$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa File: a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa (raw, json) Hash identifier: SWqirIW43pyp+6Is/wNI5+rDvJfJ8ENoBnpRf1SyETM= Subject key identifier: 93:E7:8D:AA:6E:AE:28:13:23:C0:D2:F0:F9:37:8A:74:41:AF:3B:56 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 18145331005274C776A427FF994657DEA2AC70E0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa Signing time: Mon 08 Sep 2025 15:11:01 +0000 ROA not before: Mon 08 Sep 2025 15:11:01 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:8188::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 17 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:14:53:31:00:52:74:c7:76:a4:27:ff:99:46:57:de:a2:ac:70:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 8 15:11:01 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=491a9d917352cb01b210a46fe3f6646ac04b6e3e4ea3da898ae96126e17b13d2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:5d:09:18:bd:58:f1:42:68:04:8a:7c:29:9d: 40:36:a5:8f:71:5a:cd:a5:6b:e9:5c:c8:4d:24:cf: ea:12:d9:9b:60:c5:a4:87:75:b9:9d:ff:86:cc:1d: 72:a9:10:4e:1e:2e:75:45:aa:63:1d:ba:f0:ad:d9: 55:91:da:41:d4:15:5f:ec:43:f4:8a:74:63:15:32: a7:d5:a1:86:d1:0b:bd:09:5d:a5:14:cf:44:cd:41: 22:4e:17:45:0a:92:91:ff:59:17:66:b1:5c:62:fd: c6:e8:67:6e:f9:4f:9b:75:a8:f2:69:e3:94:49:ed: 31:ef:fc:20:b6:5e:4f:19:e6:61:4c:64:8c:dc:ec: c9:24:95:8b:32:c9:28:86:35:d3:d3:e3:17:eb:78: bd:26:01:75:63:1d:25:26:17:25:00:34:f7:8e:35: 19:a4:f0:91:28:45:98:26:d1:79:b4:40:47:2e:96: ac:45:30:df:9c:18:6e:55:e3:6f:2b:19:04:4d:cc: 7e:cb:c4:6e:e6:08:3f:71:10:80:65:db:dc:ad:ea: 1d:2d:77:27:47:0f:f5:05:ca:54:1e:5c:f7:05:45: d5:b6:07:1f:c9:6d:c7:30:36:cd:f8:17:f4:3d:54: 6a:40:d0:5f:71:27:3c:d7:f7:22:44:ac:1a:30:e8: 46:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E7:8D:AA:6E:AE:28:13:23:C0:D2:F0:F9:37:8A:74:41:AF:3B:56 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8188::/48 Signature Algorithm: sha256WithRSAEncryption 72:ee:bf:65:5a:da:7e:5e:be:93:46:1b:e0:f3:d7:46:be:a4: 52:65:ca:33:6d:bd:0b:de:1b:57:95:b9:99:0d:97:08:fc:b2: 50:a6:43:db:6b:d2:20:b5:3d:f6:e7:6c:ad:f7:5b:94:5d:25: ce:63:98:da:08:47:44:ef:39:c8:91:d6:48:67:ec:a8:31:74: 3b:fc:47:2f:e9:04:c1:33:5e:ea:fd:e4:93:1b:47:b0:30:1a: cb:c2:f5:ac:93:32:6b:44:00:b6:33:ce:cd:3a:47:a5:40:7a: 48:3b:b2:b3:af:58:a6:63:e1:35:db:27:3e:1c:74:68:a3:ff: 75:4e:22:3e:17:48:2d:55:66:b3:b9:c4:22:d9:8a:56:a2:bc: ad:9c:97:0f:b2:7e:cd:49:23:1a:ca:41:29:f2:ed:32:13:8a: 2c:c0:af:07:ce:a3:28:65:39:11:87:e0:6f:54:1d:7f:8a:fd: bd:20:fc:56:bf:84:9a:82:72:ad:6c:87:12:a9:1b:c1:43:69: 47:eb:1f:91:e3:f8:8e:33:3a:f9:02:7a:24:5a:ce:7c:3b:fb: 87:cb:c3:09:81:b4:c2:c9:5e:ac:2d:e5:14:dc:58:bc:3f:b0: da:53:05:ba:f1:fa:30:dd:80:1e:85:5c:00:f4:ce:ba:eb:b6: 41:fd:56:ba -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGBRTMQBSdMd2pCf/mUZX3qKscOAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA4MTUxMTAxWhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTFhOWQ5MTczNTJjYjAxYjIxMGE0NmZlM2Y2NjQ2YWMw NGI2ZTNlNGVhM2RhODk4YWU5NjEyNmUxN2IxM2QyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLXQkYvVjxQmgEinwpnUA2pY9xWs2la+lcyE0kz+oS2Ztg xaSHdbmd/4bMHXKpEE4eLnVFqmMduvCt2VWR2kHUFV/sQ/SKdGMVMqfVoYbRC70J XaUUz0TNQSJOF0UKkpH/WRdmsVxi/cboZ275T5t1qPJp45RJ7THv/CC2Xk8Z5mFM ZIzc7MkklYsyySiGNdPT4xfreL0mAXVjHSUmFyUANPeONRmk8JEoRZgm0Xm0QEcu lqxFMN+cGG5V428rGQRNzH7LxG7mCD9xEIBl29yt6h0tdydHD/UFylQeXPcFRdW2 Bx/JbccwNs34F/Q9VGpA0F9xJzzX9yJErBow6EYJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUk+eNqm6uKBMjwNLw+TeKdEGvO1YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EyNDBkYzY0LTY1ZjAtNDYxYS1hZDZhLThjMTM3YjlkOGFiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gYgwDQYJKoZIhvcNAQELBQADggEBAHLuv2Va2n5evpNGG+Dz10a+ pFJlyjNtvQveG1eVuZkNlwj8slCmQ9tr0iC1PfbnbK33W5RdJc5jmNoIR0TvOciR 1khn7KgxdDv8Ry/pBMEzXur95JMbR7AwGsvC9ayTMmtEALYzzs06R6VAekg7srOv WKZj4TXbJz4cdGij/3VOIj4XSC1VZrO5xCLZilaivK2clw+yfs1JIxrKQSny7TIT iizArwfOoyhlORGH4G9UHX+K/b0g/Fa/hJqCcq1shxKpG8FDaUfrH5Hj+I4zOvkC eiRaznw7+4fLwwmBtMLJXqwt5RTcWLw/sNpTBbrx+jDdgB6FXAD0zrrrtkH9Vro= -----END CERTIFICATE-----Generated at Tue Sep 16 08:53:07 2025 by rpki-client