$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49a16218-d4ff-48dd-85aa-288cdc958f67.roa File: 49a16218-d4ff-48dd-85aa-288cdc958f67.roa (raw, json) Hash identifier: b/5T1QE9lXdVHNimadP/uSQlBKSZhTrcxfCcCcLwDvE= Subject key identifier: C5:01:2F:01:9C:E9:97:13:D1:19:4B:0B:38:02:69:2C:48:D4:F4:D8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0DB6D820EEF965C668754905598155E87938863C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49a16218-d4ff-48dd-85aa-288cdc958f67.roa Signing time: Fri 08 Aug 2025 00:10:19 +0000 ROA not before: Fri 08 Aug 2025 00:10:19 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.228.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:b6:d8:20:ee:f9:65:c6:68:75:49:05:59:81:55:e8:79:38:86:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:10:19 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=059cd13bedf201af604ced65fffdead7ee2e0e038e763873cbaab408d185e7ba, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e9:dd:2f:ec:44:c5:e3:ff:37:b1:5b:64:58: ef:66:ac:0d:07:aa:23:80:13:0d:81:d4:6d:dc:3a: f2:36:b9:75:05:27:43:32:90:50:c9:c1:61:61:6c: 73:30:55:c4:ac:f0:17:34:6c:1e:bb:fb:3f:e7:b4: 56:be:5d:64:ca:66:82:cd:61:b5:31:9c:48:ee:f9: 24:21:72:27:52:8f:84:47:fa:d7:3f:16:83:27:a5: 33:83:34:d7:8a:9c:d5:20:c9:ef:d4:d2:41:59:d3: e4:40:8f:91:f4:63:c6:20:8f:c3:6d:a8:32:6d:97: 62:ee:fa:7c:c6:ea:a7:04:d7:b0:36:cd:e4:2a:ec: 13:b9:ec:1c:9b:2d:e9:af:a7:f6:64:29:ea:4a:bc: 01:af:cd:e1:46:6a:1a:41:0d:ad:04:d5:24:f5:f8: 12:d5:38:7c:87:95:03:06:c5:97:83:bb:10:88:45: 39:1f:76:8a:f5:d1:ec:f0:5d:3d:36:d6:47:22:1d: d2:77:91:99:0e:78:5a:c3:a5:f1:3e:43:cc:85:ff: 4c:c2:48:30:ee:57:7c:40:16:74:87:43:0a:1e:35: 45:02:9d:61:66:87:39:ba:4f:15:33:5f:9f:3a:e8: 04:a0:db:00:66:3e:f8:98:6d:cd:29:27:3e:28:61: d1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:01:2F:01:9C:E9:97:13:D1:19:4B:0B:38:02:69:2C:48:D4:F4:D8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49a16218-d4ff-48dd-85aa-288cdc958f67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.228.194.0/24 Signature Algorithm: sha256WithRSAEncryption 53:37:c6:d5:81:70:31:19:9c:d9:b2:83:3f:f6:8f:a3:64:0f: 25:be:f5:43:bd:24:fb:73:e3:49:71:0b:cd:12:5e:0e:af:27: 65:64:28:d0:1f:c4:76:8e:62:69:6f:63:bf:65:45:d3:f9:12: f1:2a:60:86:52:f4:25:8a:5c:15:98:90:9e:37:82:c7:19:5b: bf:94:54:75:cf:8a:fc:fa:f2:d7:17:38:b5:0b:e5:4b:6b:d4: 53:f4:89:23:8d:a3:71:79:a2:6f:62:dd:0f:24:da:e4:3f:f5: f7:cb:a9:44:93:b0:dd:05:cd:b0:a6:9c:35:2c:e9:06:32:a8: 22:f7:6d:08:d2:be:0a:b8:42:e2:c1:36:bf:bc:7f:d6:2e:b2: 60:31:5b:ec:dd:d0:96:30:c5:0e:b0:13:bc:87:d1:32:6b:f5: 99:2d:5c:36:13:e7:08:4b:67:c8:5e:40:e3:d6:a1:d4:ef:f7: 86:5e:a6:1f:1b:b7:75:96:98:63:b6:38:fd:9c:0f:de:3f:a2: be:48:6a:e6:da:c4:66:53:6f:a3:8b:4b:22:c4:5f:6d:48:0b: 42:88:f7:c2:8b:34:02:9c:7f:35:6b:50:93:75:8b:3b:49:4b: 73:10:22:e0:4a:4d:c0:53:3b:49:db:52:00:2b:91:0f:d0:46: 3c:cc:1f:ba -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDbbYIO75ZcZodUkFWYFV6Hk4hjwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAxMDE5WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNTljZDEzYmVkZjIwMWFmNjA0Y2VkNjVmZmZkZWFkN2Vl MmUwZTAzOGU3NjM4NzNjYmFhYjQwOGQxODVlN2JhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDA6d0v7ETF4/83sVtkWO9mrA0HqiOAEw2B1G3cOvI2uXUF J0MykFDJwWFhbHMwVcSs8Bc0bB67+z/ntFa+XWTKZoLNYbUxnEju+SQhcidSj4RH +tc/FoMnpTODNNeKnNUgye/U0kFZ0+RAj5H0Y8Ygj8NtqDJtl2Lu+nzG6qcE17A2 zeQq7BO57BybLemvp/ZkKepKvAGvzeFGahpBDa0E1ST1+BLVOHyHlQMGxZeDuxCI RTkfdor10ezwXT021kciHdJ3kZkOeFrDpfE+Q8yF/0zCSDDuV3xAFnSHQwoeNUUC nWFmhzm6TxUzX5866ASg2wBmPviYbc0pJz4oYdGzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxQEvAZzplxPRGUsLOAJpLEjU9NgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ5YTE2MjE4LWQ0ZmYtNDhkZC04NWFhLTI4OGNkYzk1OGY2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX5MIwDQYJKoZIhvcNAQELBQADggEBAFM3xtWBcDEZnNmygz/2j6NkDyW+ 9UO9JPtz40lxC80SXg6vJ2VkKNAfxHaOYmlvY79lRdP5EvEqYIZS9CWKXBWYkJ43 gscZW7+UVHXPivz68tcXOLUL5Utr1FP0iSONo3F5om9i3Q8k2uQ/9ffLqUSTsN0F zbCmnDUs6QYyqCL3bQjSvgq4QuLBNr+8f9YusmAxW+zd0JYwxQ6wE7yH0TJr9Zkt XDYT5whLZ8heQOPWodTv94Zeph8bt3WWmGO2OP2cD94/or5IaubaxGZTb6OLSyLE X21IC0KI98KLNAKcfzVrUJN1iztJS3MQIuBKTcBTO0nbUgArkQ/QRjzMH7o= -----END CERTIFICATE-----Generated at Sat Aug 9 01:12:36 2025 by rpki-client