$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52603c05-86e8-4ac0-94f4-815b7fc6fca8.roa File: 52603c05-86e8-4ac0-94f4-815b7fc6fca8.roa (raw, json) Hash identifier: oWoLTx5dFJpFXamumFrHZkuYeXECRsEo+lif9umBCHA= Subject key identifier: 43:8F:BF:82:2A:89:3A:87:24:F4:87:A6:02:C6:E0:9C:53:2B:FF:8A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 515AB2D3FBF5653ACB5FCAC3900D8C3982D6887F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52603c05-86e8-4ac0-94f4-815b7fc6fca8.roa Signing time: Mon 11 Aug 2025 15:10:17 +0000 ROA not before: Mon 11 Aug 2025 15:10:17 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.22.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:5a:b2:d3:fb:f5:65:3a:cb:5f:ca:c3:90:0d:8c:39:82:d6:88:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:10:17 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=cd93fe248e9ce57b7a774e64c2644c1abef1a8e8ccb2df45f04bfeaafe91b4ea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d0:45:a9:21:d7:b6:8c:d9:92:ae:71:88:34: e9:40:c9:ba:8b:f1:4f:fd:70:e5:11:6f:9d:29:d1: cc:6a:82:9c:f9:fa:ad:0b:cf:ec:2e:ac:ab:a0:2f: 27:ce:11:77:39:d2:75:c5:c5:50:81:34:9f:56:96: 47:66:17:9a:63:0d:28:0e:d3:3b:1d:59:24:87:b3: 15:20:34:c5:6e:c5:ee:49:b6:7d:e1:5c:91:14:fe: c7:30:0e:d3:82:b6:e4:57:24:90:d1:8c:0e:d6:e0: cc:ea:7f:6e:3a:35:a6:56:63:04:37:36:94:d5:9c: 3a:97:9a:05:f5:c5:ff:82:be:bd:55:f2:5e:d6:ed: 99:0a:a2:e8:04:30:17:91:59:a0:aa:24:98:8a:3b: 83:20:c5:18:32:81:90:92:2e:ad:95:bf:1c:0b:a9: 5e:18:a9:9a:4e:ca:4e:9f:08:44:1d:f4:fb:7e:45: a6:16:ab:54:66:07:c8:67:76:08:fa:ef:38:9d:c3: 99:8f:1d:83:e6:b1:20:86:37:81:60:33:02:6e:e7: 8f:61:69:db:ea:47:25:23:b6:d9:c3:c2:0e:48:d9: 9f:1e:17:80:ea:d1:28:3b:20:c9:38:54:e0:ad:db: b3:08:77:8a:47:a1:a5:fa:70:67:62:16:c1:96:ca: bf:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:8F:BF:82:2A:89:3A:87:24:F4:87:A6:02:C6:E0:9C:53:2B:FF:8A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52603c05-86e8-4ac0-94f4-815b7fc6fca8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption 66:1b:4e:8d:95:c0:3b:d7:7e:ce:d2:d2:ab:bc:29:11:33:62: 90:3b:0b:2a:eb:f4:8b:cf:95:16:02:29:4a:ea:15:3f:fd:4f: ea:58:0e:c9:e8:4c:3f:ca:81:2b:b7:63:f1:1a:2d:a2:05:40: 29:01:2c:a8:7f:44:c2:ed:d1:3c:2b:35:72:0f:7f:09:71:ba: 69:ef:7f:0c:4e:b2:6a:da:ef:2a:b8:4b:94:84:b3:2f:38:aa: 50:57:41:09:3e:d1:78:30:5f:3d:e6:58:16:f2:82:52:a2:3d: df:d9:08:e2:80:36:31:2b:f3:c8:24:0d:b2:f1:4c:f2:96:ad: ba:0e:b5:0b:4f:2b:7b:c0:2b:77:17:9e:19:65:ac:2e:a6:ab: da:56:68:5e:c4:e0:8b:fe:29:13:a2:39:f5:91:3a:cf:a2:fc: 50:ee:11:e9:87:97:7e:3b:fe:c5:69:26:5b:4f:96:30:fe:8a: ba:04:ea:84:fe:4a:c5:ca:a1:c1:8a:7c:cb:8b:9b:5c:de:d8: 0b:ac:f3:90:8d:e8:aa:6e:b0:99:00:df:fe:58:07:79:4f:a5: 50:b6:aa:60:9f:d6:37:54:ce:12:c8:4a:0e:ce:34:8e:70:90: e9:51:61:ca:0d:3b:0e:cc:79:fe:26:de:dd:be:8b:1d:4a:f4: 0e:af:73:68 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUVqy0/v1ZTrLX8rDkA2MOYLWiH8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUxMDE3WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZDkzZmUyNDhlOWNlNTdiN2E3NzRlNjRjMjY0NGMxYWJl ZjFhOGU4Y2NiMmRmNDVmMDRiZmVhYWZlOTFiNGVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCd0EWpIde2jNmSrnGINOlAybqL8U/9cOURb50p0cxqgpz5 +q0Lz+wurKugLyfOEXc50nXFxVCBNJ9WlkdmF5pjDSgO0zsdWSSHsxUgNMVuxe5J tn3hXJEU/scwDtOCtuRXJJDRjA7W4Mzqf246NaZWYwQ3NpTVnDqXmgX1xf+Cvr1V 8l7W7ZkKougEMBeRWaCqJJiKO4MgxRgygZCSLq2VvxwLqV4YqZpOyk6fCEQd9Pt+ RaYWq1RmB8hndgj67zidw5mPHYPmsSCGN4FgMwJu549hadvqRyUjttnDwg5I2Z8e F4Dq0Sg7IMk4VOCt27MId4pHoaX6cGdiFsGWyr8lAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQ4+/giqJOock9IemAsbgnFMr/4owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyNjAzYzA1LTg2ZTgtNGFjMC05NGY0LTgxNWI3ZmM2ZmNhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFjANBgkqhkiG9w0BAQsFAAOCAQEAZhtOjZXAO9d+ztLSq7wpETNikDsL Kuv0i8+VFgIpSuoVP/1P6lgOyehMP8qBK7dj8RotogVAKQEsqH9Ewu3RPCs1cg9/ CXG6ae9/DE6yatrvKrhLlISzLziqUFdBCT7ReDBfPeZYFvKCUqI939kI4oA2MSvz yCQNsvFM8patug61C08re8ArdxeeGWWsLqar2lZoXsTgi/4pE6I59ZE6z6L8UO4R 6YeXfjv+xWkmW0+WMP6KugTqhP5KxcqhwYp8y4ubXN7YC6zzkI3oqm6wmQDf/lgH eU+lULaqYJ/WN1TOEshKDs40jnCQ6VFhyg07Dsx5/ibe3b6LHUr0Dq9zaA== -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:20 2025 by rpki-client