$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3819daa1-d9d8-4229-a37a-3c8fa9024396.roa File: 3819daa1-d9d8-4229-a37a-3c8fa9024396.roa (raw, json) Hash identifier: cr6+8KhB8NNRfLEvWwucaUh+cR6Xm1NGZCSL0moppXI= Subject key identifier: 2D:E8:FE:D8:83:B9:41:17:8C:67:3E:44:B1:5B:62:F6:BB:BB:5A:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4BBD42011CCBEA86E566F5DC9008635E82695F04 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3819daa1-d9d8-4229-a37a-3c8fa9024396.roa Signing time: Wed 03 Sep 2025 00:00:55 +0000 ROA not before: Wed 03 Sep 2025 00:00:55 +0000 ROA not after: Wed 08 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 144.142.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:bd:42:01:1c:cb:ea:86:e5:66:f5:dc:90:08:63:5e:82:69:5f:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 3 00:00:55 2025 GMT Not After : Oct 8 23:59:59 2025 GMT Subject: serialNumber=4424a68f3fc132f913a5b35917b004d76c8be81f1d9bb23c638efb616b34b0d1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a4:2f:18:52:28:84:76:b9:b8:11:85:f3:dd: 4c:b3:5d:68:15:c0:53:c1:a2:78:a2:f4:4e:4e:26: 1c:bf:2f:e3:fa:22:6e:21:92:28:8d:fc:7e:23:9f: a9:8d:eb:7a:84:e6:aa:08:16:22:5b:96:4b:1d:1b: 5a:c4:d7:d1:f2:d8:54:58:37:d4:59:36:1e:c5:f1: 0b:d8:e2:d5:47:95:fc:fc:a2:4a:35:b5:88:c2:1e: b1:55:ff:f5:9c:35:33:06:17:2c:f1:d1:d0:e7:78: 6a:51:30:45:32:d7:ed:68:00:bf:62:17:51:d3:e9: 72:7f:4b:72:24:78:20:fa:d1:3e:9e:e9:53:c9:9e: 4f:f7:02:be:8d:94:5a:60:f8:28:ca:7a:b5:2a:ca: 92:61:3c:b9:4d:15:22:cb:5b:7f:0b:74:84:9e:ac: 0d:5c:03:dc:7e:78:f8:ae:8a:12:ca:3c:c2:de:65: 79:0d:d0:6d:f5:69:af:ac:ae:3b:be:e0:01:d8:e7: ca:45:64:9e:51:83:b6:2d:9f:58:7e:7f:8f:13:f4: d1:d6:49:a5:1d:85:8e:78:72:08:b4:d5:2e:f3:63: 8c:94:78:69:b2:d3:4c:3d:45:af:c3:e9:e5:37:54: 42:73:58:54:44:74:80:85:f0:36:45:fe:20:92:69: 5f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:E8:FE:D8:83:B9:41:17:8C:67:3E:44:B1:5B:62:F6:BB:BB:5A:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3819daa1-d9d8-4229-a37a-3c8fa9024396.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 144.142.0.0/16 Signature Algorithm: sha256WithRSAEncryption 08:0c:11:9f:4f:93:5d:2c:37:ea:3d:e1:7f:9e:fb:84:4d:69: 76:d2:53:a4:6c:4a:3c:6b:06:e9:ed:15:6c:a6:cf:ca:db:5f: f6:4f:fd:4c:be:d7:ca:c2:9d:9d:2d:00:98:e7:28:13:e5:de: bb:f7:f6:b6:f8:ab:4e:f9:4a:3a:10:e6:c5:62:7f:2a:c9:b9: cd:82:4a:0d:05:ab:fa:48:55:83:32:f6:af:a0:4e:d1:c4:15: 8f:27:96:c2:e5:bd:8b:e8:0c:60:0a:84:e7:53:32:d4:0c:b2: 00:07:42:de:4f:f7:26:5b:85:f5:89:13:2c:a6:bc:65:ec:d5: b5:a4:fe:4c:a0:84:18:d4:db:94:db:95:7e:ee:9f:d4:f8:47: b1:8f:6a:43:b5:00:03:36:d7:a9:2c:b1:1b:37:29:ad:4d:2b: 34:6d:09:55:20:3e:13:c5:2d:8c:c2:c6:c6:46:38:4e:37:54: d7:24:f2:fe:37:83:c9:37:91:78:ff:07:ef:23:f5:83:4a:95: 19:a1:2c:bf:d1:73:95:c7:12:30:4e:f7:ea:c4:3d:46:79:57: d8:68:ee:05:f2:89:10:f7:15:22:89:b8:f5:54:8b:5f:b2:17: d3:9b:6c:5d:49:3b:fe:09:b5:1e:26:70:a2:09:84:bd:b5:e8: b4:f1:2e:90 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUS71CARzL6oblZvXckAhjXoJpXwQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAzMDAwMDU1WhcNMjUxMDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDI0YTY4ZjNmYzEzMmY5MTNhNWIzNTkxN2IwMDRkNzZj OGJlODFmMWQ5YmIyM2M2MzhlZmI2MTZiMzRiMGQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzpC8YUiiEdrm4EYXz3UyzXWgVwFPBonii9E5OJhy/L+P6 Im4hkiiN/H4jn6mN63qE5qoIFiJblksdG1rE19Hy2FRYN9RZNh7F8QvY4tVHlfz8 oko1tYjCHrFV//WcNTMGFyzx0dDneGpRMEUy1+1oAL9iF1HT6XJ/S3IkeCD60T6e 6VPJnk/3Ar6NlFpg+CjKerUqypJhPLlNFSLLW38LdISerA1cA9x+ePiuihLKPMLe ZXkN0G31aa+srju+4AHY58pFZJ5Rg7Ytn1h+f48T9NHWSaUdhY54cgi01S7zY4yU eGmy00w9Ra/D6eU3VEJzWFREdICF8DZF/iCSaV+ZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQULej+2IO5QReMZz5EsVti9ru7Wh8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4MTlkYWExLWQ5ZDgtNDIyOS1hMzdhLTNjOGZhOTAyNDM5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCQjjANBgkqhkiG9w0BAQsFAAOCAQEACAwRn0+TXSw36j3hf577hE1pdtJT pGxKPGsG6e0VbKbPyttf9k/9TL7XysKdnS0AmOcoE+Xeu/f2tvirTvlKOhDmxWJ/ Ksm5zYJKDQWr+khVgzL2r6BO0cQVjyeWwuW9i+gMYAqE51My1AyyAAdC3k/3JluF 9YkTLKa8ZezVtaT+TKCEGNTblNuVfu6f1PhHsY9qQ7UAAzbXqSyxGzcprU0rNG0J VSA+E8UtjMLGxkY4TjdU1yTy/jeDyTeReP8H7yP1g0qVGaEsv9FzlccSME736sQ9 RnlX2GjuBfKJEPcVIom49VSLX7IX05tsXUk7/gm1HiZwogmEvbXotPEukA== -----END CERTIFICATE-----Generated at Tue Sep 16 21:47:59 2025 by rpki-client