$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91d0db83-f7cb-4ba4-8999-90629aaf96d6.roa File: 91d0db83-f7cb-4ba4-8999-90629aaf96d6.roa (raw, json) Hash identifier: +QCe2wTFf2KNHRJ9bgk785kteMwABLagBE5XS2MpOIg= Subject key identifier: CF:0C:B4:C5:5B:D2:EB:63:65:F6:60:15:C4:29:DC:66:E0:0E:FB:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A6BCDCEC95559A92DF6AC8E5C6F6DB89D808574 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91d0db83-f7cb-4ba4-8999-90629aaf96d6.roa Signing time: Tue 26 Aug 2025 15:11:11 +0000 ROA not before: Tue 26 Aug 2025 15:11:11 +0000 ROA not after: Tue 30 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 156.153.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:6b:cd:ce:c9:55:59:a9:2d:f6:ac:8e:5c:6f:6d:b8:9d:80:85:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 26 15:11:11 2025 GMT Not After : Sep 30 23:59:59 2025 GMT Subject: serialNumber=01b864a13a821c14f67bc96ba1dfb81b0519d6465fe6a2aa433d3c5ad8d7bde8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:05:a3:f5:fd:6d:32:9e:a9:ca:9d:8c:97:d0: b5:61:2b:72:73:03:f2:8e:0f:99:b8:af:9c:82:13: c2:de:32:8b:b5:67:f2:f7:1c:68:df:50:38:b1:a8: 5d:af:26:b0:1d:f8:c0:89:14:a0:e9:4b:dc:bb:ac: 42:dc:b2:b6:4d:c1:0b:98:5b:68:93:7c:e9:83:df: 83:f5:79:ee:8b:89:79:d0:59:d2:d3:7d:8c:fe:e1: 93:9d:cc:9c:d3:59:94:24:11:79:04:c4:8a:3c:c1: 64:fe:cb:54:8a:79:3d:ec:fc:cc:2f:ef:a5:79:94: e0:4b:8a:d0:2e:f1:80:e0:4b:a2:9b:de:cb:f3:35: dc:07:b3:d1:c1:9b:ee:2c:cc:2d:8c:30:95:c4:d6: f0:17:03:99:16:ee:70:f3:89:c3:de:df:4b:4f:04: c3:eb:1e:87:af:67:84:dc:8b:96:bb:b8:14:a5:0d: d5:64:a1:08:f2:0d:85:c0:fd:dd:4e:fe:53:3a:bf: e9:a8:c6:fb:7e:15:81:26:8a:fb:40:e9:54:bd:7c: a7:48:00:14:0b:72:39:7a:d3:ee:1b:08:b2:93:56: 0d:1d:db:e9:a3:00:f0:75:36:40:09:5c:f0:92:53: 5c:0a:91:15:8b:73:18:31:ac:69:e0:11:1a:59:e4: b8:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:0C:B4:C5:5B:D2:EB:63:65:F6:60:15:C4:29:DC:66:E0:0E:FB:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91d0db83-f7cb-4ba4-8999-90629aaf96d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.153.0.0/16 Signature Algorithm: sha256WithRSAEncryption 77:e1:3f:f3:c0:ae:6f:c6:26:60:07:bd:8c:dd:7f:38:f7:06: a5:76:99:a6:af:53:40:bc:52:9a:0d:d9:f6:ee:c2:f8:0b:b8: 45:c1:67:e1:f5:ba:89:55:3e:4b:64:69:ed:70:88:ae:39:40: b0:80:22:06:7a:2c:65:49:90:43:ee:45:23:26:81:27:0c:35: cf:f8:1d:c6:00:6a:53:e2:38:cb:3b:31:dc:3a:17:20:03:bb: 65:31:98:6e:4a:a7:d1:f7:d2:d6:60:80:5b:43:8f:c1:82:e9: 76:66:f0:8e:dc:b1:96:97:aa:31:02:00:b1:53:8d:ee:09:42: e0:3c:9a:21:64:0b:43:bf:51:c2:31:41:37:aa:ea:7f:cd:81: d7:b9:66:14:cd:47:70:1e:f2:c5:51:82:f7:42:70:12:59:88: 90:47:17:91:07:4e:3a:18:f7:cf:9c:c4:de:51:03:16:00:fb: 16:ff:b2:48:64:e3:83:7c:c4:4a:7c:99:25:be:b1:bc:e2:e0: 2a:b1:7d:47:10:99:3f:5f:0a:4a:ae:f0:c3:a2:0d:9c:9b:bd: 3e:72:32:a2:7b:da:f0:81:e1:6e:6d:fb:a9:1c:24:61:3b:71: 2f:cb:7a:95:1c:e7:c9:67:1e:37:d9:bd:ee:b1:05:9b:d1:c6: 91:41:5c:e5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOmvNzslVWakt9qyOXG9tuJ2AhXQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI2MTUxMTExWhcNMjUwOTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMWI4NjRhMTNhODIxYzE0ZjY3YmM5NmJhMWRmYjgxYjA1 MTlkNjQ2NWZlNmEyYWE0MzNkM2M1YWQ4ZDdiZGU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7BaP1/W0ynqnKnYyX0LVhK3JzA/KOD5m4r5yCE8LeMou1 Z/L3HGjfUDixqF2vJrAd+MCJFKDpS9y7rELcsrZNwQuYW2iTfOmD34P1ee6LiXnQ WdLTfYz+4ZOdzJzTWZQkEXkExIo8wWT+y1SKeT3s/Mwv76V5lOBLitAu8YDgS6Kb 3svzNdwHs9HBm+4szC2MMJXE1vAXA5kW7nDzicPe30tPBMPrHoevZ4Tci5a7uBSl DdVkoQjyDYXA/d1O/lM6v+moxvt+FYEmivtA6VS9fKdIABQLcjl60+4bCLKTVg0d 2+mjAPB1NkAJXPCSU1wKkRWLcxgxrGngERpZ5LjzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzwy0xVvS62Nl9mAVxCncZuAO+08wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkxZDBkYjgzLWY3Y2ItNGJhNC04OTk5LTkwNjI5YWFmOTZkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCcmTANBgkqhkiG9w0BAQsFAAOCAQEAd+E/88Cub8YmYAe9jN1/OPcGpXaZ pq9TQLxSmg3Z9u7C+Au4RcFn4fW6iVU+S2Rp7XCIrjlAsIAiBnosZUmQQ+5FIyaB Jww1z/gdxgBqU+I4yzsx3DoXIAO7ZTGYbkqn0ffS1mCAW0OPwYLpdmbwjtyxlpeq MQIAsVON7glC4DyaIWQLQ79RwjFBN6rqf82B17lmFM1HcB7yxVGC90JwElmIkEcX kQdOOhj3z5zE3lEDFgD7Fv+ySGTjg3zESnyZJb6xvOLgKrF9RxCZP18KSq7ww6IN nJu9PnIyonva8IHhbm37qRwkYTtxL8t6lRznyWceN9m97rEFm9HGkUFc5Q== -----END CERTIFICATE-----Generated at Sat Sep 6 14:13:55 2025 by rpki-client