$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27c707dd-6163-4dce-bd57-52cde399da8e.roa File: 27c707dd-6163-4dce-bd57-52cde399da8e.roa (raw, json) Hash identifier: m5QBw2hhCRKUmUCUJHS5QG4/2MofQZrDGXhdrrhMmsc= Subject key identifier: E9:2D:BD:99:C1:93:50:31:F4:60:CF:3D:7D:42:AF:99:C3:AC:8F:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3BFB7A764C74BEA55244D0662395AFF014626C5A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27c707dd-6163-4dce-bd57-52cde399da8e.roa Signing time: Mon 11 Aug 2025 15:21:35 +0000 ROA not before: Mon 11 Aug 2025 15:21:35 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.90.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:fb:7a:76:4c:74:be:a5:52:44:d0:66:23:95:af:f0:14:62:6c:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:21:35 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=5ad2a9c20051d72e122eaaf3cf71799cbdc8539d788bedafe24baf7de3fb3c0f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e9:e8:d9:43:00:19:08:f6:8c:2b:2b:8f:7a: ef:a8:a9:10:8a:7e:6b:a0:42:f5:68:6a:d5:9f:ba: 7a:20:f8:60:9a:3c:d8:5f:e6:32:2a:a6:ad:38:98: 29:d7:a4:fe:37:a5:df:a3:98:40:de:d4:49:1c:f8: 5d:f5:22:6a:02:1e:85:27:a7:8c:1c:3f:2c:df:ee: ef:27:85:aa:2f:25:ef:8e:76:2f:e2:aa:a4:dc:06: 0b:c9:c0:a8:11:a4:a1:95:6e:c3:d4:8f:13:5a:ce: 93:0a:31:c8:10:7b:b6:45:25:47:ed:c1:29:b2:c2: ea:bf:8f:01:e8:d2:6a:2d:0d:b5:44:b5:f0:0d:68: 01:f9:9e:38:b2:9e:5a:f8:02:25:44:d5:c6:97:20: b2:6c:42:8f:9d:dc:aa:b3:19:98:d9:2d:58:db:55: 3e:ed:c7:96:60:4d:32:0f:5f:af:37:cf:96:2a:a6: ba:87:31:15:99:27:16:cd:f8:87:a2:4e:97:91:aa: ce:f2:01:29:45:5f:f0:a4:2c:58:09:17:4a:ee:9e: 9a:8e:59:f8:a5:b3:2a:26:14:cf:2f:74:4f:a0:2f: 98:b3:a9:1b:10:ab:4a:79:8c:9c:d8:d2:de:d8:13: 7a:aa:14:15:c0:94:a2:11:82:1f:8e:64:14:2f:50: c9:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:2D:BD:99:C1:93:50:31:F4:60:CF:3D:7D:42:AF:99:C3:AC:8F:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27c707dd-6163-4dce-bd57-52cde399da8e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.90.0.0/16 Signature Algorithm: sha256WithRSAEncryption 49:1f:b1:37:60:fa:79:56:a6:c6:c0:fb:a0:28:61:9f:b7:dd: a2:02:4c:97:60:2e:22:fa:66:e6:8f:cc:d6:11:24:99:8b:ff: 22:43:6f:95:08:54:ad:c8:80:36:7c:c1:68:32:33:bd:96:38: 5b:62:54:ef:7f:d2:71:3c:d3:46:ef:e3:32:f0:a3:ab:3b:41: d1:5b:00:e8:fb:71:ab:c0:4c:36:a7:5a:a7:db:bb:ad:98:52: b8:1c:c2:ff:b4:c0:5a:da:0f:8b:f9:3a:86:50:96:31:a5:34: 4e:45:d4:e6:8b:ac:6c:1b:c6:fc:25:98:e5:c7:ec:b0:69:01: ce:db:4a:09:a4:6d:a1:c2:84:2d:04:a7:f4:c8:da:f2:c8:9d: 00:28:1d:b7:ae:85:8f:43:50:a6:e7:1f:75:73:5c:c6:39:be: cd:c6:80:39:93:69:80:4e:9c:21:8f:71:db:6e:54:31:b0:b4: ff:34:35:fa:f6:d2:3b:fe:5e:69:7b:d7:d8:53:7c:f6:68:bd: 6e:9d:a4:af:ba:bc:62:a6:c6:1a:eb:36:a2:df:a9:55:55:94: 50:2c:b1:a5:5b:f7:20:a8:fc:a1:27:05:75:e8:50:af:04:f0: 8c:41:4a:c5:6c:ba:8d:45:bb:19:8a:1e:a7:f3:65:3a:06:27: 84:b9:bf:9f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUO/t6dkx0vqVSRNBmI5Wv8BRibFowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUyMTM1WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YWQyYTljMjAwNTFkNzJlMTIyZWFhZjNjZjcxNzk5Y2Jk Yzg1MzlkNzg4YmVkYWZlMjRiYWY3ZGUzZmIzYzBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf6ejZQwAZCPaMKyuPeu+oqRCKfmugQvVoatWfunog+GCa PNhf5jIqpq04mCnXpP43pd+jmEDe1Ekc+F31ImoCHoUnp4wcPyzf7u8nhaovJe+O di/iqqTcBgvJwKgRpKGVbsPUjxNazpMKMcgQe7ZFJUftwSmywuq/jwHo0motDbVE tfANaAH5njiynlr4AiVE1caXILJsQo+d3KqzGZjZLVjbVT7tx5ZgTTIPX683z5Yq prqHMRWZJxbN+IeiTpeRqs7yASlFX/CkLFgJF0runpqOWfilsyomFM8vdE+gL5iz qRsQq0p5jJzY0t7YE3qqFBXAlKIRgh+OZBQvUMnPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6S29mcGTUDH0YM89fUKvmcOsj0kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI3YzcwN2RkLTYxNjMtNGRjZS1iZDU3LTUyY2RlMzk5ZGE4ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQWjANBgkqhkiG9w0BAQsFAAOCAQEASR+xN2D6eVamxsD7oChhn7fdogJM l2AuIvpm5o/M1hEkmYv/IkNvlQhUrciANnzBaDIzvZY4W2JU73/ScTzTRu/jMvCj qztB0VsA6Ptxq8BMNqdap9u7rZhSuBzC/7TAWtoPi/k6hlCWMaU0TkXU5ousbBvG /CWY5cfssGkBzttKCaRtocKELQSn9Mja8sidACgdt66Fj0NQpucfdXNcxjm+zcaA OZNpgE6cIY9x225UMbC0/zQ1+vbSO/5eaXvX2FN89mi9bp2kr7q8YqbGGus2ot+p VVWUUCyxpVv3IKj8oScFdehQrwTwjEFKxWy6jUW7GYoep/NlOgYnhLm/nw== -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:03 2025 by rpki-client