$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4447d57f-1c32-47e8-9850-ca8c559cea4b.roa File: 4447d57f-1c32-47e8-9850-ca8c559cea4b.roa (raw, json) Hash identifier: tzsykzpSSarQcTzHKApwVrsi8kef30yWsS1ir/kBwwk= Subject key identifier: 34:A2:41:4F:36:CB:08:C7:8D:55:1E:93:AA:0F:69:54:59:F3:2A:94 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11617DB02F2FE0DB17A544947EA4893B01DC1443 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4447d57f-1c32-47e8-9850-ca8c559cea4b.roa Signing time: Wed 03 Sep 2025 00:01:33 +0000 ROA not before: Wed 03 Sep 2025 00:01:33 +0000 ROA not after: Wed 08 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 128.11.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:61:7d:b0:2f:2f:e0:db:17:a5:44:94:7e:a4:89:3b:01:dc:14:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 3 00:01:33 2025 GMT Not After : Oct 8 23:59:59 2025 GMT Subject: serialNumber=0978e7d86ee60d6cd50ca8a4f947fc00792548f908cae52c0795a006e67e22d2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7b:87:3b:fb:26:09:d8:a0:04:df:46:63:fc: 3c:7f:aa:27:cc:f3:00:89:5f:c4:b0:64:5e:65:2d: aa:86:99:b3:c2:3d:b1:f6:15:9a:e2:d4:46:b4:47: 64:b9:41:38:09:8a:9e:ff:95:01:e2:ef:e2:33:fe: 45:16:db:cb:cb:f3:8e:0d:81:e1:07:70:c5:51:d0: 38:53:71:1f:e0:c5:84:31:59:be:4c:ad:31:be:51: bf:a0:e2:4b:08:50:cd:52:a8:e5:c8:87:47:49:4d: f6:c1:ed:fa:70:a4:a5:44:e6:6b:14:1f:b9:15:5a: cf:ba:89:ed:9c:70:7f:04:5b:2e:df:21:54:66:d2: af:5c:f7:36:8f:61:b6:a9:f0:64:cf:ce:38:95:1f: 68:98:64:d8:de:93:c1:2c:d1:13:2a:55:c9:6f:f8: a8:2d:b6:a5:38:ef:0f:a2:5b:9e:76:6b:27:9d:5c: 1d:eb:53:ba:60:c0:3d:c2:49:1a:84:a8:d8:cb:f6: 8e:f2:13:e5:3b:46:9e:1c:fb:2f:2b:3b:c4:b0:19: 84:69:3e:a5:52:c4:41:9c:01:0a:2e:53:be:e4:e9: 6c:aa:40:75:b7:84:33:5b:ef:bc:7d:4f:81:96:af: 07:12:60:52:3d:e4:a8:46:9b:7e:77:f6:ac:a4:a0: ab:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:A2:41:4F:36:CB:08:C7:8D:55:1E:93:AA:0F:69:54:59:F3:2A:94 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4447d57f-1c32-47e8-9850-ca8c559cea4b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 128.11.0.0/16 Signature Algorithm: sha256WithRSAEncryption d4:ec:85:fc:6f:d8:f1:36:2e:7e:b5:15:f7:b0:66:97:c9:df: db:13:dd:e4:fd:0b:48:1a:7c:2d:40:de:5b:d0:20:f5:0e:4b: 69:d4:0f:b3:c4:f1:55:f1:e0:b1:fa:0a:05:10:91:6d:c0:49: 9a:f4:69:45:c1:a1:d0:5e:d5:84:a4:b4:43:0e:79:07:63:e6: 02:eb:4d:da:cf:bc:c5:a9:07:88:f9:95:79:24:a8:b9:b7:63: 11:52:6b:1a:b2:a4:74:d5:84:19:8a:af:f0:8e:2a:3e:b7:6b: 88:6b:dc:1d:38:9d:c8:ea:6f:02:65:02:e3:0a:fe:ca:23:b5: c5:2e:78:e9:8b:7c:02:2e:c5:33:e6:0d:cd:b3:3b:31:ee:0f: 49:26:ff:e5:84:98:49:86:a9:70:34:68:7b:55:91:09:c2:e5: c6:c4:22:c4:ed:c5:83:24:19:89:28:c0:09:47:36:ea:80:a6: 06:88:cf:fe:41:bd:73:59:28:45:4b:7c:27:66:36:0e:b3:0b: ad:7c:ef:6e:47:99:69:10:62:86:bc:de:5b:38:26:05:5b:01: c2:f0:31:59:7e:b6:9f:7f:5b:fa:ef:9e:01:f0:5d:72:4c:f7: 49:02:f7:5e:7d:56:5b:f1:33:73:24:ff:b0:24:6c:99:67:36: b7:18:91:ef -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEWF9sC8v4NsXpUSUfqSJOwHcFEMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAzMDAwMTMzWhcNMjUxMDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTc4ZTdkODZlZTYwZDZjZDUwY2E4YTRmOTQ3ZmMwMDc5 MjU0OGY5MDhjYWU1MmMwNzk1YTAwNmU2N2UyMmQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMe4c7+yYJ2KAE30Zj/Dx/qifM8wCJX8SwZF5lLaqGmbPC PbH2FZri1Ea0R2S5QTgJip7/lQHi7+Iz/kUW28vL844NgeEHcMVR0DhTcR/gxYQx Wb5MrTG+Ub+g4ksIUM1SqOXIh0dJTfbB7fpwpKVE5msUH7kVWs+6ie2ccH8EWy7f IVRm0q9c9zaPYbap8GTPzjiVH2iYZNjek8Es0RMqVclv+KgttqU47w+iW552ayed XB3rU7pgwD3CSRqEqNjL9o7yE+U7Rp4c+y8rO8SwGYRpPqVSxEGcAQouU77k6Wyq QHW3hDNb77x9T4GWrwcSYFI95KhGm3539qykoKtfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNKJBTzbLCMeNVR6Tqg9pVFnzKpQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ0NDdkNTdmLTFjMzItNDdlOC05ODUwLWNhOGM1NTljZWE0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCACzANBgkqhkiG9w0BAQsFAAOCAQEA1OyF/G/Y8TYufrUV97Bml8nf2xPd 5P0LSBp8LUDeW9Ag9Q5LadQPs8TxVfHgsfoKBRCRbcBJmvRpRcGh0F7VhKS0Qw55 B2PmAutN2s+8xakHiPmVeSSoubdjEVJrGrKkdNWEGYqv8I4qPrdriGvcHTidyOpv AmUC4wr+yiO1xS546Yt8Ai7FM+YNzbM7Me4PSSb/5YSYSYapcDRoe1WRCcLlxsQi xO3FgyQZiSjACUc26oCmBojP/kG9c1koRUt8J2Y2DrMLrXzvbkeZaRBihrzeWzgm BVsBwvAxWX62n39b+u+eAfBdckz3SQL3Xn1WW/EzcyT/sCRsmWc2txiR7w== -----END CERTIFICATE-----Generated at Sat Sep 6 14:11:01 2025 by rpki-client