$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa File: 07008d8d-f039-461c-be80-d42cb304abe4.roa (raw, json) Hash identifier: ZMsDQAv8W1QSiLOnyAOWUG7qQ+Dvf8iOraED4YeRrdY= Subject key identifier: FE:38:08:FB:0A:68:B1:53:2D:53:E2:14:A4:31:B7:2F:EA:FD:A5:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 63585A445F48A169B7D42AF40B952B81F79BCC65 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa Signing time: Sat 06 Sep 2025 00:30:27 +0000 ROA not before: Sat 06 Sep 2025 00:30:27 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.20.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:58:5a:44:5f:48:a1:69:b7:d4:2a:f4:0b:95:2b:81:f7:9b:cc:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:30:27 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=e3118eb701087cd0733afaeec436f484c5b2b2225b4c663cd3e5d737bb10bbf9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:04:80:8a:50:fb:b5:3e:13:eb:7b:87:27:8f: c9:24:b1:56:df:06:a4:01:bd:65:d7:96:50:e6:76: 1e:ca:1b:b0:55:33:64:6f:c2:2c:38:ff:2a:1f:c4: f9:22:04:fa:ce:bc:ef:ce:94:62:9e:6b:38:da:2d: d1:3a:18:d9:28:f3:c3:4d:9a:90:20:4e:be:1f:6b: fb:60:e7:9f:73:62:dd:ae:46:13:63:92:85:0c:a4: 46:7f:a9:2b:d2:0e:95:28:e0:c3:4b:df:b7:5d:7b: 5a:39:d1:2f:56:2e:95:1a:60:b5:ec:e4:18:cc:2b: 9a:80:15:ec:94:8c:df:46:9a:f7:9a:f6:cd:91:72: 48:d4:35:c7:57:da:e9:f5:90:d1:33:c1:8f:d0:4b: bb:58:ab:05:eb:0b:20:db:43:d4:08:5a:eb:93:ce: 04:79:72:ee:92:2c:01:5d:80:90:ba:f8:23:b9:a8: 3f:b4:f2:83:bf:6d:9e:fc:e9:6e:31:b9:08:c4:fa: 0d:f3:89:62:e2:be:aa:a1:0f:1c:2a:77:7c:9e:c5: 4b:c5:68:cf:9e:5c:3c:ca:93:fd:5d:d3:de:de:d3: 63:c9:ad:75:72:12:d7:26:12:b1:98:fd:31:a8:28: ef:54:7d:82:a1:c0:1e:e7:8f:17:b5:b3:de:bb:cf: e9:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:38:08:FB:0A:68:B1:53:2D:53:E2:14:A4:31:B7:2F:EA:FD:A5:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.20.0.0/15 Signature Algorithm: sha256WithRSAEncryption 79:e0:19:9a:0a:a2:25:41:2d:4a:7a:9f:1a:b2:ff:93:95:0b: ce:d1:6b:5d:28:26:24:5f:ef:c3:07:09:76:fe:13:9e:c4:6b: 3e:d0:d3:8e:e9:d3:94:48:f7:f9:f5:73:6f:e4:d5:22:de:c8: 73:a6:07:ed:31:d9:c9:92:39:51:38:79:3c:fc:c2:8a:34:74: 37:45:3d:31:35:5c:8c:ef:7e:41:8c:09:19:78:be:c4:d8:0d: 4e:f0:7b:77:a2:e7:31:82:b0:ae:90:3a:db:a6:26:be:fe:63: ea:76:af:68:23:15:b3:09:0b:2c:3a:7a:1e:bb:f4:b8:5b:80: ee:c1:00:4f:93:04:80:ed:c4:da:7a:dd:6a:a2:45:64:07:93: f4:23:d0:9f:01:f4:34:cd:34:5b:9f:71:06:59:05:6e:db:0d: 14:64:96:46:5b:a2:3a:16:04:50:15:1b:73:c2:4c:28:c7:ac: 31:a0:ab:bc:8e:46:dd:fa:01:92:44:3e:ae:66:2b:66:b7:a3: d7:68:9e:76:21:71:7a:6c:95:ba:fe:76:69:b9:be:71:69:4b: 63:98:35:cc:f6:14:56:07:f4:97:7f:d6:8a:15:18:0d:9b:34: 53:41:89:2f:9d:f7:bc:ae:ec:99:05:fe:b5:ea:18:5a:de:44: f0:74:41:57 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUY1haRF9IoWm31Cr0C5UrgfebzGUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAzMDI3WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMzExOGViNzAxMDg3Y2QwNzMzYWZhZWVjNDM2ZjQ4NGM1 YjJiMjIyNWI0YzY2M2NkM2U1ZDczN2JiMTBiYmY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnBICKUPu1PhPre4cnj8kksVbfBqQBvWXXllDmdh7KG7BV M2Rvwiw4/yofxPkiBPrOvO/OlGKeazjaLdE6GNko88NNmpAgTr4fa/tg559zYt2u RhNjkoUMpEZ/qSvSDpUo4MNL37dde1o50S9WLpUaYLXs5BjMK5qAFeyUjN9Gmvea 9s2RckjUNcdX2un1kNEzwY/QS7tYqwXrCyDbQ9QIWuuTzgR5cu6SLAFdgJC6+CO5 qD+08oO/bZ786W4xuQjE+g3ziWLivqqhDxwqd3yexUvFaM+eXDzKk/1d097e02PJ rXVyEtcmErGY/TGoKO9UfYKhwB7njxe1s967z+khAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/jgI+wposVMtU+IUpDG3L+r9pbEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3MDA4ZDhkLWYwMzktNDYxYy1iZTgwLWQ0MmNiMzA0YWJlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE2FDANBgkqhkiG9w0BAQsFAAOCAQEAeeAZmgqiJUEtSnqfGrL/k5ULztFr XSgmJF/vwwcJdv4TnsRrPtDTjunTlEj3+fVzb+TVIt7Ic6YH7THZyZI5UTh5PPzC ijR0N0U9MTVcjO9+QYwJGXi+xNgNTvB7d6LnMYKwrpA626Ymvv5j6navaCMVswkL LDp6Hrv0uFuA7sEAT5MEgO3E2nrdaqJFZAeT9CPQnwH0NM00W59xBlkFbtsNFGSW RluiOhYEUBUbc8JMKMesMaCrvI5G3foBkkQ+rmYrZrej12iediFxemyVuv52abm+ cWlLY5g1zPYUVgf0l3/WihUYDZs0U0GJL533vK7smQX+teoYWt5E8HRBVw== -----END CERTIFICATE-----Generated at Wed Sep 17 04:06:29 2025 by rpki-client