$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/407fe81e-bb27-4fa2-b1d9-a07f8aa715d2.roa File: 407fe81e-bb27-4fa2-b1d9-a07f8aa715d2.roa (raw, json) Hash identifier: UYaHbKeiZOQx9vtH5h+BNpxV+fnSCZJRsPlIfIO4SuY= Subject key identifier: 0F:34:B3:02:D1:86:9E:D6:16:F1:BC:41:35:45:C1:9F:25:2F:62:9F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 15A2D92A37C8C926A3FBA2085137A005AABB70A9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/407fe81e-bb27-4fa2-b1d9-a07f8aa715d2.roa Signing time: Fri 05 Sep 2025 00:20:25 +0000 ROA not before: Fri 05 Sep 2025 00:20:25 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 199.182.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:a2:d9:2a:37:c8:c9:26:a3:fb:a2:08:51:37:a0:05:aa:bb:70:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 00:20:25 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=2aef10b899d7ffafb517933c79fa80af74b6e6471d9e3d26d4f222f5bc4e7147, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a3:4b:5e:b2:06:7a:bd:c2:28:1c:d9:de:fc: cf:6b:50:2b:42:62:a9:d0:6f:2e:d5:06:e9:26:23: db:fb:4f:3f:11:8e:20:9b:27:03:f2:92:a9:d0:8a: f9:c8:99:cb:d6:57:15:ae:57:79:06:4f:d7:bc:50: 15:56:78:15:8b:f9:10:f2:b9:ee:40:56:56:63:72: 8d:0f:c3:a3:ab:94:37:49:0b:50:18:89:a0:02:60: ba:4a:74:12:07:1f:62:6a:c0:0f:63:06:e9:9b:b7: d4:0b:57:f6:84:e8:ad:a8:ab:09:d9:15:e5:a2:50: 7e:2a:97:ef:45:5c:6a:c1:3f:50:9b:4b:f3:07:2c: ed:88:38:1b:71:c3:37:ed:74:df:ab:fd:18:0b:3d: 45:77:19:de:e1:06:85:59:fb:8e:c0:37:14:2f:c4: 65:c3:f1:c4:b5:be:20:77:34:3c:28:cb:37:d5:34: 25:80:78:a6:3d:01:a7:ba:06:43:a3:7e:91:e9:89: 1a:b1:fe:6b:64:c2:1d:f0:21:47:4d:d7:ae:77:af: 6e:f9:18:56:6c:84:6e:6d:d7:20:f5:fd:f2:5d:01: 81:1a:3a:60:08:8d:96:12:34:6d:f8:7c:eb:d7:87: a0:89:30:22:84:5b:84:04:ff:b7:99:ad:82:48:03: 36:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:34:B3:02:D1:86:9E:D6:16:F1:BC:41:35:45:C1:9F:25:2F:62:9F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/407fe81e-bb27-4fa2-b1d9-a07f8aa715d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.182.240.0/20 Signature Algorithm: sha256WithRSAEncryption 1d:34:fc:83:97:1d:c9:f0:2a:89:31:8f:2d:dc:c0:c2:50:49: b0:77:1b:f9:10:e3:ec:92:a6:bb:01:79:26:15:54:f5:0d:99: e2:97:09:54:4e:66:0d:7c:71:cd:58:6f:0f:7f:12:9d:4d:6a: 43:16:f1:54:83:52:07:f8:6c:8d:cf:72:71:91:ab:e0:b4:0f: 77:da:1b:3f:f5:b6:29:b7:25:36:01:57:ac:3e:ea:fc:8c:e0: 6d:77:d3:01:51:17:b1:a5:32:27:23:8f:18:70:24:ec:52:6a: b3:2d:46:6e:80:8b:79:93:39:94:f9:01:3c:18:02:52:60:20: fe:3a:cb:52:97:98:c8:8c:7d:bf:db:12:98:f6:75:70:e7:15: c9:c2:2f:e0:72:b9:e2:24:a5:c8:e5:6b:3b:cd:4e:83:aa:ba: ec:48:8f:ba:a1:79:8f:3a:2a:5b:75:e2:5d:5b:5d:f3:7a:a8: ae:09:07:50:57:5a:a6:30:84:4c:06:a2:81:2f:2d:d9:d2:47: 98:96:8a:00:9d:d4:5c:cf:f4:60:ce:fe:c3:4a:a2:de:43:a7: 0b:e2:4c:7e:ed:0c:4e:33:b7:7b:bb:33:16:97:ea:35:ae:6e: 98:45:b7:e1:03:46:41:96:6c:c8:ac:4f:c8:fb:62:52:b1:7f: e2:b9:9f:5e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFaLZKjfIySaj+6IIUTegBaq7cKkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA1MDAyMDI1WhcNMjUxMDEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYWVmMTBiODk5ZDdmZmFmYjUxNzkzM2M3OWZhODBhZjc0 YjZlNjQ3MWQ5ZTNkMjZkNGYyMjJmNWJjNGU3MTQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMo0tesgZ6vcIoHNne/M9rUCtCYqnQby7VBukmI9v7Tz8R jiCbJwPykqnQivnImcvWVxWuV3kGT9e8UBVWeBWL+RDyue5AVlZjco0Pw6OrlDdJ C1AYiaACYLpKdBIHH2JqwA9jBumbt9QLV/aE6K2oqwnZFeWiUH4ql+9FXGrBP1Cb S/MHLO2IOBtxwzftdN+r/RgLPUV3Gd7hBoVZ+47ANxQvxGXD8cS1viB3NDwoyzfV NCWAeKY9Aae6BkOjfpHpiRqx/mtkwh3wIUdN1653r275GFZshG5t1yD1/fJdAYEa OmAIjZYSNG34fOvXh6CJMCKEW4QE/7eZrYJIAzafAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDzSzAtGGntYW8bxBNUXBnyUvYp8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwN2ZlODFlLWJiMjctNGZhMi1iMWQ5LWEwN2Y4YWE3MTVkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATHtvAwDQYJKoZIhvcNAQELBQADggEBAB00/IOXHcnwKokxjy3cwMJQSbB3 G/kQ4+ySprsBeSYVVPUNmeKXCVROZg18cc1Ybw9/Ep1NakMW8VSDUgf4bI3PcnGR q+C0D3faGz/1tim3JTYBV6w+6vyM4G130wFRF7GlMicjjxhwJOxSarMtRm6Ai3mT OZT5ATwYAlJgIP46y1KXmMiMfb/bEpj2dXDnFcnCL+ByueIkpcjlazvNToOquuxI j7qheY86Klt14l1bXfN6qK4JB1BXWqYwhEwGooEvLdnSR5iWigCd1FzP9GDO/sNK ot5DpwviTH7tDE4zt3u7MxaX6jWubphFt+EDRkGWbMisT8j7YlKxf+K5n14= -----END CERTIFICATE-----Generated at Sat Sep 6 14:06:14 2025 by rpki-client