$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1007d85-fbf5-45da-82c5-653042baeda9.roa File: c1007d85-fbf5-45da-82c5-653042baeda9.roa (raw, json) Hash identifier: iur5HJnv3AOCofe84L+8QHPyYuZTxuLi0n2OOHECePg= Subject key identifier: 6D:D3:EB:59:81:CC:BE:6F:41:E0:8E:BA:62:7D:2A:32:83:D4:69:D2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CEA8632BB50DEA31597F853079A16D4447E6515 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1007d85-fbf5-45da-82c5-653042baeda9.roa Signing time: Tue 12 Aug 2025 00:01:49 +0000 ROA not before: Tue 12 Aug 2025 00:01:49 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.20.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:ea:86:32:bb:50:de:a3:15:97:f8:53:07:9a:16:d4:44:7e:65:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:01:49 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=5223d9240d83e14fd741525290ca8e625b744961e08f175c00404f76af5b283e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bc:24:13:27:d5:a3:c9:bb:97:41:34:02:6f: 0e:ec:43:cb:ce:4b:6a:d6:b4:b5:db:c1:c5:12:ff: 8c:af:4b:f1:af:a8:df:ba:29:82:86:43:ef:2b:cb: cd:9a:b6:21:27:68:a1:c2:ab:f8:e8:2d:e1:75:e9: a8:37:c2:05:41:58:f7:5e:dd:04:e2:d7:92:58:eb: 75:d9:49:90:d4:19:55:05:52:cb:be:ef:7c:d2:62: d5:4f:ec:a2:b9:7e:f3:c2:b3:81:3f:b0:15:83:b5: de:57:e8:8e:41:84:21:05:cf:78:b2:e1:a3:4f:aa: 06:56:dd:45:27:88:0e:d1:d6:fe:cf:17:6c:e2:5d: 97:34:4d:5c:b2:75:e6:42:be:22:2b:7f:61:3c:d8: 85:2f:7e:a0:54:92:2d:99:2d:40:75:b3:29:e7:f1: 8f:a9:41:f7:a1:64:c5:94:2c:ac:38:42:fe:bf:ba: 3a:0d:27:98:b8:d7:76:4b:22:2e:df:56:fd:e9:c4: 1d:16:7b:ec:4f:65:81:d9:07:d2:04:0d:51:52:d4: a1:d9:bd:59:41:bf:ea:8b:a1:56:6f:d8:38:19:48: b5:bc:b4:1c:10:ad:2f:9a:25:d8:5c:37:bc:56:10: 46:f9:40:31:c7:00:6f:7d:e6:72:aa:5f:7c:32:e6: 6c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:D3:EB:59:81:CC:BE:6F:41:E0:8E:BA:62:7D:2A:32:83:D4:69:D2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1007d85-fbf5-45da-82c5-653042baeda9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption 40:cf:3e:8f:31:52:36:26:a3:ae:e7:b2:e3:1d:7a:b9:3f:ce: 29:cd:05:34:3a:9d:71:16:20:1c:52:8d:a6:c4:c1:55:b0:80: d7:03:74:9a:1b:31:3a:ed:b5:e5:aa:3b:04:04:3f:96:0c:0c: c1:6b:2a:56:1d:66:6b:40:50:32:67:3a:04:1e:bc:ec:e3:86: 14:52:b6:44:e0:14:10:cc:83:5d:f9:e2:b5:83:65:59:9b:d0: 8d:d7:f4:4f:6d:d1:ed:20:cf:54:a6:d1:fa:a4:b1:5a:f5:2d: 2d:a8:36:e4:fb:77:ce:8c:d5:dc:b1:95:50:3f:9e:7c:8e:6a: e5:b7:10:fa:e9:6c:f1:81:6b:e5:b2:9b:ce:1c:4b:a8:1a:5f: 66:69:86:c5:be:9c:6d:1a:ca:fe:c5:f6:fb:60:e1:03:e0:75: d6:bc:86:07:2b:74:08:e5:bd:66:2f:72:45:e8:fa:be:d6:9a: 1d:7f:ac:0d:7f:d3:d9:3c:8e:c7:c4:8b:54:81:02:3d:fd:83: ce:20:87:05:c6:6c:e5:bb:aa:2b:8a:57:7a:04:e9:1f:f9:d1: 45:da:97:ef:20:df:0c:60:b2:18:a8:b7:e7:0c:ed:ad:25:d4: 29:5b:fc:5b:4e:f3:90:b8:8c:e1:0b:ee:fa:f0:f4:8f:89:d5: 90:a4:42:c4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULOqGMrtQ3qMVl/hTB5oW1ER+ZRUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAwMTQ5WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MjIzZDkyNDBkODNlMTRmZDc0MTUyNTI5MGNhOGU2MjVi NzQ0OTYxZTA4ZjE3NWMwMDQwNGY3NmFmNWIyODNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHvCQTJ9WjybuXQTQCbw7sQ8vOS2rWtLXbwcUS/4yvS/Gv qN+6KYKGQ+8ry82atiEnaKHCq/joLeF16ag3wgVBWPde3QTi15JY63XZSZDUGVUF Usu+73zSYtVP7KK5fvPCs4E/sBWDtd5X6I5BhCEFz3iy4aNPqgZW3UUniA7R1v7P F2ziXZc0TVyydeZCviIrf2E82IUvfqBUki2ZLUB1synn8Y+pQfehZMWULKw4Qv6/ ujoNJ5i413ZLIi7fVv3pxB0We+xPZYHZB9IEDVFS1KHZvVlBv+qLoVZv2DgZSLW8 tBwQrS+aJdhcN7xWEEb5QDHHAG995nKqX3wy5mzBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUbdPrWYHMvm9B4I66Yn0qMoPUadIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxMDA3ZDg1LWZiZjUtNDVkYS04MmM1LTY1MzA0MmJhZWRhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFDANBgkqhkiG9w0BAQsFAAOCAQEAQM8+jzFSNiajruey4x16uT/OKc0F NDqdcRYgHFKNpsTBVbCA1wN0mhsxOu215ao7BAQ/lgwMwWsqVh1ma0BQMmc6BB68 7OOGFFK2ROAUEMyDXfnitYNlWZvQjdf0T23R7SDPVKbR+qSxWvUtLag25Pt3zozV 3LGVUD+efI5q5bcQ+uls8YFr5bKbzhxLqBpfZmmGxb6cbRrK/sX2+2DhA+B11ryG Byt0COW9Zi9yRej6vtaaHX+sDX/T2TyOx8SLVIECPf2DziCHBcZs5buqK4pXegTp H/nRRdqX7yDfDGCyGKi35wztrSXUKVv8W07zkLiM4Qvu+vD0j4nVkKRCxA== -----END CERTIFICATE-----Generated at Sat Aug 23 09:01:26 2025 by rpki-client