$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5831f36f-50de-43df-b1e3-ee6e835954e3.roa File: 5831f36f-50de-43df-b1e3-ee6e835954e3.roa (raw, json) Hash identifier: GnHIiGHN2yNebRFf4mzcmOFo/k48xZcMM0PhhKQ4JJ4= Subject key identifier: 9F:C2:6A:98:03:E3:2C:C0:5E:FC:4F:19:6F:7E:57:D8:10:41:A0:28 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52678FF60F33EA516E78599BECE39035CB7FA49B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5831f36f-50de-43df-b1e3-ee6e835954e3.roa Signing time: Mon 30 Jun 2025 15:00:28 +0000 ROA not before: Mon 30 Jun 2025 15:00:28 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.66.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:67:8f:f6:0f:33:ea:51:6e:78:59:9b:ec:e3:90:35:cb:7f:a4:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 30 15:00:28 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=5c1d4dff67a727234248333998545c6dbcd57a2b328c16efd49e4b583519900f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:32:87:f4:44:93:fb:cb:42:6c:a7:9e:73:9f: 40:46:76:12:60:ba:66:df:5a:94:79:cf:98:cd:7b: 4e:af:31:73:ab:a7:78:b0:85:f0:f0:43:f0:e7:c6: ec:80:95:8e:26:9c:8b:c7:a5:2f:0e:c8:f1:b4:25: 9b:87:d3:ac:37:b7:a5:06:9b:34:e9:c0:da:65:db: eb:71:9d:2f:d3:4c:88:45:87:29:38:79:39:0d:37: 2e:91:0d:99:f7:61:3b:b7:18:f3:5f:d3:19:7a:92: 4f:2a:c0:80:fe:1b:d1:46:6e:6d:52:c3:20:8c:c1: bf:42:a0:29:33:b0:35:9e:d8:4c:99:98:87:54:e5: aa:d6:f2:c4:47:a0:b7:87:5e:1d:d6:22:eb:ec:55: e3:53:93:01:a0:20:d6:f7:e0:0b:fb:5c:27:58:fb: 5a:dc:4f:24:52:3a:bc:89:36:37:52:fc:c4:63:47: 01:d6:6f:a9:5e:fa:7b:a0:c3:38:f1:7d:52:5f:d3: ed:df:dc:62:59:d9:23:8e:7b:82:f8:50:bc:7e:5a: 9c:7a:34:49:c4:5c:d0:d0:eb:23:fc:4e:dc:e1:d9: fc:00:bd:99:60:f7:18:b7:db:74:ff:f4:b2:f6:4e: 3b:d0:1b:ff:6c:22:02:e7:ca:11:b2:67:f8:71:e5: b8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:C2:6A:98:03:E3:2C:C0:5E:FC:4F:19:6F:7E:57:D8:10:41:A0:28 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5831f36f-50de-43df-b1e3-ee6e835954e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.66.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9f:56:35:ff:30:f3:64:61:9d:b3:f1:7a:ae:55:97:47:b2:e1: 42:5d:4c:23:4f:51:2e:48:b6:78:a7:44:19:97:7f:ab:c0:99: 5e:a8:94:83:51:81:74:02:b2:28:ba:c0:82:49:13:ae:b2:1a: 2e:b2:ec:7e:e7:54:12:d7:ec:a3:e9:3c:ae:37:14:a2:50:5a: c2:3d:31:0f:64:e7:82:a0:28:c9:ae:64:5a:4a:d5:b5:26:0e: 3f:6d:5d:66:05:5d:55:05:b4:eb:0c:e7:6d:a1:d7:b2:f6:92: 09:25:f3:04:05:c8:00:e5:25:f0:70:00:95:84:e3:93:58:c6: 93:03:a1:c3:f8:e1:ab:ad:17:1a:94:fb:38:f7:f5:39:5a:23: 02:45:4c:82:b5:7a:ad:41:0a:87:0f:c7:0b:9e:c6:74:74:1f: 04:eb:76:a5:8d:cb:79:0a:7d:39:7b:7e:82:88:a2:a3:ea:07: d1:29:ba:a8:22:6c:3e:c5:dd:52:5c:c9:99:4b:75:65:d0:2a: 9a:c5:6a:65:d0:86:49:3b:86:c7:d8:2f:6d:7c:7e:69:d1:52: 28:c8:b1:dd:09:c3:d2:b1:b2:64:c3:c6:a8:4a:e4:06:d3:d5: 02:f1:f5:ea:78:66:9f:19:5b:94:13:dd:df:b1:93:7b:46:2b: 22:0b:b0:23 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUmeP9g8z6lFueFmb7OOQNct/pJswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjMwMTUwMDI4WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzFkNGRmZjY3YTcyNzIzNDI0ODMzMzk5ODU0NWM2ZGJj ZDU3YTJiMzI4YzE2ZWZkNDllNGI1ODM1MTk5MDBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyMof0RJP7y0Jsp55zn0BGdhJgumbfWpR5z5jNe06vMXOr p3iwhfDwQ/DnxuyAlY4mnIvHpS8OyPG0JZuH06w3t6UGmzTpwNpl2+txnS/TTIhF hyk4eTkNNy6RDZn3YTu3GPNf0xl6kk8qwID+G9FGbm1SwyCMwb9CoCkzsDWe2EyZ mIdU5arW8sRHoLeHXh3WIuvsVeNTkwGgINb34Av7XCdY+1rcTyRSOryJNjdS/MRj RwHWb6le+nugwzjxfVJf0+3f3GJZ2SOOe4L4ULx+Wpx6NEnEXNDQ6yP8Ttzh2fwA vZlg9xi323T/9LL2TjvQG/9sIgLnyhGyZ/hx5bg1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUn8JqmAPjLMBe/E8Zb35X2BBBoCgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4MzFmMzZmLTUwZGUtNDNkZi1iMWUzLWVlNmU4MzU5NTRlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQQjANBgkqhkiG9w0BAQsFAAOCAQEAn1Y1/zDzZGGds/F6rlWXR7LhQl1M I09RLki2eKdEGZd/q8CZXqiUg1GBdAKyKLrAgkkTrrIaLrLsfudUEtfso+k8rjcU olBawj0xD2TngqAoya5kWkrVtSYOP21dZgVdVQW06wznbaHXsvaSCSXzBAXIAOUl 8HAAlYTjk1jGkwOhw/jhq60XGpT7OPf1OVojAkVMgrV6rUEKhw/HC57GdHQfBOt2 pY3LeQp9OXt+goiio+oH0Sm6qCJsPsXdUlzJmUt1ZdAqmsVqZdCGSTuGx9gvbXx+ adFSKMix3QnD0rGyZMPGqErkBtPVAvH16nhmnxlblBPd37GTe0YrIguwIw== -----END CERTIFICATE-----Generated at Tue Jul 22 04:31:17 2025 by rpki-client