$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8bb2d3dd-174b-4c48-a1c8-3463c0c054be.roa File: 8bb2d3dd-174b-4c48-a1c8-3463c0c054be.roa (raw, json) Hash identifier: YfFtLw2ypsR5xSuuW1MbPctA88NaMoIuAv1N6UWp/rs= Subject key identifier: FA:BB:8C:79:F4:EC:8A:39:B7:DF:B0:15:C7:37:34:84:AA:33:78:C3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CAE9BCCDB6B7C31476E9827CAF3E69276F95AA2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8bb2d3dd-174b-4c48-a1c8-3463c0c054be.roa Signing time: Tue 12 Aug 2025 00:01:09 +0000 ROA not before: Tue 12 Aug 2025 00:01:09 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 137.16.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:ae:9b:cc:db:6b:7c:31:47:6e:98:27:ca:f3:e6:92:76:f9:5a:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:01:09 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=64271c4ea54451411f6b77a384aed06f5e332fe3d8f7e7a5cc0c1a1887800401, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f9:f5:eb:dc:28:ee:78:c5:25:d2:18:e7:8b: a1:6f:40:5d:70:01:cf:78:a9:97:b5:5e:e6:00:a4: 38:5c:c8:92:fa:bf:72:07:1b:18:a1:24:a0:77:9c: 72:b3:a4:ad:ce:14:13:46:aa:7b:b2:6d:b8:fb:03: 9d:f3:d6:b5:59:06:f7:fc:ca:68:c4:21:25:b4:69: c2:e0:55:7a:41:0b:4c:74:fa:2e:eb:82:a1:e5:c4: 34:d4:b8:89:40:57:c6:35:da:9c:23:9f:48:82:fa: ff:c8:2e:7f:dd:10:20:d5:12:30:72:4a:09:1b:95: c0:af:26:e1:44:cc:5e:82:4b:c7:80:4d:77:70:85: dc:86:46:6a:b3:da:15:82:51:01:94:54:fa:97:2e: 31:c3:3f:87:0e:a4:4f:ad:c0:2f:50:f4:23:3c:5d: c1:1a:df:47:a2:d9:ac:9f:f5:20:04:b9:a1:50:70: 13:83:a5:6b:ea:47:60:8f:a2:55:f5:99:9f:b1:99: fc:2a:ab:6a:f6:93:1c:c5:c1:bc:94:8c:96:40:67: 59:63:de:c4:2c:81:b3:9c:ce:b7:82:14:35:fc:1a: 56:19:dc:3f:c7:bf:90:ce:2e:a4:c5:f2:84:0c:88: e6:93:d3:95:b1:97:70:ba:bb:08:3c:ae:2d:a8:b7: b6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:BB:8C:79:F4:EC:8A:39:B7:DF:B0:15:C7:37:34:84:AA:33:78:C3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8bb2d3dd-174b-4c48-a1c8-3463c0c054be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 137.16.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2d:e7:d3:8b:a1:4f:a3:36:83:e6:b6:3c:2b:65:59:a9:1a:38: 06:e0:ba:24:18:19:86:6b:90:35:ec:88:bb:a8:3f:0e:b6:35: 64:d7:89:ec:45:94:4e:f9:04:39:a9:3d:01:43:1a:45:ab:51: 87:43:0f:85:d1:ed:a5:97:b1:2c:3c:fd:aa:76:00:94:2d:0d: e3:79:b6:b8:78:ab:19:9a:3f:27:7d:e7:fc:d6:e2:2e:19:ad: 8e:cc:66:72:f1:c9:6f:90:4c:8e:ee:2e:a8:1a:7a:42:cc:52: f1:c2:ae:f6:bc:13:9b:97:6c:c8:11:8d:64:02:8f:4f:a7:2e: 59:af:54:b1:56:d2:9e:eb:48:9d:62:12:35:d8:ba:84:c5:e2: 08:6c:07:3d:31:71:a5:36:28:17:e7:93:6b:eb:02:cf:b2:f0: 9a:df:45:fa:00:b0:31:58:72:ae:0d:74:d6:4d:44:69:c2:f8: ad:b0:a1:53:34:17:dc:d3:24:05:34:33:7e:46:a1:85:23:31: 74:61:f9:6d:91:25:2d:75:eb:98:08:d5:79:e4:5c:9e:e2:4e: 63:58:6a:f3:4b:20:f0:f7:35:ec:73:78:68:7b:f4:9e:be:2a: db:df:dc:0e:ca:cc:40:ad:87:55:77:d7:c9:f2:5f:e4:5f:a2: 59:6f:84:5e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbK6bzNtrfDFHbpgnyvPmknb5WqIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAwMTA5WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDI3MWM0ZWE1NDQ1MTQxMWY2Yjc3YTM4NGFlZDA2ZjVl MzMyZmUzZDhmN2U3YTVjYzBjMWExODg3ODAwNDAxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDP+fXr3CjueMUl0hjni6FvQF1wAc94qZe1XuYApDhcyJL6 v3IHGxihJKB3nHKzpK3OFBNGqnuybbj7A53z1rVZBvf8ymjEISW0acLgVXpBC0x0 +i7rgqHlxDTUuIlAV8Y12pwjn0iC+v/ILn/dECDVEjBySgkblcCvJuFEzF6CS8eA TXdwhdyGRmqz2hWCUQGUVPqXLjHDP4cOpE+twC9Q9CM8XcEa30ei2ayf9SAEuaFQ cBODpWvqR2CPolX1mZ+xmfwqq2r2kxzFwbyUjJZAZ1lj3sQsgbOczreCFDX8GlYZ 3D/Hv5DOLqTF8oQMiOaT05Wxl3C6uwg8ri2ot7ZtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU+ruMefTsijm337AVxzc0hKozeMMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhiYjJkM2RkLTE3NGItNGM0OC1hMWM4LTM0NjNjMGMwNTRiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCJEDANBgkqhkiG9w0BAQsFAAOCAQEALefTi6FPozaD5rY8K2VZqRo4BuC6 JBgZhmuQNeyIu6g/DrY1ZNeJ7EWUTvkEOak9AUMaRatRh0MPhdHtpZexLDz9qnYA lC0N43m2uHirGZo/J33n/NbiLhmtjsxmcvHJb5BMju4uqBp6QsxS8cKu9rwTm5ds yBGNZAKPT6cuWa9UsVbSnutInWISNdi6hMXiCGwHPTFxpTYoF+eTa+sCz7Lwmt9F +gCwMVhyrg101k1EacL4rbChUzQX3NMkBTQzfkahhSMxdGH5bZElLXXrmAjVeeRc nuJOY1hq80sg8Pc17HN4aHv0nr4q29/cDsrMQK2HVXfXyfJf5F+iWW+EXg== -----END CERTIFICATE-----Generated at Sat Aug 23 10:16:55 2025 by rpki-client