$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60a6c9ac-1221-4a4d-87e6-239a3fe2d1f4.roa File: 60a6c9ac-1221-4a4d-87e6-239a3fe2d1f4.roa (raw, json) Hash identifier: bsWaDAOZ9CXkX+FBm/TGDVqcI0FP9ZNpW4A/wwPcTLA= Subject key identifier: 71:93:CA:E7:01:02:93:31:46:1A:85:D9:B0:FE:9C:A1:FF:F1:82:60 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 492B27F01346F04496F37445C90368161F32C378 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60a6c9ac-1221-4a4d-87e6-239a3fe2d1f4.roa Signing time: Fri 05 Sep 2025 00:10:14 +0000 ROA not before: Fri 05 Sep 2025 00:10:14 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.219.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:2b:27:f0:13:46:f0:44:96:f3:74:45:c9:03:68:16:1f:32:c3:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 00:10:14 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=5cff936db54d26ebd251d80899b032890130b4b803e96605fdedd852be752b98, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:b3:32:46:0f:7d:d3:11:d4:5f:2e:21:78:6a: 04:68:f0:f3:a0:db:07:f5:2e:e9:0c:d4:aa:cb:39: 64:02:e9:15:8a:59:04:9c:77:45:c0:5a:53:60:8c: 7b:ce:cd:52:9f:ea:db:8c:d5:f5:26:a6:ff:52:92: c5:4b:46:15:0e:63:38:70:b3:cd:4c:93:4e:94:28: 71:3f:73:08:a2:e8:f5:33:92:ce:5d:55:6d:71:3e: f5:64:81:4d:c7:a9:17:f2:ac:f2:8c:6b:9a:29:ae: 48:53:10:87:6d:45:3b:58:7c:fa:3f:11:03:09:87: b7:76:80:3c:1d:2b:d0:14:e8:55:42:00:c1:5d:2b: 92:51:c5:f1:f1:f8:05:7e:87:58:d9:b2:b0:b4:17: 81:e7:3c:1d:89:48:b3:76:0f:37:fa:b2:c6:d1:fd: 84:5f:04:30:2d:73:13:c6:9b:f2:2e:47:aa:6f:27: 6b:b5:c8:d5:aa:1a:b7:6c:2e:ab:bc:71:86:1c:8c: 5f:55:99:b7:a7:27:a4:84:51:de:96:bc:a9:ea:18: 24:f4:d9:31:e3:59:25:94:47:b8:50:8b:ea:c3:30: 86:57:20:6b:69:09:08:50:30:5e:fa:ee:a2:58:7d: 5b:40:d9:ed:af:11:4e:f5:33:3d:d9:66:9d:6e:a7: 38:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:93:CA:E7:01:02:93:31:46:1A:85:D9:B0:FE:9C:A1:FF:F1:82:60 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60a6c9ac-1221-4a4d-87e6-239a3fe2d1f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.219.0.0/16 Signature Algorithm: sha256WithRSAEncryption 23:78:07:04:41:89:97:d8:c3:3c:d6:42:b1:f3:c9:84:55:f9: dc:c5:cf:e8:4d:d7:bf:41:19:86:e3:e5:b1:d4:03:72:b8:d8: 3c:5d:57:a4:41:4b:e9:07:a7:87:72:05:99:34:22:dc:74:bf: a7:f3:c0:da:6a:ad:79:0c:67:8a:ec:56:fc:c3:d5:c8:8e:55: 2f:a0:b3:1e:a4:5f:6b:fe:8e:29:62:2b:2e:34:fb:51:a4:3a: 41:a6:8f:46:c5:bf:76:a1:d1:a5:6a:c9:c5:d6:c0:01:1d:22: a9:fe:97:b0:3a:9c:fb:89:90:6a:38:5f:b8:97:47:91:97:c5: f2:b8:68:85:5f:5f:ae:84:e7:2a:4c:14:01:a8:a5:74:e6:64: f9:73:60:88:72:92:f5:d5:5e:d1:3f:2d:5f:fe:c0:b1:e7:dc: 58:12:e7:77:0a:06:4f:37:71:9a:d0:4c:2e:cb:68:75:8e:1a: 00:71:08:b7:ce:df:90:58:a9:b6:50:01:2d:bd:59:c5:1b:94: a3:6a:4b:ff:ed:8d:ae:b6:fa:27:01:b7:4a:90:63:0b:35:e9: ca:a2:d4:19:d7:f9:53:a7:ab:fe:3b:a2:69:a2:88:29:15:5f: e9:c0:d9:4a:95:0f:48:b1:76:20:eb:56:73:4a:03:42:67:50: f1:04:fd:de -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSSsn8BNG8ESW83RFyQNoFh8yw3gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA1MDAxMDE0WhcNMjUxMDEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1Y2ZmOTM2ZGI1NGQyNmViZDI1MWQ4MDg5OWIwMzI4OTAx MzBiNGI4MDNlOTY2MDVmZGVkZDg1MmJlNzUyYjk4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaszJGD33TEdRfLiF4agRo8POg2wf1LukM1KrLOWQC6RWK WQScd0XAWlNgjHvOzVKf6tuM1fUmpv9SksVLRhUOYzhws81Mk06UKHE/cwii6PUz ks5dVW1xPvVkgU3HqRfyrPKMa5oprkhTEIdtRTtYfPo/EQMJh7d2gDwdK9AU6FVC AMFdK5JRxfHx+AV+h1jZsrC0F4HnPB2JSLN2Dzf6ssbR/YRfBDAtcxPGm/IuR6pv J2u1yNWqGrdsLqu8cYYcjF9VmbenJ6SEUd6WvKnqGCT02THjWSWUR7hQi+rDMIZX IGtpCQhQMF767qJYfVtA2e2vEU71Mz3ZZp1upzjnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcZPK5wECkzFGGoXZsP6cof/xgmAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYwYTZjOWFjLTEyMjEtNGE0ZC04N2U2LTIzOWEzZmUyZDFmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQ2zANBgkqhkiG9w0BAQsFAAOCAQEAI3gHBEGJl9jDPNZCsfPJhFX53MXP 6E3Xv0EZhuPlsdQDcrjYPF1XpEFL6Qenh3IFmTQi3HS/p/PA2mqteQxniuxW/MPV yI5VL6CzHqRfa/6OKWIrLjT7UaQ6QaaPRsW/dqHRpWrJxdbAAR0iqf6XsDqc+4mQ ajhfuJdHkZfF8rhohV9froTnKkwUAaildOZk+XNgiHKS9dVe0T8tX/7AsefcWBLn dwoGTzdxmtBMLstodY4aAHEIt87fkFiptlABLb1ZxRuUo2pL/+2Nrrb6JwG3SpBj CzXpyqLUGdf5U6er/juiaaKIKRVf6cDZSpUPSLF2IOtWc0oDQmdQ8QT93g== -----END CERTIFICATE-----Generated at Sat Sep 6 14:14:00 2025 by rpki-client