$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa File: 36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa (raw, json) Hash identifier: V/3tlgNl8h9tiBHOOS4nCUW0v3zl9YFgNlPAJFWuzbQ= Subject key identifier: CE:4D:D8:35:1D:DE:B8:04:CA:80:89:D1:5C:BA:B1:1E:07:E5:13:C2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05CBE7206C4EEE9BBDF34B350BD5355B3DA1BEC3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa Signing time: Mon 18 Aug 2025 15:10:29 +0000 ROA not before: Mon 18 Aug 2025 15:10:29 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.15.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:cb:e7:20:6c:4e:ee:9b:bd:f3:4b:35:0b:d5:35:5b:3d:a1:be:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:10:29 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=cba362417efc0fdc3939c7d68e1827879b6e282c8e017cb947341b1349d404ad, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:74:21:72:24:0b:3d:0e:61:2a:5c:89:d0:58: a2:53:bc:4e:23:68:72:68:b8:66:87:00:21:83:8e: 84:e2:26:97:10:36:8a:58:02:80:cc:c1:54:1a:b6: f4:1a:aa:d3:bb:e7:ad:cf:ae:d3:dd:f1:c0:e0:a1: 18:b6:62:87:b5:39:17:f0:67:03:6c:41:95:e7:44: ff:28:38:39:4d:f5:7c:b1:d7:a7:c9:ec:9f:02:af: f7:77:dd:39:63:00:bd:e2:a0:33:d5:e4:cb:26:9f: 40:5d:80:d9:1e:c7:46:ec:22:b2:dc:93:f8:3c:61: 7e:bb:c4:bc:8b:6d:d6:67:f1:66:3a:7d:d3:cb:81: 03:f2:99:77:65:ac:7b:7f:f2:7f:72:c7:fe:af:78: bc:8a:ec:f3:de:3b:13:c1:7d:ab:5c:06:7d:a6:85: 01:3a:ad:0e:a6:37:21:d7:ed:b0:ce:13:4e:9a:9c: 52:91:31:b9:79:b5:c7:6f:21:50:21:5a:4f:83:21: 8f:95:ed:70:74:a0:7e:48:9e:43:2f:5e:c3:4e:8d: 34:ad:c2:b7:42:1d:19:d9:97:31:63:8a:d3:d0:74: fa:12:1a:f3:51:4d:f4:74:e3:01:a2:c5:31:bb:b7: a8:dc:aa:37:d7:9b:c4:4c:9c:7b:8b:15:f5:17:60: 6c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:4D:D8:35:1D:DE:B8:04:CA:80:89:D1:5C:BA:B1:1E:07:E5:13:C2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36bd616e-29a6-4e36-8ec5-5fa954c5fb9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.15.0.0/16 Signature Algorithm: sha256WithRSAEncryption d6:44:0e:0f:e5:99:a7:e1:3b:d5:66:40:af:c1:a8:33:94:d6: 4f:3a:c9:12:de:86:82:aa:e6:f1:34:1a:01:4e:6e:79:be:00: 70:46:5c:b5:94:cc:62:77:ac:35:78:b2:90:6d:de:71:74:05: a1:27:df:20:30:fa:49:aa:3c:72:c0:64:83:5c:23:76:10:df: e5:f7:23:48:1b:6c:ad:ac:73:d5:cb:e3:71:5c:e1:29:10:cd: 65:a9:6b:ed:3a:bc:ef:80:53:e3:5c:69:19:34:62:00:9e:a4: f2:05:a2:c5:b9:72:6f:62:d9:71:2e:7a:2b:e1:c8:04:cc:09: 54:22:b4:e5:a0:61:d2:0c:8b:47:6c:97:28:30:99:e2:2a:36: bb:a5:f7:21:94:d1:5e:59:aa:9b:59:b2:d1:7b:39:f8:f8:f2: 75:f1:f1:bb:d8:74:79:9d:5e:12:73:1d:35:30:5f:ca:8c:bb: a9:cc:4f:ab:95:02:2b:15:bb:c4:78:65:ce:9b:96:d8:0c:6c: e4:7f:d4:33:07:b7:d9:31:a6:ce:e2:ad:60:80:be:df:3f:ba: ae:3d:34:17:bb:17:58:84:0d:08:1f:a4:3e:5c:95:43:05:2b: b7:4a:31:f0:ae:f9:45:c0:a4:94:01:7d:23:ac:fb:e0:ea:5b: 4d:bd:98:55 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBcvnIGxO7pu980s1C9U1Wz2hvsMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUxMDI5WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYmEzNjI0MTdlZmMwZmRjMzkzOWM3ZDY4ZTE4Mjc4Nzli NmUyODJjOGUwMTdjYjk0NzM0MWIxMzQ5ZDQwNGFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIdCFyJAs9DmEqXInQWKJTvE4jaHJouGaHACGDjoTiJpcQ NopYAoDMwVQatvQaqtO7563PrtPd8cDgoRi2Yoe1ORfwZwNsQZXnRP8oODlN9Xyx 16fJ7J8Cr/d33TljAL3ioDPV5Msmn0BdgNkex0bsIrLck/g8YX67xLyLbdZn8WY6 fdPLgQPymXdlrHt/8n9yx/6veLyK7PPeOxPBfatcBn2mhQE6rQ6mNyHX7bDOE06a nFKRMbl5tcdvIVAhWk+DIY+V7XB0oH5InkMvXsNOjTStwrdCHRnZlzFjitPQdPoS GvNRTfR04wGixTG7t6jcqjfXm8RMnHuLFfUXYGxPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzk3YNR3euATKgInRXLqxHgflE8IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM2YmQ2MTZlLTI5YTYtNGUzNi04ZWM1LTVmYTk1NGM1ZmI5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQDzANBgkqhkiG9w0BAQsFAAOCAQEA1kQOD+WZp+E71WZAr8GoM5TWTzrJ Et6Ggqrm8TQaAU5ueb4AcEZctZTMYnesNXiykG3ecXQFoSffIDD6Sao8csBkg1wj dhDf5fcjSBtsraxz1cvjcVzhKRDNZalr7Tq874BT41xpGTRiAJ6k8gWixblyb2LZ cS56K+HIBMwJVCK05aBh0gyLR2yXKDCZ4io2u6X3IZTRXlmqm1my0Xs5+PjydfHx u9h0eZ1eEnMdNTBfyoy7qcxPq5UCKxW7xHhlzpuW2Axs5H/UMwe32TGmzuKtYIC+ 3z+6rj00F7sXWIQNCB+kPlyVQwUrt0ox8K75RcCklAF9I6z74OpbTb2YVQ== -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:21 2025 by rpki-client