$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa File: 25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa (raw, json) Hash identifier: Ruu/Gp1fFbnr1orZ3stzGEfA+Mtykjp5cItIe8tpRSA= Subject key identifier: 80:B3:DF:37:96:5E:87:4D:0E:E1:BB:AD:F4:FF:7D:5A:EF:E6:07:1E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02FD3C7BF3D9F5725DCE3D5DA21F36993E8EB1AF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa Signing time: Mon 01 Sep 2025 15:40:24 +0000 ROA not before: Mon 01 Sep 2025 15:40:24 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 78.12.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:fd:3c:7b:f3:d9:f5:72:5d:ce:3d:5d:a2:1f:36:99:3e:8e:b1:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:40:24 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=9640c7e5b876256295cd8bed83cfb7fa1494632419b11e3f0f10853a9646acc5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:65:f2:98:79:57:b5:ca:60:b5:21:f1:5a:a1: e0:41:58:ea:9c:14:86:e6:3e:4e:85:85:80:e5:3d: 1e:f9:df:59:20:30:a8:c6:29:57:21:ee:4b:b6:31: ac:c8:b1:ab:79:f0:c4:f1:ac:81:c1:ff:48:2d:30: 3c:57:09:ef:25:17:bd:81:c8:b1:3a:74:07:89:91: b7:3f:42:a3:21:ad:93:06:41:73:ca:ce:27:4b:3c: ae:57:9d:ba:d0:18:57:35:8a:78:2c:fc:5f:cf:b9: a3:a6:b7:14:a2:94:53:a8:52:6e:c5:1e:02:74:31: 4c:f9:2e:2d:11:d6:48:a1:1b:77:0a:f4:2d:fc:8c: e0:4f:ad:48:58:a8:ab:1e:f0:0a:cc:b3:f0:a8:a8: 63:f5:e5:0c:08:c3:6e:f4:de:c7:42:f1:cf:d4:51: 35:e2:a5:aa:ce:4f:a2:67:6d:5d:21:7d:44:e3:86: 7e:a1:8e:85:b8:2c:b5:02:35:be:8e:65:98:64:cb: df:e7:1b:5f:4c:18:0a:c9:9d:c3:c9:48:e1:f4:4b: a5:29:af:77:66:e4:9d:bd:9b:63:24:82:e8:51:00: 58:2c:a4:57:01:8f:84:04:2a:a9:2c:a7:92:72:1a: 7b:f5:00:3f:07:12:c5:20:44:d2:c2:60:98:7a:40: a9:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:B3:DF:37:96:5E:87:4D:0E:E1:BB:AD:F4:FF:7D:5A:EF:E6:07:1E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25b41a4c-7a8b-41e6-8d0c-2dc7cee8afd0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.12.0.0/15 Signature Algorithm: sha256WithRSAEncryption 2c:26:d3:50:d0:ed:1c:06:92:1d:9a:f3:a0:43:77:3b:b6:a5: e5:0f:e4:e4:7c:f3:29:20:fa:35:e4:77:6a:a6:22:79:f8:0f: 47:42:ea:29:76:d1:0b:3d:8a:47:aa:07:88:68:18:1e:16:93: 3c:75:08:47:61:8b:da:8a:3d:11:3b:8c:13:fe:cb:a2:3d:23: bf:6e:be:93:38:46:8b:5c:8e:23:5f:a5:88:f8:77:bc:68:62: 4e:61:a1:e0:e2:81:44:bf:e5:20:65:13:0e:25:84:06:18:8a: 04:2c:07:53:74:96:c5:c7:c3:2a:da:17:2f:e1:6b:4f:e1:21: bb:f2:49:d0:c9:82:de:c4:69:ec:e5:ef:96:fa:57:9d:1c:08: d1:81:71:08:ca:77:75:62:4e:36:ef:fb:b5:d8:60:ee:a2:7a: b1:aa:7f:7b:4c:85:59:b2:42:dc:22:b0:fb:e6:40:20:b2:6d: 23:02:1c:c5:01:c6:63:44:34:f5:6a:97:b9:71:ba:02:5c:62: ac:91:33:2f:20:c2:cd:21:ff:f2:48:d3:63:b2:6c:16:5b:67: 8a:8f:d3:e8:d0:ce:e3:0a:69:1e:3a:49:e3:f4:ba:d8:e5:22: 5f:2f:c7:fd:3d:80:7d:49:d3:e7:52:38:e7:ba:be:c1:2d:fb: 08:6b:e0:1f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAv08e/PZ9XJdzj1doh82mT6Osa8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTU0MDI0WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjQwYzdlNWI4NzYyNTYyOTVjZDhiZWQ4M2NmYjdmYTE0 OTQ2MzI0MTliMTFlM2YwZjEwODUzYTk2NDZhY2M1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSZfKYeVe1ymC1IfFaoeBBWOqcFIbmPk6FhYDlPR7531kg MKjGKVch7ku2MazIsat58MTxrIHB/0gtMDxXCe8lF72ByLE6dAeJkbc/QqMhrZMG QXPKzidLPK5XnbrQGFc1ings/F/PuaOmtxSilFOoUm7FHgJ0MUz5Li0R1kihG3cK 9C38jOBPrUhYqKse8ArMs/CoqGP15QwIw2703sdC8c/UUTXiparOT6JnbV0hfUTj hn6hjoW4LLUCNb6OZZhky9/nG19MGArJncPJSOH0S6Upr3dm5J29m2MkguhRAFgs pFcBj4QEKqksp5JyGnv1AD8HEsUgRNLCYJh6QKnHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUgLPfN5Zeh00O4but9P99Wu/mBx4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI1YjQxYTRjLTdhOGItNDFlNi04ZDBjLTJkYzdjZWU4YWZkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFODDANBgkqhkiG9w0BAQsFAAOCAQEALCbTUNDtHAaSHZrzoEN3O7al5Q/k 5HzzKSD6NeR3aqYiefgPR0LqKXbRCz2KR6oHiGgYHhaTPHUIR2GL2oo9ETuME/7L oj0jv26+kzhGi1yOI1+liPh3vGhiTmGh4OKBRL/lIGUTDiWEBhiKBCwHU3SWxcfD KtoXL+FrT+Ehu/JJ0MmC3sRp7OXvlvpXnRwI0YFxCMp3dWJONu/7tdhg7qJ6sap/ e0yFWbJC3CKw++ZAILJtIwIcxQHGY0Q09WqXuXG6AlxirJEzLyDCzSH/8kjTY7Js Fltnio/T6NDO4wppHjpJ4/S62OUiXy/H/T2AfUnT51I457q+wS37CGvgHw== -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:30 2025 by rpki-client