$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f1c8f6-2174-4be4-a315-584040d5ba64.roa File: 25f1c8f6-2174-4be4-a315-584040d5ba64.roa (raw, json) Hash identifier: VOLR/S0t72Ek2ApVrXf5H8dykV6WSg5AWwBvUKQNQQA= Subject key identifier: FA:09:5D:E2:F9:42:F2:2D:41:60:87:44:0B:E9:08:81:42:50:AE:DD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B102A958E65C55B2F05657D9CC62AACB4374717 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f1c8f6-2174-4be4-a315-584040d5ba64.roa Signing time: Fri 05 Sep 2025 00:01:54 +0000 ROA not before: Fri 05 Sep 2025 00:01:54 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.100.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:10:2a:95:8e:65:c5:5b:2f:05:65:7d:9c:c6:2a:ac:b4:37:47:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 00:01:54 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=83ee4e7246bdf698ee16a090c6c77803d818d1d58eca1f0bf0ecaf0944a3ffa4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:73:9c:06:8e:3e:86:da:94:55:9f:dc:c7:e9: cb:33:e9:1c:7a:90:7a:db:f9:f7:dc:46:25:fb:a9: c0:48:70:23:69:96:f1:8b:a0:8c:0b:2f:82:93:0d: 80:64:f3:e5:d4:79:63:02:61:cb:3d:4c:a3:35:d1: d8:3c:9a:00:0e:14:39:f3:c2:6d:f8:37:0b:69:20: 4d:0a:8e:53:e1:99:27:1a:89:53:cc:b8:a4:7c:aa: 4b:46:e8:a1:e4:8a:a6:ba:7f:ef:c4:92:6c:7f:1e: 01:bc:10:e6:e5:a4:e5:18:06:c4:b0:15:55:ae:88: 1f:97:0a:d6:59:da:a7:8b:66:26:84:2b:b0:81:ac: 1f:2d:b3:19:5a:e1:1e:05:12:13:b9:72:91:32:2f: 18:58:5f:f9:44:31:c2:0f:6c:ab:0a:f2:37:51:26: 91:11:e4:59:59:9c:1f:da:0a:6f:72:03:30:cc:28: 66:a5:15:09:ac:6b:5b:75:88:6a:bb:c6:e7:cc:e1: f5:99:dc:28:7e:2b:e6:77:9e:b5:06:76:b4:60:ef: 4e:8e:ea:a7:bf:4b:8d:8c:32:ac:76:32:26:96:dc: 2e:18:ea:06:94:56:1d:50:f8:f9:67:d7:aa:73:d8: d4:b2:0a:e8:01:c3:66:8c:7e:2d:0c:8e:59:1f:6f: 73:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:09:5D:E2:F9:42:F2:2D:41:60:87:44:0B:E9:08:81:42:50:AE:DD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f1c8f6-2174-4be4-a315-584040d5ba64.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.100.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4f:5d:67:cb:01:35:2f:1e:5c:75:7c:0c:84:89:b0:a8:ca:f2: 81:9f:aa:20:19:eb:52:91:9b:ac:dd:43:e4:50:9e:b1:b3:ce: 2f:31:5c:45:ba:ab:23:af:d9:7a:14:d6:1e:35:25:a5:47:aa: 0a:d6:d2:d8:08:3b:92:73:1f:fc:96:df:b2:b1:d6:0b:dc:5b: f4:9d:2a:b2:fd:05:99:55:ff:bd:f1:96:b5:a4:b2:2e:12:61: c9:dd:89:42:31:c3:56:21:ea:09:31:bc:58:35:73:46:f1:19: e1:dd:9e:34:1a:93:b5:1c:a1:25:bc:7b:b1:7d:69:c9:39:03: 9c:b5:c4:8d:1a:44:0b:38:01:68:76:94:4a:92:3b:d4:6a:aa: 2a:52:ca:cf:b4:22:a6:77:f2:a7:f4:d1:c2:35:a6:51:a4:01: a3:28:4e:d1:79:00:4b:d9:b3:d7:c1:7b:83:b2:f1:5c:db:26: 66:1c:25:1d:25:f6:94:95:0e:b4:3d:51:bf:2d:91:f9:72:23: 31:f4:9e:8f:1c:2c:b5:c5:e8:67:fc:36:0e:11:aa:36:6e:06: 3d:e1:6c:52:1e:b1:46:7e:d5:8a:d2:a3:d8:eb:f1:36:2e:67: e3:12:7d:56:f2:d7:35:6b:db:a7:35:6c:c3:b0:67:a7:0e:d8: a0:0f:bd:85 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCxAqlY5lxVsvBWV9nMYqrLQ3RxcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA1MDAwMTU0WhcNMjUxMDEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4M2VlNGU3MjQ2YmRmNjk4ZWUxNmEwOTBjNmM3NzgwM2Q4 MThkMWQ1OGVjYTFmMGJmMGVjYWYwOTQ0YTNmZmE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkc5wGjj6G2pRVn9zH6csz6Rx6kHrb+ffcRiX7qcBIcCNp lvGLoIwLL4KTDYBk8+XUeWMCYcs9TKM10dg8mgAOFDnzwm34NwtpIE0KjlPhmSca iVPMuKR8qktG6KHkiqa6f+/Ekmx/HgG8EOblpOUYBsSwFVWuiB+XCtZZ2qeLZiaE K7CBrB8tsxla4R4FEhO5cpEyLxhYX/lEMcIPbKsK8jdRJpER5FlZnB/aCm9yAzDM KGalFQmsa1t1iGq7xufM4fWZ3Ch+K+Z3nrUGdrRg706O6qe/S42MMqx2MiaW3C4Y 6gaUVh1Q+Pln16pz2NSyCugBw2aMfi0Mjlkfb3NzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU+gld4vlC8i1BYIdEC+kIgUJQrt0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI1ZjFjOGY2LTIxNzQtNGJlNC1hMzE1LTU4NDA0MGQ1YmE2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQZDANBgkqhkiG9w0BAQsFAAOCAQEAT11nywE1Lx5cdXwMhImwqMrygZ+q IBnrUpGbrN1D5FCesbPOLzFcRbqrI6/ZehTWHjUlpUeqCtbS2Ag7knMf/JbfsrHW C9xb9J0qsv0FmVX/vfGWtaSyLhJhyd2JQjHDViHqCTG8WDVzRvEZ4d2eNBqTtRyh Jbx7sX1pyTkDnLXEjRpECzgBaHaUSpI71GqqKlLKz7Qipnfyp/TRwjWmUaQBoyhO 0XkAS9mz18F7g7LxXNsmZhwlHSX2lJUOtD1Rvy2R+XIjMfSejxwstcXoZ/w2DhGq Nm4GPeFsUh6xRn7VitKj2OvxNi5n4xJ9VvLXNWvbpzVsw7Bnpw7YoA+9hQ== -----END CERTIFICATE-----Generated at Sat Sep 6 14:13:48 2025 by rpki-client