$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ae9d595-e46f-4b50-99d6-0707f0dd0ff0.roa File: 9ae9d595-e46f-4b50-99d6-0707f0dd0ff0.roa (raw, json) Hash identifier: ssaXy2ucec2fC9PawtEh3FsIJz2kEXJHNddZAtFv/5k= Subject key identifier: B4:79:11:8B:69:6A:4E:BC:80:33:E7:28:53:D6:21:D4:97:80:5C:68 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 224B7C63514459DA1AD16929822FD74A610C0904 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ae9d595-e46f-4b50-99d6-0707f0dd0ff0.roa Signing time: Mon 01 Sep 2025 15:12:08 +0000 ROA not before: Mon 01 Sep 2025 15:12:08 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 149.186.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:4b:7c:63:51:44:59:da:1a:d1:69:29:82:2f:d7:4a:61:0c:09:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:12:08 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=b700a4b9d56feff42c848a133f58c8249886ee47f8e6f02e9494413f3ed05aea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:2f:e6:5f:36:03:8f:c1:d0:4d:92:37:54:ad: 3e:b0:cf:0b:d1:cb:79:9b:21:ec:92:4a:ad:85:38: 9c:3c:d9:3a:86:dc:7c:20:5f:bf:8a:9f:57:bf:47: 7c:03:17:c6:d7:29:f4:da:6e:03:6a:30:26:00:e7: 7b:61:6e:a8:19:a7:8b:7c:53:c5:7b:fd:6a:8e:a9: 5e:24:22:37:77:db:8a:fb:ce:51:cc:7b:ea:c5:f6: 7d:29:f6:02:0b:11:49:c0:bd:eb:0b:0c:ef:04:e1: 44:e0:44:24:8f:b6:7d:b3:73:90:3d:22:27:de:ac: cf:2e:5b:6a:63:d9:05:89:68:97:ac:a9:7c:c1:11: 0b:2c:da:cc:cb:fc:70:8f:78:49:f9:32:e7:8f:01: 18:c9:dc:d2:db:d9:a1:a9:e9:d0:65:94:aa:83:76: 20:7c:82:ce:8f:4f:51:5e:5e:00:d3:5b:53:39:35: b4:81:c6:b9:1e:e8:cb:12:8b:89:b5:e1:84:b1:4f: ba:da:be:a9:0f:a0:21:f2:8d:4e:20:cc:4d:c7:4f: eb:01:db:34:b3:78:fd:08:ca:f9:ba:e4:18:51:14: 49:54:9d:d3:a2:90:23:bb:e4:7b:91:f3:3c:83:8b: 81:1f:f5:d0:1e:84:ae:0d:66:55:a7:ad:66:24:fa: 0e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:79:11:8B:69:6A:4E:BC:80:33:E7:28:53:D6:21:D4:97:80:5C:68 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ae9d595-e46f-4b50-99d6-0707f0dd0ff0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.186.0.0/16 Signature Algorithm: sha256WithRSAEncryption 91:10:65:9d:ad:77:dd:51:c7:a1:2f:cb:51:35:0a:e6:50:36: ce:70:73:a3:20:b3:51:c7:16:ef:18:09:fd:6c:68:d5:33:50: cb:de:18:a4:f1:e4:34:94:fd:f7:18:f3:80:7b:3e:18:40:8c: 14:c1:22:e8:7c:36:1a:f6:99:02:fd:91:3c:fa:d7:4b:2f:52: 9a:da:43:55:7b:35:3f:b0:92:bf:7a:ca:25:08:40:ff:2a:5c: 1b:3f:4b:fa:1e:00:e5:a4:ba:06:80:e4:a6:e1:da:37:a9:f1: a9:bf:e2:bc:21:36:0d:00:cf:df:8c:a6:6e:8d:84:12:52:aa: 4f:0e:7b:28:94:5b:48:05:ca:0a:36:7f:06:a8:1a:3a:9b:f4: 86:5c:a9:b6:18:be:68:3a:66:ab:e5:51:f2:29:7b:8c:b6:1d: d4:89:32:26:dc:9b:ec:10:04:3c:4b:c6:84:2e:a9:2d:47:a1: 90:2a:62:b1:23:c4:1d:da:16:82:b1:4e:24:4a:7b:9c:2a:f9: 7f:20:22:88:d1:5d:10:ce:5c:2a:4f:b5:be:7d:06:44:e4:74: 6a:e4:14:18:92:c2:04:62:f4:7a:58:88:7b:a3:c9:69:ef:28: 22:23:4d:8e:0b:33:28:1b:7f:c6:e9:1d:2e:35:70:73:f1:87: 95:53:02:3b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIkt8Y1FEWdoa0Wkpgi/XSmEMCQQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTUxMjA4WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzAwYTRiOWQ1NmZlZmY0MmM4NDhhMTMzZjU4YzgyNDk4 ODZlZTQ3ZjhlNmYwMmU5NDk0NDEzZjNlZDA1YWVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkL+ZfNgOPwdBNkjdUrT6wzwvRy3mbIeySSq2FOJw82TqG 3HwgX7+Kn1e/R3wDF8bXKfTabgNqMCYA53thbqgZp4t8U8V7/WqOqV4kIjd324r7 zlHMe+rF9n0p9gILEUnAvesLDO8E4UTgRCSPtn2zc5A9IiferM8uW2pj2QWJaJes qXzBEQss2szL/HCPeEn5MuePARjJ3NLb2aGp6dBllKqDdiB8gs6PT1FeXgDTW1M5 NbSBxrke6MsSi4m14YSxT7ravqkPoCHyjU4gzE3HT+sB2zSzeP0Iyvm65BhRFElU ndOikCO75HuR8zyDi4Ef9dAehK4NZlWnrWYk+g51AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtHkRi2lqTryAM+coU9Yh1JeAXGgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhZTlkNTk1LWU0NmYtNGI1MC05OWQ2LTA3MDdmMGRkMGZmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCVujANBgkqhkiG9w0BAQsFAAOCAQEAkRBlna133VHHoS/LUTUK5lA2znBz oyCzUccW7xgJ/Wxo1TNQy94YpPHkNJT99xjzgHs+GECMFMEi6Hw2GvaZAv2RPPrX Sy9SmtpDVXs1P7CSv3rKJQhA/ypcGz9L+h4A5aS6BoDkpuHaN6nxqb/ivCE2DQDP 34ymbo2EElKqTw57KJRbSAXKCjZ/BqgaOpv0hlypthi+aDpmq+VR8il7jLYd1Iky Jtyb7BAEPEvGhC6pLUehkCpisSPEHdoWgrFOJEp7nCr5fyAiiNFdEM5cKk+1vn0G ROR0auQUGJLCBGL0eliIe6PJae8oIiNNjgszKBt/xukdLjVwc/GHlVMCOw== -----END CERTIFICATE-----Generated at Thu Sep 18 09:46:50 2025 by rpki-client