$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e687fa1-9b29-455d-9b8f-48a1ec23d39b.roa File: 4e687fa1-9b29-455d-9b8f-48a1ec23d39b.roa (raw, json) Hash identifier: C7yJTmkLYZ4vy4wVdBkx+CjGD0uKkTUag3o0LoXZOkM= Subject key identifier: 75:AE:78:FE:9D:64:28:44:F8:95:BA:4D:CF:A5:92:27:14:8D:F2:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1EA14DC9771E8CAC4474AF776894247DBBFCBD19 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e687fa1-9b29-455d-9b8f-48a1ec23d39b.roa Signing time: Mon 11 Aug 2025 15:12:01 +0000 ROA not before: Mon 11 Aug 2025 15:12:01 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.164.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:a1:4d:c9:77:1e:8c:ac:44:74:af:77:68:94:24:7d:bb:fc:bd:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:12:01 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=8aa3d37e10a3caea933c317c7660bf9509a990843aabcf23ec05cb5a57b96ace, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:32:fe:c5:dc:5e:c0:19:93:7b:da:de:8c:34: a2:52:fa:2e:b6:32:33:70:7e:1e:cf:ee:4b:6d:f6: 5c:61:c9:0c:a0:6c:b0:63:33:d7:c8:84:e2:cc:d6: 8e:7f:28:ed:67:4a:26:c3:54:92:77:3d:a5:40:c3: c8:93:29:4e:16:a2:86:0f:93:eb:6e:95:fa:39:df: d5:d4:da:ec:4e:2b:10:59:44:ee:36:b2:52:5a:db: ac:6a:49:05:88:f2:39:17:e8:f2:3a:f5:e5:70:f6: 53:85:b4:0e:50:79:0d:76:fc:af:7a:9b:c3:22:65: a5:d6:1e:20:40:c8:b1:c0:70:89:b6:ab:c1:3b:73: 48:d6:6f:25:7c:17:70:ad:3c:5f:16:a6:fb:c9:99: a0:e3:91:d4:0c:18:42:ab:46:99:d5:2a:c0:e0:69: 7e:c0:d5:10:3f:a4:7a:f6:53:11:7a:17:55:b5:20: 4c:d3:fc:82:b1:82:b0:af:03:d2:a7:e6:73:75:cf: 8d:03:89:d5:60:e6:6e:f3:aa:90:d6:78:2f:31:e2: 88:ba:2b:52:45:42:19:c0:9a:01:4e:07:34:16:b2: c1:ab:15:0e:63:93:54:3a:4a:08:3c:8a:d6:85:00: 48:16:76:67:e2:3c:2f:e1:83:5f:49:c8:cb:f5:a0: 39:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:AE:78:FE:9D:64:28:44:F8:95:BA:4D:CF:A5:92:27:14:8D:F2:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e687fa1-9b29-455d-9b8f-48a1ec23d39b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.164.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5d:51:15:4c:11:88:5c:e2:26:f5:ea:3f:35:d6:62:3c:fb:1f: 0d:d8:27:0a:21:76:c8:9d:38:cc:a9:69:b2:4a:06:d9:d4:eb: e7:8c:8a:5f:0f:9c:5a:f7:f9:dd:5f:bd:97:d1:14:47:aa:1d: 13:86:e7:4c:99:78:ac:45:c0:56:e4:9b:a4:85:c1:ca:01:42: 45:e0:ce:42:84:c5:a4:46:89:5c:43:7e:49:af:c8:1b:d5:30: cc:6a:62:db:f8:f2:bf:65:ce:15:29:80:2e:80:83:71:97:b8: 86:08:3a:85:e4:f9:9e:2e:01:63:2c:2a:cd:de:f5:91:1e:03: bf:83:c6:24:14:49:9e:ed:fc:d0:62:7d:46:95:fd:56:a6:29: 3e:e2:98:95:61:c3:3f:8f:4f:13:a0:3a:e9:de:e0:7e:50:c0: d9:3f:16:1b:74:c6:06:2a:d0:9f:22:18:37:3f:a2:80:4d:8a: ce:fb:97:fe:a0:07:de:c1:df:5f:1e:81:e9:9b:ec:ee:c7:ec: 5b:73:1e:00:84:58:f5:b1:19:31:30:49:f3:d0:8e:f9:d7:9f: 03:87:c3:cb:e6:df:3c:24:45:e2:fd:62:b8:a0:2a:b2:42:5d: 8c:30:65:76:43:e0:f1:8e:a8:dd:97:58:31:bf:66:b3:b1:12: 6e:e4:61:b3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHqFNyXcejKxEdK93aJQkfbv8vRkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUxMjAxWhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YWEzZDM3ZTEwYTNjYWVhOTMzYzMxN2M3NjYwYmY5NTA5 YTk5MDg0M2FhYmNmMjNlYzA1Y2I1YTU3Yjk2YWNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyMv7F3F7AGZN72t6MNKJS+i62MjNwfh7P7ktt9lxhyQyg bLBjM9fIhOLM1o5/KO1nSibDVJJ3PaVAw8iTKU4WooYPk+tulfo539XU2uxOKxBZ RO42slJa26xqSQWI8jkX6PI69eVw9lOFtA5QeQ12/K96m8MiZaXWHiBAyLHAcIm2 q8E7c0jWbyV8F3CtPF8WpvvJmaDjkdQMGEKrRpnVKsDgaX7A1RA/pHr2UxF6F1W1 IEzT/IKxgrCvA9Kn5nN1z40DidVg5m7zqpDWeC8x4oi6K1JFQhnAmgFOBzQWssGr FQ5jk1Q6Sgg8itaFAEgWdmfiPC/hg19JyMv1oDl/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUda54/p1kKET4lbpNz6WSJxSN8jowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRlNjg3ZmExLTliMjktNDU1ZC05YjhmLTQ4YTFlYzIzZDM5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQpDANBgkqhkiG9w0BAQsFAAOCAQEAXVEVTBGIXOIm9eo/NdZiPPsfDdgn CiF2yJ04zKlpskoG2dTr54yKXw+cWvf53V+9l9EUR6odE4bnTJl4rEXAVuSbpIXB ygFCReDOQoTFpEaJXEN+Sa/IG9UwzGpi2/jyv2XOFSmALoCDcZe4hgg6heT5ni4B Yywqzd71kR4Dv4PGJBRJnu380GJ9RpX9VqYpPuKYlWHDP49PE6A66d7gflDA2T8W G3TGBirQnyIYNz+igE2KzvuX/qAH3sHfXx6B6Zvs7sfsW3MeAIRY9bEZMTBJ89CO +defA4fDy+bfPCRF4v1iuKAqskJdjDBldkPg8Y6o3ZdYMb9ms7ESbuRhsw== -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:11 2025 by rpki-client