$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3fa4f6da-6073-4400-a522-35f62e2343ee.roa File: 3fa4f6da-6073-4400-a522-35f62e2343ee.roa (raw, json) Hash identifier: /lQLVfWCPCQeZWKC9lizkahph4tvCSGpscNEk6JFJuw= Subject key identifier: BA:39:68:AC:9B:AA:97:57:6B:00:90:35:CB:B0:6E:48:08:38:FD:7C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B0300596FE2E1D3A24593DF10852F4A067696D6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3fa4f6da-6073-4400-a522-35f62e2343ee.roa Signing time: Wed 13 Aug 2025 00:40:26 +0000 ROA not before: Wed 13 Aug 2025 00:40:26 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 71.16.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:03:00:59:6f:e2:e1:d3:a2:45:93:df:10:85:2f:4a:06:76:96:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:40:26 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=4a96c26f9e0bb3c23858ec729ec3e0975d4ae0e65a4627e7a1fe58b485d23b1f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b4:99:eb:eb:58:36:bc:71:ed:6f:d2:f4:1d: 05:61:7d:70:3f:fa:c8:f4:7e:14:52:a0:b3:2c:61: 30:51:57:44:48:27:04:a8:21:4d:8c:1c:cf:da:1f: 7e:8e:df:e8:7e:c5:44:99:a8:0d:37:c3:15:2c:67: 0b:0e:09:72:d3:48:80:6e:33:88:06:60:61:e2:37: 4b:83:f0:0f:d7:54:eb:79:1c:79:ad:1b:7d:1d:65: 20:ac:39:97:aa:89:d7:09:b7:a2:a2:24:56:bf:33: 5b:b7:28:ce:ff:f2:fc:44:64:7c:51:b4:2d:06:36: 20:f7:c5:ec:fb:b8:85:78:d2:d2:b2:1b:2b:63:36: 0b:69:00:87:0a:ec:f8:59:c9:ce:a5:aa:8a:18:57: 05:84:6a:2b:32:7e:44:d7:0e:5c:30:b9:6d:d5:60: 38:1b:40:6e:ff:e2:7e:17:fd:7e:67:06:61:df:9f: 2f:3f:6e:11:38:d9:ee:a7:57:49:c5:de:ea:c2:c8: 04:a7:5f:e0:78:2e:59:3f:5d:9a:40:a6:07:40:d2: 1e:2e:30:6b:e5:b7:ba:12:19:cf:89:c8:4f:bf:61: 61:67:b7:5d:20:f6:91:95:da:b9:74:d0:ca:58:93: 44:72:64:47:32:3f:02:ec:e4:8f:1b:c3:98:01:4e: 29:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:39:68:AC:9B:AA:97:57:6B:00:90:35:CB:B0:6E:48:08:38:FD:7C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3fa4f6da-6073-4400-a522-35f62e2343ee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.16.0.0/16 Signature Algorithm: sha256WithRSAEncryption 10:2e:cd:e2:0f:a1:b4:14:c8:90:a7:59:ba:96:f5:0b:ef:fb: 0f:5b:2d:07:3c:8f:fd:93:ce:08:41:bf:e1:6c:7f:a2:6b:a1: 4e:bd:59:52:dc:7f:3e:dd:5a:31:ea:a8:22:a3:06:a5:df:ff: 94:e5:3f:7b:19:2c:a0:e3:85:00:da:bf:76:59:14:09:f1:70: 8e:73:06:a5:ec:fc:4c:d0:3b:ff:83:d4:75:09:3e:5f:8c:b4: 0b:fd:27:7f:ee:91:f3:a8:52:94:16:35:7b:f2:7a:48:fd:76: 87:f9:db:f3:58:9c:0d:60:7c:11:9f:c7:8a:5d:ac:ed:f3:5b: 7c:c5:f6:20:41:9e:16:08:1e:ef:5a:b3:01:c7:7f:34:fd:b2: 77:b0:b6:e8:28:ac:9e:9a:b8:05:34:b9:c0:38:13:ea:e0:f0: 59:6d:81:6f:b0:36:ba:1d:c4:a1:b1:54:25:75:85:cf:c6:58: ff:ba:fc:4c:41:2d:66:63:0d:ee:1c:be:76:0d:dd:cd:04:e3: ab:7a:ea:0b:6c:0d:d7:8b:2a:e6:9e:f2:e9:33:55:cb:87:a0: d5:f5:dc:27:2b:f1:c3:fa:5f:71:d5:15:9d:6c:0e:43:12:a9: db:58:43:b2:41:53:2b:71:bd:00:e2:a4:0c:a5:31:e0:79:ff: cf:b0:37:c9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUewMAWW/i4dOiRZPfEIUvSgZ2ltYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDA0MDI2WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTk2YzI2ZjllMGJiM2MyMzg1OGVjNzI5ZWMzZTA5NzVk NGFlMGU2NWE0NjI3ZTdhMWZlNThiNDg1ZDIzYjFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBtJnr61g2vHHtb9L0HQVhfXA/+sj0fhRSoLMsYTBRV0RI JwSoIU2MHM/aH36O3+h+xUSZqA03wxUsZwsOCXLTSIBuM4gGYGHiN0uD8A/XVOt5 HHmtG30dZSCsOZeqidcJt6KiJFa/M1u3KM7/8vxEZHxRtC0GNiD3xez7uIV40tKy GytjNgtpAIcK7PhZyc6lqooYVwWEaisyfkTXDlwwuW3VYDgbQG7/4n4X/X5nBmHf ny8/bhE42e6nV0nF3urCyASnX+B4Llk/XZpApgdA0h4uMGvlt7oSGc+JyE+/YWFn t10g9pGV2rl00MpYk0RyZEcyPwLs5I8bw5gBTin5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUujlorJuql1drAJA1y7BuSAg4/XwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNmYTRmNmRhLTYwNzMtNDQwMC1hNTIyLTM1ZjYyZTIzNDNlZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBHEDANBgkqhkiG9w0BAQsFAAOCAQEAEC7N4g+htBTIkKdZupb1C+/7D1st BzyP/ZPOCEG/4Wx/omuhTr1ZUtx/Pt1aMeqoIqMGpd//lOU/exksoOOFANq/dlkU CfFwjnMGpez8TNA7/4PUdQk+X4y0C/0nf+6R86hSlBY1e/J6SP12h/nb81icDWB8 EZ/Hil2s7fNbfMX2IEGeFgge71qzAcd/NP2yd7C26Cisnpq4BTS5wDgT6uDwWW2B b7A2uh3EobFUJXWFz8ZY/7r8TEEtZmMN7hy+dg3dzQTjq3rqC2wN14sq5p7y6TNV y4eg1fXcJyvxw/pfcdUVnWwOQxKp21hDskFTK3G9AOKkDKUx4Hn/z7A3yQ== -----END CERTIFICATE-----Generated at Sat Aug 23 06:56:01 2025 by rpki-client