$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03f9aa29-3019-4136-a7a6-f6d848d356b7.roa File: 03f9aa29-3019-4136-a7a6-f6d848d356b7.roa (raw, json) Hash identifier: xXRAy6C7MRkVaKznx28yx9NKN7oZ6RJXDlGHyrVo5Rs= Subject key identifier: 78:4E:49:E7:1B:44:21:B7:93:F5:A8:3F:EF:21:46:AB:04:3F:4F:B3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 26865D1B62FD27997F6418B7CD22813FB1C042FA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03f9aa29-3019-4136-a7a6-f6d848d356b7.roa Signing time: Tue 05 Aug 2025 21:07:01 +0000 ROA not before: Tue 05 Aug 2025 21:07:01 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 16.22.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:86:5d:1b:62:fd:27:99:7f:64:18:b7:cd:22:81:3f:b1:c0:42:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 21:07:01 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=28bc6a0cdbfbb006a81bb1cc0c0cc17ec596d1662f619f850f06aea64fb1fcef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:68:38:b1:bb:57:9b:32:6c:75:72:ff:b9:ce: 71:a7:f1:7c:51:e0:62:9f:ff:4b:27:7d:56:2e:27: eb:67:ff:90:71:3b:d6:f9:8a:ce:dd:c3:3f:8d:c1: 29:ea:6c:7d:f3:87:8b:b6:77:bd:96:25:29:be:3e: f3:17:c6:a7:91:7d:44:33:a7:14:ee:fa:8a:63:45: 76:2f:18:ee:c3:72:8f:89:67:a2:4b:9e:43:97:dd: 6f:26:3d:3b:78:ca:b0:30:97:cc:17:67:e0:c8:ef: 11:ce:6e:95:59:69:e3:9c:b7:5f:18:75:a0:23:55: 79:16:5c:6f:37:27:e6:06:ba:15:41:3a:21:d6:92: 58:1c:b0:5c:80:8d:2d:62:77:65:fc:a8:4a:33:ae: 4b:3a:3d:78:b4:93:2c:b6:64:1c:cb:59:ab:58:29: 7f:49:c6:78:29:b1:f1:7b:ad:e6:a8:43:ae:53:29: 4a:53:58:c4:5c:20:b9:28:58:7f:06:b2:40:a5:83: 14:11:ce:6f:a1:38:a5:93:23:73:d4:97:1c:78:a0: c4:13:b0:a6:cf:cc:5f:d3:ab:43:8b:08:05:de:d8: c9:d3:bf:d3:70:66:32:cf:8a:86:fd:8f:dd:0d:7f: e3:1c:e2:86:10:fc:6d:8c:42:19:20:c2:4f:c0:e4: 94:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:4E:49:E7:1B:44:21:B7:93:F5:A8:3F:EF:21:46:AB:04:3F:4F:B3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03f9aa29-3019-4136-a7a6-f6d848d356b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption 04:22:b1:88:8b:26:18:3b:70:20:54:64:10:42:ae:12:6e:3d: 9e:03:99:4b:4d:6d:3e:47:d3:47:5c:98:b3:35:02:07:b6:ae: 68:a7:68:20:2a:b3:f2:18:f8:b4:b7:fd:9b:7b:d2:aa:f1:15: 89:d6:d7:46:b9:d5:57:2c:8a:dc:c2:54:ef:81:b0:a1:48:df: 37:57:82:79:65:98:a8:1d:d3:77:74:cd:e6:31:f9:77:e1:79: 89:04:57:b7:ee:7b:8a:66:48:12:7e:71:ac:22:82:ba:bd:9f: b5:41:b1:b7:7d:9c:5b:f4:7f:c4:62:c6:5e:71:f2:79:90:d1: 29:e6:7d:eb:18:0e:90:96:b5:54:05:49:eb:81:41:be:2e:4d: 61:a8:64:22:1d:17:fe:c5:d4:7a:49:10:cf:55:99:5b:77:2e: fe:38:de:25:6b:dc:44:e9:69:f1:9e:05:10:7d:c4:57:be:6c: 99:93:e9:ef:cd:a4:10:44:7a:4d:e4:41:04:2f:08:7c:40:8c: 8d:90:92:40:95:27:e1:b8:cb:05:43:29:31:61:50:7f:9d:06: 88:01:b7:45:6a:2a:de:74:20:4d:0e:e8:1c:b0:94:53:f8:e1: ff:bc:c7:e9:cf:ad:a3:b1:73:8e:80:a4:70:be:d3:34:49:59: cc:60:00:fc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJoZdG2L9J5l/ZBi3zSKBP7HAQvowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MjEwNzAxWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOGJjNmEwY2RiZmJiMDA2YTgxYmIxY2MwYzBjYzE3ZWM1 OTZkMTY2MmY2MTlmODUwZjA2YWVhNjRmYjFmY2VmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXaDixu1ebMmx1cv+5znGn8XxR4GKf/0snfVYuJ+tn/5Bx O9b5is7dwz+NwSnqbH3zh4u2d72WJSm+PvMXxqeRfUQzpxTu+opjRXYvGO7Dco+J Z6JLnkOX3W8mPTt4yrAwl8wXZ+DI7xHObpVZaeOct18YdaAjVXkWXG83J+YGuhVB OiHWklgcsFyAjS1id2X8qEozrks6PXi0kyy2ZBzLWatYKX9JxngpsfF7reaoQ65T KUpTWMRcILkoWH8GskClgxQRzm+hOKWTI3PUlxx4oMQTsKbPzF/Tq0OLCAXe2MnT v9NwZjLPiob9j90Nf+Mc4oYQ/G2MQhkgwk/A5JRfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUeE5J5xtEIbeT9ag/7yFGqwQ/T7MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzZjlhYTI5LTMwMTktNDEzNi1hN2E2LWY2ZDg0OGQzNTZiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFjANBgkqhkiG9w0BAQsFAAOCAQEABCKxiIsmGDtwIFRkEEKuEm49ngOZ S01tPkfTR1yYszUCB7auaKdoICqz8hj4tLf9m3vSqvEVidbXRrnVVyyK3MJU74Gw oUjfN1eCeWWYqB3Td3TN5jH5d+F5iQRXt+57imZIEn5xrCKCur2ftUGxt32cW/R/ xGLGXnHyeZDRKeZ96xgOkJa1VAVJ64FBvi5NYahkIh0X/sXUekkQz1WZW3cu/jje JWvcROlp8Z4FEH3EV75smZPp782kEER6TeRBBC8IfECMjZCSQJUn4bjLBUMpMWFQ f50GiAG3RWoq3nQgTQ7oHLCUU/jh/7zH6c+to7FzjoCkcL7TNElZzGAA/A== -----END CERTIFICATE-----Generated at Sat Aug 9 01:00:43 2025 by rpki-client