$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c8581d8-86b8-4fdb-8c23-86cc55dea926.roa File: 6c8581d8-86b8-4fdb-8c23-86cc55dea926.roa (raw, json) Hash identifier: ONgE4UlRJtxdc5h0eIyl4tM3kcbPE5d0Zz3FTa1rYi8= Subject key identifier: 4D:DF:CD:C7:4A:A5:1F:C9:55:57:4E:95:19:5E:47:E5:3B:E5:48:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 112636C719993A5B5833CC56156007055DA0FE4F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c8581d8-86b8-4fdb-8c23-86cc55dea926.roa Signing time: Mon 11 Aug 2025 15:10:30 +0000 ROA not before: Mon 11 Aug 2025 15:10:30 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.75.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:26:36:c7:19:99:3a:5b:58:33:cc:56:15:60:07:05:5d:a0:fe:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:10:30 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=2774de844c40147b6dbd3d4811b6b59bed40af689dfd0239f7da37816001a85e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:20:2a:42:94:a0:57:52:21:cd:05:0f:3f:98: 95:3d:13:96:87:2c:2b:d4:9d:39:73:98:a3:70:a7: 0b:9c:02:bd:e3:e1:74:5e:52:11:a2:9d:76:91:32: 03:9e:02:0f:6d:a0:b3:01:7f:9c:85:3c:21:4e:61: 38:36:7d:eb:81:70:6c:26:4d:be:52:a0:46:15:35: f3:f6:a0:d0:6e:72:80:9a:8b:ea:88:44:fc:06:20: 5d:68:db:89:7e:4d:c0:ca:a9:ac:c1:aa:71:40:18: 94:d1:20:9c:02:23:b9:fd:0d:d5:ae:a2:65:ea:62: e5:4d:91:bf:91:4e:44:2c:c4:8d:9f:b4:21:ce:2c: 94:da:d3:08:ce:59:d4:de:fd:cc:f3:b3:12:03:16: 99:b9:c6:4a:a2:ff:6f:8e:44:db:63:fb:c0:fc:ac: c4:5d:f7:64:06:bd:74:a2:9d:11:c0:ac:c5:f9:0e: 6c:99:e2:01:4e:64:67:e0:29:7d:7d:23:5f:25:94: 30:83:e5:44:cf:eb:e7:ed:a8:ce:90:26:27:76:e0: d4:01:79:e7:51:fd:a6:30:64:de:78:0b:8a:30:d0: 51:98:9d:b2:7a:90:ce:5a:8d:97:2c:cd:3b:5f:2a: 21:83:34:1b:2e:15:08:b2:b2:4f:7a:6c:38:8b:15: d4:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:DF:CD:C7:4A:A5:1F:C9:55:57:4E:95:19:5E:47:E5:3B:E5:48:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c8581d8-86b8-4fdb-8c23-86cc55dea926.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.75.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4c:b3:d0:35:2e:00:cf:5b:d6:c4:8b:42:19:13:39:e6:28:75: dc:13:02:48:c5:c4:eb:d7:87:91:39:64:b4:93:9c:3a:5c:84: a9:a7:6f:cf:2b:4f:2c:7d:f2:68:4e:f1:84:97:ad:56:4c:c9: 49:99:68:03:19:b4:eb:d5:75:44:09:4d:5a:cd:7b:9b:4a:65: 07:95:ff:30:0c:1c:a0:67:37:30:9d:35:e3:74:98:cb:2b:df: e7:33:95:10:1d:30:39:91:97:95:45:34:3a:97:05:c3:f3:86: 7b:5c:0e:b6:17:68:0b:32:3b:b4:9f:be:ef:6d:e5:88:4d:1e: 55:24:a5:8e:fe:75:7d:eb:bc:59:1c:29:0a:70:d6:bc:7b:26: 88:c4:b6:8c:8d:de:73:8f:fc:2f:98:6a:da:8b:f8:da:b1:66: 8c:30:77:1a:b9:a9:26:31:1d:bb:73:95:ff:33:ec:8b:6e:23: e3:dc:1d:07:0b:fc:e2:ec:3c:4f:65:fd:ad:c2:6b:ea:da:20: 43:77:22:d9:f5:b4:e2:67:11:98:48:79:cd:e5:2a:b2:88:81: ba:70:3b:a8:af:b9:77:fd:61:a2:f4:70:e3:cb:df:f5:ab:20: 9a:bd:7c:8b:7a:21:17:40:4c:57:3d:a1:1e:02:4a:5d:19:ef: 5a:d5:88:29 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUESY2xxmZOltYM8xWFWAHBV2g/k8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUxMDMwWhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzc0ZGU4NDRjNDAxNDdiNmRiZDNkNDgxMWI2YjU5YmVk NDBhZjY4OWRmZDAyMzlmN2RhMzc4MTYwMDFhODVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYICpClKBXUiHNBQ8/mJU9E5aHLCvUnTlzmKNwpwucAr3j 4XReUhGinXaRMgOeAg9toLMBf5yFPCFOYTg2feuBcGwmTb5SoEYVNfP2oNBucoCa i+qIRPwGIF1o24l+TcDKqazBqnFAGJTRIJwCI7n9DdWuomXqYuVNkb+RTkQsxI2f tCHOLJTa0wjOWdTe/czzsxIDFpm5xkqi/2+ORNtj+8D8rMRd92QGvXSinRHArMX5 DmyZ4gFOZGfgKX19I18llDCD5UTP6+ftqM6QJid24NQBeedR/aYwZN54C4ow0FGY nbJ6kM5ajZcszTtfKiGDNBsuFQiysk96bDiLFdQtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTd/Nx0qlH8lVV06VGV5H5TvlSNQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZjODU4MWQ4LTg2YjgtNGZkYi04YzIzLTg2Y2M1NWRlYTkyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQSzANBgkqhkiG9w0BAQsFAAOCAQEATLPQNS4Az1vWxItCGRM55ih13BMC SMXE69eHkTlktJOcOlyEqadvzytPLH3yaE7xhJetVkzJSZloAxm069V1RAlNWs17 m0plB5X/MAwcoGc3MJ0143SYyyvf5zOVEB0wOZGXlUU0OpcFw/OGe1wOthdoCzI7 tJ++723liE0eVSSljv51feu8WRwpCnDWvHsmiMS2jI3ec4/8L5hq2ov42rFmjDB3 GrmpJjEdu3OV/zPsi24j49wdBwv84uw8T2X9rcJr6togQ3ci2fW04mcRmEh5zeUq soiBunA7qK+5d/1hovRw48vf9asgmr18i3ohF0BMVz2hHgJKXRnvWtWIKQ== -----END CERTIFICATE-----Generated at Wed Aug 20 10:41:49 2025 by rpki-client