$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/811fca13-b40a-4fb1-bc7c-6c599637fd2d.roa File: 811fca13-b40a-4fb1-bc7c-6c599637fd2d.roa (raw, json) Hash identifier: 9r6sNbFtscS2R0bgaPRCAp72nUN+vLVe+m2HRwGM/lo= Subject key identifier: F6:6A:46:93:B3:E8:FB:44:19:46:01:A6:11:63:68:E4:05:82:DD:11 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0367FB7D9E696545E7B45EFFC5037B43FFC73754 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/811fca13-b40a-4fb1-bc7c-6c599637fd2d.roa Signing time: Wed 16 Jul 2025 00:11:10 +0000 ROA not before: Wed 16 Jul 2025 00:11:10 +0000 ROA not after: Wed 20 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.92.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:67:fb:7d:9e:69:65:45:e7:b4:5e:ff:c5:03:7b:43:ff:c7:37:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 16 00:11:10 2025 GMT Not After : Aug 20 23:59:59 2025 GMT Subject: serialNumber=10acf8d9c0551ae200f21392a77e14b76a2eabbd0ebd5a77df81638ce4ae03ef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:97:df:cc:f0:ee:c6:df:69:82:88:02:e6:88: 2b:39:88:aa:37:69:0a:c0:52:52:c4:e6:a9:1e:07: db:43:13:2f:90:e4:29:b0:cc:6a:76:ee:b0:ad:25: d0:8e:e3:08:c3:26:ba:b5:9e:3f:b5:82:20:73:b2: 8a:aa:6e:75:db:6f:01:02:2c:a0:5d:67:00:1b:5f: a4:29:84:2d:88:55:35:6d:67:20:b2:82:22:4b:ad: 5e:74:7a:70:40:ec:5f:81:c3:24:64:dd:3d:18:46: ce:1e:49:62:57:25:19:7f:17:1e:52:14:ad:8b:98: 39:78:ea:18:c9:54:2a:30:b4:ff:ca:88:a0:fb:3d: 7f:a2:71:ce:53:0d:84:36:45:92:9f:11:5c:94:a6: a6:f2:85:d5:30:70:4a:60:0d:2b:3c:46:4e:87:ea: 80:e0:c5:38:e2:2a:75:86:74:25:4b:03:5a:b4:9b: 19:82:bf:dd:bf:72:6c:87:99:21:eb:4b:14:9c:97: bc:e2:d2:f0:88:97:31:43:15:5a:86:9b:15:6a:b8: b9:c2:c4:c6:fd:8c:50:80:ab:ed:eb:c0:98:a9:b7: 62:85:b9:25:f0:45:5a:b4:2f:ac:7d:bf:80:e1:32: 46:45:59:3d:39:94:b3:fa:a9:9f:d4:da:9a:e1:66: 6a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:6A:46:93:B3:E8:FB:44:19:46:01:A6:11:63:68:E4:05:82:DD:11 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/811fca13-b40a-4fb1-bc7c-6c599637fd2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.92.0.0/16 Signature Algorithm: sha256WithRSAEncryption 77:a2:07:6e:ef:b8:0d:bf:1b:31:f8:cf:e0:c7:f7:74:24:99: 7a:4a:32:10:f8:52:19:ec:f9:e6:df:70:95:7c:e1:5d:e6:5f: 18:06:5a:40:c9:96:09:f4:56:db:f5:d3:43:1b:18:a5:80:a9: 5a:17:8f:ea:d9:fc:7c:fc:ca:b8:ab:dc:b0:6b:ed:2a:e3:dd: 44:f6:8a:c8:5c:6b:a6:d3:c9:6e:8e:c9:5f:13:42:a3:9e:b9: da:5e:00:7e:1a:fc:f3:c5:00:7d:71:0e:e9:60:f9:73:f3:7c: 52:ec:6e:88:2f:b5:d1:47:49:42:4d:9d:60:72:b9:5e:2e:a2: 48:1b:60:e2:17:23:a9:96:d8:6e:34:38:0a:6f:be:df:12:a5: 58:c9:d1:eb:c3:00:ef:6f:f1:c0:95:97:7b:78:2e:26:cf:dd: 7d:5b:d2:a9:8d:38:b9:9e:30:e6:f1:82:69:80:f1:88:c8:68: 35:49:5e:b0:5a:86:d8:ba:16:1d:46:82:ab:a8:fb:67:43:71: 22:ca:a7:05:5c:dc:3e:32:36:81:99:bc:aa:db:82:1c:2d:c1: b6:ac:c0:be:7c:54:c8:ca:09:f4:0c:ac:65:a7:65:e4:07:60: 52:f5:ea:97:f7:e8:97:92:db:69:d8:b5:bf:d2:8f:4b:c1:2d: 03:62:6c:5f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUA2f7fZ5pZUXntF7/xQN7Q//HN1QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE2MDAxMTEwWhcNMjUwODIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMGFjZjhkOWMwNTUxYWUyMDBmMjEzOTJhNzdlMTRiNzZh MmVhYmJkMGViZDVhNzdkZjgxNjM4Y2U0YWUwM2VmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0l9/M8O7G32mCiALmiCs5iKo3aQrAUlLE5qkeB9tDEy+Q 5CmwzGp27rCtJdCO4wjDJrq1nj+1giBzsoqqbnXbbwECLKBdZwAbX6QphC2IVTVt ZyCygiJLrV50enBA7F+BwyRk3T0YRs4eSWJXJRl/Fx5SFK2LmDl46hjJVCowtP/K iKD7PX+icc5TDYQ2RZKfEVyUpqbyhdUwcEpgDSs8Rk6H6oDgxTjiKnWGdCVLA1q0 mxmCv92/cmyHmSHrSxScl7zi0vCIlzFDFVqGmxVquLnCxMb9jFCAq+3rwJipt2KF uSXwRVq0L6x9v4DhMkZFWT05lLP6qZ/U2prhZmqZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9mpGk7Po+0QZRgGmEWNo5AWC3REwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgxMWZjYTEzLWI0MGEtNGZiMS1iYzdjLTZjNTk5NjM3ZmQyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQXDANBgkqhkiG9w0BAQsFAAOCAQEAd6IHbu+4Db8bMfjP4Mf3dCSZekoy EPhSGez55t9wlXzhXeZfGAZaQMmWCfRW2/XTQxsYpYCpWheP6tn8fPzKuKvcsGvt KuPdRPaKyFxrptPJbo7JXxNCo5652l4Afhr888UAfXEO6WD5c/N8UuxuiC+10UdJ Qk2dYHK5Xi6iSBtg4hcjqZbYbjQ4Cm++3xKlWMnR68MA72/xwJWXe3guJs/dfVvS qY04uZ4w5vGCaYDxiMhoNUlesFqG2LoWHUaCq6j7Z0NxIsqnBVzcPjI2gZm8qtuC HC3BtqzAvnxUyMoJ9AysZadl5AdgUvXql/fol5Lbadi1v9KPS8EtA2JsXw== -----END CERTIFICATE-----Generated at Mon Jul 21 18:05:47 2025 by rpki-client