$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ee5aa8d-429e-4193-96bb-7d20581f3ad2.roa File: 0ee5aa8d-429e-4193-96bb-7d20581f3ad2.roa (raw, json) Hash identifier: uwYK20CSMCA/ROqvxGXbaWEN2TsMCNKSCldC6iPjBPs= Subject key identifier: FE:C7:32:87:16:16:DD:EE:FA:38:00:2D:B3:EE:D3:4F:33:C9:49:EB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3C69DEF13ECB9371838027B7B05C609565DCCA0E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ee5aa8d-429e-4193-96bb-7d20581f3ad2.roa Signing time: Sat 16 Aug 2025 00:42:08 +0000 ROA not before: Sat 16 Aug 2025 00:42:08 +0000 ROA not after: Sat 20 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 50.16.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:69:de:f1:3e:cb:93:71:83:80:27:b7:b0:5c:60:95:65:dc:ca:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 16 00:42:08 2025 GMT Not After : Sep 20 23:59:59 2025 GMT Subject: serialNumber=7e905f38747f97d45789f34169198c809dc6ac668be47933d415d8351faf32f2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c7:68:52:29:4b:6d:c6:d1:5e:34:dd:28:f0: da:d6:39:1e:ba:bf:2e:64:a2:3c:4a:f8:32:ca:cc: f2:e9:5d:48:81:13:0e:f7:73:a2:08:e5:58:ca:94: e8:b3:b5:c9:7c:c5:d0:b4:5e:c8:35:41:c6:cb:7a: eb:60:ba:2c:84:bb:4b:ed:ae:ba:f6:8e:88:43:e7: 51:ef:f2:a0:2f:c3:cb:30:61:81:b3:5a:a9:2c:9b: c2:da:88:78:ba:e4:db:fe:40:d4:96:54:7f:e5:7e: 13:f5:4d:9a:64:15:cc:4c:53:86:00:fe:fa:fc:6b: 1f:35:2f:21:3e:60:96:89:a2:63:55:9d:fa:5e:8c: 60:00:50:a0:fd:1c:eb:5b:f7:aa:01:67:63:66:0b: e3:81:7b:8c:cb:38:ec:16:08:13:33:97:92:c7:66: a2:5e:25:70:34:ec:c5:d4:d5:fc:00:d8:ae:01:50: 07:e1:76:3f:99:c8:bc:f6:41:a2:e3:98:a6:f7:ba: 2d:81:bc:47:76:31:9e:64:37:37:ef:7a:63:b2:b4: 5f:ba:75:0e:06:06:fd:2c:b4:41:f6:58:a5:97:83: 7e:0b:07:09:a3:02:c2:63:f8:8c:9a:c5:f9:46:97: 9e:b9:22:0a:0d:e3:a4:51:cf:41:87:92:30:4e:68: a8:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:C7:32:87:16:16:DD:EE:FA:38:00:2D:B3:EE:D3:4F:33:C9:49:EB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ee5aa8d-429e-4193-96bb-7d20581f3ad2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.16.160.0/20 Signature Algorithm: sha256WithRSAEncryption 91:d7:41:f5:f5:ac:08:9d:d5:1b:78:9c:16:ca:46:f5:9f:26: e7:48:b9:ff:f3:6e:20:c2:21:2e:4b:51:b8:de:ea:4e:e3:9a: df:23:a6:1a:13:df:01:77:c4:cf:da:1c:73:d7:42:ad:28:d4: 31:da:00:e1:29:16:ea:9c:9a:80:a9:85:39:1c:97:c8:9f:1d: bf:dd:f0:da:c5:f7:ab:4f:63:a3:dc:d4:0c:b1:70:2c:24:5b: 2d:64:40:76:b0:4c:d5:5a:63:26:6f:e7:93:87:7e:6b:04:9d: a8:98:ca:0a:0a:db:6a:ec:48:3a:ab:b0:04:3d:6e:1e:a5:b1: 0e:27:2b:6b:9a:df:a0:80:34:cf:50:d7:0a:8b:ed:ab:6b:74: 3e:97:e9:89:cc:d7:d3:e6:81:21:ae:aa:ea:e0:fa:c8:9c:ea: 33:f3:79:4c:bd:2a:aa:b9:e4:ae:c5:ce:c9:18:4c:83:41:90: 5a:51:f4:f7:85:ca:82:42:08:54:23:b3:d7:95:f0:4d:2f:96: 21:4a:47:e1:fc:d7:12:cd:29:ef:b4:91:8f:4d:2b:82:45:29: 33:8f:26:93:23:b4:0f:33:b1:ba:dd:8a:4c:70:84:06:d5:d3: 37:10:7d:71:eb:55:fb:53:f6:d9:00:21:f7:01:a4:a8:25:0b: eb:f3:e8:5e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPGne8T7Lk3GDgCe3sFxglWXcyg4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE2MDA0MjA4WhcNMjUwOTIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTkwNWYzODc0N2Y5N2Q0NTc4OWYzNDE2OTE5OGM4MDlk YzZhYzY2OGJlNDc5MzNkNDE1ZDgzNTFmYWYzMmYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQx2hSKUttxtFeNN0o8NrWOR66vy5kojxK+DLKzPLpXUiB Ew73c6II5VjKlOiztcl8xdC0Xsg1QcbLeutguiyEu0vtrrr2johD51Hv8qAvw8sw YYGzWqksm8LaiHi65Nv+QNSWVH/lfhP1TZpkFcxMU4YA/vr8ax81LyE+YJaJomNV nfpejGAAUKD9HOtb96oBZ2NmC+OBe4zLOOwWCBMzl5LHZqJeJXA07MXU1fwA2K4B UAfhdj+ZyLz2QaLjmKb3ui2BvEd2MZ5kNzfvemOytF+6dQ4GBv0stEH2WKWXg34L BwmjAsJj+IyaxflGl565IgoN46RRz0GHkjBOaKjbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/scyhxYW3e76OAAts+7TTzPJSeswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlZTVhYThkLTQyOWUtNDE5My05NmJiLTdkMjA1ODFmM2FkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQyEKAwDQYJKoZIhvcNAQELBQADggEBAJHXQfX1rAid1Rt4nBbKRvWfJudI uf/zbiDCIS5LUbje6k7jmt8jphoT3wF3xM/aHHPXQq0o1DHaAOEpFuqcmoCphTkc l8ifHb/d8NrF96tPY6Pc1AyxcCwkWy1kQHawTNVaYyZv55OHfmsEnaiYygoK22rs SDqrsAQ9bh6lsQ4nK2ua36CANM9Q1wqL7atrdD6X6YnM19PmgSGuqurg+sic6jPz eUy9Kqq55K7FzskYTINBkFpR9PeFyoJCCFQjs9eV8E0vliFKR+H81xLNKe+0kY9N K4JFKTOPJpMjtA8zsbrdikxwhAbV0zcQfXHrVftT9tkAIfcBpKglC+vz6F4= -----END CERTIFICATE-----Generated at Sat Aug 23 09:08:07 2025 by rpki-client