$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1500b9fd-4529-4cd4-8362-2f8b99b9d9aa.roa File: 1500b9fd-4529-4cd4-8362-2f8b99b9d9aa.roa (raw, json) Hash identifier: juSOGYwb3dNtrAlN1QCYrpxJL4t0r+AcplX1+51vacc= Subject key identifier: 15:D7:AB:93:AF:0B:64:F1:1C:E5:51:6C:72:9C:E0:A7:80:4E:00:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D87C8AF5DB1A84CF3F64B053EC8F0FD65EC8126 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1500b9fd-4529-4cd4-8362-2f8b99b9d9aa.roa Signing time: Sat 06 Sep 2025 00:00:27 +0000 ROA not before: Sat 06 Sep 2025 00:00:27 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 143.191.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:87:c8:af:5d:b1:a8:4c:f3:f6:4b:05:3e:c8:f0:fd:65:ec:81:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:00:27 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=1bc88fc1dd28f959a3deb82e1a63fb02f6898e7e6e68324721cfbd6ad7148006, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:5d:85:ee:1d:61:58:5b:7b:be:8a:99:bf:3b: ed:3c:83:a5:52:bd:8e:46:69:9d:a1:b0:a3:1c:0d: 99:95:c7:e9:d9:f4:96:f8:54:d6:72:39:ff:6f:bb: 3a:db:e7:ec:f6:fe:87:0e:b6:de:93:74:d8:7a:c1: 0c:e7:fe:d2:ed:54:1d:ee:c5:6b:24:f3:10:c8:c6: 87:03:1e:84:e2:a2:de:ec:d2:cc:49:5a:5f:ae:d7: 13:b2:8b:84:04:58:2d:b1:94:60:d0:3c:11:07:38: 09:0f:4d:2e:8f:cd:ac:92:46:14:7a:d3:df:b0:59: 1b:ce:0f:03:7b:39:3a:f2:e6:5b:6f:5f:59:6a:e5: 00:24:ed:b1:2f:73:d8:bb:1b:7a:4f:68:d3:53:6c: b3:85:4e:3f:82:d2:bc:b5:0f:1d:8e:5a:52:14:4a: cc:8e:b5:15:02:fc:0d:a2:29:f1:a4:be:d0:32:c3: 9a:fe:63:38:0c:27:3e:2e:99:1f:aa:9d:81:96:84: 99:cc:3d:f4:4b:09:21:1d:ae:c8:06:05:48:c0:65: 85:3b:db:cc:1d:ea:ed:e1:e9:06:cb:9c:aa:e9:d7: 7f:20:41:94:8f:f0:d5:94:3a:01:4c:33:a5:b6:22: 6d:ae:64:d7:b8:38:b4:13:68:28:96:74:43:c1:58: 71:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:D7:AB:93:AF:0B:64:F1:1C:E5:51:6C:72:9C:E0:A7:80:4E:00:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1500b9fd-4529-4cd4-8362-2f8b99b9d9aa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.191.0.0/16 Signature Algorithm: sha256WithRSAEncryption b8:c1:c5:20:04:d2:68:40:1d:6c:d0:2d:9d:b5:9a:93:9d:c9: 16:d3:a2:86:c9:a7:c5:f4:48:ca:33:6d:22:ad:40:3c:4f:f0: eb:c7:96:82:ef:63:b7:7f:c5:a9:b6:8c:7f:20:a6:98:1a:f0: 89:18:23:c2:e4:ac:bb:75:35:2b:1e:ef:0c:75:7f:f6:da:4e: a7:96:67:64:fd:52:72:f0:11:8a:36:0c:fd:5c:aa:ab:b9:47: b7:73:93:56:12:cb:7e:37:bf:29:30:2f:94:c7:68:f3:0a:75: 97:fb:1a:ec:0d:d3:89:37:14:76:0d:64:0f:ca:bc:9b:fe:ad: ad:33:ad:70:dc:2c:7e:88:2a:a3:d7:29:7a:87:3d:ce:50:71: 66:8b:b4:d8:81:ec:98:90:c4:4a:4e:82:fa:47:0b:de:b4:c1: 21:fa:36:e3:28:05:40:90:bc:d1:e9:64:07:61:84:87:c8:a8: 25:18:71:1f:f9:9b:d5:18:84:c8:15:e8:a3:2e:8f:5e:53:8a: aa:51:d6:1e:f5:18:3a:21:3f:1e:6c:86:8d:6a:af:05:6b:09: c0:e9:a5:7d:c4:c8:d0:cb:f8:5d:3f:2d:7e:08:38:8a:3a:80: 53:4f:2d:2f:84:fb:6b:33:06:c4:33:23:48:5a:44:14:c4:8d: e8:81:20:e2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfYfIr12xqEzz9ksFPsjw/WXsgSYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAwMDI3WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYmM4OGZjMWRkMjhmOTU5YTNkZWI4MmUxYTYzZmIwMmY2 ODk4ZTdlNmU2ODMyNDcyMWNmYmQ2YWQ3MTQ4MDA2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkXYXuHWFYW3u+ipm/O+08g6VSvY5GaZ2hsKMcDZmVx+nZ 9Jb4VNZyOf9vuzrb5+z2/ocOtt6TdNh6wQzn/tLtVB3uxWsk8xDIxocDHoTiot7s 0sxJWl+u1xOyi4QEWC2xlGDQPBEHOAkPTS6PzaySRhR609+wWRvODwN7OTry5ltv X1lq5QAk7bEvc9i7G3pPaNNTbLOFTj+C0ry1Dx2OWlIUSsyOtRUC/A2iKfGkvtAy w5r+YzgMJz4umR+qnYGWhJnMPfRLCSEdrsgGBUjAZYU728wd6u3h6QbLnKrp138g QZSP8NWUOgFMM6W2Im2uZNe4OLQTaCiWdEPBWHGPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFderk68LZPEc5VFscpzgp4BOAHUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1MDBiOWZkLTQ1MjktNGNkNC04MzYyLTJmOGI5OWI5ZDlhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCPvzANBgkqhkiG9w0BAQsFAAOCAQEAuMHFIATSaEAdbNAtnbWak53JFtOi hsmnxfRIyjNtIq1APE/w68eWgu9jt3/FqbaMfyCmmBrwiRgjwuSsu3U1Kx7vDHV/ 9tpOp5ZnZP1ScvARijYM/Vyqq7lHt3OTVhLLfje/KTAvlMdo8wp1l/sa7A3TiTcU dg1kD8q8m/6trTOtcNwsfogqo9cpeoc9zlBxZou02IHsmJDESk6C+kcL3rTBIfo2 4ygFQJC80elkB2GEh8ioJRhxH/mb1RiEyBXooy6PXlOKqlHWHvUYOiE/HmyGjWqv BWsJwOmlfcTI0Mv4XT8tfgg4ijqAU08tL4T7azMGxDMjSFpEFMSN6IEg4g== -----END CERTIFICATE-----Generated at Sat Sep 6 14:19:41 2025 by rpki-client