$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a842743f-2a64-4da9-99c9-7f095e35b425.roa File: a842743f-2a64-4da9-99c9-7f095e35b425.roa (raw, json) Hash identifier: +EPPmnB5v85mVm3onz+G3BwJz+i1F1aOx5vlR258+XQ= Subject key identifier: EA:83:73:12:4B:14:78:1B:43:78:E0:DE:3B:24:64:A6:B9:3B:3B:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BB066F410B2736F9EE6FE634569FAE35F137527 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a842743f-2a64-4da9-99c9-7f095e35b425.roa Signing time: Mon 11 Aug 2025 15:21:39 +0000 ROA not before: Mon 11 Aug 2025 15:21:39 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.99.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:b0:66:f4:10:b2:73:6f:9e:e6:fe:63:45:69:fa:e3:5f:13:75:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:21:39 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=10f08f4cd64234d249109959a30b02af58103be3cb1b2847dfe9377fe3ccfabc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:06:e0:df:05:e0:a7:3c:d8:87:3d:c8:d0:3d: 31:4b:36:f8:49:04:69:3a:71:9f:1c:29:01:4d:97: c2:53:6f:f6:fa:5f:7b:be:ca:34:35:8d:86:e5:0c: 19:a9:82:96:1f:82:1f:1a:e5:3d:f4:3d:c8:d2:2e: 1d:f3:e9:e3:b5:15:d6:59:26:79:7f:3a:ec:d6:21: d0:c1:32:c2:8e:5e:34:7f:43:f7:13:74:04:d2:3c: 41:cd:b3:b1:84:cd:46:a2:bf:ea:70:c8:f7:f1:59: e0:40:f5:bb:78:6f:64:b7:b6:e2:73:3f:2c:44:fe: 54:71:45:34:37:de:06:d4:3d:a6:c2:cd:fe:e4:2f: 3c:d8:df:fb:39:13:80:ce:c5:c6:3c:a7:25:1e:56: d9:2e:18:fa:5e:42:cc:84:05:15:bd:25:bf:75:bd: af:97:2c:3e:6e:b1:fd:8a:be:c9:3d:7c:9f:81:6c: a9:2b:e2:43:d1:6d:5b:f3:4f:12:16:55:c7:d1:79: cc:a1:98:89:bb:c3:bd:8f:30:e7:55:c7:19:fc:69: d7:be:56:6e:02:ec:c9:f6:9f:6f:c7:66:20:59:f1: 7b:6a:e6:87:37:ee:26:fc:e5:90:d0:77:ea:30:27: 63:76:d9:97:c3:a0:7c:08:e4:66:13:91:74:80:b0: 77:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:83:73:12:4B:14:78:1B:43:78:E0:DE:3B:24:64:A6:B9:3B:3B:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a842743f-2a64-4da9-99c9-7f095e35b425.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.99.0.0/16 Signature Algorithm: sha256WithRSAEncryption 83:6a:6e:dc:1d:8e:6b:3d:11:b4:f9:0b:46:d5:8f:2d:70:65: ab:d6:1b:bd:5d:4c:9d:ea:10:6a:25:78:68:74:cc:b1:62:9e: f4:56:cc:e6:ad:a6:2e:81:04:97:fc:aa:83:db:1b:3c:0d:bb: 59:05:91:14:b4:06:a7:bd:d3:ae:b8:b7:ec:5c:5c:4f:61:e2: 38:c9:df:7d:44:1d:1c:11:72:17:e1:b2:29:6e:9c:2b:99:fe: 3a:00:84:35:a1:29:21:e7:fa:18:76:30:94:45:f4:bf:91:23: 61:c3:45:60:6b:e5:92:a3:ed:79:ea:40:7e:41:62:1f:62:7c: f6:d7:74:a9:69:2e:e0:19:13:4e:be:e0:e9:65:7f:5d:b7:c5: ba:83:6b:02:32:57:1c:7a:de:82:aa:b9:45:72:8a:51:8e:13: ca:7f:e9:8c:74:4a:ab:4d:71:07:90:b6:4b:18:95:60:75:77: 0f:b0:32:63:7a:f2:a6:3a:45:91:f5:3c:f3:3d:8d:cc:ad:7e: f6:b2:83:27:b0:f0:fa:38:d8:ef:4f:8c:5a:2a:23:49:85:17: 0f:55:6a:e3:2d:ad:8f:1b:c9:aa:61:03:22:c0:2b:b9:97:f0: fd:aa:44:d2:4f:8d:f2:8c:6c:07:da:d6:77:88:15:b7:cc:b9: 86:16:9c:a9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUe7Bm9BCyc2+e5v5jRWn6418TdScwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUyMTM5WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMGYwOGY0Y2Q2NDIzNGQyNDkxMDk5NTlhMzBiMDJhZjU4 MTAzYmUzY2IxYjI4NDdkZmU5Mzc3ZmUzY2NmYWJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpBuDfBeCnPNiHPcjQPTFLNvhJBGk6cZ8cKQFNl8JTb/b6 X3u+yjQ1jYblDBmpgpYfgh8a5T30PcjSLh3z6eO1FdZZJnl/OuzWIdDBMsKOXjR/ Q/cTdATSPEHNs7GEzUaiv+pwyPfxWeBA9bt4b2S3tuJzPyxE/lRxRTQ33gbUPabC zf7kLzzY3/s5E4DOxcY8pyUeVtkuGPpeQsyEBRW9Jb91va+XLD5usf2Kvsk9fJ+B bKkr4kPRbVvzTxIWVcfRecyhmIm7w72PMOdVxxn8ade+Vm4C7Mn2n2/HZiBZ8Xtq 5oc37ib85ZDQd+owJ2N22ZfDoHwI5GYTkXSAsHcbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6oNzEksUeBtDeODeOyRkprk7O3owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E4NDI3NDNmLTJhNjQtNGRhOS05OWM5LTdmMDk1ZTM1YjQyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQYzANBgkqhkiG9w0BAQsFAAOCAQEAg2pu3B2Oaz0RtPkLRtWPLXBlq9Yb vV1MneoQaiV4aHTMsWKe9FbM5q2mLoEEl/yqg9sbPA27WQWRFLQGp73Trri37Fxc T2HiOMnffUQdHBFyF+GyKW6cK5n+OgCENaEpIef6GHYwlEX0v5EjYcNFYGvlkqPt eepAfkFiH2J89td0qWku4BkTTr7g6WV/XbfFuoNrAjJXHHregqq5RXKKUY4Tyn/p jHRKq01xB5C2SxiVYHV3D7AyY3rypjpFkfU88z2NzK1+9rKDJ7Dw+jjY70+MWioj SYUXD1Vq4y2tjxvJqmEDIsAruZfw/apE0k+N8oxsB9rWd4gVt8y5hhacqQ== -----END CERTIFICATE-----Generated at Wed Aug 20 10:42:50 2025 by rpki-client