$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f4aece0-320f-46a2-ae45-69cd23b5c314.roa File: 7f4aece0-320f-46a2-ae45-69cd23b5c314.roa (raw, json) Hash identifier: 9a/el50Wm3CiQQxbpsHYYYgsiI62yHcYkZbYJiJ5vNs= Subject key identifier: 01:66:0F:9A:46:AA:F2:16:5A:CF:3E:59:16:30:FF:19:D8:E3:3C:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BA238EE011D4BF1DB13C87BB2BCC1158459E06C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f4aece0-320f-46a2-ae45-69cd23b5c314.roa Signing time: Mon 01 Sep 2025 15:12:09 +0000 ROA not before: Mon 01 Sep 2025 15:12:09 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 149.188.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:a2:38:ee:01:1d:4b:f1:db:13:c8:7b:b2:bc:c1:15:84:59:e0:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:12:09 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=7af6fde8f036206cbb991bc381d5e69e7fd8a211127c7954484d8b1e1f624af8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:02:a3:d1:07:49:ca:ef:11:34:8e:bb:16:26: 86:59:4c:e2:72:9c:19:d0:3f:8c:e8:de:a0:c5:73: 1f:73:e9:6c:62:74:2c:9d:e5:fa:58:52:22:64:ce: 30:d9:a5:79:2a:b1:82:a5:96:72:77:63:84:b4:a0: 5d:c6:6b:47:f1:58:3a:9b:e2:06:ab:e4:5e:1e:d0: d8:80:56:c2:2a:a4:c1:09:74:2a:29:24:5b:eb:f7: 83:77:33:42:b0:f3:85:57:fb:6b:b1:d8:eb:64:68: 7e:40:26:59:e9:bc:0b:f7:ee:74:40:f3:59:99:c4: fa:2c:10:bb:00:11:6c:6d:21:c5:60:5b:73:83:37: 92:05:40:f8:cf:f0:1e:72:43:64:2f:d4:9c:fe:e7: 34:01:94:e1:b1:0d:92:35:80:fe:19:bd:dc:5c:df: e5:05:56:28:6f:65:1e:cb:90:84:1e:d8:69:5b:cb: 73:25:19:7d:3a:ec:0c:02:4c:ad:31:bf:ec:16:87: 1b:91:1b:dd:1f:49:ce:bc:74:96:5d:f3:df:ef:80: c9:d3:dc:bd:67:06:5e:d0:94:ab:8e:c5:51:ee:7a: 65:0b:d4:d8:ad:e1:25:9c:77:91:81:36:52:f4:89: 59:78:df:37:38:80:25:ca:c1:8f:8f:00:13:d6:2b: c4:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:66:0F:9A:46:AA:F2:16:5A:CF:3E:59:16:30:FF:19:D8:E3:3C:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f4aece0-320f-46a2-ae45-69cd23b5c314.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.188.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8b:de:5e:08:c8:4d:8b:d1:9a:92:74:11:6e:56:a1:7d:40:5a: ea:97:4f:22:6f:26:c4:d7:9b:eb:a3:8d:da:39:e5:c3:f6:6a: a5:2f:91:be:10:fd:3d:54:ea:90:18:33:46:67:f6:13:4c:a8: 68:f9:48:27:ff:ec:de:91:95:f8:99:8a:14:34:95:f6:3c:4e: 97:bd:61:f7:7b:5a:08:b5:f1:9b:6f:75:0e:25:59:77:d9:12: de:ff:d2:11:56:65:98:04:fb:bc:0c:70:1b:1a:ed:9c:6b:3a: 16:c3:63:a2:ef:cc:5a:57:ff:88:2e:f7:b4:e9:78:f1:ee:03: 2e:0c:b5:e1:56:df:1d:13:ef:bd:ea:43:3d:0d:c3:0d:0d:80: da:a1:6c:9f:ad:c3:44:82:08:f6:83:70:07:9a:31:1f:dd:1b: 2a:b0:ce:e4:66:a7:4f:83:29:54:fd:c2:08:72:30:73:1d:f7: a3:f3:0a:b5:8c:1c:a3:86:06:9f:19:52:09:d6:f3:43:f9:4c: ba:aa:c8:54:9b:ae:51:32:c2:73:46:98:44:ae:1f:e5:bd:66: 51:f2:da:5e:ea:94:40:27:8d:74:6f:f9:28:40:b7:d2:87:b5: 46:cb:6c:73:31:a7:5a:fd:93:aa:01:ef:92:7b:44:b3:df:3b: ad:ee:64:78 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUa6I47gEdS/HbE8h7srzBFYRZ4GwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTUxMjA5WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWY2ZmRlOGYwMzYyMDZjYmI5OTFiYzM4MWQ1ZTY5ZTdm ZDhhMjExMTI3Yzc5NTQ0ODRkOGIxZTFmNjI0YWY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVAqPRB0nK7xE0jrsWJoZZTOJynBnQP4zo3qDFcx9z6Wxi dCyd5fpYUiJkzjDZpXkqsYKllnJ3Y4S0oF3Ga0fxWDqb4gar5F4e0NiAVsIqpMEJ dCopJFvr94N3M0Kw84VX+2ux2OtkaH5AJlnpvAv37nRA81mZxPosELsAEWxtIcVg W3ODN5IFQPjP8B5yQ2Qv1Jz+5zQBlOGxDZI1gP4Zvdxc3+UFVihvZR7LkIQe2Glb y3MlGX067AwCTK0xv+wWhxuRG90fSc68dJZd89/vgMnT3L1nBl7QlKuOxVHuemUL 1Nit4SWcd5GBNlL0iVl43zc4gCXKwY+PABPWK8QpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAWYPmkaq8hZazz5ZFjD/GdjjPIgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdmNGFlY2UwLTMyMGYtNDZhMi1hZTQ1LTY5Y2QyM2I1YzMxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCVvDANBgkqhkiG9w0BAQsFAAOCAQEAi95eCMhNi9GaknQRblahfUBa6pdP Im8mxNeb66ON2jnlw/ZqpS+RvhD9PVTqkBgzRmf2E0yoaPlIJ//s3pGV+JmKFDSV 9jxOl71h93taCLXxm291DiVZd9kS3v/SEVZlmAT7vAxwGxrtnGs6FsNjou/MWlf/ iC73tOl48e4DLgy14VbfHRPvvepDPQ3DDQ2A2qFsn63DRIII9oNwB5oxH90bKrDO 5GanT4MpVP3CCHIwcx33o/MKtYwco4YGnxlSCdbzQ/lMuqrIVJuuUTLCc0aYRK4f 5b1mUfLaXuqUQCeNdG/5KEC30oe1RstsczGnWv2TqgHvkntEs987re5keA== -----END CERTIFICATE-----Generated at Thu Sep 18 02:51:30 2025 by rpki-client