$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1de6f4f3-5860-4ac4-ae85-b3680e2b30c3.roa File: 1de6f4f3-5860-4ac4-ae85-b3680e2b30c3.roa (raw, json) Hash identifier: 3KsPTTvakH7ZvgzwWEobq6X7/8H/D+N3BMtW3AnbieM= Subject key identifier: 5D:74:15:4F:86:B7:E8:90:9D:C1:9D:57:C2:A4:9F:C6:A4:72:82:33 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6931BE65362E07AC55DEBCC45D7D14828FCA21EC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1de6f4f3-5860-4ac4-ae85-b3680e2b30c3.roa Signing time: Fri 11 Jul 2025 00:00:26 +0000 ROA not before: Fri 11 Jul 2025 00:00:26 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.89.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:31:be:65:36:2e:07:ac:55:de:bc:c4:5d:7d:14:82:8f:ca:21:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 00:00:26 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=9187999f50f0d00138bbc781c35a949b9aaee1feb4796e4e905ba158b2868084, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:26:0d:b7:45:18:27:7c:b7:29:c9:81:1f:a4: 34:cc:9f:3a:4e:5d:e6:d9:63:a9:01:5e:4e:3c:29: 4b:d7:84:cb:9f:07:96:08:d9:9e:59:da:57:45:d7: 98:ed:a6:8a:a8:7d:f4:50:7b:39:84:cb:a1:15:d4: 71:15:71:88:b6:91:20:63:a9:56:cf:1c:48:2f:75: c2:b7:84:54:d2:bf:b4:1e:3b:96:52:43:96:f9:69: 3f:ff:75:cc:e3:0d:8f:44:b6:af:92:8a:d8:39:69: 73:8b:fe:6b:52:b8:a8:51:17:f6:dd:f6:e0:05:88: ca:f4:ff:e2:a4:05:0d:ed:c5:55:ae:5f:48:3b:f4: 43:3e:6f:c3:a4:7a:96:5e:2b:92:e9:a0:20:6c:71: a1:c1:b7:0c:dd:57:9e:57:4b:12:9e:d5:87:b9:a7: 2f:e2:9b:5b:83:dd:0f:7b:67:57:c4:52:71:35:e2: 46:20:7f:d9:af:c1:28:25:c6:53:b9:7b:7a:c4:54: b8:14:c8:03:6a:d3:7a:5b:ec:f2:c2:1e:06:eb:76: bf:3c:29:17:d3:af:a4:64:59:f0:33:00:f1:6d:51: f0:0f:43:e0:c7:dc:03:b2:7d:ce:c9:f1:19:2f:79: 3f:67:1e:3e:45:9f:c5:f9:52:70:fa:36:f5:ec:42: 3a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:74:15:4F:86:B7:E8:90:9D:C1:9D:57:C2:A4:9F:C6:A4:72:82:33 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1de6f4f3-5860-4ac4-ae85-b3680e2b30c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.89.0.0/16 Signature Algorithm: sha256WithRSAEncryption d1:1c:9d:e5:82:f4:86:ab:b2:9d:e6:04:02:b0:79:3b:22:84: 93:cd:b3:6e:c2:7d:07:f8:00:be:80:b5:f5:46:68:e6:32:91: 24:3d:c0:5a:8e:d5:f9:59:34:62:03:17:35:96:42:15:86:1d: 74:63:bf:9f:86:1e:68:d4:21:cc:13:aa:f9:64:18:5c:7b:10: 3f:e6:42:74:dd:f6:d4:a8:50:d6:26:ed:40:41:ba:fe:78:19: be:20:15:8b:3f:66:a1:8c:20:84:f9:26:05:5b:ad:19:b7:d8: 94:b9:dd:44:f0:44:4a:87:36:1c:7d:ed:4a:5c:bc:64:2e:ce: fc:9c:c4:7c:a5:b5:b1:61:d6:67:82:34:f0:e6:09:2f:be:42: 56:ef:22:b0:cd:44:36:d0:70:c4:a4:22:4c:ba:5b:4e:05:c6: a3:cc:cd:af:93:61:bd:a1:3e:c7:1f:b0:e6:02:eb:4a:89:e4: e6:fe:76:39:68:35:44:4d:e8:9b:4c:64:a8:4c:87:f0:23:0d: ed:0a:6f:af:ca:ef:9f:0f:4a:9f:11:c6:f2:0d:26:30:98:59: a1:e7:b2:07:9d:66:a3:7f:68:7e:48:11:76:f6:9b:5d:50:d5: f3:f7:8b:84:0f:9b:6b:7b:e3:42:62:f9:80:8c:4c:fd:e9:db: da:6e:df:0f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaTG+ZTYuB6xV3rzEXX0Ugo/KIewwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMDAwMDI2WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MTg3OTk5ZjUwZjBkMDAxMzhiYmM3ODFjMzVhOTQ5Yjlh YWVlMWZlYjQ3OTZlNGU5MDViYTE1OGIyODY4MDg0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvJg23RRgnfLcpyYEfpDTMnzpOXebZY6kBXk48KUvXhMuf B5YI2Z5Z2ldF15jtpoqoffRQezmEy6EV1HEVcYi2kSBjqVbPHEgvdcK3hFTSv7Qe O5ZSQ5b5aT//dczjDY9Etq+Sitg5aXOL/mtSuKhRF/bd9uAFiMr0/+KkBQ3txVWu X0g79EM+b8OkepZeK5LpoCBscaHBtwzdV55XSxKe1Ye5py/im1uD3Q97Z1fEUnE1 4kYgf9mvwSglxlO5e3rEVLgUyANq03pb7PLCHgbrdr88KRfTr6RkWfAzAPFtUfAP Q+DH3AOyfc7J8RkveT9nHj5Fn8X5UnD6NvXsQjr1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUXXQVT4a36JCdwZ1XwqSfxqRygjMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFkZTZmNGYzLTU4NjAtNGFjNC1hZTg1LWIzNjgwZTJiMzBjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQWTANBgkqhkiG9w0BAQsFAAOCAQEA0Ryd5YL0hquyneYEArB5OyKEk82z bsJ9B/gAvoC19UZo5jKRJD3AWo7V+Vk0YgMXNZZCFYYddGO/n4YeaNQhzBOq+WQY XHsQP+ZCdN321KhQ1ibtQEG6/ngZviAViz9moYwghPkmBVutGbfYlLndRPBESoc2 HH3tSly8ZC7O/JzEfKW1sWHWZ4I08OYJL75CVu8isM1ENtBwxKQiTLpbTgXGo8zN r5NhvaE+xx+w5gLrSonk5v52OWg1RE3om0xkqEyH8CMN7Qpvr8rvnw9KnxHG8g0m MJhZoeeyB51mo39ofkgRdvabXVDV8/eLhA+ba3vjQmL5gIxM/enb2m7fDw== -----END CERTIFICATE-----Generated at Mon Jul 21 18:33:48 2025 by rpki-client