$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf9be969-de18-42a6-9d12-16fc8a45d0da.roa File: bf9be969-de18-42a6-9d12-16fc8a45d0da.roa (raw, json) Hash identifier: 8C3+jMd6Fhut01/uuX58rCfi8znvoccG8RkxOfTlf9g= Subject key identifier: 45:CD:71:58:2C:F0:CE:A2:AB:A3:A8:52:69:0A:72:3F:16:9E:96:8D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7416596293F7BD8AB95F946D8396FDB630A4A6DB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf9be969-de18-42a6-9d12-16fc8a45d0da.roa Signing time: Fri 05 Sep 2025 00:10:21 +0000 ROA not before: Fri 05 Sep 2025 00:10:21 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.26.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:16:59:62:93:f7:bd:8a:b9:5f:94:6d:83:96:fd:b6:30:a4:a6:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 00:10:21 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=751300ca4148bef09353feb00b58f4da974fac1d70868567f25a0d8651f40747, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ab:c3:2a:9f:1b:c8:cc:54:8f:f6:87:84:ee: 41:99:4a:84:be:2d:bc:e9:d5:1b:af:e5:9f:db:d4: 90:9e:0b:51:59:fe:e1:32:e7:27:20:a0:ff:86:68: 3a:ca:3a:7a:fa:f9:57:ab:54:17:fa:b2:ab:b6:b7: 27:d9:c2:28:f1:4e:05:9e:c4:23:30:ff:ec:28:c5: a0:e9:f3:a4:43:2d:b0:b9:3d:e2:46:07:4c:77:51: 29:09:7a:08:4d:be:46:04:c8:d6:85:c7:a3:2b:1f: 21:68:e4:57:aa:a1:0e:2f:34:32:a2:26:f7:4a:77: b6:fb:f1:8c:36:44:14:95:7d:1c:13:64:36:20:3f: 81:23:7c:db:9c:5f:ee:9b:e2:df:37:50:7d:1e:8e: 53:e9:39:a6:17:78:64:ad:64:f6:ba:5f:00:c0:25: 17:4f:e1:c9:d5:ea:5f:b9:30:ce:88:5c:65:0a:ce: 23:69:7d:02:28:a4:97:77:e0:51:24:0f:77:8d:0f: e6:ad:5e:d1:36:71:76:90:26:82:65:6a:9f:a6:10: 72:9e:7e:69:3e:0d:71:e8:61:ea:01:e5:74:2e:b0: 31:59:0f:13:61:fb:85:72:30:30:9a:61:69:c8:70: bf:00:93:42:5f:da:81:ce:f1:35:3e:a1:e9:39:66: 78:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:CD:71:58:2C:F0:CE:A2:AB:A3:A8:52:69:0A:72:3F:16:9E:96:8D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf9be969-de18-42a6-9d12-16fc8a45d0da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.26.0.0/15 Signature Algorithm: sha256WithRSAEncryption 85:f8:e0:d0:3d:21:2f:be:f0:bf:34:5b:9a:22:b6:b9:57:b1: 09:bd:71:1e:e2:0c:f8:5f:05:12:de:ca:26:07:e6:13:d2:78: d1:b3:ed:eb:68:e4:c0:28:e3:cc:e3:52:94:0b:76:21:f8:32: 54:03:73:95:9d:21:73:63:9b:93:e0:ac:02:0f:35:53:53:cf: a8:e9:15:45:26:43:74:e5:11:6a:27:11:88:6b:2b:6d:85:82: 2d:98:c9:e0:10:eb:b7:74:cb:23:88:f2:e2:71:a2:42:eb:df: 30:6e:e4:03:ca:0a:3d:af:51:59:85:9f:e0:b9:70:c3:93:d8: 19:d8:6d:4d:cd:ef:1c:f4:3f:36:30:6d:9c:2a:a4:9a:f5:50: 7f:61:4e:c7:3b:ee:f0:0d:09:e0:44:9d:53:e5:e8:3f:b1:39: 33:a1:e4:4c:a1:4a:49:ec:25:2a:29:d3:2e:cb:69:c9:bb:63: 71:16:81:3a:2b:e3:5e:1e:81:55:7c:20:a7:6e:03:3b:e1:65: b7:41:8e:6c:2b:58:7e:d1:fe:1b:b4:05:8a:54:c5:d9:f3:84: 39:95:f2:3b:ba:ea:c5:1b:f1:f2:df:f2:e7:f7:0f:7f:9d:d4: 7e:6a:c1:3e:09:c7:df:78:a2:e4:75:e1:ce:53:e3:7f:fb:a4: 24:d1:93:42 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdBZZYpP3vYq5X5Rtg5b9tjCkptswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA1MDAxMDIxWhcNMjUxMDEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NTEzMDBjYTQxNDhiZWYwOTM1M2ZlYjAwYjU4ZjRkYTk3 NGZhYzFkNzA4Njg1NjdmMjVhMGQ4NjUxZjQwNzQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQq8MqnxvIzFSP9oeE7kGZSoS+Lbzp1Ruv5Z/b1JCeC1FZ /uEy5ycgoP+GaDrKOnr6+VerVBf6squ2tyfZwijxTgWexCMw/+woxaDp86RDLbC5 PeJGB0x3USkJeghNvkYEyNaFx6MrHyFo5FeqoQ4vNDKiJvdKd7b78Yw2RBSVfRwT ZDYgP4EjfNucX+6b4t83UH0ejlPpOaYXeGStZPa6XwDAJRdP4cnV6l+5MM6IXGUK ziNpfQIopJd34FEkD3eND+atXtE2cXaQJoJlap+mEHKefmk+DXHoYeoB5XQusDFZ DxNh+4VyMDCaYWnIcL8Ak0Jf2oHO8TU+oek5ZniXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURc1xWCzwzqKro6hSaQpyPxaelo0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmOWJlOTY5LWRlMTgtNDJhNi05ZDEyLTE2ZmM4YTQ1ZDBkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEQGjANBgkqhkiG9w0BAQsFAAOCAQEAhfjg0D0hL77wvzRbmiK2uVexCb1x HuIM+F8FEt7KJgfmE9J40bPt62jkwCjjzONSlAt2IfgyVANzlZ0hc2Obk+CsAg81 U1PPqOkVRSZDdOURaicRiGsrbYWCLZjJ4BDrt3TLI4jy4nGiQuvfMG7kA8oKPa9R WYWf4Llww5PYGdhtTc3vHPQ/NjBtnCqkmvVQf2FOxzvu8A0J4ESdU+XoP7E5M6Hk TKFKSewlKinTLstpybtjcRaBOivjXh6BVXwgp24DO+Flt0GObCtYftH+G7QFilTF 2fOEOZXyO7rqxRvx8t/y5/cPf53UfmrBPgnH33ii5HXhzlPjf/ukJNGTQg== -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:36 2025 by rpki-client