$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e218b04-dfaf-4fdb-9e82-bad8d7e36def.roa File: 5e218b04-dfaf-4fdb-9e82-bad8d7e36def.roa (raw, json) Hash identifier: APQWv1YDIk28xIds36vQcvU5DawRaC5Y3oJlka6Wd8g= Subject key identifier: 1B:B6:B3:82:E6:55:84:1A:39:68:6C:5F:9D:F5:73:B9:09:6E:1B:86 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 29BA6A3493117FF682F1ADE4CB54105627566B5C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e218b04-dfaf-4fdb-9e82-bad8d7e36def.roa Signing time: Fri 05 Sep 2025 00:11:56 +0000 ROA not before: Fri 05 Sep 2025 00:11:56 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.206.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:ba:6a:34:93:11:7f:f6:82:f1:ad:e4:cb:54:10:56:27:56:6b:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 00:11:56 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=fcaefe02ed353af7f018689e66f73a43db438594066ffbf1f79029c8e24bb54e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:59:53:ec:c1:1c:69:ae:ea:ab:53:be:09:cb: ad:24:9a:c9:22:8d:f4:c4:c9:70:8f:4c:61:b3:bf: ee:0f:f6:d5:c5:3c:4f:07:3e:ec:3f:4a:ec:64:62: 4a:f8:a9:8e:98:73:f8:6d:d9:92:bc:b5:73:69:40: 90:2b:f1:70:d5:04:80:cd:f1:bb:dd:81:f8:bf:f4: 9e:e6:bb:2e:e5:20:03:c0:7d:49:f7:72:98:cb:1e: 82:3d:61:21:8d:72:e1:c7:89:c3:2a:99:29:e7:f5: fb:bc:0e:73:d3:30:a2:9b:60:08:8d:6b:00:4a:79: f1:94:12:ba:fa:b5:13:70:7f:73:09:7f:82:fd:be: 6a:f9:b4:30:73:fa:99:60:71:47:a5:ed:02:00:ef: 96:34:7f:9f:6b:69:45:9b:b1:dd:c4:55:ab:0a:0e: 72:ad:f5:ba:e1:fe:7e:93:16:d4:9c:06:8f:db:b3: f2:f0:36:26:0b:d5:46:41:7b:4c:fd:3c:e2:04:95: 25:12:18:d2:d1:56:05:40:c3:86:be:20:ff:70:4a: 7a:bc:e2:1f:27:58:0d:7b:f4:ad:fc:4f:78:89:50: 43:7d:d3:1f:1a:48:ad:f1:c2:55:c2:bb:b2:3e:26: 51:a6:05:79:56:8b:72:57:a8:19:4e:be:34:99:a1: b0:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:B6:B3:82:E6:55:84:1A:39:68:6C:5F:9D:F5:73:B9:09:6E:1B:86 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e218b04-dfaf-4fdb-9e82-bad8d7e36def.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.206.0.0/16 Signature Algorithm: sha256WithRSAEncryption a6:05:ef:69:e5:d7:e2:16:8d:6c:fa:8d:17:6e:e2:48:83:04: 0c:87:f0:64:d6:57:92:05:fa:66:fd:ed:9e:4e:e6:c0:91:e0: 7e:54:75:99:94:e3:4c:a5:a7:94:87:4b:5b:2e:bb:96:9b:5e: 78:97:17:4a:d0:0d:dd:d5:c3:2d:1c:b1:7b:3e:9b:9b:56:06: 90:06:cd:83:a9:e4:b2:56:b0:41:ef:a5:65:e5:41:a5:26:30: 5c:e3:c3:61:81:7d:6f:eb:6a:25:fb:a8:c6:b9:f2:ff:13:80: cc:5c:cc:50:ae:83:f2:6c:69:05:5f:35:ed:18:24:1c:82:1a: 47:bb:4f:40:92:85:dd:24:e7:d7:55:35:7b:82:83:ac:5a:d9: 01:7d:89:5c:11:ef:a5:98:6b:6d:66:33:ec:60:ca:68:f5:eb: eb:f8:39:98:c7:f5:e7:83:9a:8c:50:9d:b1:93:e2:83:4c:29: 97:b1:83:2a:83:de:04:d7:95:2c:25:4a:7a:8a:10:ef:30:68: 50:1d:b9:d7:66:f0:29:d4:cc:eb:d2:03:13:95:3f:bc:f1:b7: 65:57:f5:a6:f8:72:83:67:aa:2f:74:43:7b:99:86:79:c4:4d: b4:4b:62:fb:38:80:94:57:bb:82:22:2b:9e:a7:40:bf:ae:35: e5:f5:18:37 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKbpqNJMRf/aC8a3ky1QQVidWa1wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA1MDAxMTU2WhcNMjUxMDEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmY2FlZmUwMmVkMzUzYWY3ZjAxODY4OWU2NmY3M2E0M2Ri NDM4NTk0MDY2ZmZiZjFmNzkwMjljOGUyNGJiNTRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfWVPswRxpruqrU74Jy60kmskijfTEyXCPTGGzv+4P9tXF PE8HPuw/SuxkYkr4qY6Yc/ht2ZK8tXNpQJAr8XDVBIDN8bvdgfi/9J7muy7lIAPA fUn3cpjLHoI9YSGNcuHHicMqmSnn9fu8DnPTMKKbYAiNawBKefGUErr6tRNwf3MJ f4L9vmr5tDBz+plgcUel7QIA75Y0f59raUWbsd3EVasKDnKt9brh/n6TFtScBo/b s/LwNiYL1UZBe0z9POIElSUSGNLRVgVAw4a+IP9wSnq84h8nWA179K38T3iJUEN9 0x8aSK3xwlXCu7I+JlGmBXlWi3JXqBlOvjSZobDjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUG7azguZVhBo5aGxfnfVzuQluG4YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlMjE4YjA0LWRmYWYtNGZkYi05ZTgyLWJhZDhkN2UzNmRlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQzjANBgkqhkiG9w0BAQsFAAOCAQEApgXvaeXX4haNbPqNF27iSIMEDIfw ZNZXkgX6Zv3tnk7mwJHgflR1mZTjTKWnlIdLWy67lpteeJcXStAN3dXDLRyxez6b m1YGkAbNg6nkslawQe+lZeVBpSYwXOPDYYF9b+tqJfuoxrny/xOAzFzMUK6D8mxp BV817RgkHIIaR7tPQJKF3STn11U1e4KDrFrZAX2JXBHvpZhrbWYz7GDKaPXr6/g5 mMf154OajFCdsZPig0wpl7GDKoPeBNeVLCVKeooQ7zBoUB2512bwKdTM69IDE5U/ vPG3ZVf1pvhyg2eqL3RDe5mGecRNtEti+ziAlFe7giIrnqdAv6415fUYNw== -----END CERTIFICATE-----Generated at Sat Sep 6 16:40:05 2025 by rpki-client