$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2587f55-6fda-4e04-9968-9e4e95d6fce3.roa File: d2587f55-6fda-4e04-9968-9e4e95d6fce3.roa (raw, json) Hash identifier: QuVQQTeDsulG3AeZrPxEoYmT8apquldgIz1CmKTTY7c= Subject key identifier: 82:F7:83:D4:0D:B0:13:22:3D:8B:29:FA:A4:41:4F:A4:D2:18:0C:A1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B144F3D61EC8B64D9207B6C944F7384CFDCB4BC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2587f55-6fda-4e04-9968-9e4e95d6fce3.roa Signing time: Sat 06 Sep 2025 00:00:59 +0000 ROA not before: Sat 06 Sep 2025 00:00:59 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 158.56.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:14:4f:3d:61:ec:8b:64:d9:20:7b:6c:94:4f:73:84:cf:dc:b4:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:00:59 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=ff167faef27f493645fed19ad59271d40047eee5d660163b03e0b20d285588c5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:a9:9f:54:4e:0b:7a:25:1b:ff:4e:87:f2:00: 10:15:13:2e:f4:35:a6:b9:e0:d0:c1:47:3b:01:9b: 2a:49:ed:69:0f:80:25:d8:c1:ae:5a:81:1c:2d:91: 9a:03:f9:c9:8e:a5:d0:73:da:f0:c1:63:c7:aa:84: db:d3:97:81:91:29:29:99:58:9c:26:69:a1:48:10: 40:ff:5c:cf:55:5a:84:81:2e:a1:15:ea:92:0b:3e: 39:24:6a:17:d7:f9:1f:d4:ab:bc:17:90:b6:17:2c: c0:9f:36:35:b9:66:4f:d3:71:27:8c:25:74:b6:43: dd:d7:2b:b4:ab:96:21:f7:10:e7:98:80:39:13:ae: 36:85:27:15:a9:13:82:e9:d5:2f:da:ee:4c:25:a0: 0f:8f:26:53:be:8a:d2:f5:2c:31:45:cf:6f:aa:9d: 79:13:ec:a3:31:d3:cd:da:ef:7f:49:c0:b5:99:37: 28:9b:2c:8e:5e:b1:1f:af:fb:37:a1:64:07:a1:10: b7:51:4d:85:9c:af:85:9d:21:77:77:10:c6:1e:24: 07:09:a5:2c:37:7e:0f:5a:b9:7b:d1:c2:7a:08:d6: b4:04:31:e9:33:30:95:8d:58:61:a7:4b:fa:de:6f: da:41:3a:ea:4e:e0:6c:9e:e0:c9:f9:5d:ad:16:67: 2e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:F7:83:D4:0D:B0:13:22:3D:8B:29:FA:A4:41:4F:A4:D2:18:0C:A1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2587f55-6fda-4e04-9968-9e4e95d6fce3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.56.0.0/16 Signature Algorithm: sha256WithRSAEncryption 22:31:da:12:97:65:3d:e9:35:58:ab:3a:5f:38:51:79:9b:84: 44:d8:de:56:e5:27:01:7d:5c:cf:b9:51:a9:53:f5:1c:e9:76: ef:b3:7a:f1:59:bf:ed:56:a9:df:f1:83:d2:b0:b1:7e:aa:28: 09:7a:e6:d3:ba:c7:23:0f:0c:4f:08:d0:54:c3:f8:f0:97:b8: 62:14:a7:01:dd:30:53:9c:ad:75:51:b0:90:46:2e:30:ec:03: 25:69:be:0e:5d:26:12:16:12:a2:11:46:b2:37:4d:67:41:70: 85:62:51:04:b1:5c:3b:77:88:17:c7:73:76:fb:7c:da:2a:1a: 42:56:13:7e:fc:d5:3a:b1:99:66:ec:8b:ef:f2:7e:67:0b:e5: 21:f6:9d:ef:84:d3:8d:f2:91:a8:5d:3b:7c:1b:1c:e0:ac:34: e9:72:b2:9b:42:95:4b:46:3d:70:28:ae:90:39:ed:3a:55:49: 9c:55:47:92:94:14:46:2f:41:15:86:95:98:13:9c:75:7f:92: e8:28:5f:4f:0e:61:b0:9e:0b:e8:41:70:20:52:3d:6b:38:c2: e9:05:f2:d3:c4:c2:79:56:db:b7:93:a0:57:16:bc:08:8c:93: 68:e7:96:1c:83:65:a1:f3:b8:12:4f:ed:49:a0:52:44:b2:03: 7e:f6:71:8d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWxRPPWHsi2TZIHtslE9zhM/ctLwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAwMDU5WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZjE2N2ZhZWYyN2Y0OTM2NDVmZWQxOWFkNTkyNzFkNDAw NDdlZWU1ZDY2MDE2M2IwM2UwYjIwZDI4NTU4OGM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNqZ9UTgt6JRv/TofyABAVEy70Naa54NDBRzsBmypJ7WkP gCXYwa5agRwtkZoD+cmOpdBz2vDBY8eqhNvTl4GRKSmZWJwmaaFIEED/XM9VWoSB LqEV6pILPjkkahfX+R/Uq7wXkLYXLMCfNjW5Zk/TcSeMJXS2Q93XK7SrliH3EOeY gDkTrjaFJxWpE4Lp1S/a7kwloA+PJlO+itL1LDFFz2+qnXkT7KMx083a739JwLWZ NyibLI5esR+v+zehZAehELdRTYWcr4WdIXd3EMYeJAcJpSw3fg9auXvRwnoI1rQE MekzMJWNWGGnS/reb9pBOupO4Gye4Mn5Xa0WZy7TAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUgveD1A2wEyI9iyn6pEFPpNIYDKEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyNTg3ZjU1LTZmZGEtNGUwNC05OTY4LTllNGU5NWQ2ZmNlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCeODANBgkqhkiG9w0BAQsFAAOCAQEAIjHaEpdlPek1WKs6XzhReZuERNje VuUnAX1cz7lRqVP1HOl277N68Vm/7Vap3/GD0rCxfqooCXrm07rHIw8MTwjQVMP4 8Je4YhSnAd0wU5ytdVGwkEYuMOwDJWm+Dl0mEhYSohFGsjdNZ0FwhWJRBLFcO3eI F8dzdvt82ioaQlYTfvzVOrGZZuyL7/J+ZwvlIfad74TTjfKRqF07fBsc4Kw06XKy m0KVS0Y9cCiukDntOlVJnFVHkpQURi9BFYaVmBOcdX+S6ChfTw5hsJ4L6EFwIFI9 azjC6QXy08TCeVbbt5OgVxa8CIyTaOeWHINlofO4Ek/tSaBSRLIDfvZxjQ== -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:21 2025 by rpki-client