$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f61c5a3-03b4-4953-a5e1-ea0975d1b8fc.roa File: 8f61c5a3-03b4-4953-a5e1-ea0975d1b8fc.roa (raw, json) Hash identifier: Lcatr5bGAo528mFTARGfgVEfFyP45EYhi4HRvXmjaE0= Subject key identifier: 4B:24:E5:DB:91:85:7C:90:62:8C:7D:F2:40:17:C0:29:BB:A7:55:F2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 40534C700CCD74E26B61EF364BFB2A176C6B27B3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f61c5a3-03b4-4953-a5e1-ea0975d1b8fc.roa Signing time: Sat 06 Sep 2025 00:31:19 +0000 ROA not before: Sat 06 Sep 2025 00:31:19 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.138.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:53:4c:70:0c:cd:74:e2:6b:61:ef:36:4b:fb:2a:17:6c:6b:27:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:31:19 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=449e5d86a47188089fb8f38d75f65919ac9f1ed1d9f8e11b4064bada42239e68, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:04:14:2b:81:4c:9b:3f:7a:9d:34:f0:7d:a0: c7:b7:38:b2:1f:0d:76:90:cc:1a:a5:e3:2d:df:a0: 60:8f:34:d7:1a:09:02:5b:03:c1:fa:32:bd:1a:39: 49:0a:94:2d:11:22:f5:d5:f4:52:45:a6:f4:c1:74: eb:85:98:7d:77:b8:89:b9:1e:40:f7:8c:78:54:e3: 44:c9:52:83:63:b1:15:63:c0:da:11:ff:cc:8a:5d: 25:76:cb:e4:da:26:f7:0d:32:e0:d3:f0:33:c7:00: 36:62:cf:bb:24:93:75:6a:3d:e4:3f:95:e6:ae:44: da:49:1f:c2:8c:3a:08:29:14:11:18:50:1c:33:74: b4:88:72:15:01:07:d8:7f:3f:c1:6b:7d:66:3f:9f: e3:f3:a6:97:f0:21:cd:e4:49:84:f2:8c:5e:c4:18: 25:8a:2f:84:c5:fd:27:aa:e3:c5:86:5b:85:0d:80: be:28:ae:51:26:8a:27:8a:a4:ba:ee:5b:db:e1:78: d4:7d:c1:14:33:c4:1f:21:fd:87:b4:cd:22:7e:67: dd:53:55:00:c9:a7:71:f2:ba:a5:76:45:2f:19:99: 29:2d:b5:e4:3d:29:d3:3c:63:3c:94:db:e0:d1:7d: 17:5e:88:86:08:43:3f:26:24:af:ff:23:9d:9b:4f: b0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:24:E5:DB:91:85:7C:90:62:8C:7D:F2:40:17:C0:29:BB:A7:55:F2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f61c5a3-03b4-4953-a5e1-ea0975d1b8fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.138.0.0/16 Signature Algorithm: sha256WithRSAEncryption 05:87:68:39:fb:0b:9e:b8:14:fe:dd:c5:9a:17:ea:85:d3:5b: e2:59:28:bb:7e:0d:d9:f1:29:b9:33:99:1b:cd:1a:d5:a5:dd: 66:2d:72:31:dc:89:de:a4:2a:c5:ce:f0:f6:15:9e:80:aa:36: 00:89:ea:bd:0c:24:82:37:40:bc:b2:6a:20:77:98:a8:6f:4a: 65:b5:2a:ca:a4:0b:70:8d:77:7e:33:8a:9b:8f:00:8c:32:69: bf:d5:44:8a:3d:6f:e9:fd:4d:a3:2c:e5:3d:b1:95:94:90:f1: 29:ad:b5:d4:c5:3a:5a:9d:7f:cb:5c:b6:8b:8d:f6:2e:e8:c5: 86:e8:ef:b1:fb:6b:88:09:9d:32:0e:17:f4:c0:b1:bc:2e:9f: 5d:30:ea:be:fd:4c:80:45:6d:52:56:de:60:a5:8e:fe:01:f1: 2e:ff:59:ec:57:56:0f:07:26:77:fc:5f:b2:1d:a7:38:f8:84: 89:be:2f:8d:e0:a7:8f:04:63:26:1e:1e:1c:98:54:f6:e1:72: 9d:5f:ef:2c:b7:2c:7e:fd:a1:3f:4b:49:2c:9c:72:5c:88:76: 47:e0:a6:06:cd:0c:94:57:a3:0c:7f:15:bf:6f:5a:04:32:92: 9f:ed:c1:57:b8:13:68:13:18:f1:aa:4c:0d:9e:88:eb:27:f5: 96:5c:28:72 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQFNMcAzNdOJrYe82S/sqF2xrJ7MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAzMTE5WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDllNWQ4NmE0NzE4ODA4OWZiOGYzOGQ3NWY2NTkxOWFj OWYxZWQxZDlmOGUxMWI0MDY0YmFkYTQyMjM5ZTY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTBBQrgUybP3qdNPB9oMe3OLIfDXaQzBql4y3foGCPNNca CQJbA8H6Mr0aOUkKlC0RIvXV9FJFpvTBdOuFmH13uIm5HkD3jHhU40TJUoNjsRVj wNoR/8yKXSV2y+TaJvcNMuDT8DPHADZiz7skk3VqPeQ/leauRNpJH8KMOggpFBEY UBwzdLSIchUBB9h/P8FrfWY/n+PzppfwIc3kSYTyjF7EGCWKL4TF/Seq48WGW4UN gL4orlEmiieKpLruW9vheNR9wRQzxB8h/Ye0zSJ+Z91TVQDJp3HyuqV2RS8ZmSkt teQ9KdM8YzyU2+DRfRdeiIYIQz8mJK//I52bT7CbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUSyTl25GFfJBijH3yQBfAKbunVfIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmNjFjNWEzLTAzYjQtNDk1My1hNWUxLWVhMDk3NWQxYjhmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ijANBgkqhkiG9w0BAQsFAAOCAQEABYdoOfsLnrgU/t3FmhfqhdNb4lko u34N2fEpuTOZG80a1aXdZi1yMdyJ3qQqxc7w9hWegKo2AInqvQwkgjdAvLJqIHeY qG9KZbUqyqQLcI13fjOKm48AjDJpv9VEij1v6f1NoyzlPbGVlJDxKa211MU6Wp1/ y1y2i432LujFhujvsftriAmdMg4X9MCxvC6fXTDqvv1MgEVtUlbeYKWO/gHxLv9Z 7FdWDwcmd/xfsh2nOPiEib4vjeCnjwRjJh4eHJhU9uFynV/vLLcsfv2hP0tJLJxy XIh2R+CmBs0MlFejDH8Vv29aBDKSn+3BV7gTaBMY8apMDZ6I6yf1llwocg== -----END CERTIFICATE-----Generated at Fri Sep 19 00:02:21 2025 by rpki-client