$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbc52a03-e4e6-48a0-8f85-9d9f1f9d01e9.roa File: fbc52a03-e4e6-48a0-8f85-9d9f1f9d01e9.roa (raw, json) Hash identifier: c4H6VFPzlNCYoyvtIY9316Z31qSGYtXQCrLhh8vW00w= Subject key identifier: A4:66:6A:91:FE:2A:5E:F7:E6:8B:49:B1:F2:09:7C:80:6A:29:33:59 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6DF13FC93331A3F773185704EA3CAE582E3D2690 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbc52a03-e4e6-48a0-8f85-9d9f1f9d01e9.roa Signing time: Sat 09 Aug 2025 00:10:21 +0000 ROA not before: Sat 09 Aug 2025 00:10:21 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 65.80.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:f1:3f:c9:33:31:a3:f7:73:18:57:04:ea:3c:ae:58:2e:3d:26:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 9 00:10:21 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=c6479d5f51610880713cab4fe9e74b1eff9474fa3b422e5b73107e34784c408f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8f:c3:0c:15:5f:33:b1:6b:69:51:bf:ba:29: 90:fc:17:43:55:70:61:a1:34:f2:44:34:a4:f1:09: 57:c7:cf:b1:c1:94:02:13:72:e5:50:1e:55:2c:01: dc:8c:67:20:30:4d:cd:5a:df:5f:7d:8d:7b:52:73: 60:f0:b1:56:e1:91:20:30:c3:e1:45:2e:c5:58:c8: 5b:e9:16:c2:cf:f1:ce:fd:a9:08:6e:7b:50:c3:c4: f9:8a:b7:40:2d:a8:ac:5f:3f:bf:ab:4b:1c:a9:63: e0:87:31:4c:d0:f0:29:16:39:3e:c7:cc:6e:14:79: e2:b0:5d:82:d0:9a:63:04:80:25:7f:d4:2a:50:9e: fd:10:e2:1b:3b:30:2c:4b:f3:ee:a1:cc:c0:ce:a1: d7:4a:7b:85:fc:d7:40:aa:47:c6:97:91:b2:48:55: 14:d8:93:96:ad:2b:85:af:55:70:10:02:ab:7d:b4: e7:8c:3c:fb:ed:78:13:27:9a:04:5e:6b:fc:f5:a2: a2:66:c2:a1:12:e9:db:11:b7:7c:11:30:58:c8:2b: 4d:1e:eb:b2:3a:e4:95:f6:33:3f:ad:d2:95:af:a6: 19:89:b9:ac:49:24:4d:39:8d:12:bc:1b:62:9d:17: b3:38:1e:45:fc:bb:31:1c:75:ab:6e:3a:56:91:07: 85:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:66:6A:91:FE:2A:5E:F7:E6:8B:49:B1:F2:09:7C:80:6A:29:33:59 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbc52a03-e4e6-48a0-8f85-9d9f1f9d01e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.80.0.0/16 Signature Algorithm: sha256WithRSAEncryption 79:06:ec:cf:01:1a:c4:af:46:59:e1:23:ba:6f:5a:50:70:d1: f2:69:7d:51:ce:13:85:be:ac:0f:ba:c8:be:f4:5b:5a:73:7d: 3c:6e:0a:4a:8c:df:31:e7:11:48:e5:a7:cc:a7:bc:f3:60:85: 32:67:d8:32:4d:23:9f:33:aa:24:18:2d:60:85:1f:44:02:7b: 4a:f5:65:f5:5d:58:20:84:a2:91:84:7d:04:49:31:01:05:2b: 1b:11:4b:15:ad:dc:bb:6e:82:3e:22:c9:84:d7:ce:16:8d:5e: 62:5f:04:dd:93:bb:1f:6d:61:26:eb:28:52:0c:a3:25:94:0e: 7a:e9:f1:44:0e:2b:21:22:aa:7e:03:7b:c7:d8:5b:5d:fb:3d: d8:7d:4c:b0:1a:0d:fe:06:18:54:b8:28:77:dd:09:08:88:ad: bf:1f:6c:c3:73:39:d0:6a:9f:15:9c:17:30:dd:35:e3:f8:bf: 9e:e2:50:b7:8d:ab:da:ff:38:9d:90:a6:2b:43:56:7e:dc:7a: ef:c2:ae:df:6e:ca:ea:d0:c6:0b:62:74:cb:8c:29:f6:60:ad: bf:fd:fc:fb:62:b0:f2:5f:ee:b6:f7:43:5d:f7:af:f9:8a:2c: a7:08:2a:60:60:ea:4b:d3:76:53:2a:72:d7:68:ea:0c:9a:b3: 40:0f:70:72 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbfE/yTMxo/dzGFcE6jyuWC49JpAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA5MDAxMDIxWhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjQ3OWQ1ZjUxNjEwODgwNzEzY2FiNGZlOWU3NGIxZWZm OTQ3NGZhM2I0MjJlNWI3MzEwN2UzNDc4NGM0MDhmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/j8MMFV8zsWtpUb+6KZD8F0NVcGGhNPJENKTxCVfHz7HB lAITcuVQHlUsAdyMZyAwTc1a3199jXtSc2DwsVbhkSAww+FFLsVYyFvpFsLP8c79 qQhue1DDxPmKt0AtqKxfP7+rSxypY+CHMUzQ8CkWOT7HzG4UeeKwXYLQmmMEgCV/ 1CpQnv0Q4hs7MCxL8+6hzMDOoddKe4X810CqR8aXkbJIVRTYk5atK4WvVXAQAqt9 tOeMPPvteBMnmgRea/z1oqJmwqES6dsRt3wRMFjIK00e67I65JX2Mz+t0pWvphmJ uaxJJE05jRK8G2KdF7M4HkX8uzEcdatuOlaRB4UZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUpGZqkf4qXvfmi0mx8gl8gGopM1kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiYzUyYTAzLWU0ZTYtNDhhMC04Zjg1LTlkOWYxZjlkMDFlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBBUDANBgkqhkiG9w0BAQsFAAOCAQEAeQbszwEaxK9GWeEjum9aUHDR8ml9 Uc4Thb6sD7rIvvRbWnN9PG4KSozfMecRSOWnzKe882CFMmfYMk0jnzOqJBgtYIUf RAJ7SvVl9V1YIISikYR9BEkxAQUrGxFLFa3cu26CPiLJhNfOFo1eYl8E3ZO7H21h JusoUgyjJZQOeunxRA4rISKqfgN7x9hbXfs92H1MsBoN/gYYVLgod90JCIitvx9s w3M50GqfFZwXMN014/i/nuJQt42r2v84nZCmK0NWftx678Ku327K6tDGC2J0y4wp 9mCtv/38+2Kw8l/utvdDXfev+YospwgqYGDqS9N2Uypy12jqDJqzQA9wcg== -----END CERTIFICATE-----Generated at Sat Aug 23 08:12:19 2025 by rpki-client