$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/feb36ea7-4e25-44cf-a328-348e0beb29c2.roa File: feb36ea7-4e25-44cf-a328-348e0beb29c2.roa (raw, json) Hash identifier: GgCqyHkoPzBnBHuzt5wC2kIuyqHXU9BzuUyc6rKCnDw= Subject key identifier: 19:61:94:8E:7D:F9:32:A7:48:10:75:DC:21:46:BA:EA:73:4F:DC:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A867C2406F62E9554A6C303C8CA637921103BFF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/feb36ea7-4e25-44cf-a328-348e0beb29c2.roa Signing time: Sat 06 Sep 2025 00:31:52 +0000 ROA not before: Sat 06 Sep 2025 00:31:52 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.27.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:86:7c:24:06:f6:2e:95:54:a6:c3:03:c8:ca:63:79:21:10:3b:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:31:52 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=34729f227148f0281007c852d2249053ee9fae30ce59b7086f489c63a2dfd129, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5d:a3:7e:9b:f8:7f:42:e9:0b:0c:ca:8e:25: ec:b4:24:ec:7c:42:0f:ff:48:0b:db:66:31:90:57: 38:2d:c2:20:76:c8:fb:d7:65:63:1a:75:02:ae:71: c8:8c:17:4f:19:4b:3b:8f:5d:68:65:92:62:12:be: b9:60:c5:c0:82:18:0b:2f:9c:b2:66:42:60:ce:d4: 50:1e:17:93:9e:fc:fd:e9:21:ac:f1:77:35:ad:2b: 5e:f7:a7:e8:88:a2:b0:01:63:0c:92:6c:50:b6:96: 3a:c9:b0:0d:69:20:cc:f7:09:e6:4d:d4:ad:ea:0a: ed:59:29:8f:3b:cd:ef:b6:9e:b0:38:06:fa:d5:d5: 03:5e:f6:49:2a:4e:cb:12:06:d6:b1:0a:d0:00:9c: e4:b0:55:72:cc:cf:f4:0d:a4:ed:93:5c:e1:44:4d: 0e:45:97:64:6b:76:74:00:ff:dc:61:89:a0:82:bf: 4e:5a:8e:d2:2e:47:19:ec:e1:42:0e:43:32:a6:59: 3c:d4:8b:9e:5b:e0:4e:ed:5d:c7:10:ce:24:26:79: 37:0c:2b:d0:29:b7:6f:19:dc:90:b9:67:a9:07:75: d6:a1:5f:e7:bb:1b:2f:87:9a:aa:08:a8:54:60:00: c2:2f:40:aa:90:2c:a4:c1:05:a0:de:23:ec:55:6e: c8:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:61:94:8E:7D:F9:32:A7:48:10:75:DC:21:46:BA:EA:73:4F:DC:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/feb36ea7-4e25-44cf-a328-348e0beb29c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.27.0.0/16 Signature Algorithm: sha256WithRSAEncryption 61:54:05:f7:ca:21:ac:72:a2:cc:8f:70:8c:c2:89:57:6c:37: 13:7d:1c:13:f5:45:0f:21:64:5a:85:15:db:31:8b:3e:70:f1: 9a:b9:e2:59:ee:0a:c7:71:ef:00:d2:84:7c:fe:57:e5:81:46: 14:da:d3:c9:a4:c8:c0:fe:6f:27:c0:20:e8:17:2d:8a:5e:7e: 44:91:45:c3:08:2d:af:c1:fd:b1:2c:1c:c6:e5:82:26:cd:ec: f3:93:12:0f:b2:ab:2a:95:5a:05:2a:5e:fa:8c:53:a1:d1:87: 96:c3:88:20:0e:50:ba:d8:88:ff:ba:c2:4f:92:a0:34:a1:16: cd:3a:d5:17:5b:c6:cc:82:d0:6c:7b:78:6b:70:55:ce:f1:06: d9:99:ab:94:ee:83:23:6e:95:5d:90:e3:ef:45:99:68:c8:b7: 1f:d0:cb:ee:5d:0b:7d:0b:a0:fd:21:dc:e3:a6:9a:7c:36:4f: ac:06:46:af:06:eb:ef:65:ef:73:76:ee:aa:21:bf:47:8a:5a: d8:9a:5e:f1:02:39:54:0b:33:17:73:55:a6:78:3a:2e:f1:a6: 4c:97:70:07:bb:0d:8f:54:a1:09:3f:11:0d:dd:06:91:17:e8: f5:fc:ee:8e:46:bd:1f:05:01:4a:3d:90:67:00:2a:9e:af:d2: 98:f8:4e:61 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOoZ8JAb2LpVUpsMDyMpjeSEQO/8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAzMTUyWhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDcyOWYyMjcxNDhmMDI4MTAwN2M4NTJkMjI0OTA1M2Vl OWZhZTMwY2U1OWI3MDg2ZjQ4OWM2M2EyZGZkMTI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGXaN+m/h/QukLDMqOJey0JOx8Qg//SAvbZjGQVzgtwiB2 yPvXZWMadQKucciMF08ZSzuPXWhlkmISvrlgxcCCGAsvnLJmQmDO1FAeF5Oe/P3p IazxdzWtK173p+iIorABYwySbFC2ljrJsA1pIMz3CeZN1K3qCu1ZKY87ze+2nrA4 BvrV1QNe9kkqTssSBtaxCtAAnOSwVXLMz/QNpO2TXOFETQ5Fl2RrdnQA/9xhiaCC v05ajtIuRxns4UIOQzKmWTzUi55b4E7tXccQziQmeTcMK9Apt28Z3JC5Z6kHddah X+e7Gy+HmqoIqFRgAMIvQKqQLKTBBaDeI+xVbshJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUGWGUjn35MqdIEHXcIUa66nNP3AIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZlYjM2ZWE3LTRlMjUtNDRjZi1hMzI4LTM0OGUwYmViMjljMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4GzANBgkqhkiG9w0BAQsFAAOCAQEAYVQF98ohrHKizI9wjMKJV2w3E30c E/VFDyFkWoUV2zGLPnDxmrniWe4Kx3HvANKEfP5X5YFGFNrTyaTIwP5vJ8Ag6Bct il5+RJFFwwgtr8H9sSwcxuWCJs3s85MSD7KrKpVaBSpe+oxTodGHlsOIIA5QutiI /7rCT5KgNKEWzTrVF1vGzILQbHt4a3BVzvEG2ZmrlO6DI26VXZDj70WZaMi3H9DL 7l0LfQug/SHc46aafDZPrAZGrwbr72Xvc3buqiG/R4pa2Jpe8QI5VAszF3NVpng6 LvGmTJdwB7sNj1ShCT8RDd0GkRfo9fzujka9HwUBSj2QZwAqnq/SmPhOYQ== -----END CERTIFICATE-----Generated at Sat Sep 6 14:19:37 2025 by rpki-client