$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59f5622d-1ca3-4310-a7bb-9aeda3799734.roa File: 59f5622d-1ca3-4310-a7bb-9aeda3799734.roa (raw, json) Hash identifier: CfBCR+fd+L67pxJjdh2FezgMA1UQcKM9GyQ3IPyhNU0= Subject key identifier: 9E:86:2A:4B:69:DE:DA:8F:16:A9:4A:8E:1E:15:93:5E:5B:7F:FB:F6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 74CC0A7BEA7C0BF8B402D859688362A5E7BB6BF9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59f5622d-1ca3-4310-a7bb-9aeda3799734.roa Signing time: Mon 11 Aug 2025 15:11:19 +0000 ROA not before: Mon 11 Aug 2025 15:11:19 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.189.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:cc:0a:7b:ea:7c:0b:f8:b4:02:d8:59:68:83:62:a5:e7:bb:6b:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:11:19 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=511d5f3eec37d7c3f0e516be83c3414bee0ffb390d357d25e02dbb9a5aedc403, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:ec:8b:16:d2:d4:ac:02:25:b7:0e:1e:50:39: 38:84:f4:37:cf:05:a7:bd:0a:7a:95:e3:de:ec:75: fb:af:cb:9d:4c:a3:88:fe:60:46:36:ee:d9:b0:58: a0:a1:7c:ff:71:f3:a1:79:81:4a:49:38:de:0d:38: ba:e9:01:3c:2b:a1:3b:bf:99:78:1b:a3:d7:81:bd: 4b:6e:24:10:32:68:a8:55:77:fa:22:58:cd:14:49: 6b:19:aa:de:7c:41:38:46:4e:a1:ab:f5:8a:a1:4f: f5:29:1e:ff:0e:15:6d:e2:54:10:8f:b1:36:fe:d9: 3d:60:fd:3d:06:bf:84:b9:7d:fe:fd:25:b4:a9:ca: a2:48:15:95:c9:90:8d:2c:07:cb:40:44:46:e1:7f: 60:a8:6c:f6:31:63:c2:00:10:ef:07:dc:b9:98:97: 32:8f:97:ed:08:67:cf:95:68:c4:ae:36:c0:1c:e0: 09:0b:3a:b8:a7:5b:b9:c2:ea:ef:36:12:dd:b1:d9: a7:dc:d7:0c:18:9c:6d:1e:c3:05:06:c7:69:30:17: f4:ad:9f:a6:02:a0:5f:91:04:52:fd:c6:36:b4:fe: ff:8d:a1:ab:af:a3:90:5e:24:9e:fd:86:89:58:47: 7e:d7:1d:d7:c1:cf:ec:79:4f:89:13:f8:fc:ec:1f: dc:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:86:2A:4B:69:DE:DA:8F:16:A9:4A:8E:1E:15:93:5E:5B:7F:FB:F6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59f5622d-1ca3-4310-a7bb-9aeda3799734.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.189.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4c:51:56:0d:25:86:2f:f2:9c:54:d1:40:d1:a3:62:77:80:da: 3b:08:15:ce:b6:74:aa:b8:77:1f:95:12:59:34:04:7c:16:6a: 86:28:d6:f3:aa:ce:f9:48:19:7e:18:f7:ac:d7:77:53:b7:9e: 31:28:9b:fd:68:78:8d:3d:b5:52:e2:51:35:84:86:f3:2e:b8: 54:7e:66:86:50:db:ad:66:67:27:eb:ea:7f:fd:5f:bd:2e:e1: f7:16:ab:1d:8e:98:92:67:8d:71:da:0b:05:df:7f:cc:6e:0c: e0:f3:f0:f5:46:56:d8:5c:93:b9:1e:eb:c6:96:85:62:e3:15: a8:12:b8:b4:38:31:c4:76:be:9d:67:c0:f9:19:11:99:bd:8f: 79:46:0e:94:cc:36:25:60:54:43:19:ae:6a:72:03:3f:07:68: 0c:16:9f:fe:fb:23:8b:9e:b7:3e:60:49:b9:c1:94:b4:4d:aa: 64:86:19:97:03:d3:ed:73:d6:e8:7d:ea:b4:45:ad:27:dd:ee: 86:73:aa:0d:db:f8:81:4d:be:cf:09:a6:e7:82:95:84:39:e9: 5a:e8:9f:bd:98:91:f3:24:4c:c3:61:83:73:47:4d:44:2c:77: ce:23:fb:24:b5:c2:00:0e:77:70:70:a4:22:20:c4:aa:70:c0: 52:8b:d5:df -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdMwKe+p8C/i0AthZaINipee7a/kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUxMTE5WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTFkNWYzZWVjMzdkN2MzZjBlNTE2YmU4M2MzNDE0YmVl MGZmYjM5MGQzNTdkMjVlMDJkYmI5YTVhZWRjNDAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCS7IsW0tSsAiW3Dh5QOTiE9DfPBae9CnqV497sdfuvy51M o4j+YEY27tmwWKChfP9x86F5gUpJON4NOLrpATwroTu/mXgbo9eBvUtuJBAyaKhV d/oiWM0USWsZqt58QThGTqGr9YqhT/UpHv8OFW3iVBCPsTb+2T1g/T0Gv4S5ff79 JbSpyqJIFZXJkI0sB8tAREbhf2CobPYxY8IAEO8H3LmYlzKPl+0IZ8+VaMSuNsAc 4AkLOrinW7nC6u82Et2x2afc1wwYnG0ewwUGx2kwF/Stn6YCoF+RBFL9xja0/v+N oauvo5BeJJ79holYR37XHdfBz+x5T4kT+PzsH9xdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUnoYqS2ne2o8WqUqOHhWTXlt/+/YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5ZjU2MjJkLTFjYTMtNDMxMC1hN2JiLTlhZWRhMzc5OTczNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQvTANBgkqhkiG9w0BAQsFAAOCAQEATFFWDSWGL/KcVNFA0aNid4DaOwgV zrZ0qrh3H5USWTQEfBZqhijW86rO+UgZfhj3rNd3U7eeMSib/Wh4jT21UuJRNYSG 8y64VH5mhlDbrWZnJ+vqf/1fvS7h9xarHY6YkmeNcdoLBd9/zG4M4PPw9UZW2FyT uR7rxpaFYuMVqBK4tDgxxHa+nWfA+RkRmb2PeUYOlMw2JWBUQxmuanIDPwdoDBaf /vsji563PmBJucGUtE2qZIYZlwPT7XPW6H3qtEWtJ93uhnOqDdv4gU2+zwmm54KV hDnpWuifvZiR8yRMw2GDc0dNRCx3ziP7JLXCAA53cHCkIiDEqnDAUovV3w== -----END CERTIFICATE-----Generated at Wed Aug 20 13:18:36 2025 by rpki-client