$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8991f83e-ff4c-4d8b-9498-4f1f3ce1b454.roa File: 8991f83e-ff4c-4d8b-9498-4f1f3ce1b454.roa (raw, json) Hash identifier: 6RjmShycuENapa9cTryCxBzi3ZVAvJvWEqjLgPj3WaE= Subject key identifier: 49:0C:C4:D8:99:1E:7C:E1:3C:C3:3F:EF:41:F5:56:AA:2F:E2:34:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68EFADD481A392BC6B080F692376D76F49D13E3C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8991f83e-ff4c-4d8b-9498-4f1f3ce1b454.roa Signing time: Tue 12 Aug 2025 00:01:54 +0000 ROA not before: Tue 12 Aug 2025 00:01:54 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.21.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ef:ad:d4:81:a3:92:bc:6b:08:0f:69:23:76:d7:6f:49:d1:3e:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:01:54 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=8470079577487eab76e400d6bc0ad9be153dc43339d4d5c1258bd7ed26486dd1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:28:aa:c2:69:ba:52:c8:ed:e3:d9:27:55:73: 9f:c7:72:77:ef:f1:0b:2e:57:ec:41:29:bb:92:35: 3b:01:b1:63:1c:ba:4f:f8:c2:e9:7e:a3:37:d0:81: f7:ad:a5:79:0f:89:24:14:fe:84:2f:a2:de:54:64: aa:fb:a8:4a:22:86:41:89:61:a2:77:7d:5a:d5:d3: e8:7f:be:43:57:2c:fc:b2:ba:bc:92:ad:f5:51:ba: 6f:6c:a3:f4:3d:64:97:56:d9:58:8e:96:29:63:0c: a6:75:a0:61:87:98:73:33:7a:ba:49:88:57:4a:01: 86:a3:47:67:9d:fd:4a:ee:ff:88:9e:f8:88:6e:31: b6:bd:de:1f:e6:59:e3:4e:a9:30:c0:cd:90:39:33: f4:5a:b7:40:4e:52:67:83:f0:27:bc:6d:08:98:cc: 11:cd:cb:04:93:84:a1:c8:55:f7:18:83:67:75:74: ee:fb:a2:8a:4b:82:da:09:54:61:c1:3c:32:01:fa: ad:e7:65:21:ea:fa:68:58:12:41:7d:9c:ca:13:5c: de:da:d7:94:7e:31:e8:e9:d7:97:09:1c:98:85:48: 77:62:55:b0:f5:5d:64:03:c9:44:f3:fb:1a:74:a5: ed:ee:fc:34:62:63:ad:a3:24:e5:8a:ef:60:a5:cf: 37:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:0C:C4:D8:99:1E:7C:E1:3C:C3:3F:EF:41:F5:56:AA:2F:E2:34:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8991f83e-ff4c-4d8b-9498-4f1f3ce1b454.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.21.0.0/16 Signature Algorithm: sha256WithRSAEncryption 38:86:5d:38:d1:ed:33:f6:96:e2:5a:49:63:31:b6:e4:9c:53: 97:18:7d:b5:45:74:0c:a5:de:9b:c5:b0:56:ad:45:37:ce:16: b8:26:03:b4:ff:3b:d3:12:c3:45:63:13:9e:ba:e0:28:0b:15: 87:df:19:25:6c:04:95:41:35:31:b3:5f:de:56:cf:c4:f6:a2: 29:45:5d:c0:31:42:85:e5:94:c4:d3:c3:5b:30:f2:ba:44:65: 99:92:a9:75:32:80:93:ea:35:15:2d:27:dc:33:f2:07:23:4c: ab:32:10:5a:a2:88:de:d3:ac:31:5d:09:7f:a4:fe:a5:b8:de: 59:11:af:9b:2c:6b:71:cd:18:17:cb:35:95:a0:e9:e6:41:b7: fb:8e:5c:83:2a:e1:1e:c5:90:95:04:13:c5:ec:c3:1d:03:af: cf:3f:79:4e:3d:2a:ae:4e:fe:75:3c:26:09:95:f8:2d:99:5f: be:b8:ea:09:b4:34:b5:f2:22:27:71:c8:17:90:4d:f7:b4:0d: de:89:f2:35:40:57:3a:0d:dc:3d:ed:e1:61:2e:7f:cb:80:98: 1f:38:e3:05:cd:43:74:38:f0:b0:4c:f0:f1:61:a4:45:47:7f: e3:8c:9a:22:3e:7a:75:dc:55:90:97:ef:82:05:85:30:bb:29: 47:a5:1f:a5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaO+t1IGjkrxrCA9pI3bXb0nRPjwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAwMTU0WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NDcwMDc5NTc3NDg3ZWFiNzZlNDAwZDZiYzBhZDliZTE1 M2RjNDMzMzlkNGQ1YzEyNThiZDdlZDI2NDg2ZGQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAKKrCabpSyO3j2SdVc5/Hcnfv8QsuV+xBKbuSNTsBsWMc uk/4wul+ozfQgfetpXkPiSQU/oQvot5UZKr7qEoihkGJYaJ3fVrV0+h/vkNXLPyy urySrfVRum9so/Q9ZJdW2ViOliljDKZ1oGGHmHMzerpJiFdKAYajR2ed/Uru/4ie +IhuMba93h/mWeNOqTDAzZA5M/Rat0BOUmeD8Ce8bQiYzBHNywSThKHIVfcYg2d1 dO77oopLgtoJVGHBPDIB+q3nZSHq+mhYEkF9nMoTXN7a15R+Mejp15cJHJiFSHdi VbD1XWQDyUTz+xp0pe3u/DRiY62jJOWK72ClzzcVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUSQzE2JkefOE8wz/vQfVWqi/iNGswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg5OTFmODNlLWZmNGMtNGQ4Yi05NDk4LTRmMWYzY2UxYjQ1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFTANBgkqhkiG9w0BAQsFAAOCAQEAOIZdONHtM/aW4lpJYzG25JxTlxh9 tUV0DKXem8WwVq1FN84WuCYDtP870xLDRWMTnrrgKAsVh98ZJWwElUE1MbNf3lbP xPaiKUVdwDFCheWUxNPDWzDyukRlmZKpdTKAk+o1FS0n3DPyByNMqzIQWqKI3tOs MV0Jf6T+pbjeWRGvmyxrcc0YF8s1laDp5kG3+45cgyrhHsWQlQQTxezDHQOvzz95 Tj0qrk7+dTwmCZX4LZlfvrjqCbQ0tfIiJ3HIF5BN97QN3onyNUBXOg3cPe3hYS5/ y4CYHzjjBc1DdDjwsEzw8WGkRUd/44yaIj56ddxVkJfvggWFMLspR6UfpQ== -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:43 2025 by rpki-client