$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d1d70d4-ba6b-40db-9fd0-c81406f9a314.roa File: 5d1d70d4-ba6b-40db-9fd0-c81406f9a314.roa (raw, json) Hash identifier: QlLJpl+NJC0ZUTD0Tk4HMZFgI7SJyzlFzCWk4aEBU4U= Subject key identifier: C5:C0:57:B4:4D:49:4F:80:80:EE:B8:F3:DF:3A:0C:ED:31:69:99:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 57B8453D14F2315FD3882DCF23AC7F2393B6F3A8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d1d70d4-ba6b-40db-9fd0-c81406f9a314.roa Signing time: Fri 05 Sep 2025 00:10:11 +0000 ROA not before: Fri 05 Sep 2025 00:10:11 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.210.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:b8:45:3d:14:f2:31:5f:d3:88:2d:cf:23:ac:7f:23:93:b6:f3:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 00:10:11 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=e0c6d885fc5d646b5807f9c374d5250e44f0ed54319cdc1aac0ee83d1dcbabdb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:34:30:73:d5:46:29:4d:a7:a3:19:00:76:75: c0:8b:5e:9f:a6:79:d0:08:12:44:05:19:52:10:48: a4:9e:18:9c:e5:a4:43:61:d2:c8:e2:68:a5:d2:27: 80:2b:25:57:79:75:76:b4:78:bd:60:96:1c:94:2e: 3d:8f:18:0b:58:12:df:4f:6d:60:12:4e:ca:9f:b3: e4:f2:99:8c:eb:44:ae:ff:c8:29:fc:4a:2f:7e:a8: d0:5d:87:51:61:50:8d:88:05:7a:ed:67:80:2d:22: 98:04:25:c7:97:55:68:20:c4:d8:f7:22:0d:af:33: 36:c9:00:3c:e6:1b:50:37:71:8f:de:af:95:e7:e1: 47:15:93:9d:26:63:2f:0c:e4:48:55:e0:03:79:20: 96:91:69:99:ba:a1:6f:22:fe:a1:0d:13:e5:ee:21: d4:4a:3c:9b:2c:8a:ff:78:8b:60:63:fb:84:32:e5: 62:9a:63:04:86:4c:9f:d4:3c:d3:33:78:82:a5:fd: 23:53:0d:bd:63:5f:00:13:78:64:68:9f:86:72:ee: 69:e4:41:da:e3:3a:16:28:35:3b:8a:3b:31:6b:5e: 4a:32:52:e1:fc:84:1a:a7:b0:34:50:dd:95:03:4a: 6d:61:53:15:92:11:aa:f6:fa:71:47:c8:12:83:35: 12:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:C0:57:B4:4D:49:4F:80:80:EE:B8:F3:DF:3A:0C:ED:31:69:99:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d1d70d4-ba6b-40db-9fd0-c81406f9a314.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.210.0.0/16 Signature Algorithm: sha256WithRSAEncryption 98:a0:36:d7:00:a6:10:f1:19:4b:a6:a9:c4:d0:08:61:9f:18: 66:81:e0:e8:cc:8c:88:5f:39:e5:71:a6:67:f4:22:a4:5a:b1: 90:fc:9d:52:90:6c:0d:2d:57:6c:6a:91:3d:91:d0:45:b7:6c: ad:c5:01:08:b9:dd:84:f9:5d:27:2c:96:fe:dd:68:0f:38:1e: 98:45:4e:77:06:e8:56:36:3e:ec:0f:01:03:b7:f2:6e:36:c6: 49:44:ed:f5:04:84:24:8e:b1:d5:ac:94:3a:e2:b0:64:6b:d4: f0:fd:5b:20:48:de:48:aa:ee:0e:7c:a3:fb:54:aa:26:36:1a: 03:59:bc:af:d7:b0:7e:1c:f7:de:8d:34:48:20:30:00:25:9a: 05:a6:6d:3a:d5:9d:18:27:e1:62:da:f3:87:cf:a8:3f:3d:30: 29:04:e3:a6:db:d0:9b:92:b8:bb:5e:08:e8:e1:83:fb:50:a9: 84:c9:40:37:74:4b:82:61:18:2c:ac:61:ee:b1:31:70:f9:14: fb:0f:a1:ac:c3:54:c8:44:9e:f4:6a:45:57:42:76:5c:f2:f3: e8:0a:5e:55:ac:24:34:39:00:e3:c3:b7:7c:ab:7d:7a:3a:29: 1b:db:fb:7a:4d:c6:19:88:cf:f4:56:bd:0a:5c:e0:2b:6c:b3: 77:65:b4:85 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUV7hFPRTyMV/TiC3PI6x/I5O286gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA1MDAxMDExWhcNMjUxMDEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMGM2ZDg4NWZjNWQ2NDZiNTgwN2Y5YzM3NGQ1MjUwZTQ0 ZjBlZDU0MzE5Y2RjMWFhYzBlZTgzZDFkY2JhYmRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3NDBz1UYpTaejGQB2dcCLXp+medAIEkQFGVIQSKSeGJzl pENh0sjiaKXSJ4ArJVd5dXa0eL1glhyULj2PGAtYEt9PbWASTsqfs+TymYzrRK7/ yCn8Si9+qNBdh1FhUI2IBXrtZ4AtIpgEJceXVWggxNj3Ig2vMzbJADzmG1A3cY/e r5Xn4UcVk50mYy8M5EhV4AN5IJaRaZm6oW8i/qENE+XuIdRKPJssiv94i2Bj+4Qy 5WKaYwSGTJ/UPNMzeIKl/SNTDb1jXwATeGRon4Zy7mnkQdrjOhYoNTuKOzFrXkoy UuH8hBqnsDRQ3ZUDSm1hUxWSEar2+nFHyBKDNRLvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxcBXtE1JT4CA7rjz3zoM7TFpmeAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVkMWQ3MGQ0LWJhNmItNDBkYi05ZmQwLWM4MTQwNmY5YTMxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQ0jANBgkqhkiG9w0BAQsFAAOCAQEAmKA21wCmEPEZS6apxNAIYZ8YZoHg 6MyMiF855XGmZ/QipFqxkPydUpBsDS1XbGqRPZHQRbdsrcUBCLndhPldJyyW/t1o DzgemEVOdwboVjY+7A8BA7fybjbGSUTt9QSEJI6x1ayUOuKwZGvU8P1bIEjeSKru Dnyj+1SqJjYaA1m8r9ewfhz33o00SCAwACWaBaZtOtWdGCfhYtrzh8+oPz0wKQTj ptvQm5K4u14I6OGD+1CphMlAN3RLgmEYLKxh7rExcPkU+w+hrMNUyESe9GpFV0J2 XPLz6ApeVawkNDkA48O3fKt9ejopG9v7ek3GGYjP9Fa9ClzgK2yzd2W0hQ== -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:45 2025 by rpki-client