$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa File: 707b5de7-4469-4150-b167-4708f1391d71.roa (raw, json) Hash identifier: KIHRuNMe4R8YIBl2oRj5JpdREcjLxhJIDMmM8wcP0V0= Subject key identifier: D9:63:7B:FA:5D:97:34:59:A3:8F:42:46:89:6B:B5:52:81:CC:85:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 217B524D5DC7699E56EDC6EE7D1A7F27EBCC1F7E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa Signing time: Mon 01 Sep 2025 15:12:14 +0000 ROA not before: Mon 01 Sep 2025 15:12:14 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 158.254.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:7b:52:4d:5d:c7:69:9e:56:ed:c6:ee:7d:1a:7f:27:eb:cc:1f:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:12:14 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=a57e9ae81f570a06e59f2972534562630e05bd2b063870178bef2db1acfdd179, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2a:81:7d:5d:74:8b:39:f3:93:cc:49:fd:e1: c7:60:56:7e:9a:43:cc:4a:28:3d:fa:45:57:99:30: 45:50:0d:ec:14:1e:76:6d:74:8b:66:ec:21:4a:6f: e4:ea:56:e1:8d:11:75:4a:33:cd:7d:95:52:7f:d7: e6:9c:cc:3c:70:f1:a9:7a:0e:bc:81:86:47:71:88: 79:85:74:34:2d:8b:29:fe:c4:ea:58:f6:f5:3d:64: ac:25:b1:08:74:b5:68:63:eb:8b:2d:72:37:00:1a: c9:90:4c:7d:0e:f0:d9:bf:c2:6b:2a:d2:ba:00:9c: f5:69:76:eb:f2:94:61:71:9c:aa:09:8c:d3:c0:f5: d4:6a:fe:b1:10:68:04:4e:63:36:32:ef:78:ab:f7: d9:3d:78:ae:ec:40:8d:36:31:a9:69:e9:0b:8e:83: 67:b0:89:f2:8f:84:f2:b8:20:8d:88:83:22:9c:16: 28:59:23:00:03:10:83:10:7f:41:47:68:14:4d:32: 40:c5:b5:55:29:ec:bf:26:c7:72:2f:f7:bd:f7:67: 86:51:1c:72:7c:52:02:9d:65:2a:f8:36:79:0c:98: 7f:c0:0e:e1:69:ac:dc:1b:c9:65:7b:bf:24:2d:21: f0:2a:0b:e6:8d:b0:d7:5f:dc:07:91:31:35:e7:d6: 64:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:63:7B:FA:5D:97:34:59:A3:8F:42:46:89:6B:B5:52:81:CC:85:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.254.0.0/16 Signature Algorithm: sha256WithRSAEncryption 23:83:27:37:0a:86:3c:33:ab:39:b4:46:2a:03:5d:ac:bc:16: 37:a5:49:3c:f7:25:59:d7:06:74:1a:15:86:fe:de:4b:66:b2: 40:3b:d3:76:24:8b:5a:25:fd:2b:e9:48:e2:57:82:80:ea:fc: a4:e6:49:13:31:5e:85:d0:41:23:c8:15:5f:ee:37:94:02:8c: e5:0d:10:7c:06:77:12:3f:f0:cf:40:6e:22:a8:cf:2e:13:6a: 97:5f:09:0c:5d:9a:ef:ff:1e:aa:fb:84:c4:ad:7b:f1:9e:7c: 8e:88:a0:f9:83:6a:a8:4b:03:e0:4e:30:55:7c:7d:98:f1:b2: 3c:a1:86:a4:1a:59:53:b9:84:12:07:ac:24:bc:0e:c1:35:6a: 90:dc:70:87:18:bf:e2:98:3c:d9:0a:41:a5:d3:8d:6c:64:d2: ce:22:6d:b9:05:e1:26:bd:bd:e9:b0:01:f4:5f:c3:af:0e:66: 1e:a2:e5:02:fe:9b:25:8b:49:8d:2f:4a:ce:6e:4c:ae:f0:02: 60:40:42:e2:19:b2:a3:1d:ec:b5:9b:39:cc:c8:05:0b:f6:85: c3:37:9d:d5:24:24:12:5d:18:17:09:67:e3:2e:d9:b8:4c:00: c9:6d:20:ca:02:bb:b2:ab:cf:29:71:fd:bb:81:0a:46:06:aa: 86:1a:fa:ad -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIXtSTV3HaZ5W7cbufRp/J+vMH34wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTUxMjE0WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTdlOWFlODFmNTcwYTA2ZTU5ZjI5NzI1MzQ1NjI2MzBl MDViZDJiMDYzODcwMTc4YmVmMmRiMWFjZmRkMTc5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPKoF9XXSLOfOTzEn94cdgVn6aQ8xKKD36RVeZMEVQDewU HnZtdItm7CFKb+TqVuGNEXVKM819lVJ/1+aczDxw8al6DryBhkdxiHmFdDQtiyn+ xOpY9vU9ZKwlsQh0tWhj64stcjcAGsmQTH0O8Nm/wmsq0roAnPVpduvylGFxnKoJ jNPA9dRq/rEQaAROYzYy73ir99k9eK7sQI02Malp6QuOg2ewifKPhPK4II2IgyKc FihZIwADEIMQf0FHaBRNMkDFtVUp7L8mx3Iv9733Z4ZRHHJ8UgKdZSr4NnkMmH/A DuFprNwbyWV7vyQtIfAqC+aNsNdf3AeRMTXn1mRnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2WN7+l2XNFmjj0JGiWu1UoHMhfAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwN2I1ZGU3LTQ0NjktNDE1MC1iMTY3LTQ3MDhmMTM5MWQ3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCe/jANBgkqhkiG9w0BAQsFAAOCAQEAI4MnNwqGPDOrObRGKgNdrLwWN6VJ PPclWdcGdBoVhv7eS2ayQDvTdiSLWiX9K+lI4leCgOr8pOZJEzFehdBBI8gVX+43 lAKM5Q0QfAZ3Ej/wz0BuIqjPLhNql18JDF2a7/8eqvuExK178Z58joig+YNqqEsD 4E4wVXx9mPGyPKGGpBpZU7mEEgesJLwOwTVqkNxwhxi/4pg82QpBpdONbGTSziJt uQXhJr296bAB9F/Drw5mHqLlAv6bJYtJjS9Kzm5MrvACYEBC4hmyox3stZs5zMgF C/aFwzed1SQkEl0YFwln4y7ZuEwAyW0gygK7sqvPKXH9u4EKRgaqhhr6rQ== -----END CERTIFICATE-----Generated at Sat Sep 6 14:19:50 2025 by rpki-client