$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/537c046e-5a56-4195-932d-8cb70983c76c.roa File: 537c046e-5a56-4195-932d-8cb70983c76c.roa (raw, json) Hash identifier: 3p3HFX8HVq8nMjiqorrd7nmCiRP3orNd9rC8nzxY4vs= Subject key identifier: 98:D4:22:C3:E5:1B:F7:28:8C:0E:2F:27:AB:18:2C:FA:80:25:6C:3D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 014A2AE4B5A693CCF066EEE385D9E0A752EB40CD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/537c046e-5a56-4195-932d-8cb70983c76c.roa Signing time: Mon 04 Aug 2025 16:22:05 +0000 ROA not before: Mon 04 Aug 2025 16:22:05 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.254.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:4a:2a:e4:b5:a6:93:cc:f0:66:ee:e3:85:d9:e0:a7:52:eb:40:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:22:05 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=40852a5a3ececf3af23419990ef1c3a130f88a60b6a0b1868ec0e11d2e3a6b1e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8d:57:d5:d5:71:e2:7a:2c:00:79:5f:a9:ff: f0:65:0b:70:0e:d6:70:62:f2:ea:b9:50:67:48:dc: a2:87:e9:a9:24:c5:e8:7a:c8:16:5f:06:36:7d:d9: 69:4d:f4:f9:56:23:aa:cf:c4:e4:f4:ca:10:09:6d: d8:fa:ea:de:91:6b:ef:9f:37:d2:d0:6e:97:65:1d: d6:00:d4:b8:68:9c:79:14:bd:55:18:7c:17:cd:93: 12:5d:c1:21:9d:b4:23:20:e3:98:8c:f8:9f:06:45: 58:c3:a9:06:2c:15:53:62:7f:e6:02:26:89:b9:d4: 87:23:fe:9c:46:60:82:86:d4:32:fc:71:5f:fc:83: 01:f4:15:ef:35:93:54:25:c4:2e:8e:77:9a:a2:eb: ff:fc:c8:1b:e8:41:48:46:ca:d4:ce:84:d3:93:c1: fd:bd:1f:41:12:00:52:7a:1b:21:69:8c:83:12:c3: 02:77:4a:a5:b6:a7:1b:e3:75:69:b4:f5:a3:0b:b7: 8e:d2:77:e0:ab:6a:54:52:5e:18:6e:b8:18:bf:f0: f1:16:99:d0:20:5f:7a:5b:b7:6c:5f:6c:a4:43:5f: 29:38:72:82:63:89:f6:ac:06:f4:60:e8:b4:e1:3d: fc:cc:5a:de:00:eb:2f:10:9c:c9:ee:3e:d1:43:94: 91:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:D4:22:C3:E5:1B:F7:28:8C:0E:2F:27:AB:18:2C:FA:80:25:6C:3D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/537c046e-5a56-4195-932d-8cb70983c76c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.254.8.0/22 Signature Algorithm: sha256WithRSAEncryption 42:5b:42:6f:52:9e:1f:42:4f:30:93:0b:2d:55:d2:30:cb:73: 62:e4:1f:fa:b4:3a:23:51:8d:d2:86:58:24:84:5e:3a:09:57: 09:d8:fd:f3:9c:d0:0a:2e:76:fd:21:d2:18:7b:43:60:85:d6: 42:b1:67:2e:6d:db:2f:ab:aa:d7:48:49:b2:c9:0f:fc:f0:dc: 4d:65:c5:53:4e:32:55:aa:35:09:e3:4b:7d:84:0c:e8:7a:ce: 66:28:10:62:cf:ee:f4:5c:b6:5e:02:2b:0d:93:4f:f5:eb:b4: 71:45:76:f4:93:d0:64:99:f6:fd:a1:1d:76:f9:d1:41:a0:8c: 86:2b:d8:4a:25:cb:f2:bf:1d:78:13:a2:79:4a:c5:26:3b:a1: 17:0a:4f:91:1d:ab:56:3b:03:91:63:42:87:0d:21:bd:ed:af: c3:e0:dd:ba:06:7f:30:ac:21:6f:f1:b4:65:ff:af:f4:fb:31: b6:63:a0:bf:f4:f1:d6:42:d3:9d:ae:9f:11:2f:e9:52:ef:56: 77:60:63:38:71:34:5d:60:0c:ef:f9:64:e9:b3:6e:1b:34:10: c5:49:5b:77:9f:01:ee:ee:d2:33:c8:bb:ac:25:0c:eb:69:17: 9a:62:42:30:c4:9f:10:28:21:ab:6f:98:c4:a8:01:3d:52:0e: 91:46:53:6b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAUoq5LWmk8zwZu7jhdngp1LrQM0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTYyMjA1WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDg1MmE1YTNlY2VjZjNhZjIzNDE5OTkwZWYxYzNhMTMw Zjg4YTYwYjZhMGIxODY4ZWMwZTExZDJlM2E2YjFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyjVfV1XHieiwAeV+p//BlC3AO1nBi8uq5UGdI3KKH6akk xeh6yBZfBjZ92WlN9PlWI6rPxOT0yhAJbdj66t6Ra++fN9LQbpdlHdYA1LhonHkU vVUYfBfNkxJdwSGdtCMg45iM+J8GRVjDqQYsFVNif+YCJom51Icj/pxGYIKG1DL8 cV/8gwH0Fe81k1QlxC6Od5qi6//8yBvoQUhGytTOhNOTwf29H0ESAFJ6GyFpjIMS wwJ3SqW2pxvjdWm09aMLt47Sd+CralRSXhhuuBi/8PEWmdAgX3pbt2xfbKRDXyk4 coJjifasBvRg6LThPfzMWt4A6y8QnMnuPtFDlJFFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmNQiw+Ub9yiMDi8nqxgs+oAlbD0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzN2MwNDZlLTVhNTYtNDE5NS05MzJkLThjYjcwOTgzYzc2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX/ggwDQYJKoZIhvcNAQELBQADggEBAEJbQm9Snh9CTzCTCy1V0jDLc2Lk H/q0OiNRjdKGWCSEXjoJVwnY/fOc0Aoudv0h0hh7Q2CF1kKxZy5t2y+rqtdISbLJ D/zw3E1lxVNOMlWqNQnjS32EDOh6zmYoEGLP7vRctl4CKw2TT/XrtHFFdvST0GSZ 9v2hHXb50UGgjIYr2Eoly/K/HXgTonlKxSY7oRcKT5Edq1Y7A5FjQocNIb3tr8Pg 3boGfzCsIW/xtGX/r/T7MbZjoL/08dZC052unxEv6VLvVndgYzhxNF1gDO/5ZOmz bhs0EMVJW3efAe7u0jPIu6wlDOtpF5piQjDEnxAoIatvmMSoAT1SDpFGU2s= -----END CERTIFICATE-----Generated at Sat Aug 9 23:17:24 2025 by rpki-client