$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca331992-fd02-44e6-b6f8-92e7f46278f2.roa File: ca331992-fd02-44e6-b6f8-92e7f46278f2.roa (raw, json) Hash identifier: je4oRSeVvkeoLp6oUT9TQ0CNvUlaG5/B4NQH7WZ/zmA= Subject key identifier: 98:D9:29:E8:CD:A6:C2:0A:5E:10:8C:BE:76:45:81:FC:5B:6F:9B:35 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0ED74FD0FA03E67AFD7501C45B53C4B735C5F36E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca331992-fd02-44e6-b6f8-92e7f46278f2.roa Signing time: Mon 01 Sep 2025 15:41:57 +0000 ROA not before: Mon 01 Sep 2025 15:41:57 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 98.80.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:d7:4f:d0:fa:03:e6:7a:fd:75:01:c4:5b:53:c4:b7:35:c5:f3:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:41:57 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=cf8f8fa2de3bd0e524cb625037942d21709acb0305af0f75617e7a4accc0363e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:5f:71:6a:c2:77:4a:81:10:e2:e9:25:e0:c7: ac:ee:dd:c7:98:9b:a5:c5:e0:2f:10:aa:44:38:49: 9e:67:14:b0:ff:82:4e:17:e8:3c:03:1b:9e:17:c8: 23:46:39:cb:9b:ed:28:57:b5:7a:67:5b:bb:28:9f: 36:ac:49:7a:a7:a1:0a:34:a6:a9:a1:f1:f4:77:8b: 7f:37:e9:c6:16:a9:44:52:a2:5f:3d:73:fe:e9:ad: 4b:6a:ab:11:54:db:c3:47:71:73:b6:8f:a7:c4:6c: 1e:f7:db:7b:f9:8e:37:bf:6a:d0:81:3c:57:7a:2d: 7f:b7:3d:b1:28:cf:fc:f7:0c:2d:70:d5:b1:38:85: 11:73:22:90:ff:cc:10:82:21:87:2d:7c:9d:ee:8b: f6:12:39:ca:08:b9:ce:2f:d3:65:84:01:6a:52:58: c2:7f:8f:6c:b4:e3:05:8b:85:cb:97:60:5b:94:2f: b2:ca:c6:fa:e9:0b:c5:d6:14:05:b2:d7:72:40:7c: cd:42:d6:e4:da:d6:0f:07:49:09:1b:1e:7c:29:91: af:35:b5:e8:16:1b:75:33:22:c2:d5:71:08:78:f2: d6:09:50:fe:dd:5f:cb:0d:ac:a4:bf:21:a9:f3:4f: ce:ba:65:ab:35:16:1c:f2:79:75:d1:20:16:d9:5f: 33:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:D9:29:E8:CD:A6:C2:0A:5E:10:8C:BE:76:45:81:FC:5B:6F:9B:35 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca331992-fd02-44e6-b6f8-92e7f46278f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.80.0.0/12 Signature Algorithm: sha256WithRSAEncryption ac:13:85:09:06:35:ea:11:25:e5:67:9f:55:db:63:02:c2:22: 03:79:b5:f6:40:44:1b:b6:4e:8c:55:0b:d1:a8:32:0e:06:61: c9:3b:13:c7:2e:17:bf:26:ef:22:38:2d:3f:23:65:06:f0:ca: 05:cb:52:4f:cc:4e:7b:25:f7:6e:d4:e0:56:c5:15:1a:4f:32: 7c:df:8d:fe:5a:b5:bb:26:30:ac:a1:bc:eb:b5:a9:38:5a:3e: 33:fe:99:c2:e4:61:68:7d:5e:a6:fc:38:42:0b:a0:b7:f2:7f: 7a:6d:5c:a6:62:9c:58:c1:6f:5f:d4:74:6b:39:07:94:f5:4b: 80:fd:36:7f:85:d2:b9:d1:c4:90:78:bd:83:5c:ff:72:e5:78: a3:55:b3:99:d6:cf:68:ab:9a:39:62:e4:93:16:f2:69:91:8c: 7f:83:ed:61:f4:81:d4:73:27:6b:49:c4:d9:91:99:32:b3:48: 48:47:2c:4a:a7:da:d6:a7:7f:fe:5e:36:99:19:88:43:ec:36: 9e:3f:86:de:fa:93:b3:d0:fd:61:a4:90:87:bb:6c:68:0f:a4: b2:a0:3d:0d:0b:cb:a9:9d:38:57:70:79:1b:7b:22:9c:72:aa: 50:2e:3a:47:72:fb:8e:a1:cc:94:36:08:5e:06:ad:fc:68:6e: 5d:06:ca:fa -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDtdP0PoD5nr9dQHEW1PEtzXF824wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTU0MTU3WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZjhmOGZhMmRlM2JkMGU1MjRjYjYyNTAzNzk0MmQyMTcw OWFjYjAzMDVhZjBmNzU2MTdlN2E0YWNjYzAzNjNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwX3FqwndKgRDi6SXgx6zu3ceYm6XF4C8QqkQ4SZ5nFLD/ gk4X6DwDG54XyCNGOcub7ShXtXpnW7sonzasSXqnoQo0pqmh8fR3i3836cYWqURS ol89c/7prUtqqxFU28NHcXO2j6fEbB7323v5jje/atCBPFd6LX+3PbEoz/z3DC1w 1bE4hRFzIpD/zBCCIYctfJ3ui/YSOcoIuc4v02WEAWpSWMJ/j2y04wWLhcuXYFuU L7LKxvrpC8XWFAWy13JAfM1C1uTa1g8HSQkbHnwpka81tegWG3UzIsLVcQh48tYJ UP7dX8sNrKS/IanzT866Zas1FhzyeXXRIBbZXzNtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmNkp6M2mwgpeEIy+dkWB/FtvmzUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NhMzMxOTkyLWZkMDItNDRlNi1iNmY4LTkyZTdmNDYyNzhmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwRiUDANBgkqhkiG9w0BAQsFAAOCAQEArBOFCQY16hEl5WefVdtjAsIiA3m1 9kBEG7ZOjFUL0agyDgZhyTsTxy4XvybvIjgtPyNlBvDKBctST8xOeyX3btTgVsUV Gk8yfN+N/lq1uyYwrKG867WpOFo+M/6ZwuRhaH1epvw4Qgugt/J/em1cpmKcWMFv X9R0azkHlPVLgP02f4XSudHEkHi9g1z/cuV4o1WzmdbPaKuaOWLkkxbyaZGMf4Pt YfSB1HMna0nE2ZGZMrNISEcsSqfa1qd//l42mRmIQ+w2nj+G3vqTs9D9YaSQh7ts aA+ksqA9DQvLqZ04V3B5G3sinHKqUC46R3L7jqHMlDYIXgat/GhuXQbK+g== -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:53 2025 by rpki-client