$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4f52d1b-a830-4741-8924-351b0ebc2ffe.roa File: d4f52d1b-a830-4741-8924-351b0ebc2ffe.roa (raw, json) Hash identifier: j9Y263eiIQWO71Bd+TDmSjRlLfp1zJZCQrGyiv3eIeA= Subject key identifier: CB:95:38:62:A7:DE:BF:5B:5F:FF:D9:39:59:E3:9F:F8:A0:8A:B3:AC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2F47EC4F1A18C31A2814CCCDFC1DA3A5775D661E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4f52d1b-a830-4741-8924-351b0ebc2ffe.roa Signing time: Tue 12 Aug 2025 00:11:50 +0000 ROA not before: Tue 12 Aug 2025 00:11:50 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.171.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:47:ec:4f:1a:18:c3:1a:28:14:cc:cd:fc:1d:a3:a5:77:5d:66:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:11:50 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=fbbdeccd474b1c5f822260c7ad4bd717bc10f36cb9acd8edb357f4bf4d18f25a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f1:f2:41:87:31:00:eb:90:e7:cb:b7:4b:2a: f0:8b:5a:6e:12:11:db:01:80:bd:1e:4c:da:9a:d2: d9:b1:a5:76:41:f1:0f:59:37:f3:fa:42:42:aa:b6: d3:63:ca:28:55:bc:5c:cb:6e:24:f7:e9:22:f5:31: be:20:2e:5c:d1:fc:3a:bd:cb:f7:47:fb:69:e5:8d: 16:b3:10:66:c0:74:b9:af:44:01:e6:9c:71:41:eb: d0:bf:40:de:ee:8a:14:97:af:46:51:75:c6:34:72: 6b:de:81:f4:b0:aa:cd:13:20:b8:b1:92:85:6e:20: 40:15:70:dd:a1:25:25:ba:84:2d:49:f7:53:5b:92: fa:1a:2e:67:c6:d8:74:c9:b5:6d:ab:f7:e0:43:2d: ea:03:57:08:d8:11:40:0e:5d:7c:b2:2d:2b:c9:9f: c1:e3:d8:b9:45:fb:a5:41:be:bd:b6:14:5f:22:18: d1:1d:4a:8b:77:1f:b1:8a:4d:5e:0e:84:fb:9c:56: df:e7:81:1b:d6:c1:57:25:25:e7:f4:da:f6:a2:c2: e0:8a:f6:6e:c5:4e:73:23:e5:14:e6:23:1a:1c:5f: 81:8e:18:05:ee:67:9d:2f:dd:59:9c:0a:2f:a5:08: fe:46:e2:c7:b8:f7:33:8e:bc:e6:4f:87:76:ff:82: f8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:95:38:62:A7:DE:BF:5B:5F:FF:D9:39:59:E3:9F:F8:A0:8A:B3:AC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4f52d1b-a830-4741-8924-351b0ebc2ffe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.171.128.0/19 Signature Algorithm: sha256WithRSAEncryption 60:b6:94:9e:3a:5d:df:f6:bb:9a:ad:e5:5d:50:9a:e3:9d:6b: 79:bf:39:0e:8a:b6:6c:63:02:0e:f0:c4:3d:2e:3f:37:ee:59: 98:2b:6f:e9:6a:4b:c2:cb:92:5c:d7:c5:3d:6d:36:28:bb:7e: c8:c3:82:60:56:71:ea:b6:5d:5e:63:7c:ad:29:63:e4:fb:24: ca:56:b5:07:1b:9d:ae:f2:e9:45:89:36:f1:8a:98:4c:f1:2b: 7c:46:16:c3:15:57:7b:01:a3:15:be:b9:46:10:75:72:30:d1: 2b:02:26:33:56:21:6c:4c:f9:df:99:ad:40:a6:22:b2:05:17: a1:52:72:7d:65:89:3a:94:d9:f0:a0:15:cb:e4:e3:78:f9:1c: ed:f6:08:40:75:2f:d7:8f:64:8f:65:60:a9:72:33:6f:a7:40: 1e:67:bf:93:f5:9f:f0:6a:31:27:63:4b:fe:e3:fb:6d:78:0c: 8e:00:59:5d:ca:c7:b7:ab:c4:a7:4d:e9:ef:92:73:93:0a:9a: dc:85:86:33:2e:28:e4:a7:10:82:66:d6:6a:cb:22:dd:3f:6d: 66:da:60:be:a9:7f:a2:2a:e5:61:d5:f6:ab:26:4d:95:0f:51: fc:4f:1e:b5:05:bd:df:3f:5c:37:15:e9:4c:be:51:d9:83:0f: 5a:94:27:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL0fsTxoYwxooFMzN/B2jpXddZh4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAxMTUwWhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYmJkZWNjZDQ3NGIxYzVmODIyMjYwYzdhZDRiZDcxN2Jj MTBmMzZjYjlhY2Q4ZWRiMzU3ZjRiZjRkMThmMjVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO8fJBhzEA65Dny7dLKvCLWm4SEdsBgL0eTNqa0tmxpXZB 8Q9ZN/P6QkKqttNjyihVvFzLbiT36SL1Mb4gLlzR/Dq9y/dH+2nljRazEGbAdLmv RAHmnHFB69C/QN7uihSXr0ZRdcY0cmvegfSwqs0TILixkoVuIEAVcN2hJSW6hC1J 91NbkvoaLmfG2HTJtW2r9+BDLeoDVwjYEUAOXXyyLSvJn8Hj2LlF+6VBvr22FF8i GNEdSot3H7GKTV4OhPucVt/ngRvWwVclJef02vaiwuCK9m7FTnMj5RTmIxocX4GO GAXuZ50v3VmcCi+lCP5G4se49zOOvOZPh3b/gvhfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUy5U4Yqfev1tf/9k5WeOf+KCKs6wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q0ZjUyZDFiLWE4MzAtNDc0MS04OTI0LTM1MWIwZWJjMmZmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXYq4AwDQYJKoZIhvcNAQELBQADggEBAGC2lJ46Xd/2u5qt5V1QmuOda3m/ OQ6KtmxjAg7wxD0uPzfuWZgrb+lqS8LLklzXxT1tNii7fsjDgmBWceq2XV5jfK0p Y+T7JMpWtQcbna7y6UWJNvGKmEzxK3xGFsMVV3sBoxW+uUYQdXIw0SsCJjNWIWxM +d+ZrUCmIrIFF6FScn1liTqU2fCgFcvk43j5HO32CEB1L9ePZI9lYKlyM2+nQB5n v5P1n/BqMSdjS/7j+214DI4AWV3Kx7erxKdN6e+Sc5MKmtyFhjMuKOSnEIJm1mrL It0/bWbaYL6pf6Iq5WHV9qsmTZUPUfxPHrUFvd8/XDcV6Uy+UdmDD1qUJzc= -----END CERTIFICATE-----Generated at Sat Aug 23 12:14:36 2025 by rpki-client