$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4448c9ac-4024-4f85-a898-bad42919a19c.roa File: 4448c9ac-4024-4f85-a898-bad42919a19c.roa (raw, json) Hash identifier: u87uTScd5esv5DFz6z5VpfHrG7cO/A0jwJrZPjSLrMs= Subject key identifier: AF:BA:4A:0D:E1:26:3D:B7:85:86:C9:59:C3:D6:41:12:34:09:B9:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0427952DD845145FD6196911DC9D06FCE5BD8174 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4448c9ac-4024-4f85-a898-bad42919a19c.roa Signing time: Mon 11 Aug 2025 15:11:56 +0000 ROA not before: Mon 11 Aug 2025 15:11:56 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.153.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:27:95:2d:d8:45:14:5f:d6:19:69:11:dc:9d:06:fc:e5:bd:81:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:11:56 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=2f559139de5ae3b3b17ef284aa35ece7ca6a61b359529b8cf762abb0414061bc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:79:51:7d:e9:25:c7:c5:10:34:a5:5a:96:c5: 89:b7:5c:66:ad:89:40:a1:26:8e:a8:1c:68:f5:1a: 7a:4d:be:85:f6:97:62:49:76:ac:bb:fe:f7:09:6a: ce:14:4f:76:a4:c4:32:a5:cd:d3:88:01:9d:10:f4: 16:ff:44:8c:54:31:f5:5d:26:ea:7c:d3:9a:a9:72: ea:61:63:1c:b9:34:00:d4:b4:a0:bc:fc:a1:b2:3a: a3:f8:21:fb:b0:df:03:10:d7:f3:38:9c:ec:5e:4d: 7d:af:b8:a2:54:b0:33:85:45:4f:99:4b:99:75:98: 29:39:ed:e3:45:71:d1:a3:58:58:73:72:a6:98:69: 1e:2d:a7:8d:7f:56:ce:40:01:9d:ae:01:98:25:a9: cd:29:34:83:31:b5:9f:3e:2f:1b:4a:70:ab:82:8b: 45:66:de:fb:78:fe:2b:b8:bc:34:f2:92:5b:db:9c: 8e:38:cb:d8:d8:d2:7b:ef:30:83:74:a3:c3:27:f8: 3a:9b:33:de:79:dd:81:fc:fb:0c:c9:4d:c3:cb:f7: 52:db:e6:7b:79:6d:0d:ba:0c:4a:93:06:14:41:07: cf:ae:31:fd:6d:3d:fa:21:56:fe:6c:86:78:93:40: 02:38:a8:0d:6c:fc:00:de:6f:1e:6b:09:40:fa:39: cb:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:BA:4A:0D:E1:26:3D:B7:85:86:C9:59:C3:D6:41:12:34:09:B9:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4448c9ac-4024-4f85-a898-bad42919a19c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.153.0.0/16 Signature Algorithm: sha256WithRSAEncryption b1:9c:6d:38:44:99:f8:41:e1:12:8e:c9:90:85:c3:8a:22:38: 62:a0:1b:88:1b:49:38:51:38:a5:97:ab:be:b0:ed:2a:55:24: f8:db:59:b2:98:5c:d7:bf:27:03:9d:24:fb:61:3d:45:44:e9: c8:e3:81:fe:53:7b:2b:d9:d6:07:1e:ec:28:e7:90:c4:8e:b3: 39:2a:18:ea:b1:85:28:41:2a:9c:ad:71:d8:c8:1d:44:f2:59: f2:28:ff:ec:e8:00:37:6c:d8:40:2d:d1:33:f9:cc:d8:94:3b: db:97:02:63:50:32:ea:73:c0:c5:6a:5b:6c:82:3f:1b:c1:2c: b5:3d:2b:43:44:11:9a:3e:f0:47:6e:ab:d7:31:e4:81:75:85: 38:df:27:89:7f:44:c7:ad:fc:d2:23:bd:e2:6d:25:07:23:f2: 4f:49:46:18:08:68:9b:f6:ef:e0:c7:dd:f6:6a:ab:86:8a:1d: 8b:29:b3:41:2e:92:f8:fd:34:96:a8:1f:cc:a3:09:35:2b:ff: c5:38:c8:47:26:72:51:c1:dd:f1:e0:66:16:72:cf:79:70:cc: 61:14:d0:92:0a:24:4e:7b:3a:35:0b:6a:35:60:90:5d:04:15: b3:8d:72:34:85:d8:71:af:fe:b0:31:27:d8:9c:e9:21:4a:4a: 63:69:a0:c9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBCeVLdhFFF/WGWkR3J0G/OW9gXQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUxMTU2WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjU1OTEzOWRlNWFlM2IzYjE3ZWYyODRhYTM1ZWNlN2Nh NmE2MWIzNTk1MjliOGNmNzYyYWJiMDQxNDA2MWJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD1eVF96SXHxRA0pVqWxYm3XGatiUChJo6oHGj1GnpNvoX2 l2JJdqy7/vcJas4UT3akxDKlzdOIAZ0Q9Bb/RIxUMfVdJup805qpcuphYxy5NADU tKC8/KGyOqP4Ifuw3wMQ1/M4nOxeTX2vuKJUsDOFRU+ZS5l1mCk57eNFcdGjWFhz cqaYaR4tp41/Vs5AAZ2uAZglqc0pNIMxtZ8+LxtKcKuCi0Vm3vt4/iu4vDTyklvb nI44y9jY0nvvMIN0o8Mn+DqbM9553YH8+wzJTcPL91Lb5nt5bQ26DEqTBhRBB8+u Mf1tPfohVv5shniTQAI4qA1s/ADebx5rCUD6OcstAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUr7pKDeEmPbeFhslZw9ZBEjQJuVswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ0NDhjOWFjLTQwMjQtNGY4NS1hODk4LWJhZDQyOTE5YTE5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQmTANBgkqhkiG9w0BAQsFAAOCAQEAsZxtOESZ+EHhEo7JkIXDiiI4YqAb iBtJOFE4pZervrDtKlUk+NtZsphc178nA50k+2E9RUTpyOOB/lN7K9nWBx7sKOeQ xI6zOSoY6rGFKEEqnK1x2MgdRPJZ8ij/7OgAN2zYQC3RM/nM2JQ725cCY1Ay6nPA xWpbbII/G8EstT0rQ0QRmj7wR26r1zHkgXWFON8niX9Ex6380iO94m0lByPyT0lG GAhom/bv4Mfd9mqrhoodiymzQS6S+P00lqgfzKMJNSv/xTjIRyZyUcHd8eBmFnLP eXDMYRTQkgokTns6NQtqNWCQXQQVs41yNIXYca/+sDEn2JzpIUpKY2mgyQ== -----END CERTIFICATE-----Generated at Sat Aug 23 08:11:49 2025 by rpki-client