$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adf81dfa-321d-42a4-a1e7-eefec7d0a384.roa File: adf81dfa-321d-42a4-a1e7-eefec7d0a384.roa (raw, json) Hash identifier: +jo7Yxb2QKjyEgJMTYr2CUkIsRxS6qIBrRa3mWM9gRs= Subject key identifier: 1C:EA:07:C5:78:C0:5A:49:81:7B:8B:59:1C:15:E4:74:D5:A2:4B:1B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 402795682779B69953DBFC93740DD157A07B7004 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adf81dfa-321d-42a4-a1e7-eefec7d0a384.roa Signing time: Fri 29 Aug 2025 16:40:11 +0000 ROA not before: Fri 29 Aug 2025 16:40:11 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 5.60.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:27:95:68:27:79:b6:99:53:db:fc:93:74:0d:d1:57:a0:7b:70:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 16:40:11 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=c97ee91f77e6a1a87a5b60b797f2f37385de90a28002de05d670748566a3810b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:d8:c0:57:9d:4e:e2:f4:c9:c9:1c:d0:a0:45: 37:0a:3e:6f:2d:7d:eb:98:3b:0f:d6:db:86:01:55: 93:af:a2:f1:44:98:63:5c:6e:15:ab:ab:1c:3a:ee: 84:56:0e:d5:d9:60:ca:a1:ab:7e:b3:2e:b4:e0:3f: d4:86:54:bd:ed:bf:e9:47:f1:3a:34:48:cf:78:51: 3d:6f:2e:2d:ac:01:91:ac:f7:dc:11:1e:a5:a8:3e: b5:e5:8f:d7:8b:de:f8:2e:cf:d8:aa:d4:70:32:3f: 0e:74:2c:1b:83:54:63:fa:13:b6:44:79:56:7e:ee: b0:9b:b3:97:4a:f9:71:34:92:ce:98:34:48:64:73: d9:61:92:70:49:ee:e2:70:52:ff:ba:b8:24:68:09: 51:69:8b:42:ab:0c:02:5e:52:16:fe:fb:31:37:13: 03:fb:c2:03:75:ea:fb:03:89:da:ed:64:a1:9d:db: d8:b7:78:2c:4f:12:6b:20:95:e1:51:f0:bd:3c:37: 5f:94:00:60:fd:8e:a0:a4:f4:2d:01:5b:24:6c:13: 53:54:cd:2a:9d:16:99:e9:59:0c:33:f6:ed:77:4e: 15:dc:c9:6c:52:eb:9b:c8:48:ed:85:0d:6e:27:b6: 53:1c:ce:c9:23:f8:34:63:52:65:92:31:40:11:9d: ac:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:EA:07:C5:78:C0:5A:49:81:7B:8B:59:1C:15:E4:74:D5:A2:4B:1B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adf81dfa-321d-42a4-a1e7-eefec7d0a384.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.60.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4e:08:a3:86:b3:98:47:5b:e6:32:a9:0e:5b:d8:c1:d0:0e:9d: a9:95:3d:cc:7c:51:17:44:14:23:cb:53:bc:09:66:8a:17:74: b4:c1:6d:46:65:a2:51:77:f8:11:54:4e:46:20:26:06:52:05: 47:dd:e7:d8:43:21:82:3c:b6:10:92:73:2c:ce:d6:f0:f3:4d: bd:eb:a3:0b:fb:02:c3:c6:40:bc:6a:5e:a8:e6:5f:86:f3:f9: 35:7b:e3:cf:d7:72:f5:97:02:16:ee:59:86:3a:61:33:35:b2: 95:a3:28:96:0c:c4:82:8c:c9:26:b8:ff:82:99:bd:89:e0:f5: 71:60:d7:7c:48:d6:64:14:94:75:0f:ba:88:00:e4:fc:33:e4: 18:d5:84:d4:25:38:1f:fd:60:7b:02:58:1f:e7:88:95:37:f9: d6:e2:7a:06:b4:33:3c:d7:a1:fc:b4:b0:58:27:7f:d7:a7:8c: 7f:7e:7c:16:55:b1:05:51:e4:5c:e0:54:bf:10:b9:8c:c3:87: 4a:40:14:1d:0f:8f:f0:84:8a:a7:05:50:78:c9:f1:4e:84:51: fb:ae:0b:5c:fd:1b:70:02:89:8d:b5:b4:6b:13:f3:3d:29:bb: 35:3e:26:01:f8:5e:47:9f:6a:4a:48:51:d2:06:cc:32:80:b5: ef:d3:07:a2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQCeVaCd5tplT2/yTdA3RV6B7cAQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTY0MDExWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOTdlZTkxZjc3ZTZhMWE4N2E1YjYwYjc5N2YyZjM3Mzg1 ZGU5MGEyODAwMmRlMDVkNjcwNzQ4NTY2YTM4MTBiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCF2MBXnU7i9MnJHNCgRTcKPm8tfeuYOw/W24YBVZOvovFE mGNcbhWrqxw67oRWDtXZYMqhq36zLrTgP9SGVL3tv+lH8To0SM94UT1vLi2sAZGs 99wRHqWoPrXlj9eL3vguz9iq1HAyPw50LBuDVGP6E7ZEeVZ+7rCbs5dK+XE0ks6Y NEhkc9lhknBJ7uJwUv+6uCRoCVFpi0KrDAJeUhb++zE3EwP7wgN16vsDidrtZKGd 29i3eCxPEmsgleFR8L08N1+UAGD9jqCk9C0BWyRsE1NUzSqdFpnpWQwz9u13ThXc yWxS65vISO2FDW4ntlMczskj+DRjUmWSMUARnaxbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHOoHxXjAWkmBe4tZHBXkdNWiSxswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FkZjgxZGZhLTMyMWQtNDJhNC1hMWU3LWVlZmVjN2QwYTM4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAFPDANBgkqhkiG9w0BAQsFAAOCAQEATgijhrOYR1vmMqkOW9jB0A6dqZU9 zHxRF0QUI8tTvAlmihd0tMFtRmWiUXf4EVRORiAmBlIFR93n2EMhgjy2EJJzLM7W 8PNNveujC/sCw8ZAvGpeqOZfhvP5NXvjz9dy9ZcCFu5ZhjphMzWylaMolgzEgozJ Jrj/gpm9ieD1cWDXfEjWZBSUdQ+6iADk/DPkGNWE1CU4H/1gewJYH+eIlTf51uJ6 BrQzPNeh/LSwWCd/16eMf358FlWxBVHkXOBUvxC5jMOHSkAUHQ+P8ISKpwVQeMnx ToRR+64LXP0bcAKJjbW0axPzPSm7NT4mAfheR59qSkhR0gbMMoC179MHog== -----END CERTIFICATE-----Generated at Sat Sep 6 16:40:03 2025 by rpki-client