$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca78e594-acaa-4280-9b9e-9f698472d6cb.roa File: ca78e594-acaa-4280-9b9e-9f698472d6cb.roa (raw, json) Hash identifier: w+DZSFhIFn3O9ACN3uC79QJPU9+M1A9aNadpf3khM0k= Subject key identifier: 28:61:93:5B:38:7B:9B:00:47:5F:A7:7E:C9:AD:71:6D:4D:90:0E:A5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 267C679B4CFEB9AF8FB88D4E6C2263498CB0D81F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca78e594-acaa-4280-9b9e-9f698472d6cb.roa Signing time: Sat 06 Sep 2025 00:51:16 +0000 ROA not before: Sat 06 Sep 2025 00:51:16 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.45.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:7c:67:9b:4c:fe:b9:af:8f:b8:8d:4e:6c:22:63:49:8c:b0:d8:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:51:16 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=9d6db80305c2569816d30de09d14db53b5cddf374b40e03bcf38c137d29af8bc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cb:d4:1a:e4:48:5a:42:8b:7e:ae:48:ce:b3: 6d:3d:f3:c4:ba:d0:0e:9a:71:46:9b:72:7d:2b:93: 9a:a0:0e:b6:b5:c6:e0:fb:4d:19:e6:8a:5a:17:f1: 53:f9:f5:de:e5:3e:1f:31:e9:d9:88:f3:de:01:0c: 2c:d8:17:49:c3:4e:d8:1c:d0:4c:44:62:48:34:5c: 8f:c0:53:35:0f:2d:ef:f6:04:4c:b4:47:4b:68:7c: 64:8f:b3:93:bd:89:1e:43:09:7b:0e:cf:ee:5f:2f: 3d:ac:13:c7:47:86:db:30:3d:c3:17:63:60:cf:53: 86:23:22:f0:5c:ce:95:a6:e9:fe:54:18:ed:f5:08: 8b:ab:d9:6a:78:78:8e:60:22:8e:ea:5c:12:11:ba: 69:30:8f:ab:eb:44:5d:21:74:8d:ee:7a:f1:87:94: f7:3f:fa:56:75:b8:70:5f:f8:d3:38:a8:50:c9:30: 77:00:1f:c2:e7:5e:40:53:e9:a3:59:72:4c:5d:58: 5d:b5:e7:91:11:18:cf:c5:13:1c:05:c6:63:a8:1e: b9:1d:4a:29:2a:43:2a:d7:b0:e9:ec:36:2a:e7:1f: 6a:19:17:0b:09:d3:e5:b5:94:15:7c:e3:04:90:bd: bf:a7:1b:53:c8:85:d0:6a:cf:c4:c2:fd:2d:07:59: f0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:61:93:5B:38:7B:9B:00:47:5F:A7:7E:C9:AD:71:6D:4D:90:0E:A5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca78e594-acaa-4280-9b9e-9f698472d6cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.45.160.0/20 Signature Algorithm: sha256WithRSAEncryption 5c:db:95:c9:e8:5d:e9:43:7a:a2:38:82:a3:b3:dc:28:b4:a5: c2:cf:4d:da:88:c0:85:8d:26:ce:b6:e3:78:40:d6:0b:5a:61: 79:34:a8:d0:c1:73:37:50:f2:73:2b:52:3e:55:e5:8a:a5:8b: b8:9c:e4:9c:89:0b:3b:87:bb:a5:a4:7a:bf:8f:16:d7:77:96: 5b:f7:f6:e1:63:96:4e:61:45:64:c7:dd:79:6a:e9:13:ee:e2: e6:06:90:51:47:d8:3c:d4:3e:18:3a:63:a7:fe:92:18:be:6f: ff:c9:b4:e1:f9:4e:92:1e:40:cb:74:e4:88:3f:20:13:0e:77: 6a:32:38:94:84:bd:12:03:24:18:71:94:fc:b7:6c:59:9e:4d: 87:a9:73:04:a2:32:8a:84:52:3b:39:33:e0:69:c5:9c:d2:bb: 13:38:c4:86:65:9e:cc:db:47:de:72:96:ed:eb:87:74:c3:61: 19:54:db:a3:8a:6f:1f:4f:ab:0f:88:4a:55:6d:e6:09:c4:0b: b2:1e:55:76:46:5b:fa:8d:1e:30:d3:db:7a:a2:c0:65:08:3c: 66:79:e2:45:be:b6:06:6b:90:e7:5e:98:1e:54:3b:91:9a:db: 52:7c:ae:0c:e9:b6:75:ad:f1:bb:bb:04:61:2e:6d:a9:7e:05: 6a:b6:41:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJnxnm0z+ua+PuI1ObCJjSYyw2B8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDA1MTE2WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDZkYjgwMzA1YzI1Njk4MTZkMzBkZTA5ZDE0ZGI1M2I1 Y2RkZjM3NGI0MGUwM2JjZjM4YzEzN2QyOWFmOGJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1y9Qa5EhaQot+rkjOs20988S60A6acUabcn0rk5qgDra1 xuD7TRnmiloX8VP59d7lPh8x6dmI894BDCzYF0nDTtgc0ExEYkg0XI/AUzUPLe/2 BEy0R0tofGSPs5O9iR5DCXsOz+5fLz2sE8dHhtswPcMXY2DPU4YjIvBczpWm6f5U GO31CIur2Wp4eI5gIo7qXBIRumkwj6vrRF0hdI3uevGHlPc/+lZ1uHBf+NM4qFDJ MHcAH8LnXkBT6aNZckxdWF2155ERGM/FExwFxmOoHrkdSikqQyrXsOnsNirnH2oZ FwsJ0+W1lBV84wSQvb+nG1PIhdBqz8TC/S0HWfALAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKGGTWzh7mwBHX6d+ya1xbU2QDqUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NhNzhlNTk0LWFjYWEtNDI4MC05YjllLTlmNjk4NDcyZDZjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARgLaAwDQYJKoZIhvcNAQELBQADggEBAFzblcnoXelDeqI4gqOz3Ci0pcLP TdqIwIWNJs6243hA1gtaYXk0qNDBczdQ8nMrUj5V5Yqli7ic5JyJCzuHu6Wker+P Ftd3llv39uFjlk5hRWTH3Xlq6RPu4uYGkFFH2DzUPhg6Y6f+khi+b//JtOH5TpIe QMt05Ig/IBMOd2oyOJSEvRIDJBhxlPy3bFmeTYepcwSiMoqEUjs5M+BpxZzSuxM4 xIZlnszbR95ylu3rh3TDYRlU26OKbx9Pqw+ISlVt5gnEC7IeVXZGW/qNHjDT23qi wGUIPGZ54kW+tgZrkOdemB5UO5Ga21J8rgzptnWt8bu7BGEubal+BWq2QXc= -----END CERTIFICATE-----Generated at Sat Sep 6 14:14:31 2025 by rpki-client