$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79931b83-9888-42c4-8cab-49d3b3177907.roa File: 79931b83-9888-42c4-8cab-49d3b3177907.roa (raw, json) Hash identifier: +3afR5LI29dBEdrk16CtDowjn+PYX+hjFEi39IVcaOA= Subject key identifier: 1A:54:D4:16:1A:32:92:4E:D1:02:9D:D0:CF:F0:5F:7B:51:45:B1:4D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 41704DCE7611F2F9C5D770AF800814A299C04E92 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79931b83-9888-42c4-8cab-49d3b3177907.roa Signing time: Mon 08 Sep 2025 15:32:08 +0000 ROA not before: Mon 08 Sep 2025 15:32:08 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:70:4d:ce:76:11:f2:f9:c5:d7:70:af:80:08:14:a2:99:c0:4e:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 8 15:32:08 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=1b436f72626ee22a51d923d7df0c59572f5e30bb68ba4843136b2b0a8df0a37f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:63:a0:07:98:1f:56:66:14:c8:1c:46:94:d8: fa:8f:e7:81:0b:2e:d9:b8:7b:1f:18:01:17:cb:10: c1:c9:d2:b6:32:1b:35:93:1f:c0:bd:35:0c:9d:ae: 7f:61:34:8a:43:bf:9b:6b:f4:25:c2:62:e5:3e:ec: 31:23:fe:d2:7e:b9:9b:79:58:07:6b:02:ae:70:8c: 0d:ce:47:75:c8:d4:c5:e7:ae:a9:7a:11:6d:f9:47: 2e:89:d7:65:5c:da:b0:18:f9:5c:36:06:b5:74:cf: b3:96:f9:37:69:f7:65:87:14:05:ff:ba:ce:1c:77: ab:8d:9c:b2:cd:c4:ea:ff:0c:3f:2d:7f:35:92:ad: 46:4d:80:b2:06:7f:2b:ed:71:03:02:f1:78:71:ec: 0a:ca:2a:b1:e4:0c:65:ff:0d:ad:90:ee:dd:f7:24: 16:7a:70:37:5f:4d:87:dd:c3:ae:32:5f:52:44:8b: fc:ad:a8:0d:e7:6e:9d:e9:2b:b0:6a:dd:2e:41:e6: c4:e4:a2:16:ca:fb:e2:c4:b6:44:fe:a2:15:8a:18: 0a:bd:90:39:95:1a:39:9d:eb:32:b2:61:94:50:51: e0:23:0f:1c:a9:6a:70:0b:7c:c6:f2:bd:2c:75:d0: 37:a8:6b:e0:86:7b:c4:c6:64:ac:99:e1:3c:6b:16: 32:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:54:D4:16:1A:32:92:4E:D1:02:9D:D0:CF:F0:5F:7B:51:45:B1:4D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79931b83-9888-42c4-8cab-49d3b3177907.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.103.0/24 Signature Algorithm: sha256WithRSAEncryption d6:b5:ea:81:ee:7e:b2:81:db:a2:54:1e:2e:ae:88:1c:ef:32: 1f:6b:d7:0d:20:40:60:f7:a6:fc:68:57:74:81:e1:96:2f:b3: 50:44:fa:43:5c:53:4c:70:59:83:60:60:fd:fb:5f:5c:c1:e2: 7f:bc:e3:f1:78:a5:f8:a2:de:f7:d6:de:f7:78:a3:30:0b:96: 58:87:62:0b:b0:34:33:d3:1f:d3:c4:25:31:b4:0e:24:c2:cb: c2:21:df:0d:75:b3:fe:51:7f:d7:2f:f5:65:c2:df:92:d5:29: e8:b7:ca:a7:33:d9:7e:88:7f:63:43:2e:ca:b9:18:7b:dc:f4: a1:fc:3c:2e:fc:f7:0c:4e:4c:78:f5:86:b0:62:36:79:6d:f7: 7f:ff:bf:6f:c9:de:7c:44:39:1c:40:b4:8e:b8:2f:57:57:ed: 27:09:2e:3e:5c:d6:f5:38:4b:21:a1:30:96:fa:b4:0f:1f:1d: d2:8c:1c:64:f1:25:2b:4e:56:4e:c7:1a:c7:09:ba:13:ed:be: 79:5b:1e:6b:22:78:de:bf:5d:18:01:ae:05:fd:dd:5b:1d:b1: 5f:bb:24:4e:cf:14:ee:13:a8:75:b9:06:a1:72:5c:6f:25:1b: 86:91:59:c5:03:00:4d:73:7b:77:65:32:3f:52:d0:98:88:20: 91:9e:fc:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQXBNznYR8vnF13CvgAgUopnATpIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA4MTUzMjA4WhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYjQzNmY3MjYyNmVlMjJhNTFkOTIzZDdkZjBjNTk1NzJm NWUzMGJiNjhiYTQ4NDMxMzZiMmIwYThkZjBhMzdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLY6AHmB9WZhTIHEaU2PqP54ELLtm4ex8YARfLEMHJ0rYy GzWTH8C9NQydrn9hNIpDv5tr9CXCYuU+7DEj/tJ+uZt5WAdrAq5wjA3OR3XI1MXn rql6EW35Ry6J12Vc2rAY+Vw2BrV0z7OW+Tdp92WHFAX/us4cd6uNnLLNxOr/DD8t fzWSrUZNgLIGfyvtcQMC8Xhx7ArKKrHkDGX/Da2Q7t33JBZ6cDdfTYfdw64yX1JE i/ytqA3nbp3pK7Bq3S5B5sTkohbK++LEtkT+ohWKGAq9kDmVGjmd6zKyYZRQUeAj DxypanALfMbyvSx10Deoa+CGe8TGZKyZ4TxrFjKTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGlTUFhoykk7RAp3Qz/Bfe1FFsU0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc5OTMxYjgzLTk4ODgtNDJjNC04Y2FiLTQ5ZDNiMzE3NzkwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GcwDQYJKoZIhvcNAQELBQADggEBANa16oHufrKB26JUHi6uiBzvMh9r 1w0gQGD3pvxoV3SB4ZYvs1BE+kNcU0xwWYNgYP37X1zB4n+84/F4pfii3vfW3vd4 ozALlliHYguwNDPTH9PEJTG0DiTCy8Ih3w11s/5Rf9cv9WXC35LVKei3yqcz2X6I f2NDLsq5GHvc9KH8PC789wxOTHj1hrBiNnlt93//v2/J3nxEORxAtI64L1dX7ScJ Lj5c1vU4SyGhMJb6tA8fHdKMHGTxJStOVk7HGscJuhPtvnlbHmsieN6/XRgBrgX9 3VsdsV+7JE7PFO4TqHW5BqFyXG8lG4aRWcUDAE1ze3dlMj9S0JiIIJGe/G4= -----END CERTIFICATE-----Generated at Tue Sep 16 07:11:33 2025 by rpki-client