$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a029632-5153-421f-8163-5d2fe6018358.roa File: 4a029632-5153-421f-8163-5d2fe6018358.roa (raw, json) Hash identifier: em+5niVfpbwmdq+iczG+PXGOVEAnMbQwMMvww8CdsHE= Subject key identifier: 95:80:77:8B:55:8B:D3:09:B7:40:EA:FA:F2:F1:B8:81:45:8F:43:CF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 08D3F7964487FEA257466B6F698706CB8A85A42A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a029632-5153-421f-8163-5d2fe6018358.roa Signing time: Mon 11 Aug 2025 15:11:09 +0000 ROA not before: Mon 11 Aug 2025 15:11:09 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.18.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:d3:f7:96:44:87:fe:a2:57:46:6b:6f:69:87:06:cb:8a:85:a4:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:11:09 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=0a5f13c6bd4345561c81e2a4ff49185fce717253533fd95b922aa5ed2ab6b5e2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4c:51:ef:d2:35:93:14:3a:e5:7e:06:41:11: 44:e9:2f:6c:73:e1:35:c7:60:c9:65:26:27:1d:76: f0:f3:1e:2a:2f:da:04:2a:9b:2e:af:81:e3:d2:35: d8:38:8c:23:c8:98:41:93:02:5e:6d:f8:18:a7:15: be:0d:5c:c1:bf:a6:4b:e9:cb:00:4f:ff:b5:2d:0e: 5d:34:a9:61:b6:47:e7:d9:c2:06:9b:f2:e8:2b:b3: f1:60:d0:ca:88:8e:bf:2d:04:aa:df:6e:92:f6:e1: 56:99:a3:5b:50:43:f9:8d:9a:c9:7c:87:a6:65:09: 61:04:a5:ed:3f:a9:81:95:85:8d:18:82:98:1e:9e: 9e:5e:76:f6:8f:e6:27:25:7f:ac:4b:85:db:3b:d9: 47:db:a7:5d:e5:f0:90:02:fb:9e:ac:3e:cb:67:9f: bb:14:3c:39:bc:78:3e:61:92:8e:22:55:4a:c4:36: 39:a1:70:79:de:76:72:a5:2f:19:17:41:50:9e:c8: 65:fb:9a:8a:c4:b3:6c:07:79:87:dd:3f:2f:51:10: 93:19:64:fe:8e:76:9b:8f:7f:d0:cf:3d:1a:30:e7: f9:0f:b4:bb:bd:19:7a:95:ca:15:02:41:72:1c:da: 8e:ba:fb:38:ab:45:6a:83:6a:9d:b0:76:61:51:7e: 76:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:80:77:8B:55:8B:D3:09:B7:40:EA:FA:F2:F1:B8:81:45:8F:43:CF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a029632-5153-421f-8163-5d2fe6018358.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.18.0.0/16 Signature Algorithm: sha256WithRSAEncryption 78:5f:66:f5:28:55:f0:b3:80:2d:f5:6e:2d:2d:71:f6:60:95: bc:ab:b0:d1:df:c2:e2:ff:b6:d8:d6:ed:7e:f4:ec:c9:6a:ec: 63:68:26:e3:15:e2:7f:4e:e9:32:2d:b6:c7:70:d2:a4:80:8e: 67:d2:59:28:75:59:e6:a9:9e:1e:cd:d6:06:c7:32:9a:8c:af: 7d:f8:36:6b:25:1a:0e:b5:f3:64:1a:b8:51:3f:e5:94:0b:32: 88:e4:45:f9:47:35:9f:4d:d0:a0:6c:b6:aa:50:21:f9:f8:34: d6:f1:34:fa:4b:36:aa:33:fa:14:92:17:fb:92:f9:b2:7c:27: 0f:aa:e6:86:f4:f5:bf:1e:9a:e6:4c:00:26:fc:b2:ab:c6:fc: c8:e7:f3:53:cb:fa:1c:cd:02:e3:fa:90:67:27:48:d4:a9:4d: a0:f8:f0:26:3f:03:a5:c4:27:07:d0:0d:96:89:19:b4:4f:07: 4e:f5:cd:e0:82:02:29:ef:5e:12:43:5b:45:b7:b2:68:9e:89: 5c:41:80:15:8d:70:fd:b8:b5:f0:3e:37:f9:b0:85:c9:ba:2f: b3:48:cf:4f:bf:58:f0:6e:62:6d:ac:27:13:64:7d:54:bc:14: 0e:68:7e:ce:dd:30:ef:79:71:25:70:b8:75:e0:be:b1:ae:cc: 19:da:ee:6e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCNP3lkSH/qJXRmtvaYcGy4qFpCowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUxMTA5WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTVmMTNjNmJkNDM0NTU2MWM4MWUyYTRmZjQ5MTg1ZmNl NzE3MjUzNTMzZmQ5NWI5MjJhYTVlZDJhYjZiNWUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7TFHv0jWTFDrlfgZBEUTpL2xz4TXHYMllJicddvDzHiov 2gQqmy6vgePSNdg4jCPImEGTAl5t+BinFb4NXMG/pkvpywBP/7UtDl00qWG2R+fZ wgab8ugrs/Fg0MqIjr8tBKrfbpL24VaZo1tQQ/mNmsl8h6ZlCWEEpe0/qYGVhY0Y gpgenp5edvaP5iclf6xLhds72Ufbp13l8JAC+56sPstnn7sUPDm8eD5hko4iVUrE NjmhcHnednKlLxkXQVCeyGX7morEs2wHeYfdPy9REJMZZP6OdpuPf9DPPRow5/kP tLu9GXqVyhUCQXIc2o66+zirRWqDap2wdmFRfnaJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlYB3i1WL0wm3QOr68vG4gUWPQ88wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhMDI5NjMyLTUxNTMtNDIxZi04MTYzLTVkMmZlNjAxODM1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQEjANBgkqhkiG9w0BAQsFAAOCAQEAeF9m9ShV8LOALfVuLS1x9mCVvKuw 0d/C4v+22NbtfvTsyWrsY2gm4xXif07pMi22x3DSpICOZ9JZKHVZ5qmeHs3WBscy moyvffg2ayUaDrXzZBq4UT/llAsyiORF+Uc1n03QoGy2qlAh+fg01vE0+ks2qjP6 FJIX+5L5snwnD6rmhvT1vx6a5kwAJvyyq8b8yOfzU8v6HM0C4/qQZydI1KlNoPjw Jj8DpcQnB9ANlokZtE8HTvXN4IICKe9eEkNbRbeyaJ6JXEGAFY1w/bi18D43+bCF ybovs0jPT79Y8G5ibawnE2R9VLwUDmh+zt0w73lxJXC4deC+sa7MGdrubg== -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:23 2025 by rpki-client