$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbeb70f4-660c-4c1f-924a-f9aabc75772d.roa File: fbeb70f4-660c-4c1f-924a-f9aabc75772d.roa (raw, json) Hash identifier: KFRd2WISZSKK3+yT+N7BQXmEyV3sBLVLD9d7SMnxsmc= Subject key identifier: 8E:6F:A8:6E:63:53:32:04:8B:66:48:C6:59:86:3A:8C:69:5B:3D:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6505F58A8E11FC349E6F14C8FA0BFC3CBB882CF4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbeb70f4-660c-4c1f-924a-f9aabc75772d.roa Signing time: Wed 27 Aug 2025 00:40:18 +0000 ROA not before: Wed 27 Aug 2025 00:40:18 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.184.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:05:f5:8a:8e:11:fc:34:9e:6f:14:c8:fa:0b:fc:3c:bb:88:2c:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 27 00:40:18 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=865258254ee3cfaa0f24be7cc320921db84fcc9283355f98783516a8e7d5b3f4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:b3:63:50:3f:74:de:b5:c2:62:b7:ef:94:e7: 86:2a:6f:91:f4:5d:a8:5d:23:10:46:d5:6d:73:90: 30:a9:10:0e:e8:c7:f6:e9:df:55:c9:cb:94:44:f8: 3d:43:ef:4a:a3:2c:5b:74:d6:9e:16:05:b7:ee:e4: c3:75:9e:48:91:68:82:3c:e1:fa:67:1c:54:85:29: 23:0c:fe:55:05:c8:65:90:91:77:b3:2e:7e:97:0c: 06:5d:80:14:5c:96:fa:1a:a0:19:74:fc:46:a6:f0: 98:c2:eb:d0:39:7c:31:1c:d8:95:ce:44:a3:49:6a: 2c:e0:1f:d7:ca:ea:7e:55:f2:cb:af:23:bd:26:43: e8:0c:03:b6:d1:0e:8c:70:95:8d:93:37:1b:da:bf: a7:b0:cd:a1:cc:1c:75:ab:10:df:eb:25:62:ae:72: 5a:6a:26:2d:cd:f0:fa:36:c7:28:b8:94:42:75:b7: cc:fd:6a:28:58:70:12:c7:75:18:48:ab:6a:0f:cd: 5c:f6:55:c7:13:d5:5d:4e:b2:cd:c0:ca:d6:f4:d4: 73:d3:e6:ce:10:bb:95:56:d9:dc:36:8b:61:24:64: 87:01:52:5a:0a:c0:34:93:73:1c:4e:0e:31:7d:1c: 9d:80:52:59:a4:7c:76:f8:2d:2a:cf:cf:ad:fd:87: a1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:6F:A8:6E:63:53:32:04:8B:66:48:C6:59:86:3A:8C:69:5B:3D:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbeb70f4-660c-4c1f-924a-f9aabc75772d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.184.128.0/17 Signature Algorithm: sha256WithRSAEncryption d9:4a:ab:46:db:95:09:61:6e:a3:a3:45:b9:c8:68:17:e5:39: 0c:38:ce:a7:44:af:03:9c:20:47:8d:f6:cd:a9:55:45:ca:f6: b5:24:8b:2d:6c:f8:82:b1:b8:72:56:ab:39:b6:bc:e3:01:8a: cd:df:ef:a1:c7:56:d2:c8:38:2c:f8:35:53:ec:84:ff:bb:c8: e5:f3:07:cb:c6:bc:7a:f5:23:68:5c:56:b2:8d:ce:07:83:78: 6c:e0:3b:62:50:ff:26:32:51:bb:49:48:de:20:14:4e:2d:d4: 06:6b:7c:1f:dd:e2:1f:a8:e1:b1:ff:cd:12:53:23:ad:9c:49: 70:1b:3b:93:28:fb:7d:13:3d:cd:8e:67:f7:f5:33:fb:ee:b3: e4:9e:80:64:bb:c7:ba:ee:23:80:61:dd:02:db:f8:4d:7d:b7: 24:f2:05:5a:62:b5:79:86:31:56:1b:dc:eb:91:1c:f4:ee:48: 18:a5:a1:8b:1f:7d:45:b0:96:e8:62:f2:3d:45:50:02:01:ee: 6c:65:65:f2:cc:e7:fd:6b:58:eb:86:cb:2e:74:e2:0e:99:12: 57:53:b3:8e:55:72:d9:84:6c:fc:4a:0b:26:58:5c:98:1c:fe: 5d:8c:d2:7b:0c:28:32:ee:cb:df:f0:0d:6e:57:d2:34:15:e0: 04:11:f4:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZQX1io4R/DSebxTI+gv8PLuILPQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI3MDA0MDE4WhcNMjUxMDAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NjUyNTgyNTRlZTNjZmFhMGYyNGJlN2NjMzIwOTIxZGI4 NGZjYzkyODMzNTVmOTg3ODM1MTZhOGU3ZDViM2Y0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDss2NQP3TetcJit++U54Yqb5H0XahdIxBG1W1zkDCpEA7o x/bp31XJy5RE+D1D70qjLFt01p4WBbfu5MN1nkiRaII84fpnHFSFKSMM/lUFyGWQ kXezLn6XDAZdgBRclvoaoBl0/Eam8JjC69A5fDEc2JXORKNJaizgH9fK6n5V8suv I70mQ+gMA7bRDoxwlY2TNxvav6ewzaHMHHWrEN/rJWKuclpqJi3N8Po2xyi4lEJ1 t8z9aihYcBLHdRhIq2oPzVz2VccT1V1Oss3Aytb01HPT5s4Qu5VW2dw2i2EkZIcB UloKwDSTcxxODjF9HJ2AUlmkfHb4LSrPz639h6HPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjm+obmNTMgSLZkjGWYY6jGlbPX8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiZWI3MGY0LTY2MGMtNGMxZi05MjRhLWY5YWFiYzc1NzcyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcQuIAwDQYJKoZIhvcNAQELBQADggEBANlKq0bblQlhbqOjRbnIaBflOQw4 zqdErwOcIEeN9s2pVUXK9rUkiy1s+IKxuHJWqzm2vOMBis3f76HHVtLIOCz4NVPs hP+7yOXzB8vGvHr1I2hcVrKNzgeDeGzgO2JQ/yYyUbtJSN4gFE4t1AZrfB/d4h+o 4bH/zRJTI62cSXAbO5Mo+30TPc2OZ/f1M/vus+SegGS7x7ruI4Bh3QLb+E19tyTy BVpitXmGMVYb3OuRHPTuSBiloYsffUWwluhi8j1FUAIB7mxlZfLM5/1rWOuGyy50 4g6ZEldTs45VctmEbPxKCyZYXJgc/l2M0nsMKDLuy9/wDW5X0jQV4AQR9JI= -----END CERTIFICATE-----Generated at Sat Sep 6 14:11:04 2025 by rpki-client