8:30:73:22:9a:65:a9:10:bb:3b: 4e:cc:3d:d8:da:27:aa:54:bf:06:25:9b:2a:84:87: 96:37:39:f5:d6:eb:24:24:c5:0b:a0:b6:b3:c1:88: 45:ba:05:6b:c6:bd:e8:ac:82:cb:cc:4c:db:92:65: f5:39:6e:2f:67:d8:99:c2:eb:3b:8d:33:99:e2:a6: 95:27:50:d4:9e:a5:0b:be:c6:a6:a8:43:12:5c:bd: 58:8b:c8:56:1c:44:1a:c2:5d:3d:5a:ed:dd:af:11: 0f:0b:73:ca:f7:6e:69:5b:cc:6b:3c:37:4e:40:b3: d4:c2:1d:e7:61:3b:98:4b:d0:75:ec:d7:ea:e2:c6: 55:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:42:41:E9:09:B2:C1:84:C7:D0:50:99:83:03:F9:A3:52:00:55:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c3b9896d-fe24-4be4-8de9-1739a2278787.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 24.110.12.0/22 Signature Algorithm: sha256WithRSAEncryption 76:c7:3f:8d:66:09:db:f3:c2:e5:7f:de:38:36:e7:3c:5b:55: 36:c0:9c:26:84:da:69:02:37:44:fa:df:e3:6e:07:6c:2a:89: 58:6d:ac:24:02:ad:2b:31:bb:a3:80:7c:1e:93:27:9a:3f:67: 20:65:90:c9:85:5c:d9:4e:70:1b:91:6c:13:46:b2:ae:7d:fa: 0c:bd:07:65:9f:36:43:4c:b0:c6:54:6b:a2:49:59:7a:b2:88: 35:4b:e4:a2:d6:42:42:ba:28:ac:94:0c:d6:36:e2:c6:ce:1d: bb:43:9f:61:66:88:c2:fa:5d:87:c5:74:f9:07:46:f6:8b:a0: 04:68:c4:6e:40:6d:f8:84:03:41:2b:f6:00:d6:6a:5a:46:a6: 96:db:cc:69:3c:b6:9c:55:22:aa:6a:60:ef:01:f6:1b:d1:cd: 20:87:7b:46:a2:65:fd:df:f0:d3:7a:75:32:96:67:81:a7:3c: b7:8d:82:1e:d6:90:3b:6c:ed:91:fc:e8:d3:41:64:86:3e:46: 66:94:9d:d7:70:cc:e5:7c:3a:13:96:86:82:60:9f:4b:d9:bc: a7:fb:35:85:76:12:d8:e0:12:33:3b:2c:dc:f2:4a:40:6a:dd: 7b:33:17:47:6e:f4:e5:5e:48:ac:ab:0d:b9:6d:ff:f8:49:96: 7f:79:f8:4a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUIZh0AmJLKFSQZYShTXishrLcB0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAyMjIzWhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzZjMmNkNWFlOTliYmM2MWY5NjI0OGIzZmE4NDY1Njg5 NGM2NjM2NGE1NTgwNDNlY2UxYWY3MWY3ZDM2YzdhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6BU8lp5sGVV99jYeeT2KDYTvtT0P93vH87FHz6B6nLbR3 3ndzxi10FdbDH4M3UO9FYNBBsnJzaCeyQBkLaGyhth4a4tnDtQyA6hOqP22R2C3V MA3j8NOegr78s414MxnWMPHhI1fCxuqmNWYEkyYvrG9+uh6gGGaMIS/92DBzIppl qRC7O07MPdjaJ6pUvwYlmyqEh5Y3OfXW6yQkxQugtrPBiEW6BWvGveisgsvMTNuS ZfU5bi9n2JnC6zuNM5nippUnUNSepQu+xqaoQxJcvViLyFYcRBrCXT1a7d2vEQ8L c8r3bmlbzGs8N05As9TCHedhO5hL0HXs1+rixlUjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUV0JB6QmywYTH0FCZgwP5o1IAVcYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MzYjk4OTZkLWZlMjQtNGJlNC04ZGU5LTE3MzlhMjI3ODc4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIYbgwwDQYJKoZIhvcNAQELBQADggEBAHbHP41mCdvzwuV/3jg25zxbVTbA nCaE2mkCN0T63+NuB2wqiVhtrCQCrSsxu6OAfB6TJ5o/ZyBlkMmFXNlOcBuRbBNG sq59+gy9B2WfNkNMsMZUa6JJWXqyiDVL5KLWQkK6KKyUDNY24sbOHbtDn2FmiML6 XYfFdPkHRvaLoARoxG5AbfiEA0Er9gDWalpGppbbzGk8tpxVIqpqYO8B9hvRzSCH e0aiZf3f8NN6dTKWZ4GnPLeNgh7WkDts7ZH86NNBZIY+RmaUnddwzOV8OhOWhoJg n0vZvKf7NYV2EtjgEjM7LNzySkBq3XszF0du9OVeSKyrDblt//hJln95+Eo= -----END CERTIFICATE-----Generated at Sat Aug 23 18:20:07 2025 by rpki-client