$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b958acb-1d54-472e-b493-5b27ed769a39.roa File: 4b958acb-1d54-472e-b493-5b27ed769a39.roa (raw, json) Hash identifier: xntwUG5m0W4D0pbGV7m6IYNS/UuU/73q4RbOQJbchP8= Subject key identifier: 2E:AF:8E:CB:75:D2:02:E6:99:11:15:F4:36:EA:60:94:89:90:76:6A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 336EA923DE0494F54C07E3DA85A0FE540806B0A7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b958acb-1d54-472e-b493-5b27ed769a39.roa Signing time: Mon 11 Aug 2025 15:11:20 +0000 ROA not before: Mon 11 Aug 2025 15:11:20 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 16.206.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:6e:a9:23:de:04:94:f5:4c:07:e3:da:85:a0:fe:54:08:06:b0:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:11:20 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=f803ef8e23bc7db0b3efe6c9c9cde148075ea14ddf475f0fc38637fd47b9185f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6a:09:e1:54:03:89:90:c4:f4:3f:b3:78:f3: ed:32:31:c5:20:24:1f:a6:f3:3f:44:6a:76:71:ba: 1a:c7:96:41:56:e8:9e:cf:e1:9e:41:bc:e8:b7:f6: 7b:cd:a1:cc:cf:f8:1b:7e:13:07:55:86:86:fd:b4: 54:af:5d:08:8f:83:2c:0e:92:5e:18:46:7d:e3:24: a9:46:2d:5d:0a:61:cd:85:17:23:2b:a5:84:92:f4: f8:66:5a:a7:a1:99:53:3b:92:c8:58:f6:d3:b2:16: a2:ea:4e:66:aa:e6:75:a5:73:6e:cf:2a:96:9e:91: a8:9b:d8:cd:fa:85:c1:d0:ca:d0:22:7a:36:b0:55: 72:68:68:78:38:93:7e:41:ab:fb:54:ce:a6:97:d1: 41:8c:08:8a:0c:44:06:35:52:ab:9e:42:db:ff:1e: d9:d0:e4:99:c2:c1:3e:b1:0f:2f:64:1d:2c:24:63: 79:2d:f8:bc:a4:5a:ad:8e:9a:fc:f2:c8:61:76:b5: 1a:42:98:80:48:ea:59:e8:aa:a2:06:14:aa:0b:f8: 24:60:d2:cb:72:f6:bd:f2:00:48:f1:93:67:8d:66: a4:7a:5b:1a:83:33:b4:1c:99:46:0f:a2:bf:a3:17: 23:0c:61:9b:38:ca:56:f8:5b:7a:db:6e:c6:fc:ff: 6d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:AF:8E:CB:75:D2:02:E6:99:11:15:F4:36:EA:60:94:89:90:76:6A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b958acb-1d54-472e-b493-5b27ed769a39.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.206.0.0/16 Signature Algorithm: sha256WithRSAEncryption 72:7f:dd:bf:33:db:95:92:74:25:87:70:68:4a:80:1f:ca:e7: 28:00:40:cd:27:a0:0d:2e:70:d6:d1:45:bd:e0:06:65:25:61: cb:4f:3e:93:6d:76:f5:21:d5:90:52:a9:55:40:7e:db:f5:d9: 80:0f:3e:fe:9d:72:90:e3:c0:aa:4d:64:6f:b5:c4:77:3e:ee: 52:20:c2:a0:df:01:55:c6:03:90:15:73:3a:bc:d9:19:35:ef: e0:fc:f1:b7:4a:07:a8:32:b6:e1:da:b3:54:5a:69:4c:d1:5c: b3:31:15:2d:c4:82:8d:87:e1:57:e0:ed:64:b3:aa:b1:87:9d: 11:dc:18:87:cb:f6:77:45:50:22:32:8a:f3:3c:8f:a9:50:98: 56:15:50:0e:70:dc:1f:e2:01:d4:07:ba:2e:94:9f:9f:b0:83: 03:f4:42:9e:e0:8c:fc:31:fc:4a:c3:d7:25:df:7b:c1:87:73: d3:83:5b:b5:41:15:73:5e:15:d1:68:31:ff:0d:8d:e3:cf:29: 67:64:ed:95:eb:81:b4:0d:d6:d5:0d:ce:87:a8:1c:cc:1e:a4: d6:b5:da:2b:21:3a:28:b6:69:4b:a9:4b:06:44:b4:ac:d3:ce: 85:9b:ad:95:e6:e4:be:fb:b1:30:3a:92:9e:8e:d1:ed:9d:89: 1a:dc:35:65 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUM26pI94ElPVMB+PahaD+VAgGsKcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUxMTIwWhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmODAzZWY4ZTIzYmM3ZGIwYjNlZmU2YzljOWNkZTE0ODA3 NWVhMTRkZGY0NzVmMGZjMzg2MzdmZDQ3YjkxODVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5agnhVAOJkMT0P7N48+0yMcUgJB+m8z9EanZxuhrHlkFW 6J7P4Z5BvOi39nvNoczP+Bt+EwdVhob9tFSvXQiPgywOkl4YRn3jJKlGLV0KYc2F FyMrpYSS9PhmWqehmVM7kshY9tOyFqLqTmaq5nWlc27PKpaekaib2M36hcHQytAi ejawVXJoaHg4k35Bq/tUzqaX0UGMCIoMRAY1UqueQtv/HtnQ5JnCwT6xDy9kHSwk Y3kt+LykWq2OmvzyyGF2tRpCmIBI6lnoqqIGFKoL+CRg0sty9r3yAEjxk2eNZqR6 WxqDM7QcmUYPor+jFyMMYZs4ylb4W3rbbsb8/20BAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQULq+Oy3XSAuaZERX0NupglImQdmowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRiOTU4YWNiLTFkNTQtNDcyZS1iNDkzLTViMjdlZDc2OWEzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQzjANBgkqhkiG9w0BAQsFAAOCAQEAcn/dvzPblZJ0JYdwaEqAH8rnKABA zSegDS5w1tFFveAGZSVhy08+k2129SHVkFKpVUB+2/XZgA8+/p1ykOPAqk1kb7XE dz7uUiDCoN8BVcYDkBVzOrzZGTXv4Pzxt0oHqDK24dqzVFppTNFcszEVLcSCjYfh V+DtZLOqsYedEdwYh8v2d0VQIjKK8zyPqVCYVhVQDnDcH+IB1Ae6LpSfn7CDA/RC nuCM/DH8SsPXJd97wYdz04NbtUEVc14V0Wgx/w2N488pZ2TtleuBtA3W1Q3Oh6gc zB6k1rXaKyE6KLZpS6lLBkS0rNPOhZutlebkvvuxMDqSno7R7Z2JGtw1ZQ== -----END CERTIFICATE-----Generated at Thu Aug 21 19:01:29 2025 by rpki-client