$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eeb1a0db-c6e7-4578-b508-84b15c96b526.roa File: eeb1a0db-c6e7-4578-b508-84b15c96b526.roa (raw, json) Hash identifier: PQAjtMF6IJI18DTzDu+9YN41BTvu8mdPXSV+ziKHobw= Subject key identifier: 3A:9E:09:EE:79:DE:A4:83:26:69:49:7F:DF:48:F2:F8:A4:2F:C3:EA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52CE84B303F19740D0A41A648820CACE1EF1E535 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eeb1a0db-c6e7-4578-b508-84b15c96b526.roa Signing time: Sat 16 Aug 2025 00:22:26 +0000 ROA not before: Sat 16 Aug 2025 00:22:26 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 24.110.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:ce:84:b3:03:f1:97:40:d0:a4:1a:64:88:20:ca:ce:1e:f1:e5:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:22:26 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=c5fa3c2e299785bbefbc9445721c322f7a41a2e86e0a1b8f46ab8868e26de5f6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a9:90:19:65:18:fe:11:88:a8:34:16:09:f2: 71:76:2f:ce:2a:8e:f5:83:eb:a6:9f:58:ab:09:db: b8:8d:e9:3b:7a:ab:19:39:a9:25:38:d5:13:ae:36: 94:0d:bc:07:b6:b8:6f:35:e0:e1:d0:fb:9a:45:59: 81:43:b0:55:ae:39:4d:1f:75:6f:95:58:32:74:d7: 27:42:48:70:7e:96:ba:57:5e:26:e9:29:b6:8a:75: d6:33:c6:cb:b9:0d:d6:2d:60:cc:1d:2a:b4:e4:c4: bf:ce:f5:de:6d:75:d9:32:a7:34:f0:7b:83:16:b6: 9c:a6:9e:f0:4b:54:a3:b5:a5:8a:ad:8f:4c:2e:fc: ea:0d:d4:38:26:97:2f:d3:01:22:95:27:b6:7d:78: d9:17:8a:89:4a:5f:3d:89:08:9b:14:90:63:23:44: 98:1d:00:5f:45:5c:45:cd:a6:2a:33:66:9c:72:e9: d6:d7:20:5d:3c:b7:32:a2:10:e8:c4:56:68:e2:d1: ea:81:be:0f:5c:ae:a4:06:58:f8:82:77:4a:8c:bb: 56:78:9b:e9:14:67:3e:52:8a:1c:84:0a:74:5b:f6: d9:2f:57:09:65:27:71:c0:c0:40:c8:0f:3c:8a:1f: 94:9e:ad:40:54:44:fe:58:eb:01:49:c3:44:6a:23: 02:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:9E:09:EE:79:DE:A4:83:26:69:49:7F:DF:48:F2:F8:A4:2F:C3:EA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eeb1a0db-c6e7-4578-b508-84b15c96b526.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 24.110.16.0/20 Signature Algorithm: sha256WithRSAEncryption b7:65:69:10:61:0e:e8:d4:29:69:fa:7f:7f:60:aa:ec:b2:3c: 31:da:5e:c1:7f:6a:cf:2d:56:47:14:03:6e:e7:36:fa:e1:99: fc:a9:bd:6e:cb:d2:21:f9:b3:7d:c8:33:d2:a4:e7:ac:d1:2e: 66:ee:50:a2:02:1f:16:da:c1:bb:5e:b5:30:f2:db:bd:58:1e: 5d:cb:9a:10:71:5a:20:3a:ee:4e:fa:e1:6f:72:b0:ca:19:b4: 19:d4:ba:35:ea:f7:b2:81:de:82:a4:3e:dc:b2:01:9a:82:03: e8:0b:76:d4:3c:e8:4b:5b:8f:03:ec:0e:47:9e:bb:d0:ac:24: 6f:79:07:0f:ef:50:9d:f2:7a:c7:ed:fa:c8:e8:6e:36:fd:d5: b3:90:21:a8:a7:78:56:a8:73:f4:bf:26:31:95:da:18:2e:dd: d5:bf:9a:e7:cb:b5:70:26:0a:f6:90:3a:38:01:5e:4e:f6:d3: 06:bd:8b:27:d0:d4:d9:92:3e:90:bb:e1:db:64:75:fc:bb:ba: 8c:7e:0f:9a:8b:93:66:b9:da:98:ff:20:ec:ab:4c:4d:6f:9a: 31:b3:0f:9a:40:30:a7:a6:41:f5:5a:88:96:42:bd:f4:e6:3f: 99:86:fb:66:58:3e:fb:4c:40:58:3e:56:eb:ee:2f:81:b7:df: 7d:2c:74:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUs6EswPxl0DQpBpkiCDKzh7x5TUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDAyMjI2WhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNWZhM2MyZTI5OTc4NWJiZWZiYzk0NDU3MjFjMzIyZjdh NDFhMmU4NmUwYTFiOGY0NmFiODg2OGUyNmRlNWY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFqZAZZRj+EYioNBYJ8nF2L84qjvWD66afWKsJ27iN6Tt6 qxk5qSU41ROuNpQNvAe2uG814OHQ+5pFWYFDsFWuOU0fdW+VWDJ01ydCSHB+lrpX XibpKbaKddYzxsu5DdYtYMwdKrTkxL/O9d5tddkypzTwe4MWtpymnvBLVKO1pYqt j0wu/OoN1Dgmly/TASKVJ7Z9eNkXiolKXz2JCJsUkGMjRJgdAF9FXEXNpiozZpxy 6dbXIF08tzKiEOjEVmji0eqBvg9crqQGWPiCd0qMu1Z4m+kUZz5SihyECnRb9tkv VwllJ3HAwEDIDzyKH5SerUBURP5Y6wFJw0RqIwKdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOp4J7nnepIMmaUl/30jy+KQvw+owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VlYjFhMGRiLWM2ZTctNDU3OC1iNTA4LTg0YjE1Yzk2YjUyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQYbhAwDQYJKoZIhvcNAQELBQADggEBALdlaRBhDujUKWn6f39gquyyPDHa XsF/as8tVkcUA27nNvrhmfypvW7L0iH5s33IM9Kk56zRLmbuUKICHxbawbtetTDy 271YHl3LmhBxWiA67k764W9ysMoZtBnUujXq97KB3oKkPtyyAZqCA+gLdtQ86Etb jwPsDkeeu9CsJG95Bw/vUJ3yesft+sjobjb91bOQIaineFaoc/S/JjGV2hgu3dW/ mufLtXAmCvaQOjgBXk720wa9iyfQ1NmSPpC74dtkdfy7uox+D5qLk2a52pj/IOyr TE1vmjGzD5pAMKemQfVaiJZCvfTmP5mG+2ZYPvtMQFg+VuvuL4G3330sdM8= -----END CERTIFICATE-----Generated at Sat Aug 23 12:07:38 2025 by rpki-client