$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f785be2-50dd-45bd-9ac2-90d8990855f4.roa File: 6f785be2-50dd-45bd-9ac2-90d8990855f4.roa (raw, json) Hash identifier: T2SuC+A8xu07TYcl8KPqE4y9YhTejWpYC51Yn432bqc= Subject key identifier: C2:23:CC:4B:88:DB:DE:23:FB:2E:A2:13:B1:54:3E:FB:CB:1D:C0:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72D3EDC1D18C0375EC7E39D375E914B44BB81103 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f785be2-50dd-45bd-9ac2-90d8990855f4.roa Signing time: Mon 11 Aug 2025 15:11:59 +0000 ROA not before: Mon 11 Aug 2025 15:11:59 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.154.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:d3:ed:c1:d1:8c:03:75:ec:7e:39:d3:75:e9:14:b4:4b:b8:11:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 11 15:11:59 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=8eca13458abe939922a59ccf08d88e3156ba73b4c02d6e8266ddc88c390eb38b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f9:0c:d2:e6:f6:0b:d5:aa:b9:88:4c:f8:7c: df:8d:9d:c5:d3:02:e8:b7:6e:9b:1c:e3:b8:a8:25: c7:56:38:c4:d8:7f:9a:1b:40:6e:d8:2e:92:9b:82: 13:5e:c8:62:e3:79:06:c5:43:af:52:da:2c:2f:bc: 49:2e:66:6d:bf:9d:07:09:fa:0b:11:b0:8e:05:2e: da:18:6e:40:93:85:31:5c:70:af:43:c5:d2:a9:0c: 49:67:57:bf:ff:86:70:77:b9:55:44:b9:d8:bb:34: 32:3f:24:9e:70:68:db:72:89:ab:d5:2e:1d:b2:90: 3a:72:99:e2:bd:d4:77:4e:b0:de:63:c3:0b:9b:d7: 6f:37:96:6f:f8:d3:64:d0:0d:c1:43:ca:92:67:fc: 32:c6:98:80:1c:57:74:88:07:05:ed:24:67:b4:62: cb:d8:8e:d9:e6:a2:fa:6b:fd:2e:66:56:5c:58:8f: 2d:f1:aa:a1:cc:76:f2:9e:80:27:27:76:6d:bd:2f: ee:cb:8f:3e:8d:97:9f:f7:1f:5d:7d:0c:b9:d3:aa: df:72:0d:70:f0:35:1e:58:c0:92:69:e7:bd:5b:9f: 8e:1a:07:9b:47:fd:bc:3b:57:98:f0:e8:8b:7b:ad: 72:0c:48:ed:76:4a:39:e1:7c:04:f9:f4:f0:ef:82: d5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:23:CC:4B:88:DB:DE:23:FB:2E:A2:13:B1:54:3E:FB:CB:1D:C0:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f785be2-50dd-45bd-9ac2-90d8990855f4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.154.0.0/15 Signature Algorithm: sha256WithRSAEncryption 0c:a8:f5:d7:88:7c:bf:66:b8:05:99:15:c9:b8:bb:41:1d:91: be:a1:a4:a8:85:c9:2d:17:e0:6b:b5:ce:64:62:2b:8b:fd:57: fd:1a:d4:80:bf:da:24:26:ec:2a:0e:b4:8f:93:b9:63:be:bb: 51:b7:57:f3:d2:cd:59:cf:04:d3:cc:b7:4f:a5:cf:f2:87:dc: 93:e8:84:2d:aa:44:df:03:86:8c:6d:9c:eb:82:df:4f:6b:f9: 40:f9:25:d0:7a:31:e2:86:e2:da:dd:f8:4f:21:b9:33:17:bb: a4:2b:df:24:eb:25:eb:0e:49:b1:ac:3a:08:41:33:e4:b6:d7: df:83:34:62:97:8f:33:a0:1b:52:4d:cf:fe:f4:e1:66:bc:07: 48:06:91:dc:e4:2c:e8:12:51:6a:2b:5f:92:be:8e:6e:72:c9: 9e:d9:ed:03:db:9a:f3:d4:29:08:5a:35:56:e5:12:12:ff:a7: 0a:53:a4:a6:6b:39:cd:42:e6:e6:44:a9:2b:c4:25:26:91:7f: 04:94:75:f8:6f:45:1d:29:84:9c:45:af:fe:25:97:bb:72:22: 21:f2:70:8c:1d:fc:64:0e:53:2e:d3:c3:3b:f7:30:10:e9:aa: 6a:8e:35:11:dd:93:8a:df:05:42:eb:0f:d2:28:a6:41:a8:a7: 2d:69:ce:cc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUctPtwdGMA3XsfjnTdekUtEu4EQMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODExMTUxMTU5WhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZWNhMTM0NThhYmU5Mzk5MjJhNTljY2YwOGQ4OGUzMTU2 YmE3M2I0YzAyZDZlODI2NmRkYzg4YzM5MGViMzhiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf+QzS5vYL1aq5iEz4fN+NncXTAui3bpsc47ioJcdWOMTY f5obQG7YLpKbghNeyGLjeQbFQ69S2iwvvEkuZm2/nQcJ+gsRsI4FLtoYbkCThTFc cK9DxdKpDElnV7//hnB3uVVEudi7NDI/JJ5waNtyiavVLh2ykDpymeK91HdOsN5j wwub1283lm/402TQDcFDypJn/DLGmIAcV3SIBwXtJGe0YsvYjtnmovpr/S5mVlxY jy3xqqHMdvKegCcndm29L+7Ljz6Nl5/3H119DLnTqt9yDXDwNR5YwJJp571bn44a B5tH/bw7V5jw6It7rXIMSO12SjnhfAT59PDvgtVHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwiPMS4jb3iP7LqITsVQ++8sdwAAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmNzg1YmUyLTUwZGQtNDViZC05YWMyLTkwZDg5OTA4NTVmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEQmjANBgkqhkiG9w0BAQsFAAOCAQEADKj114h8v2a4BZkVybi7QR2RvqGk qIXJLRfga7XOZGIri/1X/RrUgL/aJCbsKg60j5O5Y767UbdX89LNWc8E08y3T6XP 8ofck+iELapE3wOGjG2c64LfT2v5QPkl0Hox4obi2t34TyG5Mxe7pCvfJOsl6w5J saw6CEEz5LbX34M0YpePM6AbUk3P/vThZrwHSAaR3OQs6BJRaitfkr6ObnLJntnt A9ua89QpCFo1VuUSEv+nClOkpms5zULm5kSpK8QlJpF/BJR1+G9FHSmEnEWv/iWX u3IiIfJwjB38ZA5TLtPDO/cwEOmqao41Ed2Tit8FQusP0iimQainLWnOzA== -----END CERTIFICATE-----Generated at Sat Aug 23 11:09:36 2025 by rpki-client