$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87f2d17b-bc00-4f7a-b7e8-788558dd25ae.roa File: 87f2d17b-bc00-4f7a-b7e8-788558dd25ae.roa (raw, json) Hash identifier: Reu8QD9Xy9qFmbiXa+ZB9w6ARYLhmUqMIiMwFM2K1ms= Subject key identifier: EE:37:38:1F:3B:6C:D4:D7:ED:35:EB:50:26:8E:82:A7:B5:3C:58:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 653D79A0DBE9ACE313E5F2F42319A95B0996D3BE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87f2d17b-bc00-4f7a-b7e8-788558dd25ae.roa Signing time: Sat 30 Aug 2025 00:00:34 +0000 ROA not before: Sat 30 Aug 2025 00:00:34 +0000 ROA not after: Sat 04 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 149.44.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:3d:79:a0:db:e9:ac:e3:13:e5:f2:f4:23:19:a9:5b:09:96:d3:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 30 00:00:34 2025 GMT Not After : Oct 4 23:59:59 2025 GMT Subject: serialNumber=2b7534f0fadd3cc5efa871694ae73f1ba2c9ef3d858b33b34f76d8f1d4c87dee, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0b:8b:c6:5b:84:e4:d2:ad:6d:64:fd:c7:59: b5:91:eb:f1:90:9e:49:2c:05:b9:5c:f8:4d:02:42: c4:d3:28:28:43:0d:72:93:4f:ce:02:c0:8d:eb:35: b7:22:f5:f7:26:8b:ac:b1:e0:ac:63:51:8e:60:70: 3d:fe:13:9a:ac:c5:bf:5d:07:c8:5c:3a:6f:ac:c6: 67:17:ab:c4:59:36:20:f2:c6:ed:7a:10:7f:12:43: 93:a5:e6:4e:e7:fd:39:6d:54:3c:2c:97:a7:f8:ef: 1a:a0:c7:ac:c8:c6:6c:a6:fb:03:c2:28:25:7f:47: 4e:69:5c:cb:a2:fe:42:12:61:be:b3:00:02:08:b6: ce:50:9a:e7:47:5c:39:27:7e:0c:b1:c5:7a:da:f5: 95:bf:dd:3a:d9:6d:f6:69:7c:4d:e2:49:55:b3:09: 12:cb:3a:aa:25:53:cd:ba:3b:5f:d5:a9:93:13:7d: 08:3a:0f:89:c1:6d:80:39:2b:00:f6:4f:f5:de:96: 0d:91:0f:f3:2d:c6:55:89:d2:13:b4:d1:8f:81:30: a5:f2:42:8c:92:0d:d3:35:96:d6:41:7d:fa:2a:74: 73:72:cd:f4:7f:2c:20:38:13:22:49:a8:78:78:2b: d3:fd:9e:5e:53:63:8b:6d:9b:d7:24:01:56:48:7f: 02:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:37:38:1F:3B:6C:D4:D7:ED:35:EB:50:26:8E:82:A7:B5:3C:58:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/87f2d17b-bc00-4f7a-b7e8-788558dd25ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.44.0.0/16 Signature Algorithm: sha256WithRSAEncryption 18:33:40:33:4e:d1:e7:73:38:e7:dd:a3:1a:16:8a:b8:5b:1b: f1:c0:82:17:56:de:d2:6f:f9:06:23:62:9a:44:38:be:87:fd: ab:a4:f7:b3:dd:11:69:e8:4e:3f:d2:88:58:5b:c4:ca:8b:33: eb:6e:35:00:2c:47:dc:48:f2:0e:3d:a1:e1:9e:d6:08:70:6c: 09:5b:64:31:ab:ce:05:b4:dc:df:08:7d:ff:7b:83:2b:33:b8: 2b:e9:3f:ae:82:d0:f6:8a:3b:a2:4b:af:95:23:ad:3b:2c:26: ab:1d:73:53:9c:28:23:1a:4c:83:d7:4c:b4:4f:fa:14:aa:6c: ab:22:94:23:e0:f9:b8:2d:5f:31:ac:30:7d:56:d5:23:73:8c: 21:8f:be:fa:91:aa:1a:87:76:c7:19:29:00:c1:6a:f3:0d:34: e9:85:8c:2e:aa:22:f1:2c:b6:27:95:80:2a:2e:f5:b7:c5:a1: 57:84:bf:aa:76:39:e9:29:23:4a:06:0c:b6:63:fe:46:7d:d1: bf:ea:f3:19:2e:bf:8f:b0:d1:32:85:f1:ca:e3:2b:98:0a:5c: 0b:85:bf:0b:19:de:ce:52:c9:94:83:c8:52:03:4d:85:ef:93: 6c:d0:83:b3:3f:5a:f5:3f:93:e7:db:25:b7:9c:11:45:79:50: 28:5d:64:3d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZT15oNvprOMT5fL0IxmpWwmW074wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODMwMDAwMDM0WhcNMjUxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjc1MzRmMGZhZGQzY2M1ZWZhODcxNjk0YWU3M2YxYmEy YzllZjNkODU4YjMzYjM0Zjc2ZDhmMWQ0Yzg3ZGVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyC4vGW4Tk0q1tZP3HWbWR6/GQnkksBblc+E0CQsTTKChD DXKTT84CwI3rNbci9fcmi6yx4KxjUY5gcD3+E5qsxb9dB8hcOm+sxmcXq8RZNiDy xu16EH8SQ5Ol5k7n/TltVDwsl6f47xqgx6zIxmym+wPCKCV/R05pXMui/kISYb6z AAIIts5QmudHXDknfgyxxXra9ZW/3TrZbfZpfE3iSVWzCRLLOqolU826O1/VqZMT fQg6D4nBbYA5KwD2T/Xelg2RD/MtxlWJ0hO00Y+BMKXyQoySDdM1ltZBffoqdHNy zfR/LCA4EyJJqHh4K9P9nl5TY4ttm9ckAVZIfwLvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU7jc4Hzts1NftNetQJo6Cp7U8WLYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg3ZjJkMTdiLWJjMDAtNGY3YS1iN2U4LTc4ODU1OGRkMjVhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCVLDANBgkqhkiG9w0BAQsFAAOCAQEAGDNAM07R53M4592jGhaKuFsb8cCC F1be0m/5BiNimkQ4vof9q6T3s90RaehOP9KIWFvEyosz6241ACxH3EjyDj2h4Z7W CHBsCVtkMavOBbTc3wh9/3uDKzO4K+k/roLQ9oo7okuvlSOtOywmqx1zU5woIxpM g9dMtE/6FKpsqyKUI+D5uC1fMawwfVbVI3OMIY+++pGqGod2xxkpAMFq8w006YWM Lqoi8Sy2J5WAKi71t8WhV4S/qnY56SkjSgYMtmP+Rn3Rv+rzGS6/j7DRMoXxyuMr mApcC4W/CxnezlLJlIPIUgNNhe+TbNCDsz9a9T+T59slt5wRRXlQKF1kPQ== -----END CERTIFICATE-----Generated at Tue Sep 16 08:15:43 2025 by rpki-client