$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/991a7270-70c3-4177-b80a-03d48b249d96.roa File: 991a7270-70c3-4177-b80a-03d48b249d96.roa (raw, json) Hash identifier: Gi9VB+8uLn7vRWhk+TwfWvGptZu7AKxd1RMAWZ5F684= Subject key identifier: 09:F7:AD:90:12:AE:1C:80:5F:C9:42:43:C5:5E:DE:D5:8E:6D:05:6F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1E855EA919F24D98D950F74D800DC9503487072E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/991a7270-70c3-4177-b80a-03d48b249d96.roa Signing time: Wed 10 Sep 2025 00:11:02 +0000 ROA not before: Wed 10 Sep 2025 00:11:02 +0000 ROA not after: Wed 15 Oct 2025 23:59:59 +0000 asID: 6167 IP address blocks: 139.56.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:85:5e:a9:19:f2:4d:98:d9:50:f7:4d:80:0d:c9:50:34:87:07:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 10 00:11:02 2025 GMT Not After : Oct 15 23:59:59 2025 GMT Subject: serialNumber=5774a568660143cd98114985dc90c6c9cec5877260894c7e99622f37e9a90d25, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:4b:2c:b3:cf:f8:87:fd:3e:f6:34:c8:0c:95: f2:f3:e5:96:f8:2b:7e:54:ad:12:5b:df:86:7a:f9: 5f:61:db:88:8b:97:e5:c9:f4:c1:28:fc:e7:e0:1b: 36:0a:0a:a1:fe:eb:41:77:38:1e:2b:f3:b5:0e:60: 3e:f2:24:df:06:c4:70:d6:35:7a:a5:27:1a:eb:0f: 63:b5:5c:f2:80:3a:98:89:45:e6:67:3b:5b:52:ee: fc:34:1d:2e:e8:e0:19:16:6a:52:a3:bf:a5:a5:72: 5a:47:af:c9:a4:7c:eb:10:1a:a3:04:ce:a4:20:ab: e9:6b:58:f9:e5:22:f9:a4:e6:ae:78:bf:f4:64:49: 02:2f:80:9b:a4:cf:f3:9c:67:d2:7d:e2:1e:0b:3b: ca:e0:a7:b0:7b:b5:95:9d:3e:5e:68:73:38:db:ba: bf:cc:df:09:3f:bc:a0:c6:22:a8:20:2a:c1:ed:c1: 79:ae:cb:29:71:14:ce:d2:6a:13:99:3c:34:5b:fc: aa:0d:47:ed:d7:b7:d2:e2:e2:3c:29:3f:dd:44:e7: 6f:5e:83:15:03:9d:01:2e:28:c5:61:6d:05:aa:6c: 20:04:d7:5c:6a:38:f4:f0:2e:20:9b:30:01:c6:72: d9:54:18:80:14:1d:9c:8a:b9:ae:60:1b:13:7f:58: ed:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:F7:AD:90:12:AE:1C:80:5F:C9:42:43:C5:5E:DE:D5:8E:6D:05:6F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/991a7270-70c3-4177-b80a-03d48b249d96.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.56.0.0/16 Signature Algorithm: sha256WithRSAEncryption 51:bd:c4:b3:78:03:74:13:b8:ac:f7:c5:5a:63:e5:db:69:5e: 0f:fc:73:60:bd:b5:05:94:fe:30:6c:5b:b0:87:0e:21:b4:63: 06:7f:55:3e:44:e6:e7:1d:85:a7:cc:a0:de:98:85:a5:4a:f9: b4:23:c2:3d:c0:7d:3f:4a:d6:45:4b:d7:f6:b6:f1:c0:63:5f: 1b:8f:a7:8e:15:a5:ee:74:c0:74:49:dd:fd:99:83:95:ec:0f: fd:b7:83:ea:27:4a:4a:a5:bc:ef:ac:9b:bb:3b:49:ac:cb:2a: 1e:04:12:8b:36:d2:09:e6:3c:67:34:d6:05:7e:a7:58:5d:f1: 4e:5e:3d:ee:7e:51:5a:d3:de:57:9c:47:b3:eb:99:ad:fe:19: 60:cf:18:af:6a:88:1d:92:80:58:54:8e:06:c8:f5:3f:3a:49: d7:d3:4e:ef:1f:e8:7d:b7:51:70:ae:93:25:21:13:8a:c3:34: 4f:82:67:f7:34:98:ad:96:3a:51:97:83:aa:59:55:fe:bd:80: 13:d7:c9:09:e2:e2:c1:a7:e9:12:40:44:27:be:9a:24:3e:1e: b0:5b:c5:60:60:4c:1e:39:c8:e9:ba:b7:2a:09:8e:ae:60:77: 38:e1:8d:f2:01:91:e5:66:c9:d2:6f:d7:31:7c:1a:fb:95:41: 84:97:0d:e9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHoVeqRnyTZjZUPdNgA3JUDSHBy4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTEwMDAxMTAyWhcNMjUxMDE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1Nzc0YTU2ODY2MDE0M2NkOTgxMTQ5ODVkYzkwYzZjOWNl YzU4NzcyNjA4OTRjN2U5OTYyMmYzN2U5YTkwZDI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZSyyzz/iH/T72NMgMlfLz5Zb4K35UrRJb34Z6+V9h24iL l+XJ9MEo/OfgGzYKCqH+60F3OB4r87UOYD7yJN8GxHDWNXqlJxrrD2O1XPKAOpiJ ReZnO1tS7vw0HS7o4BkWalKjv6WlclpHr8mkfOsQGqMEzqQgq+lrWPnlIvmk5q54 v/RkSQIvgJukz/OcZ9J94h4LO8rgp7B7tZWdPl5oczjbur/M3wk/vKDGIqggKsHt wXmuyylxFM7SahOZPDRb/KoNR+3Xt9Li4jwpP91E529egxUDnQEuKMVhbQWqbCAE 11xqOPTwLiCbMAHGctlUGIAUHZyKua5gGxN/WO1PAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUCfetkBKuHIBfyUJDxV7e1Y5tBW8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5MWE3MjcwLTcwYzMtNDE3Ny1iODBhLTAzZDQ4YjI0OWQ5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCLODANBgkqhkiG9w0BAQsFAAOCAQEAUb3Es3gDdBO4rPfFWmPl22leD/xz YL21BZT+MGxbsIcOIbRjBn9VPkTm5x2Fp8yg3piFpUr5tCPCPcB9P0rWRUvX9rbx wGNfG4+njhWl7nTAdEnd/ZmDlewP/beD6idKSqW876ybuztJrMsqHgQSizbSCeY8 ZzTWBX6nWF3xTl497n5RWtPeV5xHs+uZrf4ZYM8Yr2qIHZKAWFSOBsj1PzpJ19NO 7x/ofbdRcK6TJSETisM0T4Jn9zSYrZY6UZeDqllV/r2AE9fJCeLiwafpEkBEJ76a JD4esFvFYGBMHjnI6bq3KgmOrmB3OOGN8gGR5WbJ0m/XMXwa+5VBhJcN6Q== -----END CERTIFICATE-----Generated at Wed Sep 17 18:02:20 2025 by rpki-client