$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fcb89e7-3cc6-4700-a44c-4dac06779d65.roa File: 5fcb89e7-3cc6-4700-a44c-4dac06779d65.roa (raw, json) Hash identifier: Q7cAwn1SkaX17sxuilSwO4ngYE+25N5K0fbme+daeWQ= Subject key identifier: 2F:90:D2:E7:60:52:71:9B:F5:91:AC:CF:D7:C6:19:3C:8C:5A:AA:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5488473E9B411B0F45263A517135C68C3F08602D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fcb89e7-3cc6-4700-a44c-4dac06779d65.roa Signing time: Fri 15 Aug 2025 00:31:29 +0000 ROA not before: Fri 15 Aug 2025 00:31:29 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.56.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:88:47:3e:9b:41:1b:0f:45:26:3a:51:71:35:c6:8c:3f:08:60:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 15 00:31:29 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=78da2901db6eeaebbea45adb7a601cdae5a731ba89896730d98a98a1d38baa13, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:f2:6f:9b:1f:6a:98:83:24:7c:f9:08:b4:7e: 3a:ac:50:05:72:1d:f2:9a:fd:18:1d:36:0c:00:15: 0f:30:d0:c9:58:f1:cc:b8:b5:f6:ed:da:5e:08:bc: b9:54:8c:73:f6:06:35:2f:cc:61:0a:f3:e3:87:1a: 80:e7:60:5b:fc:0b:a8:ec:0a:e5:f2:e6:b5:18:65: f7:f0:37:02:1b:6a:d9:7e:a0:19:6c:0a:c5:c2:29: 05:b4:c7:45:04:9b:59:69:13:85:24:ca:6b:f7:5d: b5:c0:fb:0e:da:9a:c1:9a:a2:b3:c7:0c:8b:ec:a7: 85:3e:47:4d:a1:b2:78:d4:60:86:6f:c6:6a:1b:42: 98:40:d6:51:ac:d7:e6:3e:bc:0c:70:d3:c4:ab:b4: ad:cf:83:c6:bf:01:13:61:db:c4:09:e6:81:af:d8: 2a:68:09:5b:7a:80:64:2b:c0:a1:a4:0c:ac:e6:90: 53:a8:45:be:37:7e:38:13:34:f5:54:75:17:81:72: 7e:d2:82:88:0e:a3:95:3f:01:cb:f1:3c:10:11:69: c1:68:56:05:ab:f8:76:3f:9b:42:ec:f1:07:f2:45: 85:11:47:11:c9:fd:42:fa:48:49:7e:78:87:54:3d: 41:df:78:6c:4d:28:84:9a:bf:b3:ba:90:9b:06:c1: d3:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:90:D2:E7:60:52:71:9B:F5:91:AC:CF:D7:C6:19:3C:8C:5A:AA:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fcb89e7-3cc6-4700-a44c-4dac06779d65.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.56.0.0/16 Signature Algorithm: sha256WithRSAEncryption 44:14:fe:c2:7d:81:bd:e7:8c:09:21:41:22:a2:66:eb:52:b1: 14:98:9e:4a:07:c4:c0:6c:0f:da:bf:58:0a:ba:87:8f:cc:3c: 87:80:a2:f8:df:00:7f:66:7e:d4:de:59:79:73:3b:60:58:45: 19:33:9d:e8:6f:fb:ce:a1:39:27:e3:ea:70:e1:9b:4b:b8:fe: b6:9e:82:4a:6b:29:54:7d:76:14:83:bb:4f:27:49:fe:fc:46: 2e:29:a0:46:6a:3b:f3:f4:6f:15:db:e1:8b:05:6d:fe:ee:d8: 0c:12:48:ed:2c:ab:a6:40:f2:14:fb:e5:d2:d9:bb:e4:0d:49: d1:de:4f:46:d2:60:97:c9:99:73:d1:85:f8:68:26:f1:ff:82: 43:de:b7:e6:82:0c:8a:45:b3:a3:4c:ba:16:5a:31:4d:89:52: af:de:46:92:64:84:f9:e7:3f:5e:dc:8f:bb:07:64:e4:4c:e1: 48:62:25:55:f6:05:c4:93:a3:6c:06:10:e4:33:ab:89:a9:98: bb:10:76:68:1c:27:f0:07:f4:b8:cf:df:cd:de:bf:4c:04:f1: be:8b:4d:ed:f3:67:c4:e6:b9:04:47:26:66:c0:17:b4:20:29: b2:30:ba:42:07:70:86:ff:86:d5:5d:76:b9:49:d7:55:12:df: 1d:7b:fc:54 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVIhHPptBGw9FJjpRcTXGjD8IYC0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE1MDAzMTI5WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OGRhMjkwMWRiNmVlYWViYmVhNDVhZGI3YTYwMWNkYWU1 YTczMWJhODk4OTY3MzBkOThhOThhMWQzOGJhYTEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQ8m+bH2qYgyR8+Qi0fjqsUAVyHfKa/RgdNgwAFQ8w0MlY 8cy4tfbt2l4IvLlUjHP2BjUvzGEK8+OHGoDnYFv8C6jsCuXy5rUYZffwNwIbatl+ oBlsCsXCKQW0x0UEm1lpE4Ukymv3XbXA+w7amsGaorPHDIvsp4U+R02hsnjUYIZv xmobQphA1lGs1+Y+vAxw08SrtK3Pg8a/ARNh28QJ5oGv2CpoCVt6gGQrwKGkDKzm kFOoRb43fjgTNPVUdReBcn7SgogOo5U/AcvxPBARacFoVgWr+HY/m0Ls8QfyRYUR RxHJ/UL6SEl+eIdUPUHfeGxNKISav7O6kJsGwdNRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUL5DS52BScZv1kazP18YZPIxaqgUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVmY2I4OWU3LTNjYzYtNDcwMC1hNDRjLTRkYWMwNjc3OWQ2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQODANBgkqhkiG9w0BAQsFAAOCAQEARBT+wn2BveeMCSFBIqJm61KxFJie SgfEwGwP2r9YCrqHj8w8h4Ci+N8Af2Z+1N5ZeXM7YFhFGTOd6G/7zqE5J+PqcOGb S7j+tp6CSmspVH12FIO7TydJ/vxGLimgRmo78/RvFdvhiwVt/u7YDBJI7SyrpkDy FPvl0tm75A1J0d5PRtJgl8mZc9GF+Ggm8f+CQ9635oIMikWzo0y6FloxTYlSr95G kmSE+ec/XtyPuwdk5EzhSGIlVfYFxJOjbAYQ5DOriamYuxB2aBwn8Af0uM/fzd6/ TATxvotN7fNnxOa5BEcmZsAXtCApsjC6Qgdwhv+G1V12uUnXVRLfHXv8VA== -----END CERTIFICATE-----Generated at Sat Aug 23 12:22:22 2025 by rpki-client