$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe4dae27-bd0b-4693-9fd3-05309ef5d4ee.roa File: fe4dae27-bd0b-4693-9fd3-05309ef5d4ee.roa (raw, json) Hash identifier: J00VWI+RIqSuShLSOCi7ftwT2kmtxXlkAQcbjDVcuvQ= Subject key identifier: 1A:60:A8:31:B4:80:3D:46:87:8F:D4:25:27:03:34:3D:F9:B8:5C:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01D85AC319457221E4B804E5FBA4F7EDCE6C20BB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe4dae27-bd0b-4693-9fd3-05309ef5d4ee.roa Signing time: Mon 11 Aug 2025 15:11:13 +0000 ROA not before: Mon 11 Aug 2025 15:11:13 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.181.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:d8:5a:c3:19:45:72:21:e4:b8:04:e5:fb:a4:f7:ed:ce:6c:20:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:11:13 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=785f92c1f5c0e1bb107e2e8865f0378e249c5f65657a11a76e9c2927330fb215, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fe:92:3c:87:ca:59:b3:9c:d4:75:f3:56:c2: 54:d1:9e:62:ba:33:61:06:6d:55:be:3a:bc:77:14: ad:41:7a:24:33:81:5a:77:2e:d6:48:9d:f4:29:13: 34:5e:09:67:9f:26:dd:b1:c8:ee:2d:ec:76:0c:c0: 18:59:8b:aa:8d:3e:50:3e:26:ff:33:da:b4:c0:09: cd:50:a3:42:22:dd:af:b3:78:52:4e:48:31:7f:21: 64:3d:77:d0:af:dc:a5:ba:f1:86:1d:8d:89:62:86: 1a:9f:a2:c5:54:2a:85:c2:39:7e:14:42:48:45:81: 02:62:3c:b0:91:db:2f:8c:16:ed:df:3e:bb:58:13: ec:4f:00:d4:71:5b:45:8f:0d:ae:ac:78:47:81:50: d4:36:2f:24:a0:73:ef:b1:2a:be:1a:bb:7a:a0:ef: a4:e7:f6:f8:b8:e4:9f:f1:29:03:6f:96:fc:78:09: f8:68:cf:80:6b:97:04:b1:48:ea:4a:c0:ef:14:18: 38:84:4c:3f:2b:f6:17:ac:38:2f:4e:b9:cb:5d:59: 0d:64:6d:a2:bc:68:41:2a:8e:9a:18:2e:cf:6c:a5: 41:9d:97:76:6b:6e:62:b4:f8:2e:ac:67:bd:86:ee: 80:30:e9:17:2a:a3:62:93:8c:87:ae:67:98:34:41: 22:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:60:A8:31:B4:80:3D:46:87:8F:D4:25:27:03:34:3D:F9:B8:5C:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe4dae27-bd0b-4693-9fd3-05309ef5d4ee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.181.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3b:1a:9c:44:26:62:35:ac:c5:e9:25:22:10:ef:ef:33:76:16: 16:7e:43:0a:d5:bc:54:6a:0d:e3:b1:43:87:df:0b:36:1a:3b: 2b:d2:a8:2e:35:3f:2a:64:eb:0a:10:2d:85:7f:b3:ff:65:3b: 9b:bc:ee:64:fc:3d:97:2f:79:50:66:f7:a2:85:93:09:e5:08: 77:67:54:38:c2:d1:d8:20:d8:63:0b:17:cd:78:bc:5a:41:cb: 67:58:62:2c:e2:ee:d0:e6:d8:f0:f8:7d:33:13:40:12:af:dc: 3b:89:f3:ef:88:6d:29:5e:a0:75:27:68:be:79:2f:98:e2:26: 48:ab:cb:1d:bf:d0:c9:6e:e6:d8:f2:55:be:6d:bf:d2:8f:7a: e6:09:42:e7:5f:d0:82:52:37:2a:f5:23:35:bd:3e:c8:d8:4f: 46:35:43:22:03:3f:0b:36:11:f8:14:e7:aa:31:7c:9d:17:17: a4:33:3f:36:e5:f6:2f:6c:f4:db:90:16:a0:d0:12:96:66:41: 1a:49:3b:ba:d4:78:64:db:44:89:99:2e:c0:8d:34:1a:c7:a3: e5:ba:b5:14:f2:dd:cd:e8:dc:5f:ea:bc:8a:d0:83:d5:d1:02: 5e:44:4a:ae:59:2b:2b:8b:bd:b4:b9:a1:89:f8:15:ac:7c:11: ad:fb:25:71 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAdhawxlFciHkuATl+6T37c5sILswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUxMTEzWhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODVmOTJjMWY1YzBlMWJiMTA3ZTJlODg2NWYwMzc4ZTI0 OWM1ZjY1NjU3YTExYTc2ZTljMjkyNzMzMGZiMjE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDI/pI8h8pZs5zUdfNWwlTRnmK6M2EGbVW+Orx3FK1BeiQz gVp3LtZInfQpEzReCWefJt2xyO4t7HYMwBhZi6qNPlA+Jv8z2rTACc1Qo0Ii3a+z eFJOSDF/IWQ9d9Cv3KW68YYdjYlihhqfosVUKoXCOX4UQkhFgQJiPLCR2y+MFu3f PrtYE+xPANRxW0WPDa6seEeBUNQ2LySgc++xKr4au3qg76Tn9vi45J/xKQNvlvx4 Cfhoz4BrlwSxSOpKwO8UGDiETD8r9hesOC9OuctdWQ1kbaK8aEEqjpoYLs9spUGd l3ZrbmK0+C6sZ72G7oAw6Rcqo2KTjIeuZ5g0QSKbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUGmCoMbSAPUaHj9QlJwM0Pfm4XAYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZlNGRhZTI3LWJkMGItNDY5My05ZmQzLTA1MzA5ZWY1ZDRlZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQtTANBgkqhkiG9w0BAQsFAAOCAQEAOxqcRCZiNazF6SUiEO/vM3YWFn5D CtW8VGoN47FDh98LNho7K9KoLjU/KmTrChAthX+z/2U7m7zuZPw9ly95UGb3ooWT CeUId2dUOMLR2CDYYwsXzXi8WkHLZ1hiLOLu0ObY8Ph9MxNAEq/cO4nz74htKV6g dSdovnkvmOImSKvLHb/QyW7m2PJVvm2/0o965glC51/QglI3KvUjNb0+yNhPRjVD IgM/CzYR+BTnqjF8nRcXpDM/NuX2L2z025AWoNASlmZBGkk7utR4ZNtEiZkuwI00 Gsej5bq1FPLdzejcX+q8itCD1dECXkRKrlkrK4u9tLmhifgVrHwRrfslcQ== -----END CERTIFICATE-----Generated at Wed Aug 20 13:17:11 2025 by rpki-client