$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73a7c4f5-f96f-428a-8378-6b60470968f5.roa File: 73a7c4f5-f96f-428a-8378-6b60470968f5.roa (raw, json) Hash identifier: NdEfdvCLAOoY15NZul2lsjHiClG+wUIxlnQKywrchHU= Subject key identifier: 98:2C:30:74:55:CE:47:D5:55:13:DE:ED:20:9C:97:26:05:2C:36:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2581FB9DB650FEB32680666B954D3628928847EC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73a7c4f5-f96f-428a-8378-6b60470968f5.roa Signing time: Fri 05 Sep 2025 00:21:30 +0000 ROA not before: Fri 05 Sep 2025 00:21:30 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 166.80.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:81:fb:9d:b6:50:fe:b3:26:80:66:6b:95:4d:36:28:92:88:47:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 00:21:30 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=5869696c825c2cb90be6f5dcfe02c09b7672521629f86f5ac3241efc34119f93, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c1:1e:ca:83:85:92:d5:a0:82:61:41:0b:be: a1:8f:ca:67:77:68:a2:15:52:64:13:ad:12:e6:01: 7e:86:e7:93:a8:79:9b:2d:0e:c6:f5:a0:26:01:d5: d2:3b:3d:8a:e6:cf:63:7f:1f:ca:03:f3:38:ee:6e: 0a:06:4c:93:c3:23:fc:04:58:d2:6a:71:7a:96:5e: e0:02:ec:1e:24:2b:e9:37:bf:7e:c7:37:ba:9c:8a: c2:e9:92:c7:54:cb:b3:c2:8e:97:b3:7c:7b:cc:19: 25:03:8f:0b:82:92:a1:24:04:bb:ee:91:dd:b2:21: fb:fb:17:af:58:a9:f8:76:f2:ab:d4:0a:8a:e3:30: 48:af:31:4f:80:5d:86:b7:ab:dc:eb:dd:bf:fb:eb: 36:22:0f:90:57:fa:52:65:bb:ee:16:ea:d1:3b:f4: 20:5d:cd:e8:f4:67:bf:ab:1b:c8:f3:db:1c:ea:41: 25:31:f5:2d:ee:95:bc:f5:8d:c1:21:12:62:41:18: 91:dc:63:7d:9d:19:4e:21:62:25:77:83:23:14:8e: 5a:70:0c:83:7f:53:8b:29:73:34:22:14:90:9d:1e: 67:27:50:27:0d:40:79:43:f2:bc:8e:2b:e5:f0:45: 91:48:0b:2d:4b:b7:2e:99:75:de:b4:56:49:89:eb: e9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:2C:30:74:55:CE:47:D5:55:13:DE:ED:20:9C:97:26:05:2C:36:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/73a7c4f5-f96f-428a-8378-6b60470968f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 166.80.0.0/16 Signature Algorithm: sha256WithRSAEncryption 03:e6:d2:fe:e2:22:97:9e:da:4c:41:d5:86:5f:92:62:5c:b6: d6:84:9d:da:27:ef:4d:41:40:96:68:aa:16:08:0e:77:38:2f: d1:eb:ea:2f:63:2d:c0:34:49:a1:0e:f6:d3:2d:b6:31:41:25: 78:48:d0:32:1d:64:ac:2b:fa:33:1e:97:1d:fb:4d:40:e1:b4: 40:c1:f9:4a:6e:3c:22:7e:da:d8:41:f7:e0:1b:28:f5:d4:63: 26:3f:75:8d:01:04:aa:f9:54:da:16:6b:b8:a2:19:c2:bc:de: 36:61:00:87:67:02:e8:87:1f:af:9a:d0:35:70:29:9a:7d:39: 00:fd:97:27:0c:03:07:d0:57:f6:61:51:2f:00:90:bc:00:15: 7e:3e:77:6e:bb:5b:a0:e0:82:28:af:35:33:26:5b:4c:60:1b: 1e:6e:d7:f0:ae:8f:47:cc:26:73:7e:59:3b:3d:9e:4f:d2:fc: cb:c1:32:f4:fb:24:29:e5:c7:a6:ee:0a:4d:64:ef:60:b9:51: 71:e3:71:ca:24:bd:bf:ea:65:42:dc:17:01:7d:97:40:37:d4: ad:16:ec:5e:fc:28:38:a0:7d:4f:08:86:92:ef:c3:cd:70:20: ae:fd:3b:f2:31:40:c4:7d:4b:76:60:2f:1b:3b:a3:a4:5a:1e: 6b:2a:79:49 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJYH7nbZQ/rMmgGZrlU02KJKIR+wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA1MDAyMTMwWhcNMjUxMDEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODY5Njk2YzgyNWMyY2I5MGJlNmY1ZGNmZTAyYzA5Yjc2 NzI1MjE2MjlmODZmNWFjMzI0MWVmYzM0MTE5ZjkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWwR7Kg4WS1aCCYUELvqGPymd3aKIVUmQTrRLmAX6G55Oo eZstDsb1oCYB1dI7PYrmz2N/H8oD8zjubgoGTJPDI/wEWNJqcXqWXuAC7B4kK+k3 v37HN7qcisLpksdUy7PCjpezfHvMGSUDjwuCkqEkBLvukd2yIfv7F69Yqfh28qvU CorjMEivMU+AXYa3q9zr3b/76zYiD5BX+lJlu+4W6tE79CBdzej0Z7+rG8jz2xzq QSUx9S3ulbz1jcEhEmJBGJHcY32dGU4hYiV3gyMUjlpwDIN/U4spczQiFJCdHmcn UCcNQHlD8ryOK+XwRZFICy1Lty6Zdd60VkmJ6+lBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmCwwdFXOR9VVE97tIJyXJgUsNuUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzczYTdjNGY1LWY5NmYtNDI4YS04Mzc4LTZiNjA0NzA5NjhmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCmUDANBgkqhkiG9w0BAQsFAAOCAQEAA+bS/uIil57aTEHVhl+SYly21oSd 2ifvTUFAlmiqFggOdzgv0evqL2MtwDRJoQ720y22MUEleEjQMh1krCv6Mx6XHftN QOG0QMH5Sm48In7a2EH34Bso9dRjJj91jQEEqvlU2hZruKIZwrzeNmEAh2cC6Icf r5rQNXApmn05AP2XJwwDB9BX9mFRLwCQvAAVfj53brtboOCCKK81MyZbTGAbHm7X 8K6PR8wmc35ZOz2eT9L8y8Ey9PskKeXHpu4KTWTvYLlRceNxyiS9v+plQtwXAX2X QDfUrRbsXvwoOKB9TwiGku/DzXAgrv078jFAxH1LdmAvGzujpFoeayp5SQ== -----END CERTIFICATE-----Generated at Thu Sep 18 08:22:17 2025 by rpki-client