$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d396b64-31a7-4efc-9fc2-bd8f5539e50d.roa File: 9d396b64-31a7-4efc-9fc2-bd8f5539e50d.roa (raw, json) Hash identifier: 3b4p4frugLVGsEvUtS6VsJUzMtunODma0Rp4eUF2h04= Subject key identifier: 2F:B9:57:F2:8C:10:10:85:17:A5:1D:08:0E:00:2B:53:42:67:8F:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: A2F290E7081B89642DA363919508FFC9BC825B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d396b64-31a7-4efc-9fc2-bd8f5539e50d.roa Signing time: Mon 01 Sep 2025 15:20:24 +0000 ROA not before: Mon 01 Sep 2025 15:20:24 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 202.5.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: a2:f2:90:e7:08:1b:89:64:2d:a3:63:91:95:08:ff:c9:bc:82:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:20:24 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=34d39eabc6afc375ccb710af28d04c17e6123d36b06970ea97c3e97dfbe262bf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ac:f3:76:34:4e:10:2b:15:89:f8:ad:31:4d: 6d:cd:19:ea:be:7b:38:0f:76:b5:7a:87:d0:b1:8f: 54:cf:52:8f:2c:6a:42:b3:a7:29:af:8f:d2:d5:5c: 46:64:30:53:f2:85:bf:20:71:5b:d4:8b:88:77:b5: 12:4b:91:fd:47:80:c8:7c:98:95:2f:e3:5c:4b:57: ac:40:3f:bd:66:bc:c3:3f:30:88:ac:eb:39:d2:32: 6d:bb:bc:fb:bf:29:bd:f9:54:38:58:c3:c9:d2:fa: ba:4b:ef:aa:29:d3:38:22:4c:b3:0f:b9:90:b2:d4: 2d:17:79:e5:a5:ee:cd:90:68:4e:11:e0:fa:95:51: 0e:19:ae:d2:8a:7b:d1:ac:f5:19:9f:b1:b3:63:00: d2:15:53:e8:4a:f2:b1:03:26:b7:b3:65:af:43:72: 29:0e:a5:e7:b8:5a:89:af:a7:4f:8d:59:72:d5:46: 4b:f3:4b:c4:c8:5e:90:92:22:4e:20:47:54:f9:90: c0:78:b8:06:07:0d:54:e1:e7:54:ef:60:a3:72:e4: 80:b0:05:93:4e:f8:18:88:0a:18:bf:e4:ff:e4:95: 0a:4a:18:cc:f3:c4:f1:d6:48:9f:f4:c1:ca:cc:9c: 5e:d5:08:bc:b7:ce:51:c6:9e:b0:03:bb:91:78:4c: e8:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:B9:57:F2:8C:10:10:85:17:A5:1D:08:0E:00:2B:53:42:67:8F:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d396b64-31a7-4efc-9fc2-bd8f5539e50d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.5.180.0/22 Signature Algorithm: sha256WithRSAEncryption a0:df:35:10:45:99:b8:85:89:80:a5:bb:a6:f6:9a:ec:ab:4f: 11:e7:0f:3c:a5:c4:7c:3a:e3:55:79:52:de:55:42:f0:c0:42: a2:a5:7a:8e:5a:ae:7e:3a:19:8c:ea:d2:85:ba:ef:d6:1e:12: cc:4b:e6:8c:9d:7c:d5:74:1a:28:ab:10:94:04:2f:74:be:4e: 6e:17:30:eb:21:b6:96:31:1f:73:4f:c3:fd:29:da:18:f9:b9: df:38:0e:c5:84:67:d9:0d:b3:ef:e8:03:a4:04:37:1a:2b:f7: c6:51:83:ac:ca:da:f7:ce:1b:2a:b0:8e:47:cd:96:98:2a:c5: c0:a8:2b:7d:81:50:b6:47:25:d2:2e:84:b1:66:b9:95:23:60: b4:e5:e4:72:ff:3e:89:d0:db:29:52:c5:6e:c8:2e:ea:ca:5e: e7:8e:1b:9b:45:fe:76:99:bf:a2:03:9e:32:a9:b6:c9:15:dc: ed:28:75:c6:de:96:86:4a:a0:2e:7d:7c:cf:11:61:c5:fb:6c: b8:de:44:4a:e5:03:9d:f4:46:d4:95:bb:ca:cf:94:db:24:4b: bd:3f:d5:ec:99:1a:bf:2d:44:22:56:d1:d9:dd:13:26:46:15: 77:15:91:3c:e6:ba:7d:eb:5e:31:d6:44:2a:4f:5f:0b:81:0f: 60:fa:ad:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAKLykOcIG4lkLaNjkZUI/8m8glswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTUyMDI0WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNGQzOWVhYmM2YWZjMzc1Y2NiNzEwYWYyOGQwNGMxN2U2 MTIzZDM2YjA2OTcwZWE5N2MzZTk3ZGZiZTI2MmJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqrPN2NE4QKxWJ+K0xTW3NGeq+ezgPdrV6h9Cxj1TPUo8s akKzpymvj9LVXEZkMFPyhb8gcVvUi4h3tRJLkf1HgMh8mJUv41xLV6xAP71mvMM/ MIis6znSMm27vPu/Kb35VDhYw8nS+rpL76op0zgiTLMPuZCy1C0XeeWl7s2QaE4R 4PqVUQ4ZrtKKe9Gs9RmfsbNjANIVU+hK8rEDJrezZa9DcikOpee4Womvp0+NWXLV RkvzS8TIXpCSIk4gR1T5kMB4uAYHDVTh51TvYKNy5ICwBZNO+BiIChi/5P/klQpK GMzzxPHWSJ/0wcrMnF7VCLy3zlHGnrADu5F4TOjVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUL7lX8owQEIUXpR0IDgArU0JnjzswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkMzk2YjY0LTMxYTctNGVmYy05ZmMyLWJkOGY1NTM5ZTUwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALKBbQwDQYJKoZIhvcNAQELBQADggEBAKDfNRBFmbiFiYClu6b2muyrTxHn DzylxHw641V5Ut5VQvDAQqKleo5arn46GYzq0oW679YeEsxL5oydfNV0GiirEJQE L3S+Tm4XMOshtpYxH3NPw/0p2hj5ud84DsWEZ9kNs+/oA6QENxor98ZRg6zK2vfO GyqwjkfNlpgqxcCoK32BULZHJdIuhLFmuZUjYLTl5HL/PonQ2ylSxW7ILurKXueO G5tF/naZv6IDnjKptskV3O0odcbeloZKoC59fM8RYcX7bLjeRErlA530RtSVu8rP lNskS70/1eyZGr8tRCJW0dndEyZGFXcVkTzmun3rXjHWRCpPXwuBD2D6rdA= -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:33 2025 by rpki-client