$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a2dbcc6-943c-4355-975e-2ab1a5b7ed0e.roa File: 7a2dbcc6-943c-4355-975e-2ab1a5b7ed0e.roa (raw, json) Hash identifier: sk+23vidsgvDNC4GQTaP81ylo7kLE8vyvHK7kVVBaR0= Subject key identifier: 54:3A:3D:A9:CE:78:FD:BD:BE:56:02:04:65:33:22:D6:AC:1B:B3:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 689B4931922626B2D484175796A718EE7FD674D7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a2dbcc6-943c-4355-975e-2ab1a5b7ed0e.roa Signing time: Sat 06 Sep 2025 00:01:40 +0000 ROA not before: Sat 06 Sep 2025 00:01:40 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.32.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:9b:49:31:92:26:26:b2:d4:84:17:57:96:a7:18:ee:7f:d6:74:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:01:40 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=ac45232f54bec5cd90126e61cbf42b986394c499c057d3b73804fc64f394658b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e2:28:f2:db:89:9a:f6:b6:ea:7f:87:9c:b4: db:16:8b:8c:a4:ea:67:39:76:83:88:03:52:8d:c2: 31:06:7a:63:2a:2d:49:e1:60:26:7a:98:b4:b2:cd: bc:d4:98:f5:77:a1:db:54:cb:44:4f:fa:66:50:2a: 9c:13:42:b1:4f:9f:6f:32:ce:5e:d6:9e:44:55:dc: 8c:ca:2c:95:22:aa:d7:eb:cf:2e:80:13:aa:5d:82: c5:23:fd:c7:6d:56:55:ee:08:16:d4:86:bf:5a:53: a4:a5:d1:8e:37:ef:d5:d9:b1:9a:17:7f:55:3a:93: 85:48:84:fd:2b:48:08:b9:17:33:aa:59:0a:23:5c: d9:92:9b:d6:b3:85:30:2b:b4:2e:e6:e4:39:e3:ab: 2b:fd:b1:f8:8f:d0:b8:18:e9:32:90:df:86:cf:2d: 68:e2:10:46:63:dd:a1:38:64:fe:24:78:e2:c2:87: 75:7e:23:21:b9:03:b0:a3:4b:e0:4f:46:31:c9:4a: f2:3a:41:5e:a4:a6:a4:ec:02:ee:27:ab:44:a5:41: 4f:f1:3e:84:a1:d6:e0:5e:f8:75:48:e3:b8:9e:c6: 5e:8c:8c:40:f8:d6:8b:a1:ea:22:9f:11:f6:76:91: 86:b7:3c:be:05:3a:52:27:1a:2a:72:ed:c4:c5:e3: 67:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:3A:3D:A9:CE:78:FD:BD:BE:56:02:04:65:33:22:D6:AC:1B:B3:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a2dbcc6-943c-4355-975e-2ab1a5b7ed0e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.32.128.0/20 Signature Algorithm: sha256WithRSAEncryption 8a:42:73:29:dc:0f:98:63:db:5f:1b:9a:6e:41:28:06:5a:bd: d8:e7:2a:a7:6c:e9:68:8e:93:9d:5d:56:cf:e0:43:9f:91:45: 89:cb:22:23:2e:23:ad:e0:b5:0e:50:67:10:fb:00:b5:59:2a: c7:5c:d3:41:d4:9a:c6:b1:4e:b6:be:16:cf:b3:9a:7d:7f:8b: e7:d3:aa:04:c3:14:c4:9e:42:7f:9c:c0:fb:da:72:bf:de:13: 6a:59:71:53:d6:ea:7f:42:89:b7:3f:9a:18:5b:6b:67:ce:40: 68:c0:d5:90:d3:ef:ff:78:af:65:b3:49:a8:42:02:fe:9f:d2: d8:14:62:fe:80:2f:8c:59:3b:90:1a:6d:8e:35:ce:8b:6a:f2: dc:fa:44:ac:d9:6b:f4:a7:f5:c7:ec:96:58:91:2d:3e:4b:e0: 22:49:52:30:ed:ac:2e:fa:53:cb:00:e5:d7:72:92:92:3e:90: 12:66:5f:03:99:d3:b3:71:41:e3:5f:d4:4d:79:47:08:2f:e2: 8f:b6:94:21:23:1d:c3:d5:56:e5:4f:a0:09:46:d0:49:35:03: 0c:42:f9:b8:7d:79:35:c1:35:5d:5f:c1:de:42:e2:1e:1f:04: 03:7f:59:5c:cd:71:bb:6e:69:a1:6b:55:89:e2:a8:2f:f7:b6: e6:18:51:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaJtJMZImJrLUhBdXlqcY7n/WdNcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAwMTQwWhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzQ1MjMyZjU0YmVjNWNkOTAxMjZlNjFjYmY0MmI5ODYz OTRjNDk5YzA1N2QzYjczODA0ZmM2NGYzOTQ2NThiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/4ijy24ma9rbqf4ectNsWi4yk6mc5doOIA1KNwjEGemMq LUnhYCZ6mLSyzbzUmPV3odtUy0RP+mZQKpwTQrFPn28yzl7WnkRV3IzKLJUiqtfr zy6AE6pdgsUj/cdtVlXuCBbUhr9aU6Sl0Y4379XZsZoXf1U6k4VIhP0rSAi5FzOq WQojXNmSm9azhTArtC7m5Dnjqyv9sfiP0LgY6TKQ34bPLWjiEEZj3aE4ZP4keOLC h3V+IyG5A7CjS+BPRjHJSvI6QV6kpqTsAu4nq0SlQU/xPoSh1uBe+HVI47iexl6M jED41ouh6iKfEfZ2kYa3PL4FOlInGipy7cTF42cPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVDo9qc54/b2+VgIEZTMi1qwbs1UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdhMmRiY2M2LTk0M2MtNDM1NS05NzVlLTJhYjFhNWI3ZWQwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATMIIAwDQYJKoZIhvcNAQELBQADggEBAIpCcyncD5hj218bmm5BKAZavdjn Kqds6WiOk51dVs/gQ5+RRYnLIiMuI63gtQ5QZxD7ALVZKsdc00HUmsaxTra+Fs+z mn1/i+fTqgTDFMSeQn+cwPvacr/eE2pZcVPW6n9Cibc/mhhba2fOQGjA1ZDT7/94 r2WzSahCAv6f0tgUYv6AL4xZO5AabY41zotq8tz6RKzZa/Sn9cfslliRLT5L4CJJ UjDtrC76U8sA5ddykpI+kBJmXwOZ07NxQeNf1E15Rwgv4o+2lCEjHcPVVuVPoAlG 0Ek1AwxC+bh9eTXBNV1fwd5C4h4fBAN/WVzNcbtuaaFrVYniqC/3tuYYUbk= -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:53 2025 by rpki-client