$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4f52d1b-a830-4741-8924-351b0ebc2ffe.roa File: d4f52d1b-a830-4741-8924-351b0ebc2ffe.roa (raw, json) Hash identifier: AQ0ZvGpMMXR7L4HUE6zInwoc0ZkyeSpvE5RR2PSfJ34= Subject key identifier: E3:78:94:65:0A:81:93:98:28:03:77:97:98:09:BB:49:C5:D4:B7:73 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B229A416CD626ABCB46F1021A0649DE121E960C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4f52d1b-a830-4741-8924-351b0ebc2ffe.roa Signing time: Sat 06 Sep 2025 00:11:47 +0000 ROA not before: Sat 06 Sep 2025 00:11:47 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.171.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:22:9a:41:6c:d6:26:ab:cb:46:f1:02:1a:06:49:de:12:1e:96:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:11:47 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=89e9e88a6b2d69c08f806cb6a26cede9a0766bfb01ffb919ae2e8abc1d251fd2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ee:c3:08:8c:34:6c:b5:f1:c0:4e:a0:a3:7c: 82:1a:98:37:63:84:1c:55:02:05:a4:ff:a5:d6:b5: 39:34:e0:0f:07:4b:0e:b8:0f:c1:c3:d7:96:51:0b: ef:c7:29:ea:4a:9f:c5:9e:0e:d6:f3:d6:93:7d:89: ef:d0:7b:06:f5:4d:c2:e8:28:3c:85:6e:41:3c:31: a0:7d:78:cd:15:c5:6b:b7:dd:66:70:b0:6e:f3:e4: c1:83:ec:7f:52:3c:6c:35:f3:e9:b3:8c:ba:ad:da: 8e:92:b5:03:7c:7b:fc:6d:fa:ab:a5:06:5d:89:6c: b8:9b:68:be:39:00:c8:6a:3a:0a:68:d8:39:2c:b4: 90:7d:05:5e:dd:50:fd:48:29:39:e3:6e:65:1b:63: d3:ec:75:c8:d4:45:2b:6b:8e:1c:e1:ba:df:d5:9b: ba:10:a6:98:63:32:91:1f:9a:65:c7:b4:ee:ac:54: a9:40:62:b4:1d:6f:c5:26:b9:4c:a9:8e:92:85:ee: 79:4d:36:ba:ec:4a:7c:c3:fa:42:99:1f:0d:35:98: 7b:4a:84:04:4d:08:c7:17:96:76:bc:f9:22:b5:b1: b0:87:02:18:64:5c:25:7f:cb:4c:81:17:fc:5c:c3: 00:83:3f:ab:7c:2e:7a:7e:62:35:ae:33:46:c8:6d: 3c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:78:94:65:0A:81:93:98:28:03:77:97:98:09:BB:49:C5:D4:B7:73 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4f52d1b-a830-4741-8924-351b0ebc2ffe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.171.128.0/19 Signature Algorithm: sha256WithRSAEncryption b0:d6:6f:54:e4:2d:e8:eb:5b:63:79:dc:46:4d:f6:04:87:fa: 7c:1d:ca:99:f6:af:c6:b1:10:c1:8c:ee:91:75:bc:35:fc:8c: 3b:93:70:29:c9:9a:33:d0:35:d8:d3:2e:c2:e8:ba:6e:41:e4: 54:1b:0d:fd:ad:fe:41:d1:f2:5f:d7:19:63:07:31:b1:7f:25: 9d:32:ab:b6:a4:53:a6:32:9e:0a:47:24:3c:5c:09:42:aa:99: 17:4f:af:f0:23:ce:5b:1e:1a:53:2f:93:d4:7c:0a:4e:66:df: f0:f3:12:05:fa:59:af:bd:41:9e:69:dd:1b:f8:b4:f4:41:50: d9:58:69:0c:fa:7f:62:ff:fa:6f:93:35:17:b6:2e:19:77:0e: 30:52:81:68:ea:22:81:1c:46:bb:f2:67:e5:58:2a:77:94:6d: cf:4b:31:17:bc:c1:b8:4e:c7:bf:40:d2:42:1a:69:14:67:5a: ca:86:a3:d5:ff:7d:1c:c8:10:7b:48:c2:e0:dc:73:3b:96:17: 20:91:bc:0c:15:d4:e9:e0:cf:8c:18:b9:e8:eb:a9:98:29:bd: bb:47:a9:3e:bb:eb:66:4e:01:65:41:3c:23:5e:64:50:b4:4b: cf:48:e0:82:6f:70:85:6b:21:bd:0f:dc:6a:8d:ac:23:57:23: cb:c8:dd:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGyKaQWzWJqvLRvECGgZJ3hIelgwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAxMTQ3WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OWU5ZTg4YTZiMmQ2OWMwOGY4MDZjYjZhMjZjZWRlOWEw NzY2YmZiMDFmZmI5MTlhZTJlOGFiYzFkMjUxZmQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB7sMIjDRstfHATqCjfIIamDdjhBxVAgWk/6XWtTk04A8H Sw64D8HD15ZRC+/HKepKn8WeDtbz1pN9ie/Qewb1TcLoKDyFbkE8MaB9eM0VxWu3 3WZwsG7z5MGD7H9SPGw18+mzjLqt2o6StQN8e/xt+qulBl2JbLibaL45AMhqOgpo 2DkstJB9BV7dUP1IKTnjbmUbY9PsdcjURStrjhzhut/Vm7oQpphjMpEfmmXHtO6s VKlAYrQdb8UmuUypjpKF7nlNNrrsSnzD+kKZHw01mHtKhARNCMcXlna8+SK1sbCH AhhkXCV/y0yBF/xcwwCDP6t8Lnp+YjWuM0bIbTw5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU43iUZQqBk5goA3eXmAm7ScXUt3MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q0ZjUyZDFiLWE4MzAtNDc0MS04OTI0LTM1MWIwZWJjMmZmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXYq4AwDQYJKoZIhvcNAQELBQADggEBALDWb1TkLejrW2N53EZN9gSH+nwd ypn2r8axEMGM7pF1vDX8jDuTcCnJmjPQNdjTLsLoum5B5FQbDf2t/kHR8l/XGWMH MbF/JZ0yq7akU6YyngpHJDxcCUKqmRdPr/AjzlseGlMvk9R8Ck5m3/DzEgX6Wa+9 QZ5p3Rv4tPRBUNlYaQz6f2L/+m+TNRe2Lhl3DjBSgWjqIoEcRrvyZ+VYKneUbc9L MRe8wbhOx79A0kIaaRRnWsqGo9X/fRzIEHtIwuDcczuWFyCRvAwV1Ongz4wYuejr qZgpvbtHqT6762ZOAWVBPCNeZFC0S89I4IJvcIVrIb0P3GqNrCNXI8vI3dk= -----END CERTIFICATE-----Generated at Sat Sep 6 14:06:01 2025 by rpki-client