$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb0b7d83-ba63-418d-9ba0-0081273c74ff.roa File: fb0b7d83-ba63-418d-9ba0-0081273c74ff.roa (raw, json) Hash identifier: f9XhelilKiNAUO8B1peq+QfDe4MHK86fyUqfAyQMl+4= Subject key identifier: 8D:E4:A1:FE:A2:9D:98:E4:86:08:14:8C:33:4E:7C:73:36:C3:5B:41 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 15FE0F86B3421207FA92D0CC5AE8ED9D62E1CFEF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb0b7d83-ba63-418d-9ba0-0081273c74ff.roa Signing time: Sat 30 Aug 2025 00:11:10 +0000 ROA not before: Sat 30 Aug 2025 00:11:10 +0000 ROA not after: Sat 04 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 170.221.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:fe:0f:86:b3:42:12:07:fa:92:d0:cc:5a:e8:ed:9d:62:e1:cf:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 30 00:11:10 2025 GMT Not After : Oct 4 23:59:59 2025 GMT Subject: serialNumber=17bf2636e58ac181326a582aff7959c715ec1c8e7c88cade901e9a91597d5b03, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5f:73:aa:22:a3:6a:ac:a5:87:61:c4:be:6e: b3:d2:64:04:5c:6a:65:48:2e:ec:12:94:41:7b:74: 7f:f1:fa:b7:7a:6e:a2:9a:db:b1:a6:62:cf:6e:2a: a7:d8:b1:21:7b:7b:c1:b8:84:c2:83:42:f2:72:b2: f3:32:8b:d4:a0:d7:c7:56:b3:89:f8:ea:4b:6d:6c: 61:b0:90:61:94:b6:fc:7d:18:6d:55:8f:eb:76:73: 13:3f:40:ac:5c:01:6b:7a:35:e1:35:62:7a:00:30: b7:37:30:8b:e3:e7:8a:14:64:27:4c:93:45:9c:07: 70:42:61:21:d4:b9:0f:36:b3:29:7a:07:66:ab:5d: 4a:f5:ee:e4:ac:50:41:09:a7:40:8b:e7:7a:47:14: 4f:6d:65:4b:71:e1:a0:64:1c:17:f7:9b:53:63:ab: 08:64:fb:33:9b:02:be:c4:2b:03:33:a2:70:a0:f3: 26:11:d4:41:d4:49:df:ca:3c:9c:b8:60:a2:9e:b7: 15:c8:51:44:b5:d5:9f:f0:5f:d5:c8:61:6d:81:cf: 64:88:cf:10:e9:02:bc:74:03:e9:e4:31:32:16:4f: 52:aa:bc:76:a0:ca:c9:10:ad:38:c0:38:d7:7c:f0: 61:fa:62:03:f0:e6:51:56:c0:c2:4e:22:e3:a3:a1: 77:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:E4:A1:FE:A2:9D:98:E4:86:08:14:8C:33:4E:7C:73:36:C3:5B:41 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb0b7d83-ba63-418d-9ba0-0081273c74ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.221.0.0/16 Signature Algorithm: sha256WithRSAEncryption 44:0b:de:a8:5b:bb:f3:7f:8e:9a:b4:1f:ff:e3:27:e7:ba:66: d9:11:2a:c2:80:a8:c9:18:4a:16:7c:bc:17:21:83:2a:26:f8: e0:c1:a9:81:71:d2:d8:ee:be:f9:67:0d:65:88:c8:ae:20:43: d0:bc:8e:b3:ac:98:b0:72:ae:fd:9a:5f:14:7c:9b:63:c5:e9: 8a:26:99:69:96:b0:29:04:b7:5e:fd:16:e1:3c:85:93:03:7f: 8e:1f:09:73:33:0e:f1:a9:da:41:2a:54:d7:62:16:00:56:59: 88:b9:c1:76:3c:23:a3:35:11:71:a2:85:10:40:57:e3:4b:09: 99:86:7c:7b:de:0b:1a:81:c4:e5:78:08:4a:a3:93:a5:c9:ef: 11:4e:61:21:8c:0f:6c:ae:dc:3b:ff:b2:e9:cb:96:97:7f:bc: ea:e6:30:df:9c:e9:f5:ff:07:9b:fd:6a:ea:aa:5f:41:9b:34: 29:eb:f4:3b:d7:8b:fc:34:4b:7c:b9:28:46:6e:f2:f8:a1:98: ad:ea:de:94:c7:b8:3f:54:78:21:e8:d6:c4:09:34:6f:ef:e6: 32:1a:37:fb:06:86:5c:ac:b9:22:37:ca:aa:3e:1d:9d:52:86: 5e:0e:61:23:ab:23:7f:db:ce:ed:fb:7e:25:8b:39:67:4a:b8: bb:98:61:2e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFf4PhrNCEgf6ktDMWujtnWLhz+8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODMwMDAxMTEwWhcNMjUxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxN2JmMjYzNmU1OGFjMTgxMzI2YTU4MmFmZjc5NTljNzE1 ZWMxYzhlN2M4OGNhZGU5MDFlOWE5MTU5N2Q1YjAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8X3OqIqNqrKWHYcS+brPSZARcamVILuwSlEF7dH/x+rd6 bqKa27GmYs9uKqfYsSF7e8G4hMKDQvJysvMyi9Sg18dWs4n46kttbGGwkGGUtvx9 GG1Vj+t2cxM/QKxcAWt6NeE1YnoAMLc3MIvj54oUZCdMk0WcB3BCYSHUuQ82syl6 B2arXUr17uSsUEEJp0CL53pHFE9tZUtx4aBkHBf3m1Njqwhk+zObAr7EKwMzonCg 8yYR1EHUSd/KPJy4YKKetxXIUUS11Z/wX9XIYW2Bz2SIzxDpArx0A+nkMTIWT1Kq vHagyskQrTjAONd88GH6YgPw5lFWwMJOIuOjoXcBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjeSh/qKdmOSGCBSMM058czbDW0EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiMGI3ZDgzLWJhNjMtNDE4ZC05YmEwLTAwODEyNzNjNzRmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCq3TANBgkqhkiG9w0BAQsFAAOCAQEARAveqFu783+OmrQf/+Mn57pm2REq woCoyRhKFny8FyGDKib44MGpgXHS2O6++WcNZYjIriBD0LyOs6yYsHKu/ZpfFHyb Y8XpiiaZaZawKQS3Xv0W4TyFkwN/jh8JczMO8anaQSpU12IWAFZZiLnBdjwjozUR caKFEEBX40sJmYZ8e94LGoHE5XgISqOTpcnvEU5hIYwPbK7cO/+y6cuWl3+86uYw 35zp9f8Hm/1q6qpfQZs0Kev0O9eL/DRLfLkoRm7y+KGYrerelMe4P1R4IejWxAk0 b+/mMho3+waGXKy5IjfKqj4dnVKGXg5hI6sjf9vO7ft+JYs5Z0q4u5hhLg== -----END CERTIFICATE-----Generated at Sat Sep 6 14:19:27 2025 by rpki-client