$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41a88a73-93bb-44b8-90fd-a8b74cf86175.roa File: 41a88a73-93bb-44b8-90fd-a8b74cf86175.roa (raw, json) Hash identifier: 3yUt8fkl3pz09P5j3IkXRlVtA9LGA/EJt2U6EOKWV5k= Subject key identifier: 90:78:AA:D4:28:C4:39:82:64:88:E3:00:C8:35:4A:67:BF:3A:9C:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0CB8BF46ACA55A1569EB7AEC9165FDC917389AE0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41a88a73-93bb-44b8-90fd-a8b74cf86175.roa Signing time: Mon 08 Sep 2025 15:42:08 +0000 ROA not before: Mon 08 Sep 2025 15:42:08 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 74.230.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:b8:bf:46:ac:a5:5a:15:69:eb:7a:ec:91:65:fd:c9:17:38:9a:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 8 15:42:08 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=497947673e38f6fbb8c75f21994a2e91d6038fecee0ce10d1de9c3f557dcea57, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9d:5b:50:d1:94:97:83:11:e9:2e:24:80:6a: 66:ab:ec:0b:31:73:48:f8:8f:f0:77:71:d6:b7:ff: 90:6a:b2:3d:3f:df:88:de:93:a4:59:56:0c:09:4b: b6:bf:e6:ad:c0:48:a8:e4:77:e0:b9:b7:7b:4e:23: 68:88:d3:76:d0:7c:da:88:ae:8a:16:db:d6:ee:ee: fa:87:70:95:82:68:74:d4:25:53:c0:af:33:ed:cf: bd:6b:3f:ab:77:fb:64:c4:b7:ca:6f:e1:54:e6:6d: ce:ce:48:fe:5c:a1:b8:94:4a:b2:f7:8f:23:bf:4c: 3f:df:9f:41:bf:c5:17:41:34:b1:f0:a0:77:09:6f: 0e:be:fc:85:6e:6b:ad:74:de:8a:be:48:bb:25:bf: f9:85:1e:94:9b:3b:cd:fe:94:d8:4a:46:1e:3d:88: 11:7c:96:2b:d3:cf:3d:c9:78:49:87:aa:37:12:89: cb:5c:90:e3:1a:dd:d1:41:04:3c:23:5b:7c:b1:8e: 9b:ed:59:56:3c:ce:17:bf:42:94:5e:84:9d:1e:bd: 6c:de:56:04:cb:d6:a8:7a:a2:a5:03:70:97:aa:d2: 72:9f:95:2d:0a:2a:8a:30:cc:e3:66:62:a7:2c:4f: fb:2c:ce:21:55:5d:71:da:1d:26:e0:ac:57:82:5e: 1e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:78:AA:D4:28:C4:39:82:64:88:E3:00:C8:35:4A:67:BF:3A:9C:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/41a88a73-93bb-44b8-90fd-a8b74cf86175.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 74.230.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1a:17:d8:73:8a:a1:dd:0f:bc:51:ba:6b:22:8d:a4:c9:fe:30: be:45:d2:dd:18:55:ab:0b:f6:d8:01:a8:32:2c:67:5a:45:22: 70:b8:6f:d0:11:7e:81:5a:e8:25:7f:1c:c2:74:96:d1:6a:e1: 0d:3c:84:c7:80:c9:62:5f:51:46:dc:c5:66:d3:ef:ab:89:c0: 9a:eb:58:23:20:d9:73:37:76:50:5a:cb:7d:b7:81:87:6a:2c: 7f:04:a1:55:ef:b8:4e:09:06:33:a3:4e:4d:48:10:dd:80:e0: 4c:0f:48:8f:6c:cd:f1:d2:f5:68:78:dd:53:8f:e5:e5:b4:90: 29:24:37:d3:d0:21:f2:4e:48:0c:c9:94:db:e2:7c:b9:63:59: de:4a:f3:6f:b5:de:88:94:28:cc:25:1c:43:e4:bd:33:11:a7: 5b:f3:8c:66:51:f2:57:97:12:b7:30:0c:ed:60:a3:14:92:46: 50:fa:6e:d3:7f:80:55:26:c2:3b:b6:68:5c:49:58:aa:82:76: a1:94:78:62:0c:23:96:01:37:99:af:92:b3:7e:1c:61:3f:c4: d4:ca:5d:e4:5d:11:96:c3:78:6a:a0:14:3a:67:65:52:fe:3b: 5f:8c:dd:83:65:bd:22:d4:b9:89:c0:4b:cb:a0:fa:80:63:c1: 38:e7:f1:57 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDLi/RqylWhVp63rskWX9yRc4muAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA4MTU0MjA4WhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTc5NDc2NzNlMzhmNmZiYjhjNzVmMjE5OTRhMmU5MWQ2 MDM4ZmVjZWUwY2UxMGQxZGU5YzNmNTU3ZGNlYTU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCinVtQ0ZSXgxHpLiSAamar7Asxc0j4j/B3cda3/5Bqsj0/ 34jek6RZVgwJS7a/5q3ASKjkd+C5t3tOI2iI03bQfNqIrooW29bu7vqHcJWCaHTU JVPArzPtz71rP6t3+2TEt8pv4VTmbc7OSP5cobiUSrL3jyO/TD/fn0G/xRdBNLHw oHcJbw6+/IVua6103oq+SLslv/mFHpSbO83+lNhKRh49iBF8livTzz3JeEmHqjcS ictckOMa3dFBBDwjW3yxjpvtWVY8zhe/QpRehJ0evWzeVgTL1qh6oqUDcJeq0nKf lS0KKoowzONmYqcsT/ssziFVXXHaHSbgrFeCXh55AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUkHiq1CjEOYJkiOMAyDVKZ786nCwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQxYTg4YTczLTkzYmItNDRiOC05MGZkLWE4Yjc0Y2Y4NjE3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBK5jANBgkqhkiG9w0BAQsFAAOCAQEAGhfYc4qh3Q+8UbprIo2kyf4wvkXS 3RhVqwv22AGoMixnWkUicLhv0BF+gVroJX8cwnSW0WrhDTyEx4DJYl9RRtzFZtPv q4nAmutYIyDZczd2UFrLfbeBh2osfwShVe+4TgkGM6NOTUgQ3YDgTA9Ij2zN8dL1 aHjdU4/l5bSQKSQ309Ah8k5IDMmU2+J8uWNZ3krzb7XeiJQozCUcQ+S9MxGnW/OM ZlHyV5cStzAM7WCjFJJGUPpu03+AVSbCO7ZoXElYqoJ2oZR4YgwjlgE3ma+Ss34c YT/E1Mpd5F0RlsN4aqAUOmdlUv47X4zdg2W9ItS5icBLy6D6gGPBOOfxVw== -----END CERTIFICATE-----Generated at Thu Sep 18 03:55:10 2025 by rpki-client