$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5786c35c-d782-4e4c-8df1-c27d84b33db9.roa File: 5786c35c-d782-4e4c-8df1-c27d84b33db9.roa (raw, json) Hash identifier: IPc/LO3axA/wsztynzbBjAHujm+h40yql40yNLenXbY= Subject key identifier: 5F:F8:1E:74:6D:66:99:9A:2B:2F:22:3B:94:47:76:D7:D7:21:AC:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 24E2A6B1E7DA162DE6E29A12C81E93220E70E81F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5786c35c-d782-4e4c-8df1-c27d84b33db9.roa Signing time: Mon 11 Aug 2025 15:11:51 +0000 ROA not before: Mon 11 Aug 2025 15:11:51 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.144.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:e2:a6:b1:e7:da:16:2d:e6:e2:9a:12:c8:1e:93:22:0e:70:e8:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:11:51 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=06032a30bfb9b780ea3d5d1e6fc4e6fe422dde1d9a99870a5a3392b5c9536678, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b3:57:0a:01:6e:6c:a4:bf:6e:22:63:ec:42: 0a:87:2f:be:7e:88:35:a0:aa:4e:38:6b:83:33:0c: 3c:d1:a9:d4:4f:cf:90:60:e6:e8:fa:86:8f:54:e2: 2b:da:ce:91:68:07:20:10:e9:98:e7:32:d8:03:86: e3:c0:89:f7:24:cc:da:af:90:c0:96:36:56:14:bd: 7f:8f:86:53:65:a7:4e:dd:30:48:46:74:20:2e:60: a6:df:03:e9:53:9e:17:32:62:c4:eb:bd:36:cf:75: 79:c6:f2:9b:df:17:80:84:53:d6:d7:51:0d:b6:73: 30:b0:8f:64:f7:77:92:7d:73:5d:6c:60:47:2f:2e: 95:40:44:c1:ee:18:90:b6:63:c8:59:6e:64:67:e6: 14:bc:68:a9:84:38:12:7c:ae:c7:1b:09:1b:d0:32: dd:cb:90:07:7d:80:98:1b:8b:17:ac:16:73:1f:c7: 2c:44:e9:e4:f0:19:84:81:11:f6:5d:1c:1b:37:51: a3:33:54:7d:18:f6:ed:90:aa:e0:9a:e4:ae:0b:15: 0a:5b:3d:63:2c:17:c8:8d:68:e4:fd:56:5a:55:e8: 68:fc:af:c7:1a:4d:73:ee:13:97:3c:a7:31:90:6a: 67:89:0f:79:00:7f:89:0a:fa:e9:3f:7b:b8:6d:db: 8c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:F8:1E:74:6D:66:99:9A:2B:2F:22:3B:94:47:76:D7:D7:21:AC:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5786c35c-d782-4e4c-8df1-c27d84b33db9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.144.0.0/16 Signature Algorithm: sha256WithRSAEncryption 55:2b:3e:9f:03:45:36:f8:b3:16:5c:ee:10:ca:e1:7c:f6:05: 86:46:51:78:52:43:5b:43:75:3c:0e:0c:fb:16:f5:8e:89:73: b6:36:6a:22:7b:50:4b:bb:9b:fd:2f:1f:31:69:59:25:2f:0d: ac:0e:89:62:6e:fc:de:10:32:f1:01:76:66:39:e3:55:58:2b: 6e:7d:04:05:35:08:94:e0:4d:d0:f4:bb:cd:3c:cb:2e:53:c8: 22:b2:63:22:78:31:95:aa:72:9b:5b:df:8e:eb:1f:a1:90:38: a2:e9:01:9f:b9:d6:64:88:62:78:6f:c3:fa:65:a7:18:57:fb: 51:e1:d5:f7:e5:df:01:a3:be:36:41:dc:1f:87:fc:8c:33:13: db:fc:e8:62:a1:d3:9f:ba:13:74:6f:5e:59:d3:3b:13:ac:75: 52:13:23:01:e0:a4:c1:21:49:df:c3:92:d6:c6:e1:39:5c:a8: 29:10:6b:39:0f:a0:e1:ab:51:45:9d:1f:fb:5e:13:f0:06:7a: 59:8c:5a:9c:fc:31:b1:ab:57:17:f8:02:ba:65:35:7d:97:03: f3:41:ee:36:ab:54:ff:7c:f0:49:4e:95:fc:be:4d:17:24:e4: 31:22:a7:3f:21:2d:2c:bb:18:32:23:e4:64:c3:c7:8b:d2:39: 95:21:8d:4a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJOKmsefaFi3m4poSyB6TIg5w6B8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUxMTUxWhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjAzMmEzMGJmYjliNzgwZWEzZDVkMWU2ZmM0ZTZmZTQy MmRkZTFkOWE5OTg3MGE1YTMzOTJiNWM5NTM2Njc4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNs1cKAW5spL9uImPsQgqHL75+iDWgqk44a4MzDDzRqdRP z5Bg5uj6ho9U4ivazpFoByAQ6ZjnMtgDhuPAifckzNqvkMCWNlYUvX+PhlNlp07d MEhGdCAuYKbfA+lTnhcyYsTrvTbPdXnG8pvfF4CEU9bXUQ22czCwj2T3d5J9c11s YEcvLpVARMHuGJC2Y8hZbmRn5hS8aKmEOBJ8rscbCRvQMt3LkAd9gJgbixesFnMf xyxE6eTwGYSBEfZdHBs3UaMzVH0Y9u2QquCa5K4LFQpbPWMsF8iNaOT9VlpV6Gj8 r8caTXPuE5c8pzGQameJD3kAf4kK+uk/e7ht24y7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUX/gedG1mmZorLyI7lEd219chrKYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3ODZjMzVjLWQ3ODItNGU0Yy04ZGYxLWMyN2Q4NGIzM2RiOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQkDANBgkqhkiG9w0BAQsFAAOCAQEAVSs+nwNFNvizFlzuEMrhfPYFhkZR eFJDW0N1PA4M+xb1jolztjZqIntQS7ub/S8fMWlZJS8NrA6JYm783hAy8QF2Zjnj VVgrbn0EBTUIlOBN0PS7zTzLLlPIIrJjIngxlapym1vfjusfoZA4oukBn7nWZIhi eG/D+mWnGFf7UeHV9+XfAaO+NkHcH4f8jDMT2/zoYqHTn7oTdG9eWdM7E6x1UhMj AeCkwSFJ38OS1sbhOVyoKRBrOQ+g4atRRZ0f+14T8AZ6WYxanPwxsatXF/gCumU1 fZcD80HuNqtU/3zwSU6V/L5NFyTkMSKnPyEtLLsYMiPkZMPHi9I5lSGNSg== -----END CERTIFICATE-----Generated at Sat Aug 23 10:10:44 2025 by rpki-client