$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f9f6b130-b872-44a5-81fd-7378d400647c.roa File: f9f6b130-b872-44a5-81fd-7378d400647c.roa (raw, json) Hash identifier: YGOFenrSmFv6XtU+VK0Ds4OdxK96qlav4jdGGvKbx74= Subject key identifier: C1:28:B2:9B:FE:83:B3:78:3F:99:D6:71:A4:F7:60:A0:AA:24:4B:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43FFAA33CE4FEEFD462B758E73F8EE245EB788B8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f9f6b130-b872-44a5-81fd-7378d400647c.roa Signing time: Fri 05 Sep 2025 00:01:09 +0000 ROA not before: Fri 05 Sep 2025 00:01:09 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.2.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:ff:aa:33:ce:4f:ee:fd:46:2b:75:8e:73:f8:ee:24:5e:b7:88:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 00:01:09 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=142777a2ad92534cac9cdde9f4b6918f09c1ac9ab958e5acc0c5af2c41303295, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c2:8a:be:4b:ff:4c:85:5a:ed:f2:7a:57:d8: 5f:0f:17:b0:32:ca:59:d9:c3:81:b5:65:14:7f:b9: 96:80:e3:92:ad:8b:6c:88:0f:37:b4:f6:10:bd:83: 91:08:a6:26:b0:5e:92:4b:96:9c:b1:d7:95:90:d2: c2:d6:3e:80:25:59:b1:43:38:39:d3:b4:a9:f4:16: ce:ac:13:be:da:9a:63:ee:bb:7d:7f:15:26:02:5c: 8d:10:3a:64:22:11:f6:4d:b4:32:e5:79:38:cf:88: 57:83:4d:e5:ee:00:c9:1d:92:1c:e5:bc:db:d1:0a: ec:c6:0b:4d:97:69:0a:3c:48:1a:43:ab:a8:fc:09: c2:1c:8a:a1:d0:b1:b6:6a:0d:67:b8:a8:2b:15:92: db:1d:be:01:f7:10:da:4a:4e:c9:e2:f4:b3:bc:cb: db:8f:6f:7c:f0:95:03:e3:88:20:8e:53:3a:e5:a4: 55:92:97:90:ce:44:38:b5:1d:34:35:1b:36:24:51: be:94:5a:b6:2b:3a:1b:cd:f1:63:b0:d8:68:55:0d: f9:1b:f1:22:e8:6a:45:4a:18:5a:c9:f6:23:49:c2: cc:fa:2d:e0:e1:45:0e:e3:21:dc:9b:3a:bc:aa:fd: b8:31:ed:f2:51:0d:11:0a:11:d2:02:d5:ff:52:70: 82:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:28:B2:9B:FE:83:B3:78:3F:99:D6:71:A4:F7:60:A0:AA:24:4B:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f9f6b130-b872-44a5-81fd-7378d400647c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.2.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7d:0a:5c:a5:f3:ff:b0:1b:d0:95:66:21:40:54:b1:69:4c:ec: c4:df:c1:70:8d:7f:9a:fa:d1:81:c8:0b:48:9a:c4:ae:ba:b7: ae:dd:21:ee:13:48:8c:46:6f:8a:9c:a2:a3:a8:2e:60:0f:86: 24:6c:f5:b4:a6:f3:d8:84:c1:ec:f5:df:c6:53:6f:17:5d:78: ae:0c:55:e7:b4:75:35:e1:b5:ec:92:43:63:85:95:11:1c:14: 80:7e:6f:9f:ca:8d:eb:3f:43:55:1b:3f:12:2c:3f:f2:40:6a: 29:db:b9:2c:1e:ba:d0:c0:a7:2f:f9:ff:1d:23:fb:f8:8d:85: c6:6e:c2:c4:21:55:5b:01:df:ab:33:54:24:b5:71:68:02:64: 6c:1a:88:82:17:a4:10:81:f7:09:a6:44:f9:c4:0e:9a:df:e3: b2:d7:ce:1f:ae:d3:2b:25:12:69:f5:1f:c5:7a:81:42:ff:0d: f6:6d:ff:f6:9b:5f:00:e8:a1:f0:b7:bf:d2:99:1a:da:2a:ce: a5:66:5d:c1:3a:24:46:23:46:35:89:f1:4a:77:b0:8f:67:8f: ce:d8:f7:ad:0c:4c:66:a9:dd:5f:b7:75:39:cb:45:4f:0a:83: 88:19:d3:de:1c:76:8e:06:79:eb:9c:15:c3:32:87:af:70:29: 1b:38:19:6c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQ/+qM85P7v1GK3WOc/juJF63iLgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA1MDAwMTA5WhcNMjUxMDEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDI3NzdhMmFkOTI1MzRjYWM5Y2RkZTlmNGI2OTE4ZjA5 YzFhYzlhYjk1OGU1YWNjMGM1YWYyYzQxMzAzMjk1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiwoq+S/9MhVrt8npX2F8PF7AyylnZw4G1ZRR/uZaA45Kt i2yIDze09hC9g5EIpiawXpJLlpyx15WQ0sLWPoAlWbFDODnTtKn0Fs6sE77ammPu u31/FSYCXI0QOmQiEfZNtDLleTjPiFeDTeXuAMkdkhzlvNvRCuzGC02XaQo8SBpD q6j8CcIciqHQsbZqDWe4qCsVktsdvgH3ENpKTsni9LO8y9uPb3zwlQPjiCCOUzrl pFWSl5DORDi1HTQ1GzYkUb6UWrYrOhvN8WOw2GhVDfkb8SLoakVKGFrJ9iNJwsz6 LeDhRQ7jIdybOryq/bgx7fJRDREKEdIC1f9ScIIDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwSiym/6Ds3g/mdZxpPdgoKokSyQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y5ZjZiMTMwLWI4NzItNDRhNS04MWZkLTczNzhkNDAwNjQ3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCIAjANBgkqhkiG9w0BAQsFAAOCAQEAfQpcpfP/sBvQlWYhQFSxaUzsxN/B cI1/mvrRgcgLSJrErrq3rt0h7hNIjEZvipyio6guYA+GJGz1tKbz2ITB7PXfxlNv F114rgxV57R1NeG17JJDY4WVERwUgH5vn8qN6z9DVRs/Eiw/8kBqKdu5LB660MCn L/n/HSP7+I2Fxm7CxCFVWwHfqzNUJLVxaAJkbBqIghekEIH3CaZE+cQOmt/jstfO H67TKyUSafUfxXqBQv8N9m3/9ptfAOih8Le/0pka2irOpWZdwTokRiNGNYnxSnew j2ePztj3rQxMZqndX7d1OctFTwqDiBnT3hx2jgZ565wVwzKHr3ApGzgZbA== -----END CERTIFICATE-----Generated at Sat Sep 6 14:13:55 2025 by rpki-client