$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f852fe0c-feed-4333-b2fa-93e1948b5904.roa File: f852fe0c-feed-4333-b2fa-93e1948b5904.roa (raw, json) Hash identifier: nzlFz/ZhN1kHa8jWfpN/bqZ0lsT8qK+7zF9DZ9vIRGg= Subject key identifier: 3D:E1:35:B3:13:7C:89:B8:3C:FC:11:46:A3:26:28:C2:55:C9:B2:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49630583DD8377F688FA1BE26C30BEFBC1B9B7B2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f852fe0c-feed-4333-b2fa-93e1948b5904.roa Signing time: Mon 07 Jul 2025 16:22:03 +0000 ROA not before: Mon 07 Jul 2025 16:22:03 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.196.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:63:05:83:dd:83:77:f6:88:fa:1b:e2:6c:30:be:fb:c1:b9:b7:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 16:22:03 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=7b9a7f2e2b647541042ce1d26beafe2966f7a6038faf2652fefeefaa2d999441, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:22:c1:5d:6f:ca:dc:83:d0:8e:da:a2:f1:e5: 25:bf:5c:9c:76:1a:3a:48:ca:54:65:66:33:2b:81: a5:d8:1b:a3:36:b9:0a:a6:90:0d:58:4d:54:9a:76: 81:e7:c9:25:2a:df:0e:d4:dd:7a:c4:c1:22:69:66: b8:75:6c:0a:a5:74:45:ff:0f:f1:f8:b0:cf:a7:bd: 65:ee:e2:49:36:21:97:f3:1f:ab:62:b8:02:ed:8f: b8:6f:0b:02:e6:0b:1a:0c:f9:25:62:1d:eb:fd:a8: 8f:10:cb:9a:06:9b:85:e5:f1:bd:c4:92:48:f9:96: 10:bd:b8:d7:b4:b4:3c:0e:29:e9:71:5f:c0:21:51: c9:f6:9d:1b:e6:4d:47:57:eb:ca:cb:15:05:88:37: 2d:ab:30:ba:f2:62:46:c7:dd:ad:fb:87:ab:fe:c6: bd:92:0e:dd:95:14:14:52:6a:85:20:0c:19:d2:9a: 0d:e8:ea:16:9f:e5:19:7c:cc:8f:61:a8:01:dd:3a: 45:2d:c0:1a:b8:02:8a:a8:06:4b:a2:39:8f:67:85: 46:03:19:f3:ff:ae:a1:92:6b:b7:17:b1:2b:ca:6e: e0:18:7e:77:8e:ad:7b:ca:38:cc:02:79:90:64:d2: 25:4a:f5:30:5f:36:28:5e:e4:6f:4b:37:b1:14:e2: a2:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:E1:35:B3:13:7C:89:B8:3C:FC:11:46:A3:26:28:C2:55:C9:B2:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f852fe0c-feed-4333-b2fa-93e1948b5904.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.196.0.0/16 Signature Algorithm: sha256WithRSAEncryption 61:2b:61:64:ed:b7:ce:06:68:81:16:a6:28:39:16:a4:6b:c8: 47:7f:52:8b:26:ba:03:e2:99:56:a3:35:3c:00:fd:07:8f:6f: 1a:fc:02:bb:36:03:c1:8e:ca:ad:69:39:85:16:1e:9c:a4:51: 9a:78:e0:4d:3d:8f:6f:bb:c7:0d:91:98:2e:01:cf:a0:f2:33: cf:ec:4e:8b:2c:8a:d5:e9:c9:14:2a:c5:dc:b4:c2:e5:54:c5: 4c:58:e6:69:cc:e4:86:0e:cd:eb:8e:ff:ad:94:16:e6:fb:6c: 9c:e7:52:6d:cd:35:66:b0:e1:8f:af:ab:94:38:45:53:7b:6b: 41:26:29:6e:ad:94:c0:59:1c:40:8a:ee:8b:15:dd:1b:08:aa: b6:e1:ac:96:2c:92:31:6d:73:2f:89:48:51:a5:e3:74:75:28: 75:93:9e:6c:28:8f:fd:83:3f:4c:ec:e8:de:5d:fb:2c:3f:67: da:21:d8:c5:b1:ad:52:7d:1a:d6:9b:95:c4:03:76:b1:58:72: e6:06:67:87:4d:aa:38:00:9a:f3:b2:cd:2d:d9:b4:ab:4b:de: 19:4f:eb:ae:43:ea:52:48:60:f1:5c:f0:b4:6e:34:b4:21:6b: 5c:0c:9b:00:eb:79:78:e2:fd:ae:e4:4a:c4:99:ab:9a:a1:49: da:85:66:22 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSWMFg92Dd/aI+hvibDC++8G5t7IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTYyMjAzWhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YjlhN2YyZTJiNjQ3NTQxMDQyY2UxZDI2YmVhZmUyOTY2 ZjdhNjAzOGZhZjI2NTJmZWZlZWZhYTJkOTk5NDQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyIsFdb8rcg9CO2qLx5SW/XJx2GjpIylRlZjMrgaXYG6M2 uQqmkA1YTVSadoHnySUq3w7U3XrEwSJpZrh1bAqldEX/D/H4sM+nvWXu4kk2IZfz H6tiuALtj7hvCwLmCxoM+SViHev9qI8Qy5oGm4Xl8b3Ekkj5lhC9uNe0tDwOKelx X8AhUcn2nRvmTUdX68rLFQWINy2rMLryYkbH3a37h6v+xr2SDt2VFBRSaoUgDBnS mg3o6haf5Rl8zI9hqAHdOkUtwBq4AoqoBkuiOY9nhUYDGfP/rqGSa7cXsSvKbuAY fneOrXvKOMwCeZBk0iVK9TBfNihe5G9LN7EU4qJ5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPeE1sxN8ibg8/BFGoyYowlXJsuUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y4NTJmZTBjLWZlZWQtNDMzMy1iMmZhLTkzZTE5NDhiNTkwNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQxDANBgkqhkiG9w0BAQsFAAOCAQEAYSthZO23zgZogRamKDkWpGvIR39S iya6A+KZVqM1PAD9B49vGvwCuzYDwY7KrWk5hRYenKRRmnjgTT2Pb7vHDZGYLgHP oPIzz+xOiyyK1enJFCrF3LTC5VTFTFjmaczkhg7N647/rZQW5vtsnOdSbc01ZrDh j6+rlDhFU3trQSYpbq2UwFkcQIruixXdGwiqtuGsliySMW1zL4lIUaXjdHUodZOe bCiP/YM/TOzo3l37LD9n2iHYxbGtUn0a1puVxAN2sVhy5gZnh02qOACa87LNLdm0 q0veGU/rrkPqUkhg8VzwtG40tCFrXAybAOt5eOL9ruRKxJmrmqFJ2oVmIg== -----END CERTIFICATE-----Generated at Mon Jul 21 18:08:48 2025 by rpki-client