$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16ffac70-214d-4030-80b9-261fde777a67.roa File: 16ffac70-214d-4030-80b9-261fde777a67.roa (raw, json) Hash identifier: 2Q2QUP89m1Lkok/sKPA1z1RVNbSoVT6qxVF+Jurqecw= Subject key identifier: CD:AD:EC:46:F6:95:0D:57:77:A6:83:FD:D0:54:87:69:C4:5D:81:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BEEB37879F96537973FBB7B12304ED868C4B3FD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16ffac70-214d-4030-80b9-261fde777a67.roa Signing time: Sat 06 Sep 2025 00:22:08 +0000 ROA not before: Sat 06 Sep 2025 00:22:08 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 32.168.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:ee:b3:78:79:f9:65:37:97:3f:bb:7b:12:30:4e:d8:68:c4:b3:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:22:08 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=892b1e084e421131ea2fbcc2db9ccd41e72cc3a7763775ed0ebc578c81d0f08c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:58:c2:b8:4f:df:44:8c:44:69:90:e2:51:a0: b2:8d:5a:eb:37:f2:f1:09:e3:fa:1c:2d:8e:c2:54: 89:94:da:46:93:f7:7d:9b:a2:f8:f4:c1:f3:b4:14: d0:88:75:cb:15:46:45:fb:74:f9:0e:d8:02:4d:1d: 63:fb:f4:fd:ad:bf:92:f9:7e:fd:47:31:ae:7a:e7: 2a:a9:b3:3a:4b:fc:87:24:2f:b9:8e:43:6b:35:b5: f2:17:86:1a:3b:a3:20:31:d0:30:20:03:dd:57:42: f5:3c:26:b6:a4:ee:98:15:d5:b9:1d:66:0f:02:bc: 92:b3:24:fb:54:02:e5:19:62:04:e5:4b:7b:ef:09: e1:12:0a:f4:f8:99:83:82:71:0d:13:65:36:22:8b: 4d:1f:e5:ee:4f:b4:54:a0:c0:57:2e:67:33:af:7a: 46:2a:5e:1f:ae:22:39:6f:05:a4:0e:77:8a:aa:5e: 0f:4d:71:00:d6:4d:70:b5:42:fb:a2:d1:39:ae:88: 69:e9:6c:81:c2:bd:84:f4:f7:64:cc:ac:be:96:01: a6:97:4a:48:bd:a8:37:83:73:97:ef:1d:13:7d:89: 75:10:03:e2:0c:af:8e:cc:90:f8:58:25:a6:dc:c6: b4:f1:9c:a6:b6:fc:b4:11:51:80:66:24:6b:9b:7e: d4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:AD:EC:46:F6:95:0D:57:77:A6:83:FD:D0:54:87:69:C4:5D:81:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16ffac70-214d-4030-80b9-261fde777a67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.168.0.0/14 Signature Algorithm: sha256WithRSAEncryption d3:97:12:b2:08:16:c0:ab:b2:98:30:09:14:7a:b5:f8:95:9f: ab:41:f0:bf:ab:f9:8e:a7:11:18:17:8e:26:b6:dd:71:3a:8b: c6:96:04:b4:1c:2c:dc:29:92:93:37:10:43:13:b0:63:7f:f3: ea:53:8d:dc:1f:be:9d:f9:d0:b8:e8:77:1b:7f:7a:60:3e:82: cd:5b:ec:02:79:c0:1d:d0:d4:f1:bf:df:5a:59:4f:18:03:8e: ef:d5:5f:0b:f7:a0:78:14:55:f6:88:bd:b8:9f:fb:ee:42:96: 86:a8:30:66:0d:38:2d:0f:da:e9:09:da:59:fd:a0:84:f8:de: de:b0:f0:29:7e:ef:72:dc:37:4a:61:e1:12:62:d4:8b:e3:1e: ef:41:e2:a7:06:0b:0a:e4:5e:b0:d6:ef:99:2c:67:e4:59:2d: 4d:32:ae:aa:74:76:fc:e8:5f:03:30:02:47:3c:68:e8:51:19: e9:f1:27:b1:9e:30:21:07:56:9f:28:0d:65:a7:db:ee:c1:40: 4e:93:b2:8c:8a:b3:90:4b:ac:64:30:13:f8:ca:db:04:ba:9a: df:60:24:c8:19:0c:46:f4:83:da:46:16:eb:ce:8e:0a:a4:4b: da:38:ba:56:12:50:89:18:b4:93:e0:6b:87:66:15:89:9e:e8: 4b:26:3d:5d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUe+6zeHn5ZTeXP7t7EjBO2GjEs/0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAyMjA4WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTJiMWUwODRlNDIxMTMxZWEyZmJjYzJkYjljY2Q0MWU3 MmNjM2E3NzYzNzc1ZWQwZWJjNTc4YzgxZDBmMDhjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpWMK4T99EjERpkOJRoLKNWus38vEJ4/ocLY7CVImU2kaT 932bovj0wfO0FNCIdcsVRkX7dPkO2AJNHWP79P2tv5L5fv1HMa565yqpszpL/Ick L7mOQ2s1tfIXhho7oyAx0DAgA91XQvU8Jrak7pgV1bkdZg8CvJKzJPtUAuUZYgTl S3vvCeESCvT4mYOCcQ0TZTYii00f5e5PtFSgwFcuZzOvekYqXh+uIjlvBaQOd4qq Xg9NcQDWTXC1Qvui0TmuiGnpbIHCvYT092TMrL6WAaaXSki9qDeDc5fvHRN9iXUQ A+IMr47MkPhYJabcxrTxnKa2/LQRUYBmJGubftR9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUza3sRvaVDVd3poP90FSHacRdgQQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2ZmZhYzcwLTIxNGQtNDAzMC04MGI5LTI2MWZkZTc3N2E2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIgqDANBgkqhkiG9w0BAQsFAAOCAQEA05cSsggWwKuymDAJFHq1+JWfq0Hw v6v5jqcRGBeOJrbdcTqLxpYEtBws3CmSkzcQQxOwY3/z6lON3B++nfnQuOh3G396 YD6CzVvsAnnAHdDU8b/fWllPGAOO79VfC/egeBRV9oi9uJ/77kKWhqgwZg04LQ/a 6QnaWf2ghPje3rDwKX7vctw3SmHhEmLUi+Me70HipwYLCuResNbvmSxn5FktTTKu qnR2/OhfAzACRzxo6FEZ6fEnsZ4wIQdWnygNZafb7sFATpOyjIqzkEusZDAT+Mrb BLqa32AkyBkMRvSD2kYW686OCqRL2ji6VhJQiRi0k+Brh2YViZ7oSyY9XQ== -----END CERTIFICATE-----Generated at Thu Sep 18 13:40:09 2025 by rpki-client