$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9e8f4f-538b-40a7-8959-829f09f79955.roa File: 2f9e8f4f-538b-40a7-8959-829f09f79955.roa (raw, json) Hash identifier: WXNYollDdJqGjA58S2IeHwJG3ojKa2YyHgAivBBERw0= Subject key identifier: F8:9E:68:9F:75:F8:9A:6F:50:BD:2D:C6:76:C7:83:4D:C6:89:A0:6D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C5EF0D43EF4BEE80460C53659E18BD838AE7AC2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9e8f4f-538b-40a7-8959-829f09f79955.roa Signing time: Mon 07 Jul 2025 16:11:11 +0000 ROA not before: Mon 07 Jul 2025 16:11:11 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.52.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:5e:f0:d4:3e:f4:be:e8:04:60:c5:36:59:e1:8b:d8:38:ae:7a:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 16:11:11 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=06e4cf57483e31e3566ac3ff6a1247ad9ad4e2ba84ea0bdaf908c15425cf9d05, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7b:91:2d:1c:80:d1:ca:28:21:fe:8d:a2:32: 2e:87:15:3b:93:e0:be:a6:66:8b:79:80:25:2e:0a: 37:02:4c:85:d9:c1:e7:c8:02:00:ba:fa:b1:18:a0: a6:5d:e7:c5:ec:6f:45:07:e5:8c:79:82:0b:f8:ca: 96:41:dd:09:1f:cf:13:fc:69:13:af:81:52:75:38: 82:30:6c:78:d4:e2:d1:a7:ae:0a:4f:96:36:01:70: 11:2f:ee:5f:b9:24:7b:a2:bf:0c:a4:75:85:3e:ea: 71:0a:8e:ed:18:b9:59:a4:bf:1d:dc:2c:f5:f6:1b: d8:ec:32:98:94:5c:31:d5:d1:a8:ab:9d:2e:c0:ce: 95:95:22:c6:ea:7d:0e:9e:95:e3:60:54:5b:09:51: e6:71:07:f5:0b:d2:47:43:c4:0f:cd:4c:55:e5:2d: c5:b7:1d:15:2e:ec:aa:74:79:89:24:25:46:f5:b4: 30:79:4b:58:3d:fd:66:12:89:16:fc:b1:b0:07:27: a5:04:66:94:db:22:d5:19:cb:cf:bd:fc:e6:53:08: b7:fc:a4:98:2b:3f:44:ba:f8:a2:55:3e:59:71:3d: dc:1e:81:8f:94:55:a1:c8:ff:90:2f:93:37:95:ba: 52:35:42:b8:57:9b:af:8b:77:ea:8a:92:a8:24:f9: 59:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:9E:68:9F:75:F8:9A:6F:50:BD:2D:C6:76:C7:83:4D:C6:89:A0:6D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9e8f4f-538b-40a7-8959-829f09f79955.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.52.0.0/16 Signature Algorithm: sha256WithRSAEncryption 17:df:5d:88:86:1b:4b:66:f3:e0:73:96:03:e0:3e:55:7d:8d: ec:87:a3:44:1b:4b:e5:c0:2f:2b:1c:03:f7:4a:c7:a1:5c:27: b3:b4:f0:b4:ce:f3:04:6a:4a:b9:04:6d:76:4f:47:90:38:11: 8f:af:c6:56:1d:8c:f9:8b:88:87:0d:be:33:7d:af:51:6e:ae: 59:cf:d0:6a:bf:ba:14:f6:5f:9a:e1:9b:42:00:b4:8d:66:26: b4:18:30:92:37:02:68:e2:28:4c:53:f2:19:e7:e2:2d:e8:a4: 55:c6:a8:42:18:5b:8d:2b:33:5a:53:d1:0f:e8:13:af:a9:04: 75:90:9e:71:ef:df:1c:5d:9f:fd:db:0d:4f:7e:97:90:ec:66: 2a:d0:74:98:8c:65:62:a9:72:2f:d5:2f:91:c9:2c:e6:b6:d8: db:7c:47:e7:80:0a:2b:8f:65:72:50:e7:18:0e:58:6c:d9:3c: c6:d9:0e:a7:1b:43:c0:96:e2:62:ba:6e:fe:88:7f:28:23:28: 0f:cc:39:6d:b3:0e:97:c7:2d:28:73:dd:f7:92:0d:0e:26:21: a3:8e:56:03:a1:e0:af:2c:14:7a:47:02:ab:f0:e1:ec:ef:53: 6a:11:1c:0e:ac:2e:98:99:d8:2f:cc:55:05:d8:81:15:f7:87: 63:65:eb:19 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfF7w1D70vugEYMU2WeGL2DiuesIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTYxMTExWhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNmU0Y2Y1NzQ4M2UzMWUzNTY2YWMzZmY2YTEyNDdhZDlh ZDRlMmJhODRlYTBiZGFmOTA4YzE1NDI1Y2Y5ZDA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/e5EtHIDRyigh/o2iMi6HFTuT4L6mZot5gCUuCjcCTIXZ wefIAgC6+rEYoKZd58Xsb0UH5Yx5ggv4ypZB3QkfzxP8aROvgVJ1OIIwbHjU4tGn rgpPljYBcBEv7l+5JHuivwykdYU+6nEKju0YuVmkvx3cLPX2G9jsMpiUXDHV0air nS7AzpWVIsbqfQ6eleNgVFsJUeZxB/UL0kdDxA/NTFXlLcW3HRUu7Kp0eYkkJUb1 tDB5S1g9/WYSiRb8sbAHJ6UEZpTbItUZy8+9/OZTCLf8pJgrP0S6+KJVPllxPdwe gY+UVaHI/5AvkzeVulI1QrhXm6+Ld+qKkqgk+VmDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU+J5on3X4mm9QvS3GdseDTcaJoG0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmOWU4ZjRmLTUzOGItNDBhNy04OTU5LTgyOWYwOWY3OTk1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQNDANBgkqhkiG9w0BAQsFAAOCAQEAF99diIYbS2bz4HOWA+A+VX2N7Iej RBtL5cAvKxwD90rHoVwns7TwtM7zBGpKuQRtdk9HkDgRj6/GVh2M+YuIhw2+M32v UW6uWc/Qar+6FPZfmuGbQgC0jWYmtBgwkjcCaOIoTFPyGefiLeikVcaoQhhbjSsz WlPRD+gTr6kEdZCece/fHF2f/dsNT36XkOxmKtB0mIxlYqlyL9Uvkcks5rbY23xH 54AKK49lclDnGA5YbNk8xtkOpxtDwJbiYrpu/oh/KCMoD8w5bbMOl8ctKHPd95IN DiYho45WA6HgrywUekcCq/Dh7O9TahEcDqwumJnYL8xVBdiBFfeHY2XrGQ== -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:07 2025 by rpki-client