$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa File: 36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa (raw, json) Hash identifier: 959pP3hkBjjxNZtnNQJRIYI6enHJEu9QooAE7fp2d14= Subject key identifier: 4B:6E:EE:84:AB:CB:99:5C:3D:83:AA:2D:A2:D8:50:BC:7D:3F:D6:36 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5085F54D25BBF6A96B90A343E9598AE34F854400 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa Signing time: Fri 12 Sep 2025 00:21:16 +0000 ROA not before: Fri 12 Sep 2025 00:21:16 +0000 ROA not after: Fri 17 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.15.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:85:f5:4d:25:bb:f6:a9:6b:90:a3:43:e9:59:8a:e3:4f:85:44:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 12 00:21:16 2025 GMT Not After : Oct 17 23:59:59 2025 GMT Subject: serialNumber=879a5a0af7b54cba6b40225746042922f1c1f5071b4ea6a16385cd98ce081c9e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4f:25:9c:1a:a3:97:e2:e6:52:5e:64:43:bb: 90:13:cd:aa:31:fb:d1:86:32:17:67:f7:54:55:22: e8:cb:5a:ac:d3:35:fa:30:a7:9e:59:f7:66:85:1b: 9d:7d:c7:a7:78:fe:af:ef:66:ed:c5:71:9b:12:01: 25:a0:40:a5:b1:45:8a:7a:0c:96:1b:80:bd:e2:77: c5:73:97:be:fa:e6:a7:cb:0e:0f:e8:b8:0e:db:8e: b5:d5:f6:2e:f9:63:ff:63:30:de:9b:a8:f0:9a:f9: fd:7f:2e:19:c7:40:9b:6c:c6:d4:87:55:ad:17:99: 63:14:ae:27:bf:34:48:bb:c1:f5:fe:d0:ac:24:fe: cc:0e:78:31:a8:f7:6b:cb:ad:ec:b1:27:02:ce:1e: 5b:41:2c:c0:49:8e:86:9f:92:6d:10:48:f0:5f:7e: 74:d8:57:ec:76:4a:be:7d:79:20:e4:d1:27:cf:5b: 45:4b:7c:37:f0:38:e2:85:c3:05:0b:d1:3f:08:77: 4d:56:71:8b:1e:b2:32:c9:3a:45:32:70:17:9b:6a: fb:3c:72:45:56:95:c4:8f:5b:f6:f9:ac:91:9e:ec: d9:ab:26:b4:0a:ed:21:70:6f:bd:5d:43:ec:fe:b3: b7:60:00:56:9e:e5:34:94:2e:92:8b:77:e3:60:73: 34:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:6E:EE:84:AB:CB:99:5C:3D:83:AA:2D:A2:D8:50:BC:7D:3F:D6:36 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.15.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1e:14:b2:be:01:ee:3b:df:5e:12:46:1e:3e:cb:f1:ac:68:b3: 09:3d:16:ec:c5:3a:b6:61:f3:4b:ef:c5:13:7b:8a:a1:23:ac: d4:2a:32:7d:16:6c:75:58:dd:81:ce:e8:06:02:18:a9:c0:dc: 5f:52:96:e3:93:06:c8:ca:6d:b8:de:07:7c:b0:0e:dd:f2:0a: 80:e7:99:a2:bc:72:9c:6b:c0:a0:65:ee:f1:9a:14:9f:d2:91: 07:fc:6a:a9:37:9e:9c:ac:e5:02:06:14:97:8e:9e:63:b4:ab: 3f:59:cb:d4:ff:8b:4c:3f:24:e4:f3:45:05:40:63:21:51:e3: 2f:12:3a:6d:56:83:91:76:0d:67:d5:a4:fc:47:b7:5e:17:b3: b9:76:c6:6e:26:20:c8:d1:ea:76:4c:82:b8:48:5d:64:29:67: 62:59:1d:c7:a6:d0:94:ce:4b:99:55:3a:b2:e0:3d:1f:8d:2d: 1a:5c:bd:0f:b8:a6:58:ac:66:b1:be:4d:55:2c:dc:a3:86:06: a3:14:58:cf:4a:37:8a:2c:17:7f:7f:30:ce:f7:dc:35:d7:15: b1:76:ab:23:98:29:cb:bc:59:bb:7c:7c:1a:8d:f8:63:87:99: dd:ec:a3:aa:be:05:8b:e5:06:2a:87:88:7c:63:5a:02:56:95: 08:3c:c2:b3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUIX1TSW79qlrkKND6VmK40+FRAAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTEyMDAyMTE2WhcNMjUxMDE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NzlhNWEwYWY3YjU0Y2JhNmI0MDIyNTc0NjA0MjkyMmYx YzFmNTA3MWI0ZWE2YTE2Mzg1Y2Q5OGNlMDgxYzllMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLTyWcGqOX4uZSXmRDu5ATzaox+9GGMhdn91RVIujLWqzT Nfowp55Z92aFG519x6d4/q/vZu3FcZsSASWgQKWxRYp6DJYbgL3id8Vzl7765qfL Dg/ouA7bjrXV9i75Y/9jMN6bqPCa+f1/LhnHQJtsxtSHVa0XmWMUrie/NEi7wfX+ 0Kwk/swOeDGo92vLreyxJwLOHltBLMBJjoafkm0QSPBffnTYV+x2Sr59eSDk0SfP W0VLfDfwOOKFwwUL0T8Id01WcYsesjLJOkUycBebavs8ckVWlcSPW/b5rJGe7Nmr JrQK7SFwb71dQ+z+s7dgAFae5TSULpKLd+NgczTnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUS27uhKvLmVw9g6otothQvH0/1jYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM2YmQ2MTZlLTI5YTYtNGUzNi04ZWM1LTVmYTk1NGM1ZmI5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQDzANBgkqhkiG9w0BAQsFAAOCAQEAHhSyvgHuO99eEkYePsvxrGizCT0W 7MU6tmHzS+/FE3uKoSOs1CoyfRZsdVjdgc7oBgIYqcDcX1KW45MGyMptuN4HfLAO 3fIKgOeZorxynGvAoGXu8ZoUn9KRB/xqqTeenKzlAgYUl46eY7SrP1nL1P+LTD8k 5PNFBUBjIVHjLxI6bVaDkXYNZ9Wk/Ee3XhezuXbGbiYgyNHqdkyCuEhdZClnYlkd x6bQlM5LmVU6suA9H40tGly9D7imWKxmsb5NVSzco4YGoxRYz0o3iiwXf38wzvfc NdcVsXarI5gpy7xZu3x8Go34Y4eZ3eyjqr4Fi+UGKoeIfGNaAlaVCDzCsw== -----END CERTIFICATE-----Generated at Thu Sep 18 06:59:19 2025 by rpki-client