$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42bd5c98-ff16-4ff2-90fe-626a186a604c.roa File: 42bd5c98-ff16-4ff2-90fe-626a186a604c.roa (raw, json) Hash identifier: sxffkG8sjovs0vutu6lQ54X/1xER/H1aHTEdJOKkeuc= Subject key identifier: 97:E5:E8:53:B0:5F:CE:6F:8B:09:9A:BC:7D:98:EF:DB:AD:5A:D4:7E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 08C89F9E067D8F26C05211DDE90F43C856F5A2E9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42bd5c98-ff16-4ff2-90fe-626a186a604c.roa Signing time: Mon 11 Aug 2025 15:11:16 +0000 ROA not before: Mon 11 Aug 2025 15:11:16 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.188.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:c8:9f:9e:06:7d:8f:26:c0:52:11:dd:e9:0f:43:c8:56:f5:a2:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:11:16 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=9c98c4be5227f5d4382d84cf10a4b38f87df241e39b8e127c94217427d7b4fb7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:51:db:e6:20:f8:82:b9:f0:79:9a:f6:98:d8: f5:8e:6b:a2:b3:70:89:80:e5:96:16:b4:e5:d5:58: a9:54:12:1d:49:49:7a:3f:67:49:30:a8:78:10:80: d2:cc:8e:65:bb:b6:22:41:55:33:0c:09:14:31:92: e6:09:9a:58:39:fb:7e:17:1c:a2:10:b1:0b:5a:96: 3a:ea:98:b6:4e:16:48:fc:93:b4:a3:4b:49:f5:3a: d6:7e:d9:3c:ed:cc:28:d6:d2:87:2e:c7:8f:b2:81: 17:d2:1b:cf:6d:21:5a:d2:86:a7:61:11:e1:61:39: c6:ab:a0:23:4e:2c:7c:89:84:47:e4:64:77:8d:32: b9:26:6f:e4:6e:32:5d:37:4f:6e:6a:96:48:2b:47: 76:d2:7b:0d:c7:9c:24:16:c1:cb:63:09:d0:4f:b9: 9d:86:b8:4d:e8:e6:c6:8c:28:90:49:b0:5a:6d:4f: 7e:f2:3a:cb:5f:11:03:47:15:c7:5f:e9:c5:b4:3c: d6:8f:b6:23:c2:b5:c7:19:6b:55:9a:ec:80:e2:d0: 12:6c:0f:d2:a1:f1:1e:5c:f6:73:10:20:f1:96:b0: f9:d6:34:7f:51:e6:e4:3b:ab:57:90:4e:0c:cf:51: 69:59:e1:1e:09:5f:c7:35:65:a8:ea:f8:80:f8:dd: 3a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:E5:E8:53:B0:5F:CE:6F:8B:09:9A:BC:7D:98:EF:DB:AD:5A:D4:7E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42bd5c98-ff16-4ff2-90fe-626a186a604c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.188.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7f:a9:ce:d5:87:e4:14:7a:9d:45:33:63:c7:0c:e3:ab:e7:e9: 17:dd:41:b7:dd:49:d6:bd:64:f7:9a:37:20:04:86:c5:de:65: 7c:bb:4b:90:60:1d:c8:54:2d:76:6f:13:ff:85:4c:1b:f1:bf: 44:5c:cc:b2:34:f5:e0:22:b8:87:fe:6b:96:74:f2:5e:12:05: b6:35:86:a8:14:3c:dd:5f:d7:16:e4:7d:23:d9:7f:4d:95:18: b7:ba:2b:5c:85:84:b1:5c:0d:3f:ee:17:4a:7c:e6:e6:ed:95: e9:83:56:c3:dc:fe:ec:f1:b1:18:71:04:a2:c9:dc:ca:a7:f5: ba:cb:e8:72:eb:74:45:b8:62:b4:6d:96:a2:47:ed:a3:f1:cf: 16:02:f9:be:a9:d4:c3:d5:f1:51:68:08:92:e7:1f:15:e9:6a: 11:e9:7e:93:a4:a6:7a:e0:26:09:c9:52:db:90:22:bd:a3:17: 4a:08:ac:9a:28:f1:95:8b:1f:2c:b0:91:a4:68:be:00:b5:3b: 37:de:6c:78:20:44:40:d1:4e:bc:56:fe:63:60:ca:90:03:7b: a9:2b:95:a7:71:c3:d0:54:7b:7f:9d:72:5c:09:6a:18:80:08: 56:36:ed:d0:30:94:13:c2:3a:d8:ec:d4:00:b9:ac:24:b1:04: fe:f0:28:06 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCMifngZ9jybAUhHd6Q9DyFb1oukwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUxMTE2WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5Yzk4YzRiZTUyMjdmNWQ0MzgyZDg0Y2YxMGE0YjM4Zjg3 ZGYyNDFlMzliOGUxMjdjOTQyMTc0MjdkN2I0ZmI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqUdvmIPiCufB5mvaY2PWOa6KzcImA5ZYWtOXVWKlUEh1J SXo/Z0kwqHgQgNLMjmW7tiJBVTMMCRQxkuYJmlg5+34XHKIQsQtaljrqmLZOFkj8 k7SjS0n1OtZ+2TztzCjW0ocux4+ygRfSG89tIVrShqdhEeFhOcaroCNOLHyJhEfk ZHeNMrkmb+RuMl03T25qlkgrR3bSew3HnCQWwctjCdBPuZ2GuE3o5saMKJBJsFpt T37yOstfEQNHFcdf6cW0PNaPtiPCtccZa1Wa7IDi0BJsD9Kh8R5c9nMQIPGWsPnW NH9R5uQ7q1eQTgzPUWlZ4R4JX8c1Zajq+ID43ToZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUl+XoU7Bfzm+LCZq8fZjv261a1H4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyYmQ1Yzk4LWZmMTYtNGZmMi05MGZlLTYyNmExODZhNjA0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQvDANBgkqhkiG9w0BAQsFAAOCAQEAf6nO1YfkFHqdRTNjxwzjq+fpF91B t91J1r1k95o3IASGxd5lfLtLkGAdyFQtdm8T/4VMG/G/RFzMsjT14CK4h/5rlnTy XhIFtjWGqBQ83V/XFuR9I9l/TZUYt7orXIWEsVwNP+4XSnzm5u2V6YNWw9z+7PGx GHEEosncyqf1usvocut0RbhitG2Wokfto/HPFgL5vqnUw9XxUWgIkucfFelqEel+ k6SmeuAmCclS25AivaMXSgismijxlYsfLLCRpGi+ALU7N95seCBEQNFOvFb+Y2DK kAN7qSuVp3HD0FR7f51yXAlqGIAIVjbt0DCUE8I62OzUALmsJLEE/vAoBg== -----END CERTIFICATE-----Generated at Sat Aug 23 08:23:09 2025 by rpki-client