$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a3a05cb-960b-4688-8311-ee8f2b959d5c.roa File: 9a3a05cb-960b-4688-8311-ee8f2b959d5c.roa (raw, json) Hash identifier: rD9jC7c1QUCIcF8h8ShRqFJbIPhJvTP3b5ibAxEF8vo= Subject key identifier: FD:4B:16:13:5E:48:C3:90:7C:69:B8:AA:E1:22:86:A1:F3:61:58:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 402640B76B680E70C75FC101453873359F7B1B9C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a3a05cb-960b-4688-8311-ee8f2b959d5c.roa Signing time: Sat 06 Sep 2025 00:41:05 +0000 ROA not before: Sat 06 Sep 2025 00:41:05 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 66.165.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:26:40:b7:6b:68:0e:70:c7:5f:c1:01:45:38:73:35:9f:7b:1b:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:41:05 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=dabff5b4687781574f91f98f63f79c3df723a3c5a405d87320a7f094df8e5d18, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ce:f8:06:2e:0d:c5:45:fa:0b:7d:7e:d3:c0: 02:08:e3:41:eb:b5:dd:03:69:bf:65:ec:8a:fa:fe: 78:1d:67:a6:6d:99:08:11:1a:85:09:9b:44:bf:de: 6a:ae:2c:ef:b5:2a:7b:e9:d8:43:55:86:5b:93:93: ed:d0:e6:48:e1:bc:90:d9:85:f7:f0:72:51:fa:a2: 6d:70:17:94:51:ec:0c:fd:53:c5:bd:f8:00:1d:0c: 2e:35:4c:90:a2:de:d2:46:16:39:78:82:30:06:85: 25:10:b8:b9:11:1a:61:79:9b:23:92:51:f6:1a:22: 79:79:b3:03:dc:c9:67:1b:78:18:69:72:03:36:eb: 2b:21:2d:b0:e6:e9:16:d2:f7:58:6f:29:ce:e7:00: a2:e5:3a:ee:a1:bb:64:a4:1b:6e:3e:be:2e:77:cd: da:6d:27:3c:95:f6:83:40:4b:6d:90:01:34:e9:ba: f7:95:c2:75:15:39:f8:8a:8e:0d:dc:d5:06:9d:f4: 3c:1a:2a:f1:ff:1c:43:1f:c2:30:23:d5:b3:a0:26: 9c:dc:86:8b:c6:ce:13:9d:1a:eb:c4:d8:66:4c:45: 71:cb:c6:fb:f0:07:78:3e:dc:0c:53:3d:7f:f6:ea: fe:e0:d5:19:e6:af:c7:5e:46:40:25:ae:52:4a:14: 68:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:4B:16:13:5E:48:C3:90:7C:69:B8:AA:E1:22:86:A1:F3:61:58:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a3a05cb-960b-4688-8311-ee8f2b959d5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.165.64.0/18 Signature Algorithm: sha256WithRSAEncryption bf:41:66:26:23:4a:bd:cd:78:c6:35:9c:a7:e4:c3:4e:20:29: 74:70:28:2d:2f:cb:b8:14:2c:8b:8f:60:9e:71:7e:72:49:6f: 24:52:05:ee:94:1e:25:67:9c:6b:4a:60:76:c2:ca:eb:c6:0d: b3:79:00:10:76:58:60:29:f0:93:5e:29:fa:07:d8:47:b2:03: 4a:c6:8f:52:b0:12:44:4d:36:d7:58:91:cd:aa:e1:5d:9f:7e: ef:58:71:ad:70:41:f8:63:59:27:6d:e1:d8:0a:0b:b8:7d:d3: 41:ff:ff:54:71:c1:24:27:80:4f:13:a7:55:aa:dd:46:9d:af: b3:a0:db:21:28:db:70:2a:4d:ed:80:ed:e7:38:da:13:69:c0: dd:59:11:b7:7c:da:94:0b:f8:3a:ee:86:08:2a:2b:85:74:4a: ad:8e:e0:9e:84:0e:c5:b2:ac:f2:ad:61:62:93:08:57:9a:b2: 29:27:53:a9:a6:23:79:32:1f:24:6e:3a:67:4b:19:84:2d:14: 01:cf:69:27:9b:5e:2c:b3:4a:34:7d:c1:c4:5c:f5:f6:08:f5: a7:d3:cc:02:1f:44:5e:a7:84:69:7b:af:99:48:9f:36:29:2b: b2:b3:00:7e:ab:c4:27:a7:5b:3d:1b:e3:53:23:92:4d:49:75: db:c6:64:fa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQCZAt2toDnDHX8EBRThzNZ97G5wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDA0MTA1WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYWJmZjViNDY4Nzc4MTU3NGY5MWY5OGY2M2Y3OWMzZGY3 MjNhM2M1YTQwNWQ4NzMyMGE3ZjA5NGRmOGU1ZDE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdzvgGLg3FRfoLfX7TwAII40Hrtd0Dab9l7Ir6/ngdZ6Zt mQgRGoUJm0S/3mquLO+1Knvp2ENVhluTk+3Q5kjhvJDZhffwclH6om1wF5RR7Az9 U8W9+AAdDC41TJCi3tJGFjl4gjAGhSUQuLkRGmF5myOSUfYaInl5swPcyWcbeBhp cgM26yshLbDm6RbS91hvKc7nAKLlOu6hu2SkG24+vi53zdptJzyV9oNAS22QATTp uveVwnUVOfiKjg3c1Qad9DwaKvH/HEMfwjAj1bOgJpzchovGzhOdGuvE2GZMRXHL xvvwB3g+3AxTPX/26v7g1Rnmr8deRkAlrlJKFGgNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/UsWE15Iw5B8abiq4SKGofNhWH8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhM2EwNWNiLTk2MGItNDY4OC04MzExLWVlOGYyYjk1OWQ1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZCpUAwDQYJKoZIhvcNAQELBQADggEBAL9BZiYjSr3NeMY1nKfkw04gKXRw KC0vy7gULIuPYJ5xfnJJbyRSBe6UHiVnnGtKYHbCyuvGDbN5ABB2WGAp8JNeKfoH 2EeyA0rGj1KwEkRNNtdYkc2q4V2ffu9Yca1wQfhjWSdt4dgKC7h900H//1RxwSQn gE8Tp1Wq3Uadr7Og2yEo23AqTe2A7ec42hNpwN1ZEbd82pQL+DruhggqK4V0Sq2O 4J6EDsWyrPKtYWKTCFeasiknU6mmI3kyHyRuOmdLGYQtFAHPaSebXiyzSjR9wcRc 9fYI9afTzAIfRF6nhGl7r5lInzYpK7KzAH6rxCenWz0b41Mjkk1JddvGZPo= -----END CERTIFICATE-----Generated at Fri Sep 19 08:31:40 2025 by rpki-client