$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16b78eb9-3900-423b-9232-5f508710c51b.roa File: 16b78eb9-3900-423b-9232-5f508710c51b.roa (raw, json) Hash identifier: cwyVgSTId8Q3PP+YmfVnbWSn/fXaxLtqliKjmmVFk+w= Subject key identifier: C4:5F:03:DA:85:24:6F:BF:F7:13:32:BD:E9:19:59:5D:4A:27:B3:D3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 44B9096C386E398B6DA8A29BDC601C5B6B22196C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16b78eb9-3900-423b-9232-5f508710c51b.roa Signing time: Sat 19 Jul 2025 00:31:03 +0000 ROA not before: Sat 19 Jul 2025 00:31:03 +0000 ROA not after: Sat 23 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:b9:09:6c:38:6e:39:8b:6d:a8:a2:9b:dc:60:1c:5b:6b:22:19:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 19 00:31:03 2025 GMT Not After : Aug 23 23:59:59 2025 GMT Subject: serialNumber=4f580b946a7f68fb28a1f07dabaced8128efd67983ed6178fca0f1fdf91b4b73, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:cd:8b:72:96:2c:a6:1d:0d:71:9f:f0:b2:c2: aa:76:8a:07:92:f2:7f:4c:f7:ac:5c:2b:91:d5:b8: 56:d6:8e:c3:e4:69:c5:9a:06:c5:e5:20:11:dc:5f: bc:f1:29:84:c2:b8:8d:c1:98:06:ef:04:f4:41:a3: f8:0c:1e:ed:c8:c3:2c:46:c3:f4:7d:82:5f:99:12: 72:29:9b:73:f1:3f:69:8a:e2:16:d4:e4:ae:a0:dc: 14:57:05:84:ac:e6:3c:3a:6e:70:9e:1c:57:77:e7: af:28:a4:e6:2c:b7:f2:15:48:cc:01:d3:ea:8e:04: 2d:82:3a:a6:d0:96:31:91:d9:9e:d7:12:37:7b:56: 9e:0e:a5:f0:84:52:23:8e:7b:2d:aa:a7:5d:10:bd: df:f2:21:b4:43:bb:84:3f:59:a0:4b:de:23:36:36: e1:1b:e9:67:a9:e5:7a:bf:33:e7:f1:1c:9d:9d:1b: 4f:1e:a4:25:9f:17:c4:2c:6e:f5:3e:54:99:b8:5a: 37:fd:a4:f5:5c:8d:71:b0:7a:ea:d6:cd:67:41:49: a3:28:18:15:e6:18:ae:69:81:82:37:8a:14:d1:23: 63:b9:5a:b5:df:bc:15:d6:90:3d:9c:41:1f:62:86: d5:60:b0:95:4d:be:0c:c4:cf:30:53:ed:ef:da:63: ee:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:5F:03:DA:85:24:6F:BF:F7:13:32:BD:E9:19:59:5D:4A:27:B3:D3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16b78eb9-3900-423b-9232-5f508710c51b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.107.0/24 Signature Algorithm: sha256WithRSAEncryption 00:cb:a9:97:5b:69:c3:01:f8:b4:e9:e6:2e:9b:09:16:56:41: 03:b3:6b:da:14:03:93:a4:ba:11:c0:8a:16:a3:7a:67:09:0c: 27:58:19:a0:27:dc:79:24:98:5b:c4:36:bc:a6:ea:eb:4c:0e: 4a:a8:12:90:14:e8:bc:6a:bd:80:b0:98:39:50:97:9c:54:01: 01:3f:b2:10:05:04:17:2a:d6:16:6e:12:39:e5:cc:2d:ad:2f: ed:bf:c0:ed:39:b9:85:c4:52:67:05:ee:db:27:e5:ea:cc:4f: 0a:fb:e8:02:8b:3d:fa:73:c0:df:29:dd:e8:bb:b4:20:a8:ab: 26:00:a3:14:f2:d2:58:6c:ad:eb:6f:6e:dd:55:49:63:4f:a6: 35:02:1f:2b:9a:27:fa:1c:a0:1b:44:3f:08:37:07:d5:da:58: 59:5c:21:56:c7:1c:f0:5f:21:d6:5a:32:56:4f:df:80:2e:eb: 21:44:7d:1d:d2:ee:b6:d2:66:97:8e:61:1c:b9:b0:47:30:73: 21:e5:17:59:63:78:fb:fd:1a:a4:24:a9:4e:f6:e8:d4:c9:53: c9:f7:6e:65:33:8c:05:0e:f5:2e:66:dc:7b:93:08:3d:eb:13: 30:e8:09:16:a2:75:9f:0f:09:04:fd:a4:f9:9f:ec:96:f9:81: 3c:97:74:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURLkJbDhuOYttqKKb3GAcW2siGWwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE5MDAzMTAzWhcNMjUwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjU4MGI5NDZhN2Y2OGZiMjhhMWYwN2RhYmFjZWQ4MTI4 ZWZkNjc5ODNlZDYxNzhmY2EwZjFmZGY5MWI0YjczMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCszYtyliymHQ1xn/Cywqp2igeS8n9M96xcK5HVuFbWjsPk acWaBsXlIBHcX7zxKYTCuI3BmAbvBPRBo/gMHu3IwyxGw/R9gl+ZEnIpm3PxP2mK 4hbU5K6g3BRXBYSs5jw6bnCeHFd3568opOYst/IVSMwB0+qOBC2COqbQljGR2Z7X Ejd7Vp4OpfCEUiOOey2qp10Qvd/yIbRDu4Q/WaBL3iM2NuEb6Wep5Xq/M+fxHJ2d G08epCWfF8QsbvU+VJm4Wjf9pPVcjXGweurWzWdBSaMoGBXmGK5pgYI3ihTRI2O5 WrXfvBXWkD2cQR9ihtVgsJVNvgzEzzBT7e/aY+4fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxF8D2oUkb7/3EzK96RlZXUons9MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2Yjc4ZWI5LTM5MDAtNDIzYi05MjMyLTVmNTA4NzEwYzUxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GswDQYJKoZIhvcNAQELBQADggEBAADLqZdbacMB+LTp5i6bCRZWQQOz a9oUA5OkuhHAihajemcJDCdYGaAn3HkkmFvENrym6utMDkqoEpAU6LxqvYCwmDlQ l5xUAQE/shAFBBcq1hZuEjnlzC2tL+2/wO05uYXEUmcF7tsn5erMTwr76AKLPfpz wN8p3ei7tCCoqyYAoxTy0lhsretvbt1VSWNPpjUCHyuaJ/ocoBtEPwg3B9XaWFlc IVbHHPBfIdZaMlZP34Au6yFEfR3S7rbSZpeOYRy5sEcwcyHlF1ljePv9GqQkqU72 6NTJU8n3bmUzjAUO9S5m3HuTCD3rEzDoCRaidZ8PCQT9pPmf7Jb5gTyXdGg= -----END CERTIFICATE-----Generated at Mon Jul 21 18:14:35 2025 by rpki-client