$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97550499-0e7a-4867-b51a-91bf9f8b7a9a.roa File: 97550499-0e7a-4867-b51a-91bf9f8b7a9a.roa (raw, json) Hash identifier: /WO+xIrZk61kCNWLA6Gtcl3+qO4R2djskE/2Ng9+4CY= Subject key identifier: E2:93:66:B4:36:D4:73:6A:6A:19:1A:A5:E8:DA:6D:F7:AA:E9:F5:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4DAB95403346C4566BD8A237FBB37AE8394BE559 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97550499-0e7a-4867-b51a-91bf9f8b7a9a.roa Signing time: Mon 01 Sep 2025 15:00:24 +0000 ROA not before: Mon 01 Sep 2025 15:00:24 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 108.156.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:ab:95:40:33:46:c4:56:6b:d8:a2:37:fb:b3:7a:e8:39:4b:e5:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:00:24 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=9ee1a9a7027cd23a7e996febd9e412ea08083a57150d815c7c19e1e901ecde88, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7c:7e:08:be:5f:af:e0:09:ea:46:f8:cf:a7: 8b:1a:6c:d8:5b:1a:db:b2:3b:7a:10:c9:bd:bc:32: a7:e0:d2:32:72:7a:b7:ac:e4:01:9c:f6:9f:d6:0e: 87:a6:bf:20:08:5d:80:8b:c2:fa:78:14:22:24:e0: e5:cf:c5:c1:ff:6b:c2:1d:7f:08:79:4c:86:15:4f: 1a:8b:9d:5a:dd:46:59:a6:82:98:f5:bf:9e:cb:2d: f6:c4:87:b7:17:cd:19:0b:75:dd:31:0d:dd:2b:78: c3:e2:78:a5:2e:b7:aa:9c:41:eb:00:fd:86:f6:59: 0d:05:8e:61:0d:ff:f2:05:e5:df:51:73:58:a6:46: 3d:7c:0f:02:d8:87:1f:b7:9c:c9:99:d7:52:70:e0: dc:1d:58:aa:6e:c1:f8:df:4e:a7:d4:e7:4c:ab:2f: 26:21:33:2d:4b:c0:e0:04:ce:8c:cf:36:4d:5f:b6: 07:ee:9a:ef:28:5b:91:86:a1:3c:50:69:a8:45:fd: 52:a0:51:99:27:ef:63:93:07:41:4b:ef:0b:52:4e: f3:a3:8a:28:bb:9b:e1:99:9b:41:24:9d:9b:cb:d6: 9e:a8:34:fc:18:60:b5:12:7f:e7:e3:5f:7f:be:54: 09:d0:be:37:81:fc:82:a6:0c:cd:59:f0:fa:1f:a2: 8e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:93:66:B4:36:D4:73:6A:6A:19:1A:A5:E8:DA:6D:F7:AA:E9:F5:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97550499-0e7a-4867-b51a-91bf9f8b7a9a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.156.0.0/14 Signature Algorithm: sha256WithRSAEncryption 40:c3:a1:c8:8c:0f:ee:91:66:35:d9:f8:bd:cc:84:13:f4:35: cf:cb:63:82:ce:bf:da:23:ca:00:6a:98:43:e6:a9:0b:06:29: 6d:15:f9:13:4f:a3:a3:44:b6:1a:c4:9e:42:c4:05:fb:64:66: a6:7f:2e:b2:db:ca:6f:f1:34:e6:70:e7:7f:30:52:e1:64:a3: 41:18:a1:17:37:29:8d:58:02:fe:9f:fe:b2:1e:c5:96:30:02: 3a:62:dc:8d:76:72:60:df:1a:37:0c:0f:6f:28:b6:8e:7f:12: 9e:75:7d:60:22:4c:9f:86:2d:a2:46:ad:04:69:8e:b4:7f:ce: 53:23:8a:e4:ab:c4:9f:74:f2:15:f2:56:2e:00:79:ee:46:09: 4a:aa:13:5f:3f:49:03:54:2e:71:7c:0c:8d:4e:9c:31:bb:1f: a9:a2:8b:fa:db:e8:27:98:e6:79:a6:c0:7d:bc:25:67:af:94: 5b:8e:83:8f:3e:5d:0c:29:9a:c5:27:3b:f9:17:1e:b6:65:7f: 32:e7:33:c9:86:3a:e6:1f:4f:8b:b1:62:1b:e1:15:9f:17:fa: 54:96:a3:c8:22:f4:db:9c:62:03:5d:c0:65:a7:06:1d:32:f0: 48:94:2d:66:c5:e7:ba:12:28:90:a3:1c:7e:50:9d:a5:b0:57: 45:86:48:0f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTauVQDNGxFZr2KI3+7N66DlL5VkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTUwMDI0WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZWUxYTlhNzAyN2NkMjNhN2U5OTZmZWJkOWU0MTJlYTA4 MDgzYTU3MTUwZDgxNWM3YzE5ZTFlOTAxZWNkZTg4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyfH4Ivl+v4AnqRvjPp4sabNhbGtuyO3oQyb28Mqfg0jJy eres5AGc9p/WDoemvyAIXYCLwvp4FCIk4OXPxcH/a8Idfwh5TIYVTxqLnVrdRlmm gpj1v57LLfbEh7cXzRkLdd0xDd0reMPieKUut6qcQesA/Yb2WQ0FjmEN//IF5d9R c1imRj18DwLYhx+3nMmZ11Jw4NwdWKpuwfjfTqfU50yrLyYhMy1LwOAEzozPNk1f tgfumu8oW5GGoTxQaahF/VKgUZkn72OTB0FL7wtSTvOjiii7m+GZm0EknZvL1p6o NPwYYLUSf+fjX3++VAnQvjeB/IKmDM1Z8Pofoo7xAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU4pNmtDbUc2pqGRql6Npt96rp9cwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk3NTUwNDk5LTBlN2EtNDg2Ny1iNTFhLTkxYmY5ZjhiN2E5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJsnDANBgkqhkiG9w0BAQsFAAOCAQEAQMOhyIwP7pFmNdn4vcyEE/Q1z8tj gs6/2iPKAGqYQ+apCwYpbRX5E0+jo0S2GsSeQsQF+2Rmpn8ustvKb/E05nDnfzBS 4WSjQRihFzcpjVgC/p/+sh7FljACOmLcjXZyYN8aNwwPbyi2jn8SnnV9YCJMn4Yt okatBGmOtH/OUyOK5KvEn3TyFfJWLgB57kYJSqoTXz9JA1QucXwMjU6cMbsfqaKL +tvoJ5jmeabAfbwlZ6+UW46Djz5dDCmaxSc7+RcetmV/MuczyYY65h9Pi7FiG+EV nxf6VJajyCL025xiA13AZacGHTLwSJQtZsXnuhIokKMcflCdpbBXRYZIDw== -----END CERTIFICATE-----Generated at Sat Sep 6 16:40:05 2025 by rpki-client