$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18e20a74-bdc3-4bcf-9338-15e54b26aae0.roa File: 18e20a74-bdc3-4bcf-9338-15e54b26aae0.roa (raw, json) Hash identifier: B7NV7gImS+VpWpz0bANbqYImtZGzrLTMx2D9fpsOZYs= Subject key identifier: 06:DF:ED:29:FA:78:8B:25:4A:13:C8:75:5A:6B:C2:9F:B8:08:FE:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2AF40E7044E0C92144B2B5FB1F80D59475EE3772 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18e20a74-bdc3-4bcf-9338-15e54b26aae0.roa Signing time: Fri 12 Sep 2025 00:21:14 +0000 ROA not before: Fri 12 Sep 2025 00:21:14 +0000 ROA not after: Fri 17 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.12.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 16 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:f4:0e:70:44:e0:c9:21:44:b2:b5:fb:1f:80:d5:94:75:ee:37:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 12 00:21:14 2025 GMT Not After : Oct 17 23:59:59 2025 GMT Subject: serialNumber=e4158b41bca05d0caf1876cf955b1e26c84f7a95436d5490d4c79a776406e201, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:de:75:3e:0b:fa:7d:2a:65:4a:73:0d:6a:d8: 0e:ac:16:64:89:f8:b0:b6:4c:d6:76:8e:7f:d2:bb: 48:56:12:c3:c1:cf:9b:48:43:97:6a:fe:e2:96:ac: 7f:e3:84:44:8f:d5:8e:2f:1f:39:b6:27:01:83:0d: 73:b3:9b:4f:b1:aa:27:a8:13:15:75:67:d0:c3:42: 2e:02:60:4b:c3:7a:60:5e:1c:a6:4f:17:3b:41:e1: ab:8f:24:a1:3f:0b:41:0f:6b:7e:ce:d2:c2:3d:9b: 3c:22:5a:2b:5a:5f:3c:4b:b1:cd:63:ac:e3:a8:4a: 7d:a9:79:e7:3a:07:99:65:5f:4b:4f:86:af:9f:94: 6a:72:a0:3d:9b:2c:8f:45:75:e3:12:0f:29:8a:30: 52:b4:ab:8e:40:05:a5:9d:6e:b3:31:ab:31:5d:5f: d0:c1:35:af:12:fb:ad:26:cf:ec:8c:bf:59:f1:4e: 71:f5:4e:53:ee:c1:45:90:d9:01:26:11:9c:98:98: 6f:2a:5d:81:e4:53:0c:d0:85:2a:ad:e3:ab:e7:20: a2:7e:1d:30:5f:68:03:7f:fb:e5:2a:46:13:72:36: 9a:93:46:e5:c1:a2:0c:4c:a5:9c:43:6d:13:ec:dc: 24:bf:54:2a:35:17:de:53:7c:a8:68:e3:91:ad:e5: e4:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:DF:ED:29:FA:78:8B:25:4A:13:C8:75:5A:6B:C2:9F:B8:08:FE:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18e20a74-bdc3-4bcf-9338-15e54b26aae0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.12.0.0/16 Signature Algorithm: sha256WithRSAEncryption 12:b4:d7:37:c3:96:c7:c3:86:d9:3d:e4:7a:6b:45:32:17:74: b5:3d:da:d9:5d:d7:c3:42:63:35:30:38:a7:b9:70:fc:36:55: 60:3c:ed:3f:8e:09:45:b3:77:5e:14:4d:19:f8:fb:be:25:41: 2d:0f:d9:95:fd:28:68:42:60:2f:ee:85:14:64:d0:d6:a5:b4: 30:62:84:54:3b:2b:89:c1:00:1e:53:82:bc:2b:46:c3:d4:06: ff:ed:d4:b7:66:7b:c3:cf:07:68:8b:74:71:57:90:2c:15:1d: fc:80:63:43:f9:80:e2:da:07:b2:a1:7a:ff:ca:bc:13:e7:1a: d8:a1:e5:00:3d:84:67:9d:f9:7a:1d:98:82:4e:5a:5c:d2:cb: f4:71:ad:4a:5e:80:0e:6c:4e:fe:62:3c:b4:97:d0:b6:10:73: 66:2a:79:1c:5d:bc:e1:b6:ec:e6:eb:e2:83:19:26:ac:51:6b: 67:2a:dd:bd:93:7f:6d:fb:42:cb:54:f0:40:9a:28:86:78:87: 07:26:a0:a2:0f:ac:b2:4c:87:63:22:11:ac:fe:4a:c1:b5:87: 3e:56:e1:eb:92:72:b2:3a:d5:f5:75:a8:23:e9:f5:eb:e9:2a: 22:32:8f:ee:2c:f1:7c:ad:95:02:07:70:44:a6:97:0e:42:1d: 83:1c:8a:b1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKvQOcETgySFEsrX7H4DVlHXuN3IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTEyMDAyMTE0WhcNMjUxMDE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNDE1OGI0MWJjYTA1ZDBjYWYxODc2Y2Y5NTViMWUyNmM4 NGY3YTk1NDM2ZDU0OTBkNGM3OWE3NzY0MDZlMjAxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCR3nU+C/p9KmVKcw1q2A6sFmSJ+LC2TNZ2jn/Su0hWEsPB z5tIQ5dq/uKWrH/jhESP1Y4vHzm2JwGDDXOzm0+xqieoExV1Z9DDQi4CYEvDemBe HKZPFztB4auPJKE/C0EPa37O0sI9mzwiWitaXzxLsc1jrOOoSn2peec6B5llX0tP hq+flGpyoD2bLI9FdeMSDymKMFK0q45ABaWdbrMxqzFdX9DBNa8S+60mz+yMv1nx TnH1TlPuwUWQ2QEmEZyYmG8qXYHkUwzQhSqt46vnIKJ+HTBfaAN/++UqRhNyNpqT RuXBogxMpZxDbRPs3CS/VCo1F95TfKho45Gt5eR5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBt/tKfp4iyVKE8h1WmvCn7gI/sAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE4ZTIwYTc0LWJkYzMtNGJjZi05MzM4LTE1ZTU0YjI2YWFlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQDDANBgkqhkiG9w0BAQsFAAOCAQEAErTXN8OWx8OG2T3kemtFMhd0tT3a 2V3Xw0JjNTA4p7lw/DZVYDztP44JRbN3XhRNGfj7viVBLQ/Zlf0oaEJgL+6FFGTQ 1qW0MGKEVDsricEAHlOCvCtGw9QG/+3Ut2Z7w88HaIt0cVeQLBUd/IBjQ/mA4toH sqF6/8q8E+ca2KHlAD2EZ535eh2Ygk5aXNLL9HGtSl6ADmxO/mI8tJfQthBzZip5 HF284bbs5uvigxkmrFFrZyrdvZN/bftCy1TwQJoohniHByagog+sskyHYyIRrP5K wbWHPlbh65JysjrV9XWoI+n16+kqIjKP7izxfK2VAgdwRKaXDkIdgxyKsQ== -----END CERTIFICATE-----Generated at Mon Sep 15 17:19:21 2025 by rpki-client