$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa File: ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa (raw, json) Hash identifier: TkFB4cdlGIcm6QDjO+u+utcG699qRFQ+yvompyj705Q= Subject key identifier: 39:45:F6:85:E1:A6:63:67:B9:FD:0D:D6:BE:56:F4:48:2B:E8:3E:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6AF5864509DF1040379CEB59C1D7A0A08E644EE0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa Signing time: Fri 08 Aug 2025 00:11:19 +0000 ROA not before: Fri 08 Aug 2025 00:11:19 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 32.172.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:f5:86:45:09:df:10:40:37:9c:eb:59:c1:d7:a0:a0:8e:64:4e:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:11:19 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=c4208ae5f9e9b30c410087d3ec64bef49bad76b01b1a81589b9be7b645c54df1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:b3:29:8d:f5:61:7d:cd:ce:be:d0:0a:e4:db: c7:f0:21:43:58:cb:af:c5:40:5d:cf:6a:a8:cc:0c: f7:f2:0f:90:96:47:f9:72:a4:af:69:a1:5c:d2:f2: 52:e9:7b:1f:22:fe:90:6c:5d:78:54:15:da:b8:9d: 72:cb:81:5f:8c:04:28:08:95:c6:58:72:aa:b3:9a: 9c:25:d8:e3:60:7e:93:a8:99:4b:d2:4c:27:2a:32: 5c:0d:ed:ff:d4:78:09:14:82:18:92:8d:6b:14:b0: 26:a8:38:35:07:43:f6:d2:ee:90:4b:e9:1b:30:9e: cb:fb:d8:0f:13:9a:e0:af:f6:45:39:47:e0:b6:8e: 05:12:b8:2d:68:62:95:45:86:8c:af:50:11:45:29: 65:98:9f:39:76:82:b6:c8:f9:da:e4:90:1f:63:55: 7c:f2:2b:d2:d5:69:a4:ea:da:45:24:79:75:63:25: ab:66:55:ff:0a:ee:17:1e:09:57:4c:ee:88:97:ef: 36:60:6f:fb:bf:83:cb:18:b0:8b:1a:b6:41:6f:68: 73:16:e4:f8:5e:70:37:fd:ce:5c:79:42:cc:c6:b8: 69:f9:0e:f2:fd:c0:c4:70:57:72:e7:19:8f:86:d3: a0:10:43:3a:fd:63:42:5f:cb:ad:6c:52:eb:98:9d: 49:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:45:F6:85:E1:A6:63:67:B9:FD:0D:D6:BE:56:F4:48:2B:E8:3E:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.172.0.0/14 Signature Algorithm: sha256WithRSAEncryption 6d:eb:85:ff:9c:54:04:54:05:21:d5:22:22:93:1f:eb:c5:c4: cb:77:24:76:1c:0b:f8:87:75:0a:ef:e7:ad:cb:a1:3f:50:ab: 1e:5e:7f:7f:a5:f9:6e:de:f0:40:a3:cd:e6:89:e4:ba:78:3e: 37:a4:bd:37:78:9c:48:55:91:92:5f:7b:00:d6:51:4d:a2:1b: d0:8b:57:b8:a6:37:af:18:e8:9a:0d:7b:dc:77:69:3f:2f:54: 65:5e:96:ca:39:66:c3:81:4b:db:20:f4:10:4a:d7:31:c5:4c: be:20:95:a5:24:02:18:2d:78:3b:02:2c:c7:72:ea:d1:f0:98: 60:6b:5d:02:7e:06:a0:c3:06:96:fc:ef:78:a1:81:93:54:d0: 9e:9f:ef:59:7d:ea:b3:cc:cb:73:3c:a4:e9:6f:e0:7b:9b:9e: 91:33:02:3d:e4:6b:f7:b8:e3:8f:eb:2c:e3:e7:b2:51:a8:0d: d4:9e:96:a6:9c:7c:bb:55:18:30:6f:1e:d7:f7:f1:d4:b9:ef: b3:b9:08:a3:f9:04:7d:67:6f:1a:b4:d7:2c:f3:0a:99:1b:25: 35:fe:8e:60:d2:76:98:53:08:2e:88:46:78:6a:10:c5:52:de: 0f:61:49:47:1a:cd:fb:18:8d:55:8d:b8:3d:81:c8:01:cb:d5: 1f:ba:6b:7c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUavWGRQnfEEA3nOtZwdegoI5kTuAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAxMTE5WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDIwOGFlNWY5ZTliMzBjNDEwMDg3ZDNlYzY0YmVmNDli YWQ3NmIwMWIxYTgxNTg5YjliZTdiNjQ1YzU0ZGYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwsymN9WF9zc6+0Ark28fwIUNYy6/FQF3PaqjMDPfyD5CW R/lypK9poVzS8lLpex8i/pBsXXhUFdq4nXLLgV+MBCgIlcZYcqqzmpwl2ONgfpOo mUvSTCcqMlwN7f/UeAkUghiSjWsUsCaoODUHQ/bS7pBL6Rswnsv72A8TmuCv9kU5 R+C2jgUSuC1oYpVFhoyvUBFFKWWYnzl2grbI+drkkB9jVXzyK9LVaaTq2kUkeXVj JatmVf8K7hceCVdM7oiX7zZgb/u/g8sYsIsatkFvaHMW5PhecDf9zlx5QszGuGn5 DvL9wMRwV3LnGY+G06AQQzr9Y0Jfy61sUuuYnUlpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOUX2heGmY2e5/Q3Wvlb0SCvoPpgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZmODdlNTMwLTRjZTEtNGY2ZC1hM2JkLTE2MjgyY2ViMzkyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIgrDANBgkqhkiG9w0BAQsFAAOCAQEAbeuF/5xUBFQFIdUiIpMf68XEy3ck dhwL+Id1Cu/nrcuhP1CrHl5/f6X5bt7wQKPN5onkung+N6S9N3icSFWRkl97ANZR TaIb0ItXuKY3rxjomg173HdpPy9UZV6Wyjlmw4FL2yD0EErXMcVMviCVpSQCGC14 OwIsx3Lq0fCYYGtdAn4GoMMGlvzveKGBk1TQnp/vWX3qs8zLczyk6W/ge5uekTMC PeRr97jjj+ss4+eyUagN1J6Wppx8u1UYMG8e1/fx1Lnvs7kIo/kEfWdvGrTXLPMK mRslNf6OYNJ2mFMILohGeGoQxVLeD2FJRxrN+xiNVY24PYHIAcvVH7prfA== -----END CERTIFICATE-----Generated at Sat Aug 23 08:24:45 2025 by rpki-client