$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10963cb0-949a-4d70-92e8-7ffe7d080a89.roa File: 10963cb0-949a-4d70-92e8-7ffe7d080a89.roa (raw, json) Hash identifier: RrDqoxUkachJ+OzfSrQYVssFxHL9DkypSBa60sHqluI= Subject key identifier: CC:A6:DF:C5:7E:08:DB:14:DB:46:24:9D:7B:03:9A:53:75:8B:3E:ED Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5339B900375C348ED08DE2E0B15E6AC5B0546BC3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10963cb0-949a-4d70-92e8-7ffe7d080a89.roa Signing time: Sat 28 Jun 2025 00:11:50 +0000 ROA not before: Sat 28 Jun 2025 00:11:50 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.15.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:39:b9:00:37:5c:34:8e:d0:8d:e2:e0:b1:5e:6a:c5:b0:54:6b:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:11:50 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=ec5f8e1a62f50fea4f5a961137d63951d73cd011bd7c3c73d03db474dd9294b7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:92:68:a3:ef:af:47:e7:98:f2:dc:da:a3:a8: bc:66:54:4f:47:85:9d:f5:d0:ba:4d:d2:3d:bd:b2: 90:c5:1f:1f:de:70:76:08:2e:6c:80:f8:5b:fc:be: 07:c1:fb:21:73:6f:c9:e9:9b:80:0c:4e:84:88:6e: 02:24:50:11:c5:ba:3b:45:4c:72:a2:e7:dd:16:b7: 66:e6:6d:fe:34:1c:62:20:c2:6f:77:fe:21:8f:1c: 15:89:88:97:cf:f4:65:a6:ec:7c:b4:3e:bf:24:d8: b6:f3:51:8c:0c:b7:b8:6e:af:f0:52:5e:8c:84:d8: 59:fe:2c:60:5b:73:95:54:3f:8a:14:bb:64:4d:e7: 92:66:75:f9:bc:bd:8a:b5:b5:01:80:7c:4f:20:cf: b7:a2:76:70:8a:f4:e2:c9:4a:6a:7f:2c:c5:c4:2b: 22:57:d9:90:60:5c:fc:a0:a5:46:bc:f0:e7:7e:83: c1:82:27:ac:8b:8a:5f:e3:03:d5:5d:e9:2c:1a:95: 02:a2:fe:cd:c3:c9:33:0d:02:75:06:fc:dd:69:f6: e2:ff:e5:fe:76:10:68:4c:80:40:5b:0c:5f:94:d9: d5:a5:f9:84:2e:46:ac:e2:32:51:6e:82:a2:f0:1f: 2a:8b:68:49:39:c1:6d:07:95:ad:76:ed:8c:df:c6: 31:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:A6:DF:C5:7E:08:DB:14:DB:46:24:9D:7B:03:9A:53:75:8B:3E:ED X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10963cb0-949a-4d70-92e8-7ffe7d080a89.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.15.192.0/18 Signature Algorithm: sha256WithRSAEncryption 4d:37:8d:26:f2:88:26:4d:ed:5b:66:8d:0f:93:ef:f9:2c:8b: ab:8b:f8:ea:f1:01:54:ed:83:f7:ae:de:db:6a:3f:8b:16:2f: f2:2c:01:91:b8:e6:4a:eb:2c:a9:9a:45:6a:47:2c:26:5f:6c: da:49:f4:d0:41:86:02:e3:a2:ca:a7:e9:2a:80:84:3d:08:f8: ab:ad:d3:7e:d1:bf:72:cd:c5:da:2f:0a:db:9e:8a:75:87:76: 8a:c1:e7:c8:f2:96:c1:16:ed:72:de:29:4a:82:2a:04:16:06: 2d:ff:d0:70:52:3d:25:bb:60:09:c5:39:cb:8e:e4:05:30:f4: a7:0e:2e:85:3d:44:1f:73:b2:66:c3:65:92:c4:89:47:7e:cf: ee:0e:16:9c:4e:94:b1:9f:0e:25:96:a1:38:a7:34:ca:9a:b4: 9e:38:be:bb:32:87:a5:3b:cd:5d:59:45:e2:91:59:99:f0:68: e1:44:f5:46:b4:68:8c:43:1d:99:d0:35:dc:db:56:bf:d7:6f: 5f:5c:36:b3:92:2e:21:ee:15:6f:35:28:2b:0e:15:62:d4:6b: fc:c1:80:77:49:2b:d8:09:50:53:86:0d:8a:65:08:23:6a:dc: 8f:e9:f7:6f:a7:f8:28:11:61:7e:0f:4b:62:73:ec:bb:52:ce: 6c:b1:0a:89 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUzm5ADdcNI7QjeLgsV5qxbBUa8MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDAxMTUwWhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzVmOGUxYTYyZjUwZmVhNGY1YTk2MTEzN2Q2Mzk1MWQ3 M2NkMDExYmQ3YzNjNzNkMDNkYjQ3NGRkOTI5NGI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEkmij769H55jy3NqjqLxmVE9HhZ310LpN0j29spDFHx/e cHYILmyA+Fv8vgfB+yFzb8npm4AMToSIbgIkUBHFujtFTHKi590Wt2bmbf40HGIg wm93/iGPHBWJiJfP9GWm7Hy0Pr8k2LbzUYwMt7hur/BSXoyE2Fn+LGBbc5VUP4oU u2RN55Jmdfm8vYq1tQGAfE8gz7eidnCK9OLJSmp/LMXEKyJX2ZBgXPygpUa88Od+ g8GCJ6yLil/jA9Vd6SwalQKi/s3DyTMNAnUG/N1p9uL/5f52EGhMgEBbDF+U2dWl +YQuRqziMlFugqLwHyqLaEk5wW0Hla127YzfxjGNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzKbfxX4I2xTbRiSdewOaU3WLPu0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwOTYzY2IwLTk0OWEtNGQ3MC05MmU4LTdmZmU3ZDA4MGE4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYQD8AwDQYJKoZIhvcNAQELBQADggEBAE03jSbyiCZN7VtmjQ+T7/ksi6uL +OrxAVTtg/eu3ttqP4sWL/IsAZG45krrLKmaRWpHLCZfbNpJ9NBBhgLjosqn6SqA hD0I+Kut037Rv3LNxdovCtueinWHdorB58jylsEW7XLeKUqCKgQWBi3/0HBSPSW7 YAnFOcuO5AUw9KcOLoU9RB9zsmbDZZLEiUd+z+4OFpxOlLGfDiWWoTinNMqatJ44 vrsyh6U7zV1ZReKRWZnwaOFE9Ua0aIxDHZnQNdzbVr/Xb19cNrOSLiHuFW81KCsO FWLUa/zBgHdJK9gJUFOGDYplCCNq3I/p92+n+CgRYX4PS2Jz7LtSzmyxCok= -----END CERTIFICATE-----Generated at Tue Jul 1 00:59:30 2025 by rpki-client