$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0dc6def-824b-44e4-953e-03bc03efa024.roa File: f0dc6def-824b-44e4-953e-03bc03efa024.roa (raw, json) Hash identifier: 2ELbaQ3ERVi6YJI4BHkgZ63E/dyJ7asAeLhZ8RVOBYc= Subject key identifier: 43:C8:DF:FE:0C:1C:45:F0:AF:B3:BB:08:13:90:64:BC:CA:A2:2E:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2BCA46A5AE0D6DAB72234A5FD749CE94048ECDDA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0dc6def-824b-44e4-953e-03bc03efa024.roa Signing time: Sat 06 Sep 2025 00:22:10 +0000 ROA not before: Sat 06 Sep 2025 00:22:10 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.229.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:ca:46:a5:ae:0d:6d:ab:72:23:4a:5f:d7:49:ce:94:04:8e:cd:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:22:10 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=3598053847451d870c89d64596d75979e2fd459c3a6d7bc5a68e9d4782f98c88, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c5:a4:80:80:1b:cf:e8:c9:fb:92:b0:93:d9: bc:30:99:a4:56:c1:0c:d3:46:87:7b:53:05:87:26: 4d:53:9e:6a:82:62:27:17:c8:80:a7:34:02:81:b6: a7:bd:76:bb:9f:78:0b:8a:53:08:21:9f:52:26:29: 33:d2:0e:74:18:cd:98:e4:06:aa:d3:83:82:76:bc: cb:68:76:f3:c3:f7:c4:14:14:80:02:9c:42:d6:83: 3f:86:aa:08:a2:77:68:eb:21:19:15:f1:f0:93:fe: f3:b6:0b:41:3a:93:39:3d:04:58:99:30:1f:85:8d: 83:d4:0e:53:a8:37:25:59:24:38:ef:d8:6b:23:7f: 7c:0a:28:b4:c5:bb:f1:7e:ae:91:10:12:a1:91:ce: 58:d1:6c:45:53:2b:80:96:a3:89:e7:b2:ad:6e:de: 48:9e:8e:35:0d:1a:39:b4:eb:6b:24:66:35:f1:0e: 5d:67:92:59:72:17:c9:9a:5f:fc:86:3b:83:7b:ec: 31:72:bc:12:11:ae:40:bc:a4:66:9b:9f:54:f1:1c: c7:f8:24:78:80:e0:ce:29:47:1e:d9:f8:a6:60:56: 77:a7:7b:87:36:01:63:a1:41:bd:f9:70:e8:d1:6e: e6:fc:05:92:e4:74:21:83:6f:f8:5f:e9:e0:96:60: 25:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C8:DF:FE:0C:1C:45:F0:AF:B3:BB:08:13:90:64:BC:CA:A2:2E:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0dc6def-824b-44e4-953e-03bc03efa024.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.229.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0e:5f:f9:0d:64:1c:d4:f3:2f:b7:9a:58:a6:25:d2:6b:f6:ed: 0d:81:b3:90:92:f1:bf:9e:70:c3:36:51:c9:ff:96:ff:f6:af: 77:e2:55:13:b4:d7:10:fe:f4:5d:7f:98:e8:da:6f:39:f9:d9: ee:de:1a:3c:d5:7d:01:d0:8b:31:c9:f0:df:9e:8b:92:df:26: c0:6c:ba:02:37:5c:86:bf:ae:ef:d5:2d:8e:05:0c:8e:e9:b1: e1:5a:fd:6a:14:4a:32:5d:3e:e2:ba:ae:74:1f:b6:7f:25:71: 5b:6b:8e:09:d5:af:f7:80:9e:8a:45:bf:2c:20:be:02:4e:56: d8:c4:9f:e7:09:db:8f:6c:eb:80:50:7c:f4:27:7c:d1:70:61: bb:d7:2c:3d:ed:ae:99:45:02:d8:43:4f:32:64:cc:2c:31:c4: 84:c9:44:ee:b0:ff:39:b0:c5:06:72:83:ed:56:ba:31:33:90: 4f:d9:fd:70:e4:75:ff:66:4f:c1:32:f8:34:8d:52:8b:d3:5b: a9:26:ea:cf:be:67:7f:b4:d6:e6:18:b0:3d:33:77:65:7f:c9: fd:d5:97:12:70:e5:d1:68:0e:22:33:a5:6e:f1:a9:75:07:0d: 2f:6b:f3:5c:50:01:37:d1:2d:75:8a:17:ec:69:80:19:fa:36: 01:2d:c4:5b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUK8pGpa4NbatyI0pf10nOlASOzdowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAyMjEwWhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTk4MDUzODQ3NDUxZDg3MGM4OWQ2NDU5NmQ3NTk3OWUy ZmQ0NTljM2E2ZDdiYzVhNjhlOWQ0NzgyZjk4Yzg4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChxaSAgBvP6Mn7krCT2bwwmaRWwQzTRod7UwWHJk1TnmqC YicXyICnNAKBtqe9drufeAuKUwghn1ImKTPSDnQYzZjkBqrTg4J2vMtodvPD98QU FIACnELWgz+Gqgiid2jrIRkV8fCT/vO2C0E6kzk9BFiZMB+FjYPUDlOoNyVZJDjv 2Gsjf3wKKLTFu/F+rpEQEqGRzljRbEVTK4CWo4nnsq1u3kiejjUNGjm062skZjXx Dl1nkllyF8maX/yGO4N77DFyvBIRrkC8pGabn1TxHMf4JHiA4M4pRx7Z+KZgVnen e4c2AWOhQb35cOjRbub8BZLkdCGDb/hf6eCWYCU1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQ8jf/gwcRfCvs7sIE5BkvMqiLhAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YwZGM2ZGVmLTgyNGItNDRlNC05NTNlLTAzYmMwM2VmYTAyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo5TANBgkqhkiG9w0BAQsFAAOCAQEADl/5DWQc1PMvt5pYpiXSa/btDYGz kJLxv55wwzZRyf+W//avd+JVE7TXEP70XX+Y6NpvOfnZ7t4aPNV9AdCLMcnw356L kt8mwGy6Ajdchr+u79UtjgUMjumx4Vr9ahRKMl0+4rqudB+2fyVxW2uOCdWv94Ce ikW/LCC+Ak5W2MSf5wnbj2zrgFB89Cd80XBhu9csPe2umUUC2ENPMmTMLDHEhMlE 7rD/ObDFBnKD7Va6MTOQT9n9cOR1/2ZPwTL4NI1Si9NbqSbqz75nf7TW5hiwPTN3 ZX/J/dWXEnDl0WgOIjOlbvGpdQcNL2vzXFABN9EtdYoX7GmAGfo2AS3EWw== -----END CERTIFICATE-----Generated at Thu Sep 18 20:06:00 2025 by rpki-client