$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfa2fd02-5f23-4780-a0fc-7db70709ecad.roa File: dfa2fd02-5f23-4780-a0fc-7db70709ecad.roa (raw, json) Hash identifier: ZfVhGioLPt9y0ALU6lzhfJKgKI3fNYWcSV1n6bxvWx4= Subject key identifier: 3A:32:38:30:77:23:75:C6:BE:90:DF:E1:64:1C:5D:5D:84:E5:4E:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4ED4F2E4145D9DA2D4EE1CAC1B4909503D4A0EBD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfa2fd02-5f23-4780-a0fc-7db70709ecad.roa Signing time: Fri 22 Aug 2025 00:31:49 +0000 ROA not before: Fri 22 Aug 2025 00:31:49 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.196.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:d4:f2:e4:14:5d:9d:a2:d4:ee:1c:ac:1b:49:09:50:3d:4a:0e:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 22 00:31:49 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=cef1149de6f745b9656e80c2bd82dae7b9f448544ffc64c606d1ee81f3f65c9f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9f:2e:04:b9:e6:78:83:87:5d:91:aa:62:b0: 82:74:17:7e:de:5c:9f:57:1f:c4:37:0d:ca:fc:c6: 6a:cd:b0:9e:24:1d:a1:cc:e2:ec:49:1a:53:eb:75: a1:a3:4d:1b:eb:fd:cb:d6:18:91:aa:0e:49:79:cb: e3:97:95:04:44:d0:33:31:08:61:a0:4b:6d:6a:ac: 67:24:cb:30:1c:7a:0d:17:74:1d:09:cc:a8:d3:30: 8a:aa:44:52:46:51:3e:7f:e2:38:6e:68:6e:d7:7d: ea:f9:85:7c:82:28:34:e8:42:4d:ce:fb:66:a8:e9: 07:6a:6a:1e:64:45:01:7b:b5:80:ef:e9:b1:60:4b: fe:29:c8:f3:a8:6b:5d:21:0a:c4:2a:40:ca:dd:22: 53:f7:b0:0d:1f:95:d4:59:1a:99:1d:aa:45:48:e0: 23:35:00:fb:a2:b1:67:b9:49:29:39:87:c8:16:33: 14:23:0c:43:d5:a7:19:e5:90:e2:ea:4d:d1:90:1d: 82:78:31:e5:45:91:b7:eb:c2:c9:8d:fc:fb:09:3c: 74:99:6d:70:70:97:71:e8:61:b4:c4:66:da:c1:e9: b8:7a:b9:2d:73:dc:b6:60:7b:b4:23:75:79:2d:41: 71:9e:88:eb:12:8b:e2:b7:0c:e1:8d:29:cc:1a:6c: bc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:32:38:30:77:23:75:C6:BE:90:DF:E1:64:1C:5D:5D:84:E5:4E:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfa2fd02-5f23-4780-a0fc-7db70709ecad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.196.156.0/22 Signature Algorithm: sha256WithRSAEncryption 99:03:77:a1:b4:fd:39:c4:e7:b1:58:7b:8b:b9:25:49:5d:f7: 5b:5f:b1:c4:71:f9:ad:e5:d1:8f:37:bf:36:82:7e:42:99:00: 24:80:40:b2:75:41:bb:b6:1a:63:8b:70:66:13:d4:d2:a8:c1: 9f:66:29:ec:55:1e:4f:1c:25:51:93:7d:e6:3f:76:da:8c:82: 9a:c1:2b:3c:41:82:c8:11:59:14:1f:3c:2c:98:4b:20:41:ef: fe:05:01:84:3c:c8:da:e6:9e:17:3c:0a:b7:93:8a:46:07:00: 8b:c4:58:a6:39:a6:28:9d:ac:5c:ef:31:34:0c:f7:a2:2e:b3: e8:52:36:13:22:22:7a:19:b4:f3:19:60:94:3e:11:1e:c2:c5: 2b:67:12:4d:68:1d:c4:66:83:1f:9b:75:74:f3:47:95:04:38: d9:03:8a:e0:55:dd:f9:d1:14:ca:4f:85:d1:f6:1a:6f:69:8b: 4c:17:09:3b:bd:75:4b:ea:77:57:52:01:fa:a3:56:76:78:81: 89:53:1c:ec:ae:06:2c:a9:8a:d9:c9:a0:ce:10:66:09:d3:9a: 0f:f0:a3:88:24:5a:c7:c5:53:8f:79:0a:40:0e:a9:c3:f6:57: f1:5d:c9:c5:bf:03:2a:4e:ac:2b:0e:f0:ea:cc:2c:54:be:f0: bf:a7:5f:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTtTy5BRdnaLU7hysG0kJUD1KDr0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIyMDAzMTQ5WhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZWYxMTQ5ZGU2Zjc0NWI5NjU2ZTgwYzJiZDgyZGFlN2I5 ZjQ0ODU0NGZmYzY0YzYwNmQxZWU4MWYzZjY1YzlmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClny4EueZ4g4ddkapisIJ0F37eXJ9XH8Q3Dcr8xmrNsJ4k HaHM4uxJGlPrdaGjTRvr/cvWGJGqDkl5y+OXlQRE0DMxCGGgS21qrGckyzAceg0X dB0JzKjTMIqqRFJGUT5/4jhuaG7Xfer5hXyCKDToQk3O+2ao6Qdqah5kRQF7tYDv 6bFgS/4pyPOoa10hCsQqQMrdIlP3sA0fldRZGpkdqkVI4CM1APuisWe5SSk5h8gW MxQjDEPVpxnlkOLqTdGQHYJ4MeVFkbfrwsmN/PsJPHSZbXBwl3HoYbTEZtrB6bh6 uS1z3LZge7QjdXktQXGeiOsSi+K3DOGNKcwabLw1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOjI4MHcjdca+kN/hZBxdXYTlTpgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RmYTJmZDAyLTVmMjMtNDc4MC1hMGZjLTdkYjcwNzA5ZWNhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALRxJwwDQYJKoZIhvcNAQELBQADggEBAJkDd6G0/TnE57FYe4u5JUld91tf scRx+a3l0Y83vzaCfkKZACSAQLJ1Qbu2GmOLcGYT1NKowZ9mKexVHk8cJVGTfeY/ dtqMgprBKzxBgsgRWRQfPCyYSyBB7/4FAYQ8yNrmnhc8CreTikYHAIvEWKY5piid rFzvMTQM96Ius+hSNhMiInoZtPMZYJQ+ER7CxStnEk1oHcRmgx+bdXTzR5UEONkD iuBV3fnRFMpPhdH2Gm9pi0wXCTu9dUvqd1dSAfqjVnZ4gYlTHOyuBiypitnJoM4Q ZgnTmg/wo4gkWsfFU495CkAOqcP2V/FdycW/AypOrCsO8OrMLFS+8L+nX5I= -----END CERTIFICATE-----Generated at Sat Aug 23 06:42:43 2025 by rpki-client