$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac7530be-0917-4f49-bb5e-6d33638bafff.roa File: ac7530be-0917-4f49-bb5e-6d33638bafff.roa (raw, json) Hash identifier: Th8aAalYVAlUa2UtwU/V8pYVnG5l8phujvJvLU9nKpI= Subject key identifier: 6D:CC:7A:75:2C:1A:97:C4:AF:6C:85:AE:52:C9:8B:9F:19:74:34:42 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E65F00ECA7BB8FC716B3FE296345AE454639F9F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac7530be-0917-4f49-bb5e-6d33638bafff.roa Signing time: Fri 15 Aug 2025 00:31:18 +0000 ROA not before: Fri 15 Aug 2025 00:31:18 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 16.149.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 23 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:65:f0:0e:ca:7b:b8:fc:71:6b:3f:e2:96:34:5a:e4:54:63:9f:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 15 00:31:18 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=4dfbddea560b3cc3242e9e943376dbf7288af5a5e2c42fdb7824cddb6d6178e2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2d:fa:d6:9c:ec:28:40:82:8d:21:6f:60:36: 76:77:df:f3:1e:1d:a5:42:58:84:26:d5:3f:bf:54: c1:86:a2:92:06:24:56:46:2c:85:53:1e:75:12:e8: bd:b4:b7:af:4d:50:8c:72:56:89:b8:b0:0b:44:85: 1f:be:cd:32:5a:1f:fd:05:27:4b:b4:78:91:cc:97: 7a:27:d6:fc:8d:74:85:b3:2a:54:bb:ab:a9:d3:a9: 3f:3f:9b:62:4c:22:f3:c3:09:43:bc:91:09:7d:e7: bb:ee:e1:f7:2d:59:46:0f:1a:78:01:e0:b2:85:98: 5e:e8:92:1d:86:f1:a3:d3:bd:c9:43:20:c7:23:3e: 32:d6:90:24:4e:35:c1:3b:58:a0:d3:c6:2a:01:6a: 62:f4:0d:41:80:bc:79:d4:e5:fc:4b:67:22:e4:b5: 72:a1:bf:5f:c6:7c:74:9f:34:34:55:6d:6a:f0:39: fd:4e:6f:5a:d7:25:8a:0f:d7:96:78:c5:1c:d6:f5: ef:9b:c5:e2:64:6d:b3:e7:61:2e:3d:de:36:5a:42: 87:2f:0c:ce:dd:21:22:4d:23:ce:3d:03:06:4d:99: 74:a8:16:f0:c5:4f:a6:47:25:5a:4c:64:99:c0:d7: 61:5e:7a:1b:9e:ce:96:c7:81:4f:31:0d:82:95:e6: ad:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:CC:7A:75:2C:1A:97:C4:AF:6C:85:AE:52:C9:8B:9F:19:74:34:42 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac7530be-0917-4f49-bb5e-6d33638bafff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.149.0.0/16 Signature Algorithm: sha256WithRSAEncryption cf:77:7c:65:2b:dd:20:7b:bd:4d:e3:b9:eb:ee:14:29:98:4e: a5:ea:8a:cf:fc:5c:f0:1b:58:23:46:99:dd:3e:93:8a:6a:b4: f6:54:f0:84:de:5e:0a:05:06:e4:cb:ac:c7:15:e6:13:35:0d: ac:ad:27:65:7d:d0:96:dc:16:4d:25:0c:26:bd:da:15:34:d0: b9:d1:40:50:58:a6:cf:17:41:2f:32:4f:08:ef:b8:e6:5b:ac: a3:53:4f:e4:d1:59:d4:aa:58:bc:e4:66:75:fd:be:35:ee:10: 18:cb:d5:62:97:0c:45:00:21:26:30:41:e4:5b:94:60:c3:0f: a0:1c:7e:5e:79:3b:2b:b3:cd:6d:64:a4:8c:a6:04:c8:bb:16: ff:53:16:b3:0d:0e:00:da:0d:8e:3b:36:0c:94:d0:b5:4d:cb: 96:55:95:83:6e:d1:02:1e:e3:c9:04:71:e6:b6:18:6e:55:0d: d1:fb:db:72:b5:06:e3:00:48:0e:c8:15:86:c7:4a:6f:b8:47: ae:9f:6d:96:2c:96:99:af:3d:fb:9c:22:8a:a1:d2:bc:67:97: e8:75:d7:be:ce:86:8f:03:a7:53:63:47:44:63:fd:52:1e:d9: 6b:45:74:23:e9:b1:a1:d1:5a:e5:66:c4:88:54:8a:35:17:43: c6:5d:1c:16 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULmXwDsp7uPxxaz/iljRa5FRjn58wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE1MDAzMTE4WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZGZiZGRlYTU2MGIzY2MzMjQyZTllOTQzMzc2ZGJmNzI4 OGFmNWE1ZTJjNDJmZGI3ODI0Y2RkYjZkNjE3OGUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHLfrWnOwoQIKNIW9gNnZ33/MeHaVCWIQm1T+/VMGGopIG JFZGLIVTHnUS6L20t69NUIxyVom4sAtEhR++zTJaH/0FJ0u0eJHMl3on1vyNdIWz KlS7q6nTqT8/m2JMIvPDCUO8kQl957vu4fctWUYPGngB4LKFmF7okh2G8aPTvclD IMcjPjLWkCRONcE7WKDTxioBamL0DUGAvHnU5fxLZyLktXKhv1/GfHSfNDRVbWrw Of1Ob1rXJYoP15Z4xRzW9e+bxeJkbbPnYS493jZaQocvDM7dISJNI849AwZNmXSo FvDFT6ZHJVpMZJnA12FeehuezpbHgU8xDYKV5q2XAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUbcx6dSwal8SvbIWuUsmLnxl0NEIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjNzUzMGJlLTA5MTctNGY0OS1iYjVlLTZkMzM2MzhiYWZmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQlTANBgkqhkiG9w0BAQsFAAOCAQEAz3d8ZSvdIHu9TeO56+4UKZhOpeqK z/xc8BtYI0aZ3T6Timq09lTwhN5eCgUG5MusxxXmEzUNrK0nZX3QltwWTSUMJr3a FTTQudFAUFimzxdBLzJPCO+45luso1NP5NFZ1KpYvORmdf2+Ne4QGMvVYpcMRQAh JjBB5FuUYMMPoBx+Xnk7K7PNbWSkjKYEyLsW/1MWsw0OANoNjjs2DJTQtU3LllWV g27RAh7jyQRx5rYYblUN0fvbcrUG4wBIDsgVhsdKb7hHrp9tliyWma89+5wiiqHS vGeX6HXXvs6GjwOnU2NHRGP9Uh7Za0V0I+mxodFa5WbEiFSKNRdDxl0cFg== -----END CERTIFICATE-----Generated at Thu Aug 21 18:57:42 2025 by rpki-client