$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64416939-e386-4747-9efd-e38b0c06dbeb.roa File: 64416939-e386-4747-9efd-e38b0c06dbeb.roa (raw, json) Hash identifier: Vxlofv64gjYtf1nsU/gVlq4kgWQ6c9Pa+riMdmP8OFQ= Subject key identifier: 7D:55:90:F1:88:92:96:BB:C7:63:55:B3:10:14:01:85:DE:3A:07:0D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 239AB25807D3A482B2771FC88964B292A0C6CB23 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64416939-e386-4747-9efd-e38b0c06dbeb.roa Signing time: Sat 30 Aug 2025 00:11:25 +0000 ROA not before: Sat 30 Aug 2025 00:11:25 +0000 ROA not after: Sat 04 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 207.202.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:9a:b2:58:07:d3:a4:82:b2:77:1f:c8:89:64:b2:92:a0:c6:cb:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 30 00:11:25 2025 GMT Not After : Oct 4 23:59:59 2025 GMT Subject: serialNumber=17b40f390bdbd6ae99f29031e7379101b4883982128b2f3e310c23faf8f82a88, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8b:11:d7:95:29:3c:76:7f:25:2b:bd:d6:39: d3:bb:41:b1:65:98:47:e1:02:ad:11:fb:da:aa:db: 76:20:ba:1f:bf:af:39:b2:4e:cf:15:95:ff:f5:ce: ff:c3:59:16:1d:40:51:54:2e:ff:df:cc:f3:cb:f1: 42:27:68:d6:3d:3f:f2:56:47:18:6b:18:48:d1:d0: da:75:61:e9:01:b4:3f:0d:52:c6:06:03:9c:42:7d: 16:87:47:99:b4:d1:ab:1e:a7:ec:a5:c2:82:d5:7b: f7:f1:ff:89:77:89:7d:4b:85:25:f0:a5:f0:a8:a1: 4a:c0:01:8c:95:9b:0b:b6:ba:25:6c:13:5e:e8:32: e7:59:8e:32:ab:73:4f:d0:33:01:c8:5b:bd:9c:03: d2:51:67:85:3d:9c:d4:93:a5:e9:8b:6f:75:7f:7c: ae:be:d1:89:43:e4:46:0d:03:44:57:15:75:cb:4f: d7:2d:0f:c0:95:aa:8e:88:b6:ee:ba:cd:27:59:b3: 94:3b:d2:40:4c:39:ed:2e:f2:32:e2:37:bc:0a:bf: 01:a6:c5:4b:fe:9f:85:40:09:99:ba:21:6a:04:1a: 05:24:d1:94:3e:2e:32:bf:8d:d2:55:7b:d4:2d:5b: 36:90:9a:1d:02:97:be:7d:ed:a3:19:dd:95:15:bd: 29:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:55:90:F1:88:92:96:BB:C7:63:55:B3:10:14:01:85:DE:3A:07:0D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64416939-e386-4747-9efd-e38b0c06dbeb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.202.128.0/17 Signature Algorithm: sha256WithRSAEncryption 9b:19:ec:17:68:af:e6:00:14:eb:b1:40:45:17:05:71:8d:e1: 0f:eb:dd:e3:e3:d9:c7:05:8a:3b:d4:a2:ae:b9:ca:89:9d:65: 77:2c:16:b5:76:65:38:af:17:a4:ba:85:af:4e:5b:26:62:45: 90:6e:65:a9:a2:97:6c:74:ba:31:ac:bc:92:de:6c:70:3e:0d: 6e:31:85:f1:3a:91:21:3e:47:ce:29:92:df:50:0f:ec:e1:42: e5:77:7a:c0:f7:3a:32:d2:44:e9:2c:19:a9:36:db:05:0b:31: ef:e9:00:15:af:ac:9b:43:13:6f:8b:40:92:b6:71:79:20:d5: 44:20:cf:a1:33:7c:3b:1e:33:78:b2:e2:26:1b:62:a5:34:4e: de:c4:c7:de:8b:e7:6d:86:c3:6c:d6:27:f5:9a:ce:3f:c1:cb: 25:ff:de:8c:99:22:27:c6:eb:49:dc:7d:79:fe:10:44:f0:e1: ce:16:c9:55:33:15:6d:5a:fc:11:25:8f:2f:40:c8:83:91:68: 23:55:58:49:6c:fe:5c:a0:72:dc:ef:ab:59:a9:66:ae:c1:8a: b7:11:0a:7b:0f:2a:64:3f:54:f0:ac:eb:3b:86:0b:91:2e:d1: 7c:22:1e:e1:fa:09:44:e8:0e:38:15:cc:7a:19:92:7d:7c:95: 47:33:bb:1b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUI5qyWAfTpIKydx/IiWSykqDGyyMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODMwMDAxMTI1WhcNMjUxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxN2I0MGYzOTBiZGJkNmFlOTlmMjkwMzFlNzM3OTEwMWI0 ODgzOTgyMTI4YjJmM2UzMTBjMjNmYWY4ZjgyYTg4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmixHXlSk8dn8lK73WOdO7QbFlmEfhAq0R+9qq23Yguh+/ rzmyTs8Vlf/1zv/DWRYdQFFULv/fzPPL8UInaNY9P/JWRxhrGEjR0Np1YekBtD8N UsYGA5xCfRaHR5m00asep+ylwoLVe/fx/4l3iX1LhSXwpfCooUrAAYyVmwu2uiVs E17oMudZjjKrc0/QMwHIW72cA9JRZ4U9nNSTpemLb3V/fK6+0YlD5EYNA0RXFXXL T9ctD8CVqo6Itu66zSdZs5Q70kBMOe0u8jLiN7wKvwGmxUv+n4VACZm6IWoEGgUk 0ZQ+LjK/jdJVe9QtWzaQmh0Cl7597aMZ3ZUVvSlHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfVWQ8YiSlrvHY1WzEBQBhd46Bw0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY0NDE2OTM5LWUzODYtNDc0Ny05ZWZkLWUzOGIwYzA2ZGJlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfPyoAwDQYJKoZIhvcNAQELBQADggEBAJsZ7Bdor+YAFOuxQEUXBXGN4Q/r 3ePj2ccFijvUoq65yomdZXcsFrV2ZTivF6S6ha9OWyZiRZBuZamil2x0ujGsvJLe bHA+DW4xhfE6kSE+R84pkt9QD+zhQuV3esD3OjLSROksGak22wULMe/pABWvrJtD E2+LQJK2cXkg1UQgz6EzfDseM3iy4iYbYqU0Tt7Ex96L522Gw2zWJ/Wazj/ByyX/ 3oyZIifG60ncfXn+EETw4c4WyVUzFW1a/BEljy9AyIORaCNVWEls/lygctzvq1mp Zq7BircRCnsPKmQ/VPCs6zuGC5Eu0XwiHuH6CUToDjgVzHoZkn18lUczuxs= -----END CERTIFICATE-----Generated at Sat Sep 6 14:14:44 2025 by rpki-client