$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52603c05-86e8-4ac0-94f4-815b7fc6fca8.roa File: 52603c05-86e8-4ac0-94f4-815b7fc6fca8.roa (raw, json) Hash identifier: oWkwglYv9FvQdoTJsgOIAkbHvTSvye3pgHurjPZrIU0= Subject key identifier: C3:AF:69:AA:4B:DC:70:54:7F:24:15:B7:C7:61:37:90:8D:54:8B:0E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 522B6667007AFCD8F4131C8A79509C6250936B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52603c05-86e8-4ac0-94f4-815b7fc6fca8.roa Signing time: Fri 05 Sep 2025 00:10:17 +0000 ROA not before: Fri 05 Sep 2025 00:10:17 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.22.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:2b:66:67:00:7a:fc:d8:f4:13:1c:8a:79:50:9c:62:50:93:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 00:10:17 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=07ac5f86cf53378021b368592dbd7fe58338fb40fd9058b071697c42978249a7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:df:ce:0f:aa:08:04:20:ba:a3:f6:4f:6f:22: 45:4e:0f:1c:58:ec:d1:4c:cb:35:cb:1f:cf:e3:98: 52:ce:58:e0:60:ac:e9:9a:24:de:bd:f4:5f:1b:be: d0:d6:d6:8d:2d:4a:ab:b3:cb:17:de:c6:94:c4:62: 44:67:7f:a8:1f:96:70:41:cc:2a:4b:3e:7f:92:73: 72:30:b1:f9:f2:76:43:05:b1:08:1d:f7:b7:e7:6f: cf:ed:cb:0e:30:0e:45:60:ac:25:82:9a:15:25:a2: 63:76:41:24:2b:e2:cf:76:8a:5e:88:1f:5f:18:9f: 3d:63:65:10:19:1d:91:71:21:c3:0b:36:eb:0b:76: 59:73:bf:40:9f:82:29:04:61:ec:9c:df:57:0b:ad: 1d:9f:54:17:58:ef:50:e3:8d:48:76:f4:57:04:95: 7a:fa:63:54:9e:6f:d2:e9:32:64:0a:f5:a4:c6:3b: 7d:76:f6:26:5e:d0:4c:aa:30:7d:84:0f:78:19:9d: 2d:d0:ee:d3:87:48:15:14:db:2e:79:37:69:ca:9a: ed:54:f1:37:87:ae:53:98:c4:e7:1f:6f:82:28:d7: 49:19:34:a3:a3:ed:99:90:af:89:29:d0:16:64:c8: 7d:83:76:9a:6a:9a:54:dd:e4:c5:e8:68:dd:97:21: ee:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:AF:69:AA:4B:DC:70:54:7F:24:15:B7:C7:61:37:90:8D:54:8B:0E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52603c05-86e8-4ac0-94f4-815b7fc6fca8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption 23:a3:be:a5:9c:cf:4b:e2:dd:d3:e8:36:3d:62:8b:5e:fc:de: a8:ef:30:85:19:e4:b3:21:21:2d:4b:04:06:84:ae:51:14:c1: 5e:fe:4f:cd:25:47:2f:17:e1:d0:9f:c9:dc:2c:c0:be:01:3c: 35:23:bf:3a:b9:3f:00:11:87:09:3b:73:c3:92:c3:50:d6:fc: cd:8c:39:4a:1a:68:7c:7c:1c:a2:d4:cf:d5:36:d8:cc:c8:2f: bd:ef:d9:a8:ac:92:b4:62:ce:2d:5b:c1:73:46:65:bc:31:66: cc:24:19:c1:8e:39:b6:ce:cb:d6:8c:61:c7:82:38:4f:85:96: 52:21:c9:ae:17:bb:51:fa:75:36:10:d2:c8:7f:82:cd:8b:99: b3:02:82:10:37:84:36:f8:35:3d:55:9d:17:39:d1:4b:1a:4a: 44:48:cc:54:04:b3:d3:80:40:14:ae:8c:e5:ee:7a:09:38:0f: 91:53:60:99:6d:7a:ab:61:8b:c8:da:56:05:08:ad:58:15:e9: b3:13:36:e1:b9:59:d0:cd:1e:f4:b7:94:21:61:52:1d:fb:87: e8:d9:b7:b5:25:a1:8c:08:8b:fb:71:89:96:4e:6b:3b:63:66: fc:8f:43:24:e2:04:89:95:10:ed:8b:96:00:33:34:88:1e:6c: c1:d9:06:6f -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITUitmZwB6/Nj0ExyKeVCcYlCTazANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA5MDUwMDEwMTdaFw0yNTEwMTAyMzU5NTla MHoxSTBHBgNVBAUTQDA3YWM1Zjg2Y2Y1MzM3ODAyMWIzNjg1OTJkYmQ3ZmU1ODMz OGZiNDBmZDkwNThiMDcxNjk3YzQyOTc4MjQ5YTcxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAIrfzg+qCAQguqP2T28iRU4PHFjs0UzLNcsfz+OYUs5Y4GCs 6Zok3r30Xxu+0NbWjS1Kq7PLF97GlMRiRGd/qB+WcEHMKks+f5JzcjCx+fJ2QwWx CB33t+dvz+3LDjAORWCsJYKaFSWiY3ZBJCviz3aKXogfXxifPWNlEBkdkXEhwws2 6wt2WXO/QJ+CKQRh7JzfVwutHZ9UF1jvUOONSHb0VwSVevpjVJ5v0ukyZAr1pMY7 fXb2Jl7QTKowfYQPeBmdLdDu04dIFRTbLnk3acqa7VTxN4euU5jE5x9vgijXSRk0 o6PtmZCviSnQFmTIfYN2mmqaVN3kxeho3Zch7n8CAwEAAaOCArAwggKsMB0GA1Ud DgQWBBTDr2mqS9xwVH8kFbfHYTeQjVSLDjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvNTI2MDNjMDUtODZlOC00YWMwLTk0ZjQtODE1YjdmYzZmY2E4LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDABAWMA0GCSqGSIb3DQEBCwUAA4IBAQAjo76lnM9L4t3T6DY9Yote/N6o7zCF GeSzISEtSwQGhK5RFMFe/k/NJUcvF+HQn8ncLMC+ATw1I786uT8AEYcJO3PDksNQ 1vzNjDlKGmh8fByi1M/VNtjMyC+979morJK0Ys4tW8FzRmW8MWbMJBnBjjm2zsvW jGHHgjhPhZZSIcmuF7tR+nU2ENLIf4LNi5mzAoIQN4Q2+DU9VZ0XOdFLGkpESMxU BLPTgEAUrozl7noJOA+RU2CZbXqrYYvI2lYFCK1YFemzEzbhuVnQzR70t5QhYVId +4fo2be1JaGMCIv7cYmWTms7Y2b8j0Mk4gSJlRDti5YAMzSIHmzB2QZv -----END CERTIFICATE-----Generated at Wed Sep 17 16:37:04 2025 by rpki-client