$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cffa990e-6fc2-4b61-89ad-172287c16758.roa File: cffa990e-6fc2-4b61-89ad-172287c16758.roa (raw, json) Hash identifier: kqrQ+FWFML6jkzqxeL3SG83vA3MF2fzSgvONpi1WRhc= Subject key identifier: 17:37:96:B1:D9:CB:AA:EB:5E:0E:B2:FC:8C:0D:B5:19:04:1F:E1:AE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 261597EEEF0F26330208D91687E6BED8B76E06E6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cffa990e-6fc2-4b61-89ad-172287c16758.roa Signing time: Mon 01 Sep 2025 15:40:20 +0000 ROA not before: Mon 01 Sep 2025 15:40:20 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 77.122.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:15:97:ee:ef:0f:26:33:02:08:d9:16:87:e6:be:d8:b7:6e:06:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:40:20 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=d0c03aa7042c9e1e2591e079543016e1836d6fd48605a388c6bdd6d37b5e0903, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b8:67:9d:13:63:e7:e1:87:94:91:63:96:97: 69:23:b6:9a:c3:4f:f6:d8:06:1b:c0:99:ac:ff:ca: 4a:26:42:0e:40:73:a9:d8:da:e4:6c:45:30:10:f6: 07:be:35:55:7e:38:36:6f:c5:34:ef:a0:81:27:53: 51:70:13:26:58:60:99:0b:22:99:ec:19:f6:91:62: b4:ee:6b:09:f1:52:f5:a4:91:dd:52:dc:e9:e3:1e: 19:7a:3b:5f:09:56:49:b7:b8:bb:ec:11:6c:d0:e9: 3c:48:28:7e:f9:21:21:43:a6:41:69:d2:39:ba:2f: ef:13:69:f5:0d:a9:e4:78:cc:d9:15:70:ed:5c:2e: e3:49:07:0b:2c:1f:bd:53:32:86:97:38:6b:37:c2: 3a:e3:7d:f1:91:3b:07:c2:53:30:c8:49:1d:7c:27: 7e:59:6f:2e:c4:9c:6e:94:5c:78:4e:d3:da:1c:48: d5:cb:1c:35:25:d7:0e:48:85:a8:6f:30:d2:cb:9e: b2:b0:58:62:6b:6a:c6:3b:9c:bd:c3:78:ee:88:3f: 13:98:73:b1:3e:15:3d:26:62:93:78:8f:0b:99:58: a7:d9:de:30:7e:d3:2c:3c:e8:27:ec:e8:d4:0e:68: 24:f4:76:9f:53:fb:eb:69:50:3a:10:ae:9b:1a:b2: e3:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:37:96:B1:D9:CB:AA:EB:5E:0E:B2:FC:8C:0D:B5:19:04:1F:E1:AE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cffa990e-6fc2-4b61-89ad-172287c16758.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.122.0.0/16 Signature Algorithm: sha256WithRSAEncryption 17:7d:d1:a4:fe:9e:6a:4f:93:ce:66:60:e9:9b:2b:8d:65:89: 40:56:33:44:d3:65:ab:87:6c:96:f1:43:c9:4d:4f:b9:6b:48: ee:7c:79:a5:bc:f9:e2:5a:98:13:2b:5c:37:61:35:63:3e:a7: aa:4e:1d:48:bc:a3:11:01:45:9e:43:05:f4:95:f3:5c:7c:45: fc:02:e3:de:6e:9d:e3:fb:1c:d2:39:1c:2d:6b:ab:30:de:6f: 60:7c:d3:1d:a7:10:47:f5:4a:06:d6:fb:7a:b1:c6:22:2a:05: b2:aa:9d:89:ed:a5:25:94:80:4e:81:3f:72:b1:81:33:64:32: f8:71:0f:ea:91:66:94:98:1b:1f:86:17:f1:fd:30:c2:7c:08: f3:75:51:cb:34:e4:d9:e9:68:48:8f:f4:5c:55:98:e7:1d:0e: 32:79:34:f9:5c:d9:ea:6e:73:32:95:57:f5:6f:73:51:75:cc: f7:13:7d:8b:7f:58:79:96:9f:76:07:92:d9:f7:4c:82:4a:da: c6:9f:35:63:3d:1b:69:94:9a:5f:56:ea:e5:78:de:d3:20:2c: c8:f1:0c:33:5f:67:d6:33:ee:92:f2:0f:1b:0e:d8:c4:f0:45: 44:41:22:41:26:5a:60:5e:50:61:1a:4a:da:13:34:96:e6:28: 03:14:2a:7f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJhWX7u8PJjMCCNkWh+a+2LduBuYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTU0MDIwWhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMGMwM2FhNzA0MmM5ZTFlMjU5MWUwNzk1NDMwMTZlMTgz NmQ2ZmQ0ODYwNWEzODhjNmJkZDZkMzdiNWUwOTAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkuGedE2Pn4YeUkWOWl2kjtprDT/bYBhvAmaz/ykomQg5A c6nY2uRsRTAQ9ge+NVV+ODZvxTTvoIEnU1FwEyZYYJkLIpnsGfaRYrTuawnxUvWk kd1S3OnjHhl6O18JVkm3uLvsEWzQ6TxIKH75ISFDpkFp0jm6L+8TafUNqeR4zNkV cO1cLuNJBwssH71TMoaXOGs3wjrjffGROwfCUzDISR18J35Zby7EnG6UXHhO09oc SNXLHDUl1w5IhahvMNLLnrKwWGJrasY7nL3DeO6IPxOYc7E+FT0mYpN4jwuZWKfZ 3jB+0yw86Cfs6NQOaCT0dp9T++tpUDoQrpsasuPLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFzeWsdnLquteDrL8jA21GQQf4a4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmZmE5OTBlLTZmYzItNGI2MS04OWFkLTE3MjI4N2MxNjc1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBNejANBgkqhkiG9w0BAQsFAAOCAQEAF33RpP6eak+TzmZg6ZsrjWWJQFYz RNNlq4dslvFDyU1PuWtI7nx5pbz54lqYEytcN2E1Yz6nqk4dSLyjEQFFnkMF9JXz XHxF/ALj3m6d4/sc0jkcLWurMN5vYHzTHacQR/VKBtb7erHGIioFsqqdie2lJZSA ToE/crGBM2Qy+HEP6pFmlJgbH4YX8f0wwnwI83VRyzTk2eloSI/0XFWY5x0OMnk0 +VzZ6m5zMpVX9W9zUXXM9xN9i39YeZafdgeS2fdMgkraxp81Yz0baZSaX1bq5Xje 0yAsyPEMM19n1jPukvIPGw7YxPBFREEiQSZaYF5QYRpK2hM0luYoAxQqfw== -----END CERTIFICATE-----Generated at Sat Sep 6 16:49:56 2025 by rpki-client