$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/80c452dc-effd-446c-b6eb-9d13759e7287.roa File: 80c452dc-effd-446c-b6eb-9d13759e7287.roa (raw, json) Hash identifier: FZF62bQiBGOwTG62JaHXlMCaoOBLErr3sqeMYhIp1+E= Subject key identifier: 5A:9B:4F:D3:F1:90:CD:2C:3A:0D:46:30:11:85:12:5B:00:05:67:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2783FEE1D2C870766892387CCC81E2238FC721EF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/80c452dc-effd-446c-b6eb-9d13759e7287.roa Signing time: Sat 06 Sep 2025 00:01:46 +0000 ROA not before: Sat 06 Sep 2025 00:01:46 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 206.217.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:83:fe:e1:d2:c8:70:76:68:92:38:7c:cc:81:e2:23:8f:c7:21:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:01:46 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=fcef3d6796479bfa675542e90badf2857d7efa1af5e583a5af2fbf393c8b83e7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ac:c3:2b:ee:ed:1f:60:55:3a:62:b6:41:fb: 65:4e:f3:0a:59:2e:91:5d:60:d0:f5:c9:2b:f3:a1: 47:e8:5b:c9:b9:45:a5:c6:db:9a:c4:ca:35:36:c0: 7a:00:18:26:15:fb:21:d8:72:e1:f3:6d:6b:f2:23: 02:18:db:aa:99:0d:75:f5:e2:a5:68:4a:10:2e:ae: b9:27:e9:fa:c9:dc:4f:ea:dc:f5:e4:e7:18:20:67: 7c:7d:68:ca:49:06:a0:e5:26:54:02:d8:e3:c0:e0: d9:16:c1:0e:c6:f7:0f:86:56:21:bc:28:9f:2f:d3: e3:f4:8c:a5:24:d5:49:77:22:2b:b5:56:58:03:71: 11:72:06:a8:f3:5e:5f:e5:8c:84:5e:13:c5:25:18: 56:73:e8:44:81:e0:74:1e:11:74:04:d5:63:8b:68: f4:cd:98:7f:8c:43:fe:bc:bd:de:62:64:6e:cb:4c: 85:29:5a:29:80:5f:21:a7:8c:5c:c5:29:1f:a8:72: 01:75:b6:29:ed:44:09:ff:80:cb:6a:01:99:dc:61: 01:53:37:40:f4:6c:e0:79:23:d2:8c:be:8f:45:34: 7e:f8:12:27:f5:69:4c:9d:c8:33:6d:2a:4c:7f:86: 6b:48:73:a8:c6:63:66:42:3a:55:24:34:95:9f:8f: a6:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:9B:4F:D3:F1:90:CD:2C:3A:0D:46:30:11:85:12:5B:00:05:67:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/80c452dc-effd-446c-b6eb-9d13759e7287.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.217.160.0/19 Signature Algorithm: sha256WithRSAEncryption 3c:25:5a:63:cd:97:fb:fd:5f:c0:1f:db:8b:62:0b:1a:32:d1: 37:1b:16:e6:b9:80:4e:55:fa:f5:88:07:b6:19:14:46:d1:46: b6:6b:74:6f:15:97:f1:a6:2b:ef:63:90:7f:9b:97:48:ae:d6: 2c:ea:9f:4d:30:f6:a4:80:01:5b:22:61:89:a2:86:e0:42:d6: 96:05:70:4e:5b:e2:fb:82:d1:99:70:81:9f:9c:73:ee:ea:03: b4:ca:70:c4:bf:41:6b:6e:f9:70:48:92:de:5f:30:97:53:53: db:6a:4f:3b:7e:69:af:86:e2:d4:17:77:44:82:59:03:30:c9: 2a:be:35:94:f0:cb:e1:7c:e2:b4:33:2c:cc:a0:fd:e2:11:dd: 5a:21:b5:1d:1a:b1:48:3c:75:8a:8d:45:97:50:db:a4:cf:34: 45:74:56:4e:6b:a8:d4:a8:cc:c5:70:1f:b5:f4:e6:d4:ac:d5: 63:2f:c4:97:f4:6c:34:64:16:33:7d:3c:43:35:53:18:9b:3f: 24:ab:7a:13:f6:00:5b:da:fc:7b:58:9c:ae:f3:2a:6c:a0:d8: 15:13:ff:0e:90:35:ca:bf:37:0d:1b:cb:54:ad:35:95:2b:cc: ce:84:7f:a0:84:70:95:34:21:6f:c5:14:ce:6b:88:2f:d4:a6: c5:d6:06:ad -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJ4P+4dLIcHZokjh8zIHiI4/HIe8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAwMTQ2WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BmY2VmM2Q2Nzk2NDc5YmZhNjc1NTQyZTkwYmFkZjI4NTdk N2VmYTFhZjVlNTgzYTVhZjJmYmYzOTNjOGI4M2U3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3rMMr7u0fYFU6YrZB+2VO8wpZLpFdYND1ySvzoUfoW8m5 RaXG25rEyjU2wHoAGCYV+yHYcuHzbWvyIwIY26qZDXX14qVoShAurrkn6frJ3E/q 3PXk5xggZ3x9aMpJBqDlJlQC2OPA4NkWwQ7G9w+GViG8KJ8v0+P0jKUk1Ul3Iiu1 VlgDcRFyBqjzXl/ljIReE8UlGFZz6ESB4HQeEXQE1WOLaPTNmH+MQ/68vd5iZG7L TIUpWimAXyGnjFzFKR+ocgF1tintRAn/gMtqAZncYQFTN0D0bOB5I9KMvo9FNH74 Eif1aUydyDNtKkx/hmtIc6jGY2ZCOlUkNJWfj6b1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWptP0/GQzSw6DUYwEYUSWwAFZzcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgwYzQ1MmRjLWVmZmQtNDQ2Yy1iNmViLTlkMTM3NTllNzI4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXO2aAwDQYJKoZIhvcNAQELBQADggEBADwlWmPNl/v9X8Af24tiCxoy0Tcb Fua5gE5V+vWIB7YZFEbRRrZrdG8Vl/GmK+9jkH+bl0iu1izqn00w9qSAAVsiYYmi huBC1pYFcE5b4vuC0ZlwgZ+cc+7qA7TKcMS/QWtu+XBIkt5fMJdTU9tqTzt+aa+G 4tQXd0SCWQMwySq+NZTwy+F84rQzLMyg/eIR3VohtR0asUg8dYqNRZdQ26TPNEV0 Vk5rqNSozMVwH7X05tSs1WMvxJf0bDRkFjN9PEM1UxibPySrehP2AFva/HtYnK7z Kmyg2BUT/w6QNcq/Nw0by1StNZUrzM6Ef6CEcJU0IW/FFM5riC/UpsXWBq0= -----END CERTIFICATE-----Generated at Sat Sep 6 14:06:03 2025 by rpki-client