$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e7e048-17ef-4bc7-a201-80d9e52f87a4.roa File: 21e7e048-17ef-4bc7-a201-80d9e52f87a4.roa (raw, json) Hash identifier: MegYp703AgUvs47eO7whYsJ9UNOKJHMeNMmClufJbeY= Subject key identifier: 86:F0:B6:7F:9F:B1:9F:ED:51:BD:94:D5:E1:A1:11:06:31:45:55:6D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 797758B87C0D69ACF904EED2C902609093187E0C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e7e048-17ef-4bc7-a201-80d9e52f87a4.roa Signing time: Tue 08 Jul 2025 00:31:07 +0000 ROA not before: Tue 08 Jul 2025 00:31:07 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.176.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:77:58:b8:7c:0d:69:ac:f9:04:ee:d2:c9:02:60:90:93:18:7e:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 00:31:07 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=9eb308d63b652551d908ed2a407194f6de5e9ce2d73d2189160bd8404ef68a51, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bf:cb:b2:db:d3:ad:05:e7:6c:78:f2:b2:be: 13:a1:1e:25:b2:87:ab:3a:6c:cd:b4:70:3c:09:77: 4d:58:c2:4c:60:a3:47:6a:c5:21:86:9e:d9:65:19: bf:ec:23:84:19:56:f6:ac:95:b3:49:b5:0f:00:cc: 55:f6:0d:9e:a3:bb:d5:f4:e6:e1:15:dc:c4:24:d5: 74:e0:05:f6:d8:39:ef:b5:3e:35:d9:f5:37:44:f1: 72:df:83:32:c5:b1:9d:97:7e:6a:2d:d6:19:fd:4d: b4:b7:2a:e1:91:83:c3:21:d8:b6:d6:23:44:23:f0: a6:17:e6:19:38:94:8e:80:0d:48:2d:ad:67:cb:29: 41:a3:b4:da:e8:c4:0c:83:14:11:61:d9:27:fc:2d: 1b:11:f0:b0:36:c7:98:8d:4a:d4:7d:0b:8e:8a:d5: 14:60:83:84:cf:c6:13:4b:96:81:91:ab:55:de:49: 81:e3:32:b2:53:13:d3:a5:68:1e:86:53:b5:d7:16: 3c:91:cc:97:8c:09:ac:93:03:58:13:6d:33:a3:f8: cc:a3:15:c6:01:be:70:49:08:b6:d7:ff:1d:54:cb: 89:f7:ca:b6:ae:98:56:61:9d:94:15:9f:c1:2e:fc: f0:a5:71:cf:af:92:32:bc:56:60:aa:a8:c9:3f:bd: 34:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F0:B6:7F:9F:B1:9F:ED:51:BD:94:D5:E1:A1:11:06:31:45:55:6D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e7e048-17ef-4bc7-a201-80d9e52f87a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.176.0.0/16 Signature Algorithm: sha256WithRSAEncryption ab:97:6c:5a:62:25:7a:e1:a9:9b:70:de:54:ea:cc:ba:14:06: 8c:1f:4d:74:27:1d:52:1e:ae:e8:88:aa:6e:1d:f8:22:02:a9: a3:91:3f:2a:31:ce:a5:62:0d:41:67:c5:9b:79:9c:bd:50:27: 1d:c8:7e:52:2b:ce:0b:6b:ed:a5:dc:4c:3a:f1:cd:7d:dd:fe: 55:61:61:02:5c:67:8d:45:3c:0a:01:6b:e4:fc:fb:92:30:f1: 89:0d:9e:20:ba:6c:f0:f3:a4:54:30:5d:61:77:f1:15:83:c5: dd:76:53:ac:24:07:83:32:89:06:19:5e:6f:e4:10:74:b7:cd: 03:a5:00:2b:ee:19:7e:61:f9:f1:ed:aa:a6:be:ac:64:fa:c1: 10:f9:90:b4:3a:d5:c7:1d:2a:ba:c6:e8:f9:89:92:9b:39:71: 36:97:48:81:6b:db:b8:7b:2f:d0:e8:52:37:2a:a5:b4:0b:d9: 0f:b8:d5:ba:ad:74:79:f6:52:09:17:d3:16:1f:cf:a9:5f:c4: cd:a1:72:69:83:4b:63:f8:69:fc:c5:2c:92:00:6d:b4:b0:b4: aa:4a:91:35:4a:23:1c:8f:fb:66:20:22:0b:ca:39:42:e8:09: 3a:80:d9:52:83:b9:0a:fc:56:cb:56:b7:15:60:42:94:86:60: cb:0f:e6:6a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeXdYuHwNaaz5BO7SyQJgkJMYfgwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MDAzMTA3WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZWIzMDhkNjNiNjUyNTUxZDkwOGVkMmE0MDcxOTRmNmRl NWU5Y2UyZDczZDIxODkxNjBiZDg0MDRlZjY4YTUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkv8uy29OtBedsePKyvhOhHiWyh6s6bM20cDwJd01Ywkxg o0dqxSGGntllGb/sI4QZVvaslbNJtQ8AzFX2DZ6ju9X05uEV3MQk1XTgBfbYOe+1 PjXZ9TdE8XLfgzLFsZ2Xfmot1hn9TbS3KuGRg8Mh2LbWI0Qj8KYX5hk4lI6ADUgt rWfLKUGjtNroxAyDFBFh2Sf8LRsR8LA2x5iNStR9C46K1RRgg4TPxhNLloGRq1Xe SYHjMrJTE9OlaB6GU7XXFjyRzJeMCayTA1gTbTOj+MyjFcYBvnBJCLbX/x1Uy4n3 yraumFZhnZQVn8Eu/PClcc+vkjK8VmCqqMk/vTTDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhvC2f5+xn+1RvZTV4aERBjFFVW0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxZTdlMDQ4LTE3ZWYtNGJjNy1hMjAxLTgwZDllNTJmODdhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQsDANBgkqhkiG9w0BAQsFAAOCAQEAq5dsWmIleuGpm3DeVOrMuhQGjB9N dCcdUh6u6Iiqbh34IgKpo5E/KjHOpWINQWfFm3mcvVAnHch+UivOC2vtpdxMOvHN fd3+VWFhAlxnjUU8CgFr5Pz7kjDxiQ2eILps8POkVDBdYXfxFYPF3XZTrCQHgzKJ Bhleb+QQdLfNA6UAK+4ZfmH58e2qpr6sZPrBEPmQtDrVxx0qusbo+YmSmzlxNpdI gWvbuHsv0OhSNyqltAvZD7jVuq10efZSCRfTFh/PqV/EzaFyaYNLY/hp/MUskgBt tLC0qkqRNUojHI/7ZiAiC8o5QugJOoDZUoO5CvxWy1a3FWBClIZgyw/mag== -----END CERTIFICATE-----Generated at Mon Jul 21 18:10:15 2025 by rpki-client