$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c5ede24-4cc4-484c-92aa-a2e5acaf9c9d.roa File: 5c5ede24-4cc4-484c-92aa-a2e5acaf9c9d.roa (raw, json) Hash identifier: L8Sp2ojbfIkau5Asm9Ci4iDZ/La7c7MqwQLyMY0Si78= Subject key identifier: 99:11:D5:BC:08:49:46:E8:39:DA:56:58:DB:78:4F:CB:08:6B:28:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1023ECA6086CFA44F521311865C47B3E1B9ED5F5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c5ede24-4cc4-484c-92aa-a2e5acaf9c9d.roa Signing time: Mon 11 Aug 2025 15:01:49 +0000 ROA not before: Mon 11 Aug 2025 15:01:49 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 16.113.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:23:ec:a6:08:6c:fa:44:f5:21:31:18:65:c4:7b:3e:1b:9e:d5:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:01:49 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=c0d83d2b157d064a493c092fa140c30eef891d424ff17d7310089fad4b835cf1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:74:4c:62:35:f2:f6:c1:28:f0:83:5f:0c:09: 40:c0:42:c5:da:04:14:8c:86:10:65:18:31:64:f0: 60:a7:52:17:4b:8b:da:3f:3a:89:7a:77:3b:3b:7a: 89:ae:5c:ff:c4:d3:a2:d0:38:1c:ba:97:08:ef:78: f7:bd:de:48:19:a7:9d:5a:bc:e5:bb:50:cb:5d:55: 61:c5:ab:10:85:80:05:13:9a:84:20:00:b8:0f:64: 8a:40:b2:97:e8:fa:60:94:f3:d2:8a:6b:6a:cf:e7: 4c:e1:af:b3:76:ad:5d:b4:a9:b2:3f:90:8b:a6:24: 57:93:3a:6f:1b:80:ad:48:fe:5a:42:41:14:7c:f9: 18:9e:7e:fb:24:bc:63:ae:60:c1:a7:a6:2a:f8:13: b4:e7:e3:a2:ee:89:fc:71:81:59:a6:54:5b:56:d7: 44:11:27:4f:d5:10:cd:76:91:ff:db:34:dc:c8:cb: 83:70:68:6f:d9:96:05:b6:61:11:d7:e4:23:09:b4: 73:87:86:3f:02:d6:46:4d:5f:99:7d:9a:78:95:d9: 27:70:5d:2e:f0:c2:bf:22:d4:c9:13:e6:6c:80:be: cf:d3:b6:9f:06:5b:88:cb:b9:c0:f3:fe:e5:ea:0f: 41:44:66:74:a5:21:11:76:83:76:d0:1d:9d:2e:98: 8e:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:11:D5:BC:08:49:46:E8:39:DA:56:58:DB:78:4F:CB:08:6B:28:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c5ede24-4cc4-484c-92aa-a2e5acaf9c9d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.113.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8a:f4:c9:da:d1:42:8c:2e:e0:9a:49:0b:6b:4f:c9:56:cb:ba: e5:31:67:59:93:11:69:33:1e:57:9a:fa:6d:71:62:71:ca:54: 33:ff:f6:1a:44:6c:62:27:8f:b5:92:a6:54:fe:44:57:a9:82: 19:79:09:35:cd:15:4b:ee:f6:a5:6c:00:08:68:30:65:14:9e: a6:f9:72:7a:a1:46:3f:b8:cb:d4:52:5f:a1:07:fe:2a:ba:85: ee:51:1f:cf:4d:9e:58:9e:07:b9:42:d3:99:b1:ea:aa:50:28: c6:94:16:00:5f:4d:1a:9b:1d:73:21:29:e0:8c:78:3a:70:d4: 25:89:b8:f5:7a:e6:1f:92:82:ef:a9:48:ee:f0:47:d3:d0:01: 26:21:7f:f4:73:a9:79:c0:44:1d:66:0c:d1:78:52:55:db:dc: 1f:96:22:de:24:07:6c:57:31:5c:17:63:a8:f7:27:e3:96:dd: 40:72:6a:02:a7:bd:a1:cc:4c:fa:4d:de:01:32:66:02:3a:06: b9:0e:9f:8e:85:1d:9c:6c:57:5b:5f:c3:15:1c:3b:c4:05:13: b8:92:ef:a0:17:7e:3c:0f:ad:ed:91:60:dd:34:d4:4b:2e:93: 43:37:99:bc:59:de:c9:10:f7:c2:72:9b:fa:21:3d:ae:7f:3c: db:50:2a:77 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUECPspghs+kT1ITEYZcR7Phue1fUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUwMTQ5WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMGQ4M2QyYjE1N2QwNjRhNDkzYzA5MmZhMTQwYzMwZWVm ODkxZDQyNGZmMTdkNzMxMDA4OWZhZDRiODM1Y2YxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWdExiNfL2wSjwg18MCUDAQsXaBBSMhhBlGDFk8GCnUhdL i9o/Ool6dzs7eomuXP/E06LQOBy6lwjvePe93kgZp51avOW7UMtdVWHFqxCFgAUT moQgALgPZIpAspfo+mCU89KKa2rP50zhr7N2rV20qbI/kIumJFeTOm8bgK1I/lpC QRR8+RiefvskvGOuYMGnpir4E7Tn46LuifxxgVmmVFtW10QRJ0/VEM12kf/bNNzI y4NwaG/ZlgW2YRHX5CMJtHOHhj8C1kZNX5l9mniV2SdwXS7wwr8i1MkT5myAvs/T tp8GW4jLucDz/uXqD0FEZnSlIRF2g3bQHZ0umI7FAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmRHVvAhJRug52lZY23hPywhrKAAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVjNWVkZTI0LTRjYzQtNDg0Yy05MmFhLWEyZTVhY2FmOWM5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQcTANBgkqhkiG9w0BAQsFAAOCAQEAivTJ2tFCjC7gmkkLa0/JVsu65TFn WZMRaTMeV5r6bXFiccpUM//2GkRsYiePtZKmVP5EV6mCGXkJNc0VS+72pWwACGgw ZRSepvlyeqFGP7jL1FJfoQf+KrqF7lEfz02eWJ4HuULTmbHqqlAoxpQWAF9NGpsd cyEp4Ix4OnDUJYm49XrmH5KC76lI7vBH09ABJiF/9HOpecBEHWYM0XhSVdvcH5Yi 3iQHbFcxXBdjqPcn45bdQHJqAqe9ocxM+k3eATJmAjoGuQ6fjoUdnGxXW1/DFRw7 xAUTuJLvoBd+PA+t7ZFg3TTUSy6TQzeZvFneyRD3wnKb+iE9rn8821Aqdw== -----END CERTIFICATE-----Generated at Thu Aug 21 18:57:17 2025 by rpki-client