$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/844abc15-f137-4ba6-91a9-3db90fdebd62.roa File: 844abc15-f137-4ba6-91a9-3db90fdebd62.roa (raw, json) Hash identifier: CDI8IPn94p3NapsZKbcC12LPmdMmUIWKrsbSA8ESc1Q= Subject key identifier: 38:41:38:BA:2F:EC:1B:B5:64:5C:CC:F8:37:B9:CD:1C:A7:13:B8:56 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5460DC5BCE38CF11495B856C8202BE2ADEAC10B8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/844abc15-f137-4ba6-91a9-3db90fdebd62.roa Signing time: Fri 05 Sep 2025 00:10:19 +0000 ROA not before: Fri 05 Sep 2025 00:10:19 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.27.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:60:dc:5b:ce:38:cf:11:49:5b:85:6c:82:02:be:2a:de:ac:10:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 00:10:19 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=126ad8137704b29c29a60117a51d143e8f3f4696376e5dea2b1160c8d6c237d1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c8:dd:a4:28:bb:51:44:5f:fe:07:8e:5a:8d: 87:cf:e0:f7:e2:8f:dd:c5:14:1a:a5:e3:ca:f6:7b: 59:e9:eb:20:1d:89:cb:ce:63:a1:9f:e8:c2:a6:ee: eb:63:b1:0c:be:1c:9e:2e:3b:41:27:20:6f:97:81: 67:0b:0e:21:5d:a0:a8:0c:c8:d8:6e:f9:d8:50:9c: e5:8a:bf:48:32:23:d5:58:ba:fe:48:63:4a:f5:27: 1d:ed:7b:16:60:3a:70:13:86:10:db:53:47:14:1f: aa:9e:96:a6:31:00:01:68:9d:03:55:1c:dd:af:3a: 02:fa:24:c9:5c:49:bd:27:19:34:64:b4:e7:56:26: 58:31:76:5f:12:40:6b:4e:7d:d9:de:23:d9:11:59: 49:10:e4:28:e8:e5:84:a3:e9:54:e0:96:95:28:a8: af:13:90:70:b6:5a:f8:7c:e2:63:7b:3c:1f:ae:cf: df:3e:46:f5:65:fe:29:5b:c6:1c:96:07:49:07:2e: 1e:52:cb:06:e0:08:b9:f7:88:b9:89:d4:bb:cb:81: 97:3e:01:aa:c9:a3:a8:b3:fe:46:cf:53:ec:f9:af: e7:ce:79:45:ec:32:f8:d6:1d:94:f7:a5:5d:f9:0b: 97:db:a2:09:e7:ea:2e:2e:33:72:de:0e:13:83:f4: d5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:41:38:BA:2F:EC:1B:B5:64:5C:CC:F8:37:B9:CD:1C:A7:13:B8:56 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/844abc15-f137-4ba6-91a9-3db90fdebd62.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.27.0.0/16 Signature Algorithm: sha256WithRSAEncryption 39:df:7c:a4:09:f9:c3:2f:44:75:29:83:20:91:58:69:c0:1f: f3:72:60:80:b4:2b:3b:b2:77:5d:c0:ec:45:90:c5:64:9f:f8: b2:54:57:a6:12:6b:d3:7d:ab:f6:3b:67:a7:10:7b:ae:2b:47: 22:c2:5d:87:fa:5a:ba:18:51:1e:67:41:44:1c:71:b2:44:e8: b1:16:22:35:4f:b5:b4:33:c2:e2:c9:cd:bc:f0:c5:10:7d:ca: 60:38:03:78:cc:58:79:cf:fc:d8:26:89:e3:2f:74:48:02:b5: de:ee:0f:5f:39:b7:94:3e:05:aa:0c:a7:67:63:bc:5c:58:13: e4:1f:3e:af:11:9a:df:32:2e:1b:42:d2:87:18:5f:01:73:e0: 53:58:42:d0:e3:77:d4:87:c2:55:2d:ea:47:20:15:1a:ae:e0: 7b:6e:51:11:3e:9f:d7:87:31:33:5d:27:43:61:23:ad:27:d7: f0:b4:f5:5f:8f:84:2e:01:86:c6:8f:6b:28:98:1e:9d:84:fe: 27:ee:f0:fc:20:88:98:e9:6e:36:01:1c:bd:8b:67:38:ff:a2: c1:9e:df:03:84:1e:ea:bd:26:7c:d1:e3:00:6b:ae:ee:f0:86: aa:02:ce:26:89:d9:2e:74:16:1c:88:71:cf:59:a1:32:41:c7: 13:82:13:f3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVGDcW844zxFJW4VsggK+Kt6sELgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA1MDAxMDE5WhcNMjUxMDEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjZhZDgxMzc3MDRiMjljMjlhNjAxMTdhNTFkMTQzZThm M2Y0Njk2Mzc2ZTVkZWEyYjExNjBjOGQ2YzIzN2QxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZyN2kKLtRRF/+B45ajYfP4Pfij93FFBql48r2e1np6yAd icvOY6Gf6MKm7utjsQy+HJ4uO0EnIG+XgWcLDiFdoKgMyNhu+dhQnOWKv0gyI9VY uv5IY0r1Jx3texZgOnAThhDbU0cUH6qelqYxAAFonQNVHN2vOgL6JMlcSb0nGTRk tOdWJlgxdl8SQGtOfdneI9kRWUkQ5Cjo5YSj6VTglpUoqK8TkHC2Wvh84mN7PB+u z98+RvVl/ilbxhyWB0kHLh5SywbgCLn3iLmJ1LvLgZc+AarJo6iz/kbPU+z5r+fO eUXsMvjWHZT3pV35C5fbognn6i4uM3LeDhOD9NXnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOEE4ui/sG7VkXMz4N7nNHKcTuFYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0NGFiYzE1LWYxMzctNGJhNi05MWE5LTNkYjkwZmRlYmQ2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQGzANBgkqhkiG9w0BAQsFAAOCAQEAOd98pAn5wy9EdSmDIJFYacAf83Jg gLQrO7J3XcDsRZDFZJ/4slRXphJr032r9jtnpxB7ritHIsJdh/pauhhRHmdBRBxx skTosRYiNU+1tDPC4snNvPDFEH3KYDgDeMxYec/82CaJ4y90SAK13u4PXzm3lD4F qgynZ2O8XFgT5B8+rxGa3zIuG0LShxhfAXPgU1hC0ON31IfCVS3qRyAVGq7ge25R ET6f14cxM10nQ2EjrSfX8LT1X4+ELgGGxo9rKJgenYT+J+7w/CCImOluNgEcvYtn OP+iwZ7fA4Qe6r0mfNHjAGuu7vCGqgLOJonZLnQWHIhxz1mhMkHHE4IT8w== -----END CERTIFICATE-----Generated at Sat Sep 6 14:13:59 2025 by rpki-client