$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3454ba8-e03c-463a-be52-e46f944b7fa6.roa File: d3454ba8-e03c-463a-be52-e46f944b7fa6.roa (raw, json) Hash identifier: XyrNeuUWU9muPeTyNMybbPDRhkbQyMbVrzkAerIg7TA= Subject key identifier: 12:5D:AA:49:6F:2F:4F:52:C5:0F:8E:56:C6:AD:92:30:6C:0E:66:F3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A962C6D16129CAB445B6837E25DCBBFFE28CDD3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3454ba8-e03c-463a-be52-e46f944b7fa6.roa Signing time: Mon 11 Aug 2025 15:01:48 +0000 ROA not before: Mon 11 Aug 2025 15:01:48 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.104.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:96:2c:6d:16:12:9c:ab:44:5b:68:37:e2:5d:cb:bf:fe:28:cd:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:01:48 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=fa0724cb0e77045c26d838b1b040559f10e82dbb1f4c705af87c4807522e2792, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6b:88:fb:ca:89:76:ec:d0:d5:97:f4:80:b7: 57:63:35:4d:a5:85:69:3e:c1:af:80:20:86:d2:5c: ab:f3:9e:81:7e:64:f9:76:18:f4:7d:c8:9b:e4:f3: 18:2f:37:4b:9c:02:e8:9a:2d:d0:55:db:6a:96:0f: 9d:c4:d7:3f:f4:47:2a:b1:a0:94:ff:9e:54:10:5a: 0f:f0:87:4b:8c:22:d4:39:e4:6c:1c:ce:31:b1:29: 82:a9:66:d7:e8:37:c8:31:07:04:22:69:d8:53:00: 74:7b:e5:30:35:58:2d:7b:18:8e:0c:de:06:8e:e3: 77:52:d8:53:a9:66:b5:df:2e:21:6c:18:f5:a0:17: 28:a4:7b:b8:47:2d:b7:1b:4e:82:09:a5:33:72:d9: 66:77:25:b9:8f:e4:34:d7:29:7e:c0:b2:b1:62:8f: 56:d9:eb:e4:fd:9e:00:8a:19:39:c2:36:01:5c:66: fc:dc:96:00:b5:04:b5:80:de:ab:9f:be:75:18:02: 1d:ba:2b:6c:93:19:f2:c5:1e:1a:ce:f0:63:a9:d1: dd:89:4c:42:eb:10:8a:82:7e:fe:03:f1:fe:6b:a2: 04:b1:b3:4e:04:24:a3:04:be:83:63:61:91:38:b9: f0:06:c9:06:60:af:c8:d5:0c:37:a5:67:55:dc:af: 74:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:5D:AA:49:6F:2F:4F:52:C5:0F:8E:56:C6:AD:92:30:6C:0E:66:F3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3454ba8-e03c-463a-be52-e46f944b7fa6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.104.0.0/16 Signature Algorithm: sha256WithRSAEncryption 15:15:fa:de:04:bb:f5:c6:99:30:7f:3e:b0:b5:dc:69:ce:90: 9d:b8:b7:7a:8d:0c:c3:e2:b8:5e:3d:1e:41:f1:5c:e7:4d:c9: c7:5c:40:25:e4:df:b7:d7:50:ca:63:cc:80:09:2b:a1:3c:37: e6:e1:26:ab:0a:36:87:1d:7f:a4:f0:3c:a0:f4:6a:4b:41:62: 3e:28:d3:f5:06:9f:fe:58:16:3c:cc:4e:26:36:f0:62:f3:c8: 80:e4:6c:c2:09:79:a3:a5:d0:1e:59:70:14:f7:2a:ef:d3:0f: 6d:66:35:ad:47:3a:2e:c6:fa:a6:fd:fb:39:b8:fc:b8:d7:80: 83:33:7a:ca:48:98:97:19:fe:e1:3f:21:44:00:03:52:eb:94: 7b:8c:dc:a5:3b:52:d7:68:da:10:fa:31:96:75:ba:7f:e4:50: 70:60:e3:ed:45:e5:e1:66:57:b2:9b:b8:da:99:55:f4:c5:b8: 00:05:8a:4b:46:19:75:fc:cf:5e:40:79:df:96:da:77:9a:3a: d9:64:59:ee:16:b8:61:12:e9:4a:e6:57:50:c1:13:e0:4e:9e: e0:67:d2:ac:0b:d3:31:17:ae:aa:b6:ed:c8:a5:0a:e1:10:58: 51:ea:93:81:42:a4:7a:af:9a:e5:1f:fe:49:4e:1d:8a:26:72: 52:99:e9:9a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUepYsbRYSnKtEW2g34l3Lv/4ozdMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUwMTQ4WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTA3MjRjYjBlNzcwNDVjMjZkODM4YjFiMDQwNTU5ZjEw ZTgyZGJiMWY0YzcwNWFmODdjNDgwNzUyMmUyNzkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCya4j7yol27NDVl/SAt1djNU2lhWk+wa+AIIbSXKvznoF+ ZPl2GPR9yJvk8xgvN0ucAuiaLdBV22qWD53E1z/0RyqxoJT/nlQQWg/wh0uMItQ5 5GwczjGxKYKpZtfoN8gxBwQiadhTAHR75TA1WC17GI4M3gaO43dS2FOpZrXfLiFs GPWgFyike7hHLbcbToIJpTNy2WZ3JbmP5DTXKX7AsrFij1bZ6+T9ngCKGTnCNgFc ZvzclgC1BLWA3qufvnUYAh26K2yTGfLFHhrO8GOp0d2JTELrEIqCfv4D8f5rogSx s04EJKMEvoNjYZE4ufAGyQZgr8jVDDelZ1Xcr3SzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUEl2qSW8vT1LFD45Wxq2SMGwOZvMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzNDU0YmE4LWUwM2MtNDYzYS1iZTUyLWU0NmY5NDRiN2ZhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQaDANBgkqhkiG9w0BAQsFAAOCAQEAFRX63gS79caZMH8+sLXcac6Qnbi3 eo0Mw+K4Xj0eQfFc503Jx1xAJeTft9dQymPMgAkroTw35uEmqwo2hx1/pPA8oPRq S0FiPijT9Qaf/lgWPMxOJjbwYvPIgORswgl5o6XQHllwFPcq79MPbWY1rUc6Lsb6 pv37Obj8uNeAgzN6ykiYlxn+4T8hRAADUuuUe4zcpTtS12jaEPoxlnW6f+RQcGDj 7UXl4WZXspu42plV9MW4AAWKS0YZdfzPXkB535bad5o62WRZ7ha4YRLpSuZXUMET 4E6e4GfSrAvTMReuqrbtyKUK4RBYUeqTgUKkeq+a5R/+SU4diiZyUpnpmg== -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:33 2025 by rpki-client