$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e834e04c-f563-4064-a1f9-706839ae47eb.roa File: e834e04c-f563-4064-a1f9-706839ae47eb.roa (raw, json) Hash identifier: kHHnZP6tbsJOVhlvfujlY4A5BU0s5m8ItlMkT0lJ7Q0= Subject key identifier: FE:F3:FD:DF:0D:0E:E8:EF:2A:3E:5A:46:E9:2D:EF:5F:43:5F:41:91 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 368B4E6CFFDF570128B781CDD289C8AB0C2E34BB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e834e04c-f563-4064-a1f9-706839ae47eb.roa Signing time: Fri 05 Sep 2025 00:01:58 +0000 ROA not before: Fri 05 Sep 2025 00:01:58 +0000 ROA not after: Fri 10 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.116.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:8b:4e:6c:ff:df:57:01:28:b7:81:cd:d2:89:c8:ab:0c:2e:34:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 5 00:01:58 2025 GMT Not After : Oct 10 23:59:59 2025 GMT Subject: serialNumber=2cb79979a78319f208880a5265314d0b439d1d24d27d2e2f45729dcaa75971d8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d7:b4:21:90:a2:a7:71:8e:40:74:16:de:4d: a7:13:35:8e:6d:da:49:8e:16:cd:a5:09:3d:50:c7: 5c:dc:6e:a1:99:b4:d0:23:62:cc:1c:b0:10:dc:fb: 88:a3:44:6f:b5:02:01:a1:31:e5:68:33:8d:45:e8: d9:5f:40:ed:4e:a4:0e:33:ba:fe:c7:e2:61:bf:0e: 95:3e:aa:47:ee:5c:e9:0f:67:dc:70:9e:4b:8e:af: 20:ca:19:64:17:a7:25:97:24:17:52:cb:7f:c2:49: 18:be:7d:49:b3:c7:32:46:d1:64:fa:40:ea:f0:7a: 91:20:cd:7e:39:1b:8f:70:71:68:f9:c4:71:e2:9c: 4c:63:79:43:dc:9e:49:3a:15:40:97:e9:6f:17:2e: 15:01:a8:cd:e3:3c:cf:04:83:05:03:95:45:3c:3d: ef:1b:19:db:07:b6:5c:6a:09:ae:49:b6:db:a5:92: 80:10:76:cc:7a:2f:9b:f7:a1:17:35:9f:e9:60:95: 45:86:2d:2e:75:b6:0e:21:94:98:a2:91:9f:95:06: c0:a2:a3:59:a1:21:49:2c:14:f7:f1:b0:17:0d:56: 3a:68:5a:fc:6b:12:3c:f0:c8:e0:87:91:13:bd:60: f7:aa:3c:00:bd:ae:d2:48:bc:cf:0f:94:ea:38:73: 8b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:F3:FD:DF:0D:0E:E8:EF:2A:3E:5A:46:E9:2D:EF:5F:43:5F:41:91 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e834e04c-f563-4064-a1f9-706839ae47eb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.116.0.0/16 Signature Algorithm: sha256WithRSAEncryption 02:57:22:c1:ab:cb:39:b7:56:49:00:98:70:9d:3f:b8:2c:a1: e9:79:ce:f0:c0:72:cb:e6:59:99:bf:45:a3:ae:8b:9e:c3:44: ca:04:71:83:b9:b7:88:57:09:93:c1:76:e9:59:8b:04:48:5f: c8:08:63:26:7b:16:ec:e1:74:c1:05:84:5b:36:91:fc:36:e7: da:6d:01:22:da:95:e5:d6:91:ac:fd:d2:28:86:5b:95:57:cf: 55:67:9f:35:a1:37:74:70:69:4c:d2:a2:c8:c6:50:68:bb:25: 49:1f:ff:4d:9e:6a:4f:ad:3e:94:88:eb:e5:3d:0d:00:ec:79: d5:68:f1:e3:be:f2:4d:a0:bc:af:6e:b5:0a:f9:df:03:fa:26: 59:fb:aa:aa:59:ad:26:f0:93:88:65:d1:b6:06:3b:5a:9b:f1: 70:1a:9a:c9:f6:dc:11:bc:a3:99:96:f5:1d:b0:cb:43:13:5d: 34:37:c7:40:c8:31:4c:79:35:5a:2a:08:4d:96:ff:14:93:7a: 5e:89:3f:3c:6a:40:68:7a:3e:eb:df:61:90:00:a1:89:e6:0a: 1d:89:98:8c:6e:26:48:ad:41:67:86:57:5e:61:d7:d3:af:38: 6c:48:08:d4:cb:0b:3a:ab:db:89:10:7c:4f:44:5c:e6:68:03: 72:44:cd:35 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNotObP/fVwEot4HN0onIqwwuNLswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA1MDAwMTU4WhcNMjUxMDEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyY2I3OTk3OWE3ODMxOWYyMDg4ODBhNTI2NTMxNGQwYjQz OWQxZDI0ZDI3ZDJlMmY0NTcyOWRjYWE3NTk3MWQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQ17QhkKKncY5AdBbeTacTNY5t2kmOFs2lCT1Qx1zcbqGZ tNAjYswcsBDc+4ijRG+1AgGhMeVoM41F6NlfQO1OpA4zuv7H4mG/DpU+qkfuXOkP Z9xwnkuOryDKGWQXpyWXJBdSy3/CSRi+fUmzxzJG0WT6QOrwepEgzX45G49wcWj5 xHHinExjeUPcnkk6FUCX6W8XLhUBqM3jPM8EgwUDlUU8Pe8bGdsHtlxqCa5Jttul koAQdsx6L5v3oRc1n+lglUWGLS51tg4hlJiikZ+VBsCio1mhIUksFPfxsBcNVjpo WvxrEjzwyOCHkRO9YPeqPAC9rtJIvM8PlOo4c4u5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/vP93w0O6O8qPlpG6S3vX0NfQZEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4MzRlMDRjLWY1NjMtNDA2NC1hMWY5LTcwNjgzOWFlNDdlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQdDANBgkqhkiG9w0BAQsFAAOCAQEAAlciwavLObdWSQCYcJ0/uCyh6XnO 8MByy+ZZmb9Fo66LnsNEygRxg7m3iFcJk8F26VmLBEhfyAhjJnsW7OF0wQWEWzaR /Dbn2m0BItqV5daRrP3SKIZblVfPVWefNaE3dHBpTNKiyMZQaLslSR//TZ5qT60+ lIjr5T0NAOx51Wjx477yTaC8r261CvnfA/omWfuqqlmtJvCTiGXRtgY7WpvxcBqa yfbcEbyjmZb1HbDLQxNdNDfHQMgxTHk1WioITZb/FJN6Xok/PGpAaHo+699hkACh ieYKHYmYjG4mSK1BZ4ZXXmHX0684bEgI1MsLOqvbiRB8T0Rc5mgDckTNNQ== -----END CERTIFICATE-----Generated at Sat Sep 6 14:06:14 2025 by rpki-client