$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ffb6038f-b139-4708-b914-4c688fc3609a.roa File: ffb6038f-b139-4708-b914-4c688fc3609a.roa (raw, json) Hash identifier: g2zrNRscQ7IkviVe3lYG03aB+h9gDm2BZhn9oNmRS30= Subject key identifier: 81:30:40:9C:A3:B6:3A:CA:12:93:19:23:CB:77:AF:5E:59:B3:0D:6A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2F554630A802A726BF5D2839E94CE99A1E67C31E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ffb6038f-b139-4708-b914-4c688fc3609a.roa Signing time: Wed 27 Aug 2025 00:41:46 +0000 ROA not before: Wed 27 Aug 2025 00:41:46 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 160.214.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:55:46:30:a8:02:a7:26:bf:5d:28:39:e9:4c:e9:9a:1e:67:c3:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 27 00:41:46 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=16fe9c2f337960ee96db4ee82cf4108ac9c23ccddd369dcb06b209986f25e7e3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:8e:f5:33:f4:30:c3:11:dd:8d:9e:f3:7d:cb: 1d:f6:c6:91:39:e4:5d:61:af:c6:13:b5:b7:a0:84: 85:43:dc:de:04:2f:2b:09:b3:69:3a:fd:44:64:05: e6:56:f0:c5:ec:07:9e:9c:b1:2d:74:ed:61:71:d0: 22:1f:b0:0e:1f:c0:8b:3e:21:1b:35:00:a0:76:91: 80:12:b1:33:21:48:17:2c:b1:ab:0d:10:9e:3b:8e: 59:3c:ce:3e:ba:e5:1e:fe:17:2a:f6:d7:92:83:28: b8:41:25:83:3a:65:52:bc:d2:ac:de:4f:3f:64:23: 45:96:4d:8e:8c:d5:7b:03:cb:c2:ac:2c:da:08:38: 31:fb:20:b0:ff:3c:b2:81:0b:4b:7d:7c:11:bc:57: 58:9a:54:71:a3:c1:4e:cf:f9:91:e4:2d:1a:3f:85: 5d:77:10:44:d0:7f:6d:9b:b8:58:9b:06:f4:8a:95: 2d:66:b0:86:57:65:24:24:08:f0:ae:50:ff:0b:41: 7d:c2:8c:1e:22:ee:90:1c:01:ca:17:37:57:de:52: 24:17:c8:29:6e:bf:d0:07:9b:e7:80:3e:d7:cd:bf: f2:78:95:8d:52:08:e5:ae:e1:46:cd:1d:52:05:46: 78:6a:cd:ea:e8:60:d5:9f:b6:8d:04:d2:0f:45:7e: 70:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:30:40:9C:A3:B6:3A:CA:12:93:19:23:CB:77:AF:5E:59:B3:0D:6A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ffb6038f-b139-4708-b914-4c688fc3609a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.214.0.0/16 Signature Algorithm: sha256WithRSAEncryption 78:26:ff:df:1c:da:6d:0b:b0:ac:26:b2:1c:ad:60:10:c2:87: d7:b1:db:28:72:f3:3c:55:63:bc:60:4e:b0:f7:4f:19:d3:c9: f6:24:69:d8:f8:79:be:d1:05:a2:3f:72:c2:be:4c:7b:4a:6b: 72:95:17:dd:92:f2:c9:34:8b:c3:01:cb:7e:aa:51:ae:da:20: a4:90:3a:23:6b:82:62:ec:48:0e:af:ce:2d:0d:a7:64:d0:9b: e0:3a:f3:f5:c6:e2:bc:7f:26:20:91:12:1b:9c:0c:b7:d4:d0: 4a:e6:f1:0b:bd:17:cf:63:2b:53:5b:9d:8f:23:d2:b7:f7:07: 2b:ac:ee:f9:55:bc:7e:7c:d1:b0:9f:8f:16:80:52:d3:3d:c5: 21:8f:08:85:b5:12:61:42:51:48:ab:ec:b9:30:82:7c:ef:ff: 64:c1:bb:59:dc:05:d2:99:f9:54:46:6b:8f:f9:77:50:89:ab: fc:f8:66:01:e4:52:12:35:36:a9:fb:66:5f:18:d4:3b:b1:27: 0f:34:3e:3c:ec:ef:ea:8c:d8:35:19:02:c5:76:8d:69:f5:be: 65:a4:d3:20:05:f9:24:f1:60:ae:ed:23:60:29:e3:ca:15:56: 76:03:6d:d1:36:a1:cc:a7:4d:e5:16:e0:ef:f1:b2:3b:2e:9c: 9f:d9:fa:70 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUL1VGMKgCpya/XSg56Uzpmh5nwx4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI3MDA0MTQ2WhcNMjUxMDAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNmZlOWMyZjMzNzk2MGVlOTZkYjRlZTgyY2Y0MTA4YWM5 YzIzY2NkZGQzNjlkY2IwNmIyMDk5ODZmMjVlN2UzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwjvUz9DDDEd2NnvN9yx32xpE55F1hr8YTtbeghIVD3N4E LysJs2k6/URkBeZW8MXsB56csS107WFx0CIfsA4fwIs+IRs1AKB2kYASsTMhSBcs sasNEJ47jlk8zj665R7+Fyr215KDKLhBJYM6ZVK80qzeTz9kI0WWTY6M1XsDy8Ks LNoIODH7ILD/PLKBC0t9fBG8V1iaVHGjwU7P+ZHkLRo/hV13EETQf22buFibBvSK lS1msIZXZSQkCPCuUP8LQX3CjB4i7pAcAcoXN1feUiQXyCluv9AHm+eAPtfNv/J4 lY1SCOWu4UbNHVIFRnhqzeroYNWfto0E0g9FfnB9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUgTBAnKO2OsoSkxkjy3evXlmzDWowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZmYjYwMzhmLWIxMzktNDcwOC1iOTE0LTRjNjg4ZmMzNjA5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCg1jANBgkqhkiG9w0BAQsFAAOCAQEAeCb/3xzabQuwrCayHK1gEMKH17Hb KHLzPFVjvGBOsPdPGdPJ9iRp2Ph5vtEFoj9ywr5Me0prcpUX3ZLyyTSLwwHLfqpR rtogpJA6I2uCYuxIDq/OLQ2nZNCb4Drz9cbivH8mIJESG5wMt9TQSubxC70Xz2Mr U1udjyPSt/cHK6zu+VW8fnzRsJ+PFoBS0z3FIY8IhbUSYUJRSKvsuTCCfO//ZMG7 WdwF0pn5VEZrj/l3UImr/PhmAeRSEjU2qftmXxjUO7EnDzQ+POzv6ozYNRkCxXaN afW+ZaTTIAX5JPFgru0jYCnjyhVWdgNt0TahzKdN5Rbg7/GyOy6cn9n6cA== -----END CERTIFICATE-----Generated at Sat Sep 6 14:13:50 2025 by rpki-client