$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa File: 42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa (raw, json) Hash identifier: 2Pf99LM4LW/a0bZ02kJkrAWmA1cUU6sE1leMcXL0X4Y= Subject key identifier: A4:C0:3B:BB:6E:56:9B:DA:56:4D:57:38:FA:59:9D:38:3C:F8:C0:27 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 27C433467FC3346D1EA39CF8401DD27BF530C1D3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa Signing time: Fri 29 Aug 2025 16:30:35 +0000 ROA not before: Fri 29 Aug 2025 16:30:35 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.166.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:c4:33:46:7f:c3:34:6d:1e:a3:9c:f8:40:1d:d2:7b:f5:30:c1:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 16:30:35 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=787ce4989dd6772bf1389832a1562409cbe64f0a4e029c37b9b9bcea158c2887, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:46:70:49:13:f9:d9:00:60:13:45:e7:4f:ae: 4d:29:ca:92:89:3a:d0:7d:cd:ec:c3:07:e9:ff:68: 55:ad:cd:c2:5d:df:92:70:ef:19:7e:8e:15:4b:74: 59:12:b7:1d:f4:5b:54:17:e8:61:b5:67:fe:f3:35: 65:e2:b4:4f:0b:92:0d:86:c7:3c:2a:ec:35:62:e5: 7e:3f:d5:84:d1:8f:44:13:fa:58:3c:8a:53:d0:d4: 74:6b:dc:b2:88:8f:8c:c8:ec:a0:ac:62:b0:00:84: b4:35:32:16:8c:0d:24:05:9c:27:0d:8a:d0:27:db: 97:17:1b:1c:df:f3:9b:f2:f8:ee:51:d9:13:85:d4: 43:56:9b:6c:61:53:33:bc:81:b3:9c:d3:d5:59:10: de:8a:33:cb:94:02:da:1f:88:76:bf:62:f0:da:d9: b3:96:c2:c3:e9:37:d3:90:70:79:3b:69:45:a2:e6: b3:16:71:ab:c5:26:16:1d:1c:a1:b0:a3:56:8b:16: 79:a7:54:97:8b:fd:5f:74:d7:16:1a:d5:51:8f:42: cf:2c:49:c6:a6:83:6f:34:df:e9:9d:23:fa:23:09: 74:e1:a7:6a:bf:79:8d:b5:d7:52:c7:ef:a6:29:3a: 0d:ef:d9:8d:5a:49:e3:99:61:60:25:41:6b:c2:e0: 93:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:C0:3B:BB:6E:56:9B:DA:56:4D:57:38:FA:59:9D:38:3C:F8:C0:27 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.166.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7f:4d:8c:af:b3:8b:4a:97:94:00:94:f6:27:79:56:cc:50:19: 94:97:31:34:e4:29:83:d8:cf:22:2c:57:c7:9e:01:cb:6f:34: 32:0e:1c:94:e8:da:a1:e1:f2:db:f8:2b:f1:5d:2e:5e:00:db: b5:44:d6:7a:5a:ad:ed:12:03:22:03:d2:1e:bc:4b:0d:17:21: d3:7a:b9:f6:b1:e7:20:bd:ee:a0:c9:53:98:d1:7e:da:50:13: 2e:75:b0:4f:da:be:8d:2b:69:29:33:ce:ac:ca:dd:c8:2c:97: e3:f3:61:c5:b4:df:f7:eb:b1:90:e5:5c:1c:0c:ec:d8:7e:87: d3:a7:51:a6:c6:47:b1:45:89:ee:26:67:74:4e:5c:7d:84:44: 6f:62:fd:95:91:aa:15:ab:d7:9b:83:b9:9f:bb:17:65:7e:4a: 91:e4:19:a4:96:49:c6:e2:93:4d:c1:79:72:3a:47:70:c9:0a: 49:52:30:ae:9c:b3:10:74:fb:f5:87:5a:0d:f4:f7:f5:9e:5d: b0:5f:51:5f:d5:aa:57:21:c7:d1:63:31:d4:14:e9:fb:da:5d: 0f:06:ea:2a:eb:4a:9f:25:3d:3d:88:ff:9e:d4:20:ab:16:93: e8:af:81:f9:a1:19:83:5b:a7:9a:ca:5a:c2:91:a7:32:43:46: 26:e1:68:17 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJ8QzRn/DNG0eo5z4QB3Se/UwwdMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTYzMDM1WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODdjZTQ5ODlkZDY3NzJiZjEzODk4MzJhMTU2MjQwOWNi ZTY0ZjBhNGUwMjljMzdiOWI5YmNlYTE1OGMyODg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrRnBJE/nZAGATRedPrk0pypKJOtB9zezDB+n/aFWtzcJd 35Jw7xl+jhVLdFkStx30W1QX6GG1Z/7zNWXitE8Lkg2Gxzwq7DVi5X4/1YTRj0QT +lg8ilPQ1HRr3LKIj4zI7KCsYrAAhLQ1MhaMDSQFnCcNitAn25cXGxzf85vy+O5R 2ROF1ENWm2xhUzO8gbOc09VZEN6KM8uUAtofiHa/YvDa2bOWwsPpN9OQcHk7aUWi 5rMWcavFJhYdHKGwo1aLFnmnVJeL/V901xYa1VGPQs8sScamg2803+mdI/ojCXTh p2q/eY2111LH76YpOg3v2Y1aSeOZYWAlQWvC4JPbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUpMA7u25Wm9pWTVc4+lmdODz4wCcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyY2ZjOGY4LWE0YjYtNDhjMi1hYWMzLTk1ZTExMTZhNjMwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAopjANBgkqhkiG9w0BAQsFAAOCAQEAf02Mr7OLSpeUAJT2J3lWzFAZlJcx NOQpg9jPIixXx54By280Mg4clOjaoeHy2/gr8V0uXgDbtUTWelqt7RIDIgPSHrxL DRch03q59rHnIL3uoMlTmNF+2lATLnWwT9q+jStpKTPOrMrdyCyX4/NhxbTf9+ux kOVcHAzs2H6H06dRpsZHsUWJ7iZndE5cfYREb2L9lZGqFavXm4O5n7sXZX5KkeQZ pJZJxuKTTcF5cjpHcMkKSVIwrpyzEHT79YdaDfT39Z5dsF9RX9WqVyHH0WMx1BTp +9pdDwbqKutKnyU9PYj/ntQgqxaT6K+B+aEZg1unmspawpGnMkNGJuFoFw== -----END CERTIFICATE-----Generated at Sat Sep 6 14:11:03 2025 by rpki-client