$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f4d1e5f-1483-4011-a7b3-0353a2c74128.roa File: 2f4d1e5f-1483-4011-a7b3-0353a2c74128.roa (raw, json) Hash identifier: W35D9CRqegzb6LU9Z2N602/tZxNi7yT5Y3fI53pOf1c= Subject key identifier: D0:3D:75:CD:CB:D4:EF:5D:4F:51:02:C3:DC:C7:B7:6A:92:E3:D1:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7870F76D8A5435BA28E50BDE44613E86885C1B2F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f4d1e5f-1483-4011-a7b3-0353a2c74128.roa Signing time: Fri 05 Sep 2025 00:01:52 +0000 ROA not before: Fri 05 Sep 2025 00:01:52 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 155.40.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:70:f7:6d:8a:54:35:ba:28:e5:0b:de:44:61:3e:86:88:5c:1b:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 00:01:52 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=31df7cb346ee7718e68710db2b6f361622c8ab9ef251ad1d8953c1ac63ddfed6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0b:29:fc:2c:48:da:c1:55:11:23:17:d1:94: b7:3b:a0:37:f8:9c:7a:12:96:dc:f9:b0:d8:6c:a7: f3:a1:88:ae:e3:a6:91:2c:11:bf:83:07:49:71:8c: d0:ae:a9:a9:cf:b4:4c:3a:20:ee:c0:f5:a4:96:60: fc:04:04:1b:80:e9:67:4d:76:32:4a:88:5c:d1:8e: 43:a0:35:e5:a1:2f:75:e9:94:c4:79:8d:48:cc:53: 60:db:ef:e1:bc:f8:c3:b7:56:f4:97:ae:9f:43:9f: cf:c3:12:78:2f:f2:c5:28:40:4c:ab:42:cf:a2:36: ed:38:06:b6:b2:e0:8b:71:ba:71:69:6c:98:00:df: 63:27:d0:1a:ec:29:11:92:59:45:41:cf:e5:13:e5: a5:08:3c:c3:76:2b:37:4e:2f:e2:15:09:17:99:e5: 39:11:17:5a:99:1f:15:72:b1:48:7d:b4:e5:25:c5: 36:12:3b:49:e4:35:26:e8:a5:a2:ea:63:46:e7:04: 49:64:81:7e:e0:38:61:65:91:bc:44:63:90:36:51: 90:ac:7b:a2:5f:0c:b5:d5:1a:1d:f9:03:0d:a1:a3: fa:62:3f:79:e8:af:06:8b:93:78:15:20:ed:e5:1d: 35:62:14:f2:7e:3e:01:b5:50:03:7e:0b:58:d1:82: 2b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:3D:75:CD:CB:D4:EF:5D:4F:51:02:C3:DC:C7:B7:6A:92:E3:D1:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f4d1e5f-1483-4011-a7b3-0353a2c74128.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.40.0.0/16 Signature Algorithm: sha256WithRSAEncryption c6:45:b9:d0:fb:f8:88:18:55:08:a6:4d:5e:e8:18:e2:be:53: f2:58:0c:10:b0:19:e7:d4:54:86:ef:61:9f:b8:aa:0e:c4:22: 8d:33:73:7a:d9:84:70:6e:4f:0b:ca:32:73:bd:61:08:1e:a1: d1:fa:f5:99:0b:fb:80:73:ff:52:99:a1:6f:74:f2:d0:94:12: 99:31:bc:ff:00:57:d5:1a:01:54:c8:4d:12:55:c7:39:8e:3d: d1:af:ba:9e:74:a1:aa:0b:ee:e5:48:57:63:ea:46:0c:1d:5b: 31:f1:a6:72:d9:ee:c7:6d:c4:d2:1e:63:3f:1a:4a:83:a5:1d: 06:e2:c9:9d:0c:57:bf:6e:6d:a3:5e:ca:b2:16:9d:11:fb:11: af:59:f0:e8:29:8c:93:3d:54:0a:14:73:20:f2:fb:69:8c:e8: 90:fe:a2:47:2f:15:dc:44:7a:3e:a8:6f:5f:93:f6:b4:ee:21: 2b:94:ae:33:12:74:13:40:5a:2c:48:05:38:53:6f:ac:da:6c: 29:5f:8b:12:a5:6b:1d:b6:56:6f:0e:ae:99:3e:56:25:7c:94: c0:38:89:4e:a4:65:13:33:65:8e:28:5d:f5:aa:8b:9c:83:ee: 58:10:4b:6d:7a:c1:74:aa:47:f9:03:f3:ae:95:bb:33:40:7e: f1:f2:7c:5a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeHD3bYpUNboo5QveRGE+hohcGy8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA1MDAwMTUyWhcNMjUxMDEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMWRmN2NiMzQ2ZWU3NzE4ZTY4NzEwZGIyYjZmMzYxNjIy YzhhYjllZjI1MWFkMWQ4OTUzYzFhYzYzZGRmZWQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpCyn8LEjawVURIxfRlLc7oDf4nHoSltz5sNhsp/OhiK7j ppEsEb+DB0lxjNCuqanPtEw6IO7A9aSWYPwEBBuA6WdNdjJKiFzRjkOgNeWhL3Xp lMR5jUjMU2Db7+G8+MO3VvSXrp9Dn8/DEngv8sUoQEyrQs+iNu04Bray4ItxunFp bJgA32Mn0BrsKRGSWUVBz+UT5aUIPMN2KzdOL+IVCReZ5TkRF1qZHxVysUh9tOUl xTYSO0nkNSbopaLqY0bnBElkgX7gOGFlkbxEY5A2UZCse6JfDLXVGh35Aw2ho/pi P3norwaLk3gVIO3lHTViFPJ+PgG1UAN+C1jRgitHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0D11zcvU711PUQLD3Me3apLj0SIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmNGQxZTVmLTE0ODMtNDAxMS1hN2IzLTAzNTNhMmM3NDEyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCbKDANBgkqhkiG9w0BAQsFAAOCAQEAxkW50Pv4iBhVCKZNXugY4r5T8lgM ELAZ59RUhu9hn7iqDsQijTNzetmEcG5PC8oyc71hCB6h0fr1mQv7gHP/Upmhb3Ty 0JQSmTG8/wBX1RoBVMhNElXHOY490a+6nnShqgvu5UhXY+pGDB1bMfGmctnux23E 0h5jPxpKg6UdBuLJnQxXv25to17KshadEfsRr1nw6CmMkz1UChRzIPL7aYzokP6i Ry8V3ER6PqhvX5P2tO4hK5SuMxJ0E0BaLEgFOFNvrNpsKV+LEqVrHbZWbw6umT5W JXyUwDiJTqRlEzNljihd9aqLnIPuWBBLbXrBdKpH+QPzrpW7M0B+8fJ8Wg== -----END CERTIFICATE-----Generated at Tue Sep 16 00:40:41 2025 by rpki-client