$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3672d2f1-7991-40bd-afef-9cfaf5207b96.roa File: 3672d2f1-7991-40bd-afef-9cfaf5207b96.roa (raw, json) Hash identifier: 9e+cvSPMXOgWoTeVHhBuOcagTAVy4Ob3l9TT4j0bP+o= Subject key identifier: 49:0D:13:E4:2F:35:34:27:15:57:A1:BC:94:D3:9A:8A:5E:2F:02:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 12A0912C41D7666BD2DECC806CB3BEDF07ED13AA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3672d2f1-7991-40bd-afef-9cfaf5207b96.roa Signing time: Mon 08 Sep 2025 15:41:28 +0000 ROA not before: Mon 08 Sep 2025 15:41:28 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:a0:91:2c:41:d7:66:6b:d2:de:cc:80:6c:b3:be:df:07:ed:13:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 8 15:41:28 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=256bc4da4d5ec9245eae9fbc41a2fb801c42d246dcf3d8d0a6f1b3de64af6028, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:31:31:a5:61:9d:84:f2:f0:f2:7b:ee:a2:18: ea:a4:92:d7:c9:3a:7f:e1:ad:db:88:ff:62:4c:ee: 59:43:6a:0b:49:f7:fe:d7:2f:71:f1:3d:4a:6d:e7: ad:d6:da:ee:1b:f6:c5:16:73:4c:44:f3:77:e4:51: 3e:11:c7:bf:0d:c3:aa:e6:6b:ad:6c:fb:62:76:94: ad:e4:82:e8:be:c3:1e:b5:3b:07:bb:9f:1c:ee:21: 51:a5:99:d5:cb:3b:a4:e2:e6:d4:e8:f8:fc:9b:0b: 38:58:81:65:e9:c3:b0:93:41:f0:ca:3a:bf:21:da: 67:7b:94:89:f2:bb:a6:1c:27:3e:18:4b:54:46:ab: 0b:9f:cc:2a:3c:1b:1c:b7:92:0c:03:12:9b:0c:96: a5:25:33:6d:1e:60:e5:b0:5f:1e:e8:dc:61:5f:20: 82:45:81:be:24:a5:7e:21:3c:8b:7d:6a:b6:63:c7: 2b:01:39:2c:e6:6f:3a:9d:92:27:ae:ca:88:85:bb: 70:d8:43:e5:72:b7:b0:b3:2f:11:7c:86:cc:54:b5: e9:cf:7e:0f:96:45:ba:64:4d:33:03:ba:6c:bd:15: b4:b5:08:6c:47:d5:cf:8f:ee:49:fe:91:8c:84:08: 20:7c:6b:31:7f:8e:c8:33:6e:e3:bd:ab:3b:ff:68: 5d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:0D:13:E4:2F:35:34:27:15:57:A1:BC:94:D3:9A:8A:5E:2F:02:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3672d2f1-7991-40bd-afef-9cfaf5207b96.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.96.0/22 Signature Algorithm: sha256WithRSAEncryption c2:62:a7:9a:06:aa:74:25:54:e4:07:2b:96:47:c2:98:5d:f5: 35:a2:71:90:2e:3c:22:bc:e1:7c:d8:61:c1:ea:9c:00:c5:f1: c0:b8:6e:a4:ee:ca:fa:32:1a:a9:27:90:f2:43:89:1e:88:6f: ef:b1:05:a9:45:5d:c7:ba:1f:fb:9b:8d:27:75:ab:d6:91:ea: 31:51:d3:ef:6e:4c:c9:02:78:78:94:d7:12:8a:e4:74:30:ad: 68:9e:c0:07:f3:2d:f7:71:68:99:2a:56:a2:2d:0e:31:92:70: 72:fd:63:66:00:11:83:fa:c2:99:24:ae:be:c2:59:d0:2a:62: 71:af:3f:61:c9:fb:6b:ae:48:a5:3d:4a:dc:08:33:db:d4:9f: c2:00:18:22:f9:7f:7a:0b:21:43:41:68:1c:08:a3:a7:c6:19: 83:a4:30:cc:a5:57:6e:4f:a5:1b:96:41:35:1a:5a:e2:88:db: 99:89:63:73:be:a3:d5:b6:b2:d9:42:69:f7:0e:f5:c8:1b:7e: ca:53:74:76:6f:bc:97:2e:29:f8:12:b7:22:70:5c:44:ac:c2: 63:57:c4:ea:45:1b:ad:3e:57:ba:08:85:45:73:72:82:0f:91: 3e:14:85:d4:0b:15:7b:ae:f7:ee:d8:1c:89:ad:98:b5:ef:36: d8:bf:f2:f1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEqCRLEHXZmvS3syAbLO+3wftE6owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA4MTU0MTI4WhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNTZiYzRkYTRkNWVjOTI0NWVhZTlmYmM0MWEyZmI4MDFj NDJkMjQ2ZGNmM2Q4ZDBhNmYxYjNkZTY0YWY2MDI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIMTGlYZ2E8vDye+6iGOqkktfJOn/hrduI/2JM7llDagtJ 9/7XL3HxPUpt563W2u4b9sUWc0xE83fkUT4Rx78Nw6rma61s+2J2lK3kgui+wx61 Owe7nxzuIVGlmdXLO6Ti5tTo+PybCzhYgWXpw7CTQfDKOr8h2md7lInyu6YcJz4Y S1RGqwufzCo8Gxy3kgwDEpsMlqUlM20eYOWwXx7o3GFfIIJFgb4kpX4hPIt9arZj xysBOSzmbzqdkieuyoiFu3DYQ+Vyt7CzLxF8hsxUtenPfg+WRbpkTTMDumy9FbS1 CGxH1c+P7kn+kYyECCB8azF/jsgzbuO9qzv/aF3xAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSQ0T5C81NCcVV6G8lNOail4vAgMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM2NzJkMmYxLTc5OTEtNDBiZC1hZmVmLTljZmFmNTIwN2I5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgAGAwDQYJKoZIhvcNAQELBQADggEBAMJip5oGqnQlVOQHK5ZHwphd9TWi cZAuPCK84XzYYcHqnADF8cC4bqTuyvoyGqknkPJDiR6Ib++xBalFXce6H/ubjSd1 q9aR6jFR0+9uTMkCeHiU1xKK5HQwrWiewAfzLfdxaJkqVqItDjGScHL9Y2YAEYP6 wpkkrr7CWdAqYnGvP2HJ+2uuSKU9StwIM9vUn8IAGCL5f3oLIUNBaBwIo6fGGYOk MMylV25PpRuWQTUaWuKI25mJY3O+o9W2stlCafcO9cgbfspTdHZvvJcuKfgStyJw XESswmNXxOpFG60+V7oIhUVzcoIPkT4UhdQLFXuu9+7YHImtmLXvNti/8vE= -----END CERTIFICATE-----Generated at Thu Sep 18 00:12:46 2025 by rpki-client