$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4453fba6-c24f-4c1d-a854-fe5e14fb78dd.roa File: 4453fba6-c24f-4c1d-a854-fe5e14fb78dd.roa (raw, json) Hash identifier: NmTGf0LH3laPlwn0u6k0yyF6dyEeSQhCzp163gJm89s= Subject key identifier: 53:3B:21:1A:B4:53:1C:27:C0:BD:1C:B5:7D:90:6B:33:43:FD:B1:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7925D58AD04938888D48419D38F3341C6BCB86BF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4453fba6-c24f-4c1d-a854-fe5e14fb78dd.roa Signing time: Fri 15 Aug 2025 00:31:10 +0000 ROA not before: Fri 15 Aug 2025 00:31:10 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.217.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:25:d5:8a:d0:49:38:88:8d:48:41:9d:38:f3:34:1c:6b:cb:86:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 15 00:31:10 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=86ede5f2971d251d6e9c2d9b8007d5b9630a8cc76c30dfba1b2e4780c257aa5e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:1e:ae:1c:50:fa:64:74:f0:99:9c:00:6e:a7: 0e:02:40:cd:28:64:1a:0a:a2:76:f1:63:d5:68:7f: 83:92:cf:2b:70:44:a9:32:87:50:17:fa:39:2c:62: 9a:5b:7a:7b:55:9f:fc:cb:5f:99:83:71:fc:78:53: 94:f5:b8:67:f8:46:4e:43:d3:87:2e:14:7a:f7:51: 3e:15:b6:74:ba:44:79:7f:8f:f1:8e:81:aa:d2:df: a9:48:90:0a:38:cc:fa:cd:a3:38:bf:3e:2c:d9:02: 36:ea:c7:fc:0a:3c:c0:d6:4f:43:35:92:43:2d:40: 86:c7:d0:a4:26:23:9e:ad:72:36:64:0e:f1:bb:0a: 92:19:ad:8b:48:51:08:90:16:a5:e5:89:db:f0:b9: 1b:55:90:0e:42:67:78:a3:9e:05:7f:ee:e8:ba:da: de:97:30:d5:06:2f:8b:db:fd:9f:47:42:ff:e1:50: 2d:59:04:16:90:fe:af:19:0f:ad:d4:43:81:d4:81: 54:6a:7c:3f:d3:cf:03:bb:30:5a:1a:2e:dd:4e:a4: f9:5f:41:fc:af:88:ee:db:89:b9:4e:94:7b:14:23: b2:e4:a4:46:0a:d9:17:7b:0c:c2:ae:5a:9c:84:3b: 75:0c:1a:92:df:a3:65:cb:66:86:66:48:78:04:f2: 8c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:3B:21:1A:B4:53:1C:27:C0:BD:1C:B5:7D:90:6B:33:43:FD:B1:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4453fba6-c24f-4c1d-a854-fe5e14fb78dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.217.0.0/16 Signature Algorithm: sha256WithRSAEncryption c0:68:fe:4f:57:ab:84:d1:48:23:d2:1a:71:39:66:20:dc:61: 27:f9:90:f9:50:81:c9:a1:42:3c:12:4e:77:cc:71:4d:22:75: 1e:c9:93:a9:51:5a:bd:57:6b:62:ba:f0:69:a8:37:2c:80:f2: ad:3f:c5:d1:1e:35:4a:f2:bc:fd:9b:94:61:4e:6a:24:91:8c: 61:31:fa:3c:5c:d7:e3:54:b5:82:fc:c3:51:ae:c0:fc:c5:c8: d2:0e:47:d6:45:e9:5c:6c:32:c1:6e:77:c5:85:a0:dd:c0:a0: c1:33:d4:89:d1:d3:06:07:dc:f5:5a:a1:62:4d:be:66:88:89: 0a:31:8a:74:19:96:43:fe:44:0c:b6:fa:1d:44:a4:0d:09:b3: 1f:b0:43:0c:a7:be:a1:8a:b0:b5:c5:04:2d:f3:4c:33:34:0e: a5:0f:63:e0:bf:86:7c:32:01:44:38:04:1d:86:8d:f4:a9:1c: ab:88:93:29:6d:29:c8:00:81:46:98:79:9c:f1:b9:32:e3:79: 04:16:1e:83:a8:f2:99:07:1f:68:11:55:b6:88:4a:49:df:b1: de:3e:f9:bd:72:05:5c:54:87:0a:e1:b8:d1:76:79:cf:78:a0: 1c:7f:f6:3c:01:07:91:f2:85:75:4f:c1:15:ed:81:9f:76:a1: 8c:8c:d9:98 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeSXVitBJOIiNSEGdOPM0HGvLhr8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE1MDAzMTEwWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NmVkZTVmMjk3MWQyNTFkNmU5YzJkOWI4MDA3ZDViOTYz MGE4Y2M3NmMzMGRmYmExYjJlNDc4MGMyNTdhYTVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDoHq4cUPpkdPCZnABupw4CQM0oZBoKonbxY9Vof4OSzytw RKkyh1AX+jksYppbentVn/zLX5mDcfx4U5T1uGf4Rk5D04cuFHr3UT4VtnS6RHl/ j/GOgarS36lIkAo4zPrNozi/PizZAjbqx/wKPMDWT0M1kkMtQIbH0KQmI56tcjZk DvG7CpIZrYtIUQiQFqXlidvwuRtVkA5CZ3ijngV/7ui62t6XMNUGL4vb/Z9HQv/h UC1ZBBaQ/q8ZD63UQ4HUgVRqfD/TzwO7MFoaLt1OpPlfQfyviO7biblOlHsUI7Lk pEYK2Rd7DMKuWpyEO3UMGpLfo2XLZoZmSHgE8ow5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUUzshGrRTHCfAvRy1fZBrM0P9sWUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ0NTNmYmE2LWMyNGYtNGMxZC1hODU0LWZlNWUxNGZiNzhkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAP2TANBgkqhkiG9w0BAQsFAAOCAQEAwGj+T1erhNFII9IacTlmINxhJ/mQ +VCByaFCPBJOd8xxTSJ1HsmTqVFavVdrYrrwaag3LIDyrT/F0R41SvK8/ZuUYU5q JJGMYTH6PFzX41S1gvzDUa7A/MXI0g5H1kXpXGwywW53xYWg3cCgwTPUidHTBgfc 9VqhYk2+ZoiJCjGKdBmWQ/5EDLb6HUSkDQmzH7BDDKe+oYqwtcUELfNMMzQOpQ9j 4L+GfDIBRDgEHYaN9Kkcq4iTKW0pyACBRph5nPG5MuN5BBYeg6jymQcfaBFVtohK Sd+x3j75vXIFXFSHCuG40XZ5z3igHH/2PAEHkfKFdU/BFe2Bn3ahjIzZmA== -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:22 2025 by rpki-client