$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f1c8f6-2174-4be4-a315-584040d5ba64.roa File: 25f1c8f6-2174-4be4-a315-584040d5ba64.roa (raw, json) Hash identifier: KX0AJahzsNofl2DSQHC+8iMhhHZEiJWZZf2DHry/sYo= Subject key identifier: 53:77:46:FD:FA:4C:4F:CE:A0:D1:FB:1B:02:0A:90:31:FE:CB:EE:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 445F285819CC9C9F827B5EF737EBEC24916107AF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f1c8f6-2174-4be4-a315-584040d5ba64.roa Signing time: Wed 16 Jul 2025 00:01:31 +0000 ROA not before: Wed 16 Jul 2025 00:01:31 +0000 ROA not after: Wed 20 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.100.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:5f:28:58:19:cc:9c:9f:82:7b:5e:f7:37:eb:ec:24:91:61:07:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 16 00:01:31 2025 GMT Not After : Aug 20 23:59:59 2025 GMT Subject: serialNumber=804226aac6cca2c431c8800fa8c9d7dd36d244a2ddd865db9e707bd2b980f305, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:53:c2:17:42:33:95:00:c9:2e:83:9a:3c:2b: 7a:9b:2f:2b:e9:85:0b:4e:d1:8d:d8:ac:f9:ad:85: b2:d8:fe:c4:78:8e:6d:73:2e:04:f5:30:02:43:8d: 54:8a:72:f7:9f:06:1b:53:94:1d:3b:f3:d3:ad:f8: 27:70:a4:a4:f1:40:57:99:49:e5:25:d8:b0:70:13: f1:4b:fe:48:d7:17:7a:05:87:1b:83:10:e8:0b:4b: 55:31:e8:f4:b4:1a:81:35:01:11:89:64:19:f0:24: cb:03:49:24:fa:c9:05:03:59:08:45:5d:a3:6e:0d: 3a:49:5b:7d:ac:b3:e7:47:4b:d9:fb:3f:17:ad:b9: bd:08:30:40:c8:d4:7c:97:cb:57:f6:9e:a4:47:2e: d9:f7:e5:52:a7:76:be:6e:93:55:dc:65:7f:f2:8f: f3:5c:12:99:ec:60:96:12:e2:be:71:80:08:b6:43: 6c:94:dc:95:db:c0:4d:3d:6e:5c:a9:a8:bd:a6:dc: 7d:5c:ee:6e:54:a6:8c:03:32:5a:03:bb:ea:2a:34: ec:a7:b1:37:e2:ee:d1:36:ff:c2:24:09:e4:43:ad: 9e:88:4e:44:0e:e0:a3:d6:08:cc:49:c4:a5:73:48: d3:ef:61:66:55:78:e9:8f:45:7f:7a:bc:af:d3:cc: f4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:77:46:FD:FA:4C:4F:CE:A0:D1:FB:1B:02:0A:90:31:FE:CB:EE:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f1c8f6-2174-4be4-a315-584040d5ba64.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.100.0.0/16 Signature Algorithm: sha256WithRSAEncryption 28:83:6b:ef:8d:d0:9e:6e:4a:45:e5:9b:1f:62:27:1f:0b:7b: 8f:47:c9:72:09:44:21:c0:99:e8:60:55:77:dc:f7:29:85:9b: 97:b5:d6:e6:5a:2e:bb:f9:ba:69:a6:fc:26:da:a7:74:ef:4a: bf:f1:4d:1c:1d:2e:dd:ce:25:6b:08:30:6b:10:b8:fd:2d:d6: 3f:42:39:47:1b:74:95:eb:14:c3:bf:87:31:01:2a:8f:66:68: 24:0d:f0:4c:ea:b0:6e:22:3a:cf:bc:d9:ea:c7:75:84:89:3b: fd:e6:3d:de:92:a1:3b:a9:b4:7c:37:20:b4:0c:c1:db:d8:68: 48:27:34:6f:4d:cf:01:05:fc:fa:07:72:f4:89:fe:5d:e9:e3: 1b:c8:e9:35:07:96:85:7f:f0:ff:88:59:c7:88:5e:eb:f2:d8: 54:56:16:09:ef:21:04:ce:6b:d0:3b:e8:db:3e:fd:cf:11:c9: 98:92:22:cf:05:46:46:91:c8:d1:bd:a0:17:1d:15:82:b6:95: 80:8f:f8:85:2b:2f:8d:2c:57:9f:06:8d:a6:1f:85:3c:63:a2: 93:5f:3b:8d:8a:4e:13:bd:b2:3e:e3:07:9d:4f:ce:e5:ea:4e: f7:69:05:e2:ff:e4:39:8e:90:7d:bc:56:a0:83:78:60:38:41: 1d:5f:ff:f3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURF8oWBnMnJ+Ce173N+vsJJFhB68wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE2MDAwMTMxWhcNMjUwODIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDQyMjZhYWM2Y2NhMmM0MzFjODgwMGZhOGM5ZDdkZDM2 ZDI0NGEyZGRkODY1ZGI5ZTcwN2JkMmI5ODBmMzA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuU8IXQjOVAMkug5o8K3qbLyvphQtO0Y3YrPmthbLY/sR4 jm1zLgT1MAJDjVSKcvefBhtTlB0789Ot+CdwpKTxQFeZSeUl2LBwE/FL/kjXF3oF hxuDEOgLS1Ux6PS0GoE1ARGJZBnwJMsDSST6yQUDWQhFXaNuDTpJW32ss+dHS9n7 Pxetub0IMEDI1HyXy1f2nqRHLtn35VKndr5uk1XcZX/yj/NcEpnsYJYS4r5xgAi2 Q2yU3JXbwE09blypqL2m3H1c7m5UpowDMloDu+oqNOynsTfi7tE2/8IkCeRDrZ6I TkQO4KPWCMxJxKVzSNPvYWZVeOmPRX96vK/TzPRhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUU3dG/fpMT86g0fsbAgqQMf7L7iowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI1ZjFjOGY2LTIxNzQtNGJlNC1hMzE1LTU4NDA0MGQ1YmE2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQZDANBgkqhkiG9w0BAQsFAAOCAQEAKINr743Qnm5KReWbH2InHwt7j0fJ cglEIcCZ6GBVd9z3KYWbl7XW5louu/m6aab8JtqndO9Kv/FNHB0u3c4lawgwaxC4 /S3WP0I5Rxt0lesUw7+HMQEqj2ZoJA3wTOqwbiI6z7zZ6sd1hIk7/eY93pKhO6m0 fDcgtAzB29hoSCc0b03PAQX8+gdy9In+XenjG8jpNQeWhX/w/4hZx4he6/LYVFYW Ce8hBM5r0Dvo2z79zxHJmJIizwVGRpHI0b2gFx0VgraVgI/4hSsvjSxXnwaNph+F PGOik187jYpOE72yPuMHnU/O5epO92kF4v/kOY6QfbxWoIN4YDhBHV//8w== -----END CERTIFICATE-----Generated at Tue Jul 22 05:09:35 2025 by rpki-client