$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c7c07ee-0917-41f8-997b-d5253ad56cb3.roa File: 7c7c07ee-0917-41f8-997b-d5253ad56cb3.roa (raw, json) Hash identifier: ZRbnsZ0WSanZjmhl1r6sRI5aXjaQ3MWxyjiOQkqN/vM= Subject key identifier: 7A:76:2A:AB:59:36:0F:4C:02:DD:DC:B8:DD:C6:0C:0E:8E:2A:50:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 292A323CDAC4BBCA83149C9307D20124498CC2EB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c7c07ee-0917-41f8-997b-d5253ad56cb3.roa Signing time: Wed 03 Sep 2025 00:00:48 +0000 ROA not before: Wed 03 Sep 2025 00:00:48 +0000 ROA not after: Wed 08 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 137.160.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:2a:32:3c:da:c4:bb:ca:83:14:9c:93:07:d2:01:24:49:8c:c2:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 3 00:00:48 2025 GMT Not After : Oct 8 23:59:59 2025 GMT Subject: serialNumber=6e1067d511141d890ff0d8177caf26f14d7752882b809c8a9b1f264e38d2c7ad, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:9c:10:1e:5b:08:05:6d:36:d0:42:b2:3a:b2: a1:7f:96:e3:ce:63:48:0b:7d:a1:13:cc:6a:11:de: 85:b5:89:2e:3d:e1:80:90:f8:cd:4e:a7:79:f2:a7: 76:bb:9b:4b:6a:af:c8:9a:eb:81:c4:85:ea:6a:f7: 31:a5:47:82:50:49:76:53:1f:5b:1d:24:62:36:9c: 77:6c:11:5b:6e:c8:64:b4:2d:d8:be:16:78:66:76: 32:9d:93:6b:d3:46:29:69:55:14:65:e8:c9:66:d1: 12:84:69:b3:19:e9:a3:87:93:5b:d8:f5:a7:fc:6a: d0:cc:d1:61:84:5a:55:fb:b5:19:85:42:e6:d9:ba: 32:a3:cf:bf:49:8a:2e:c7:79:ab:55:37:f0:39:0f: b0:a0:e7:88:49:e3:d9:32:ec:5f:5d:2e:a1:bb:04: e5:6e:e5:dd:b3:fd:ee:24:3a:78:b6:8b:3e:a9:67: a9:7a:32:f6:95:cb:3c:54:e9:49:a5:da:16:71:96: 7d:cb:58:74:c6:f7:95:d1:21:b6:03:b9:05:d0:b8: a6:65:78:e4:af:fa:0a:52:7a:14:55:9a:56:1b:18: 36:5e:6f:5c:e8:ef:c1:11:19:37:f2:41:5b:e0:f7: 0e:90:59:5d:4a:17:89:56:d9:ba:29:c8:64:69:87: 53:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:76:2A:AB:59:36:0F:4C:02:DD:DC:B8:DD:C6:0C:0E:8E:2A:50:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c7c07ee-0917-41f8-997b-d5253ad56cb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.160.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9c:65:43:b1:92:51:f4:8d:10:4f:f3:ce:c1:a1:77:35:ab:da: 41:d5:b1:af:fb:f1:48:eb:36:ba:b0:02:93:26:1d:13:8d:c8: 2e:27:ec:28:9f:82:d1:0f:dc:88:de:3c:ad:0a:30:d0:fb:65: cf:84:c2:ec:3b:84:5a:e0:1d:b3:ff:6a:3f:6f:b1:75:e8:c3: 38:df:f4:ce:0f:18:58:9c:6f:f5:e2:46:42:ee:4f:92:ae:5f: 38:5c:bd:d1:15:fc:49:32:36:a5:9f:b3:82:9d:de:a3:62:08: c2:8d:bf:32:e9:99:47:a1:f9:43:3b:70:65:ff:5e:e5:2a:c8: 4d:32:7e:45:7f:45:33:58:a5:4f:e9:4a:d7:82:4c:73:54:d1: a4:f9:9e:6a:7f:a6:ff:33:27:dd:f0:d1:99:e1:de:89:ab:c1: a2:3e:ea:96:70:78:9d:63:7e:db:6e:44:ad:ea:ed:97:02:b5: 58:55:1a:67:7f:4f:44:19:d0:dd:80:ff:3a:03:23:3d:fa:e0: 77:d3:12:62:64:fd:56:54:9d:c1:69:6d:47:55:68:d1:eb:23: b6:14:6b:89:dc:c3:c9:ef:2e:85:01:79:f6:5a:e8:f3:4d:d3: ce:e7:05:b0:36:08:e5:8c:9b:0b:5d:1c:5d:cf:41:42:84:30: ff:1a:59:41 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKSoyPNrEu8qDFJyTB9IBJEmMwuswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAzMDAwMDQ4WhcNMjUxMDA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTEwNjdkNTExMTQxZDg5MGZmMGQ4MTc3Y2FmMjZmMTRk Nzc1Mjg4MmI4MDljOGE5YjFmMjY0ZTM4ZDJjN2FkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbnBAeWwgFbTbQQrI6sqF/luPOY0gLfaETzGoR3oW1iS49 4YCQ+M1Op3nyp3a7m0tqr8ia64HEhepq9zGlR4JQSXZTH1sdJGI2nHdsEVtuyGS0 Ldi+FnhmdjKdk2vTRilpVRRl6Mlm0RKEabMZ6aOHk1vY9af8atDM0WGEWlX7tRmF QubZujKjz79Jii7HeatVN/A5D7Cg54hJ49ky7F9dLqG7BOVu5d2z/e4kOni2iz6p Z6l6MvaVyzxU6Uml2hZxln3LWHTG95XRIbYDuQXQuKZleOSv+gpSehRVmlYbGDZe b1zo78ERGTfyQVvg9w6QWV1KF4lW2bopyGRph1P7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUenYqq1k2D0wC3dy43cYMDo4qUAIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjN2MwN2VlLTA5MTctNDFmOC05OTdiLWQ1MjUzYWQ1NmNiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCJoDANBgkqhkiG9w0BAQsFAAOCAQEAnGVDsZJR9I0QT/POwaF3NavaQdWx r/vxSOs2urACkyYdE43ILifsKJ+C0Q/ciN48rQow0Ptlz4TC7DuEWuAds/9qP2+x dejDON/0zg8YWJxv9eJGQu5Pkq5fOFy90RX8STI2pZ+zgp3eo2IIwo2/MumZR6H5 QztwZf9e5SrITTJ+RX9FM1ilT+lK14JMc1TRpPmean+m/zMn3fDRmeHeiavBoj7q lnB4nWN+225ErertlwK1WFUaZ39PRBnQ3YD/OgMjPfrgd9MSYmT9VlSdwWltR1Vo 0esjthRridzDye8uhQF59lro803TzucFsDYI5YybC10cXc9BQoQw/xpZQQ== -----END CERTIFICATE-----Generated at Thu Sep 18 03:36:09 2025 by rpki-client