$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa File: 8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa (raw, json) Hash identifier: eCQkVDFWccrO9E+DR5wad2yOKLw3CejpEy5WZMwOTSw= Subject key identifier: 72:AA:19:22:85:34:B2:05:36:ED:B5:D4:A9:7D:FC:3F:EE:CE:62:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FB3CA20E27A50BB2F8876C3BD7D15A3C4280A44 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa Signing time: Sat 06 Sep 2025 00:30:28 +0000 ROA not before: Sat 06 Sep 2025 00:30:28 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.22.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:b3:ca:20:e2:7a:50:bb:2f:88:76:c3:bd:7d:15:a3:c4:28:0a:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:30:28 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=1e941b0c6df55797e725a80c67ac739f8b243d5aa0ff49bf95da79875bb2ddd7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:4e:96:94:0d:5f:3f:d8:bd:d6:e8:fa:6a:77: f3:f9:4e:3d:a8:c7:29:4b:8a:40:53:1e:7f:e7:ab: a5:1f:bd:76:61:0f:08:45:fb:91:52:c0:28:35:6a: b3:49:24:12:86:fc:15:4f:5b:35:f9:8c:f1:de:38: d8:8e:c2:9e:18:52:58:86:5a:d4:6b:89:14:60:bc: 7f:e2:92:42:8d:d2:eb:b8:14:9b:24:2b:f9:fd:46: b8:83:76:5f:95:56:69:66:5c:97:ab:9a:e9:54:79: 7b:aa:49:11:66:8f:4c:2c:60:00:6f:ae:e2:de:05: 1e:4c:ce:d2:78:f8:0f:af:3a:70:a2:e9:f9:48:ba: 03:84:e5:a9:e2:62:21:d0:1d:ab:8f:a0:02:64:9a: 45:85:1f:dd:3d:1a:38:68:c9:d6:96:07:3f:02:60: b2:c2:b4:c5:a5:96:b5:a8:e2:2f:c0:f9:8f:4f:5f: 7c:c9:59:0a:b8:cc:17:1f:27:e4:b6:7f:5c:e3:d4: d9:e0:cd:56:4c:58:9a:e3:44:cd:8e:c6:12:fd:6e: b0:28:15:39:22:37:7b:94:94:eb:14:a8:a2:ad:6f: 25:29:ff:ad:22:1e:e4:9b:51:06:9c:a0:a0:30:12: b1:d9:8a:34:52:02:4d:0b:64:d4:2f:ff:d4:c0:49: af:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:AA:19:22:85:34:B2:05:36:ED:B5:D4:A9:7D:FC:3F:EE:CE:62:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5a:89:ac:39:02:04:c3:1b:85:f3:10:a6:34:04:c0:ad:11:b8: b1:04:64:2d:2a:1e:0b:03:10:ef:33:83:5a:67:5f:85:95:c0: c6:aa:4a:39:ad:9c:43:72:31:6e:38:2a:09:3b:3e:5f:82:be: df:f3:9b:69:7a:01:12:62:9d:b2:64:80:8a:d5:d9:94:7a:a7: 01:f8:db:fb:ed:9c:20:d7:ed:38:65:bd:7e:48:c7:9f:87:de: 40:7b:c1:dc:75:6a:da:61:17:e4:49:90:56:21:f8:68:2e:7e: 0c:11:72:63:41:ad:2c:d8:fc:c4:68:0e:fe:85:01:65:fd:8c: 63:bf:9a:d8:01:95:8c:58:d2:57:6a:f8:0d:b6:5f:1a:59:8c: 5a:06:49:d3:eb:8a:9f:2f:4e:a1:2f:a0:ca:54:ea:b7:6c:1d: 51:69:6c:ed:6c:24:74:4d:a9:85:55:c3:6e:8c:a0:0c:56:4c: 97:8b:8f:0f:02:16:30:66:86:1b:fc:b3:bd:2d:e4:57:ea:cf: 32:b9:3e:8a:63:37:05:30:00:a8:3b:20:2a:aa:c3:ca:0f:73: 88:30:3f:22:cc:d5:b5:c7:4a:79:a1:9b:32:bc:11:87:14:3c: 34:e8:c9:21:e0:03:d8:dc:e2:27:6d:b0:32:ae:4f:7a:d0:1b: 96:f0:8b:15 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUD7PKIOJ6ULsviHbDvX0Vo8QoCkQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAzMDI4WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTk0MWIwYzZkZjU1Nzk3ZTcyNWE4MGM2N2FjNzM5Zjhi MjQzZDVhYTBmZjQ5YmY5NWRhNzk4NzViYjJkZGQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJTpaUDV8/2L3W6Ppqd/P5Tj2oxylLikBTHn/nq6UfvXZh DwhF+5FSwCg1arNJJBKG/BVPWzX5jPHeONiOwp4YUliGWtRriRRgvH/ikkKN0uu4 FJskK/n9RriDdl+VVmlmXJermulUeXuqSRFmj0wsYABvruLeBR5MztJ4+A+vOnCi 6flIugOE5aniYiHQHauPoAJkmkWFH909GjhoydaWBz8CYLLCtMWllrWo4i/A+Y9P X3zJWQq4zBcfJ+S2f1zj1NngzVZMWJrjRM2OxhL9brAoFTkiN3uUlOsUqKKtbyUp /60iHuSbUQacoKAwErHZijRSAk0LZNQv/9TASa8XAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcqoZIoU0sgU27bXUqX38P+7OYoEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhiNDJjYjVmLTdiNWYtNGI5OS1hNWM0LWQ0MGYzZWUzMzU2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2FjANBgkqhkiG9w0BAQsFAAOCAQEAWomsOQIEwxuF8xCmNATArRG4sQRk LSoeCwMQ7zODWmdfhZXAxqpKOa2cQ3IxbjgqCTs+X4K+3/ObaXoBEmKdsmSAitXZ lHqnAfjb++2cINftOGW9fkjHn4feQHvB3HVq2mEX5EmQViH4aC5+DBFyY0GtLNj8 xGgO/oUBZf2MY7+a2AGVjFjSV2r4DbZfGlmMWgZJ0+uKny9OoS+gylTqt2wdUWls 7WwkdE2phVXDboygDFZMl4uPDwIWMGaGG/yzvS3kV+rPMrk+imM3BTAAqDsgKqrD yg9ziDA/IszVtcdKeaGbMrwRhxQ8NOjJIeAD2NziJ22wMq5PetAblvCLFQ== -----END CERTIFICATE-----Generated at Sat Sep 6 14:06:07 2025 by rpki-client