$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a015cff7-ca3c-4365-801a-e2038c714d7f.roa File: a015cff7-ca3c-4365-801a-e2038c714d7f.roa (raw, json) Hash identifier: +bzcV1EBOtAJfks4Hzhepc3MZaab43M0tk2tD8GxIXg= Subject key identifier: EA:1F:73:F3:10:33:47:42:BD:79:B0:57:B2:A2:D4:2C:C0:A8:F3:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 631F3B0949D34B99219A540FFE12007A53245B1C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a015cff7-ca3c-4365-801a-e2038c714d7f.roa Signing time: Sat 30 Aug 2025 00:42:12 +0000 ROA not before: Sat 30 Aug 2025 00:42:12 +0000 ROA not after: Sat 04 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.240.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:1f:3b:09:49:d3:4b:99:21:9a:54:0f:fe:12:00:7a:53:24:5b:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 30 00:42:12 2025 GMT Not After : Oct 4 23:59:59 2025 GMT Subject: serialNumber=5c0aebbcde97998096f505f4db877739ae95fd320fbcaa9aea938e4e5072a5dc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:7c:96:35:2a:9d:55:73:56:df:2d:b0:8b:90: cf:1f:fc:a2:51:70:7a:45:02:a5:d3:01:78:41:8a: 03:30:d2:d6:60:ff:4b:0b:fb:0c:a7:8a:f1:0c:ce: 1e:a4:23:94:e9:9f:df:99:1a:4d:97:27:e0:b6:d4: 0f:16:17:a4:d3:bf:a0:2c:01:20:69:fe:08:fd:56: da:eb:27:5b:a6:34:f9:43:1d:a8:c0:0b:f0:9f:8c: 5f:f1:50:3d:7a:c7:bb:f2:f2:b4:51:06:ac:35:5f: f9:71:d6:d3:ba:7a:42:02:4e:3b:a4:b7:2f:bb:88: 39:ea:73:68:ec:23:41:c7:40:e5:07:c6:6b:c1:8f: a1:42:e8:dd:5f:ef:8d:60:49:f9:e6:fc:71:d1:ef: bb:c6:9b:8e:ca:8f:2c:22:cf:b9:01:cf:61:0b:b1: 87:a5:2b:1c:1a:33:25:e2:72:42:2e:35:a1:a0:ac: 67:5a:9b:27:fa:58:cb:04:82:6e:c5:a2:1c:eb:43: 7a:a7:7c:26:83:85:4e:bb:43:92:93:42:11:22:7b: ba:bc:95:f4:51:50:90:c9:bd:04:67:e9:d0:26:8d: a9:80:36:87:0c:c6:19:8a:5e:50:d3:d3:3d:36:d1: 58:d1:82:9a:43:84:9c:c0:ac:1a:85:1b:65:53:72: fb:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:1F:73:F3:10:33:47:42:BD:79:B0:57:B2:A2:D4:2C:C0:A8:F3:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a015cff7-ca3c-4365-801a-e2038c714d7f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.240.0/23 Signature Algorithm: sha256WithRSAEncryption 42:59:b2:8d:d7:74:8a:1e:4f:01:a3:e5:1d:4d:b5:a1:58:12: af:cd:5c:36:96:af:50:b6:3f:c0:08:54:b4:5e:bc:93:7b:e5: 41:b3:76:c3:4d:4b:44:01:d5:18:dd:8a:ce:40:d6:54:0c:27: a4:b3:c9:30:fd:a8:7f:12:81:56:38:48:bb:1d:19:5a:aa:18: a0:b6:aa:0f:f0:68:da:8f:e5:7c:cc:6e:ce:7d:5d:c7:91:17: 96:10:ef:11:91:e2:29:66:f0:e1:7b:37:f3:70:b7:f8:7b:24: 3a:d9:74:94:77:f5:f6:17:65:43:68:3b:f6:97:23:e2:db:1b: 9c:58:f2:55:39:e6:66:88:1d:31:79:de:ef:5c:7d:f4:e0:0d: 55:9f:cd:89:e3:87:e9:70:f9:77:61:8c:db:8d:88:2b:21:db: cc:42:12:ae:4a:5b:1b:5a:76:f8:db:ef:fe:b9:92:55:67:02: 90:cf:6c:14:88:05:6c:1a:8d:7f:d0:30:12:c8:b6:fb:a2:a8: 2a:cb:97:f6:11:9d:5d:fa:04:88:e5:c7:c6:16:f7:23:55:44: 9d:2d:e4:15:76:a1:65:69:e1:a0:6c:a9:39:38:5c:03:6f:b1: 8d:d2:59:49:6f:bd:43:e0:16:a7:29:2c:0d:d0:96:9d:30:17: 2c:22:35:f2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYx87CUnTS5khmlQP/hIAelMkWxwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODMwMDA0MjEyWhcNMjUxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzBhZWJiY2RlOTc5OTgwOTZmNTA1ZjRkYjg3NzczOWFl OTVmZDMyMGZiY2FhOWFlYTkzOGU0ZTUwNzJhNWRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSfJY1Kp1Vc1bfLbCLkM8f/KJRcHpFAqXTAXhBigMw0tZg /0sL+wynivEMzh6kI5Tpn9+ZGk2XJ+C21A8WF6TTv6AsASBp/gj9VtrrJ1umNPlD HajAC/CfjF/xUD16x7vy8rRRBqw1X/lx1tO6ekICTjukty+7iDnqc2jsI0HHQOUH xmvBj6FC6N1f741gSfnm/HHR77vGm47Kjywiz7kBz2ELsYelKxwaMyXickIuNaGg rGdamyf6WMsEgm7FohzrQ3qnfCaDhU67Q5KTQhEie7q8lfRRUJDJvQRn6dAmjamA NocMxhmKXlDT0z020VjRgppDhJzArBqFG2VTcvuTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6h9z8xAzR0K9ebBXsqLULMCo81AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EwMTVjZmY3LWNhM2MtNDM2NS04MDFhLWUyMDM4YzcxNGQ3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFAPAwDQYJKoZIhvcNAQELBQADggEBAEJZso3XdIoeTwGj5R1NtaFYEq/N XDaWr1C2P8AIVLRevJN75UGzdsNNS0QB1Rjdis5A1lQMJ6SzyTD9qH8SgVY4SLsd GVqqGKC2qg/waNqP5XzMbs59XceRF5YQ7xGR4ilm8OF7N/Nwt/h7JDrZdJR39fYX ZUNoO/aXI+LbG5xY8lU55maIHTF53u9cffTgDVWfzYnjh+lw+XdhjNuNiCsh28xC Eq5KWxtadvjb7/65klVnApDPbBSIBWwajX/QMBLItvuiqCrLl/YRnV36BIjlx8YW 9yNVRJ0t5BV2oWVp4aBsqTk4XANvsY3SWUlvvUPgFqcpLA3Qlp0wFywiNfI= -----END CERTIFICATE-----Generated at Sat Sep 6 14:12:02 2025 by rpki-client