$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10e8eaff-a969-4014-aee5-0177cbb5381e.roa File: 10e8eaff-a969-4014-aee5-0177cbb5381e.roa (raw, json) Hash identifier: crEpm/v1PRlbn/K4xuQ51f/y13Ylpn0oxv7zDCgHfpo= Subject key identifier: B6:57:E1:E9:8C:15:65:CE:24:5D:D4:FC:E9:5A:6C:02:A0:65:B3:AA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A20441CC8BBD0747CB4F2AAC2EE301DD7EDA3F5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10e8eaff-a969-4014-aee5-0177cbb5381e.roa Signing time: Fri 01 Aug 2025 15:10:22 +0000 ROA not before: Fri 01 Aug 2025 15:10:22 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.162.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:20:44:1c:c8:bb:d0:74:7c:b4:f2:aa:c2:ee:30:1d:d7:ed:a3:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:10:22 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=b1eec75e046e662f0dec0240b86f5360a7ed743b2353b888cff56a4232edd8d1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:2e:a1:f7:d8:67:c8:52:4f:1d:2c:c0:0a:f0: 75:38:9b:93:83:a9:6f:1e:83:44:72:5d:52:5b:03: d2:d5:71:0b:fa:b4:67:27:40:0f:d6:67:a8:8a:97: 83:f5:78:ab:d7:97:07:ec:58:48:ed:60:92:59:dd: 6e:cd:c3:8e:62:ec:38:ed:f3:e3:6e:64:12:6e:55: 9d:95:52:f0:2f:9d:18:b7:fb:97:3f:4e:36:52:a2: 7f:0b:46:20:91:cd:2f:d0:ff:4e:2f:fb:9d:87:4e: 72:8c:2c:ee:4f:91:b8:7f:ff:be:23:33:f5:6c:ca: 7d:8d:39:fc:97:9d:4e:0b:08:97:28:dd:9f:56:ea: e4:6a:b6:aa:94:41:35:8a:90:0f:c9:db:80:2d:77: 7f:e4:62:27:36:39:15:62:a5:bc:7f:e7:7f:9a:00: 58:9b:2b:52:a9:c4:72:39:c0:6a:21:09:10:b2:c5: 05:10:7a:ab:e6:1f:8f:a4:85:dd:75:55:bf:de:ce: c8:f6:92:ff:71:e5:ce:ef:9f:28:56:15:99:d3:5d: 13:9b:bd:95:fd:da:46:b7:af:31:cb:a6:f2:14:7f: 62:16:1e:d3:84:b9:8d:56:1a:d8:af:36:7c:da:00: 94:84:91:dc:e4:c8:62:3a:df:d2:85:23:57:87:dc: fb:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:57:E1:E9:8C:15:65:CE:24:5D:D4:FC:E9:5A:6C:02:A0:65:B3:AA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10e8eaff-a969-4014-aee5-0177cbb5381e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.162.0.0/15 Signature Algorithm: sha256WithRSAEncryption 6d:43:77:d2:73:45:83:df:2d:44:f7:54:aa:17:e9:25:82:cf: 95:2a:e2:ee:71:f7:98:bf:4e:29:dc:7e:79:3f:cb:83:f7:7e: 32:f8:2f:12:ba:f6:dc:d3:77:fb:54:84:38:73:bc:0d:3d:c6: 00:4a:0b:85:0a:a5:f8:45:d4:9a:8d:96:81:12:a7:4b:86:44: fa:9b:cf:76:68:31:7d:ba:19:53:1e:f9:87:86:1b:63:c6:56: 43:ae:cc:8f:07:28:75:c6:16:f8:50:e9:4a:05:e9:1c:43:fd: c8:7f:bd:bc:8e:e1:a8:4d:64:9b:03:af:00:57:a9:d8:47:ac: de:45:26:a8:15:8e:e4:f0:74:0a:62:08:c0:f7:5c:15:2a:a3: 8e:ce:fb:b9:6a:d3:7b:14:b5:37:c5:3c:c6:a6:0b:a3:6d:07: 07:98:b2:2d:a5:04:f6:f0:89:1f:0c:17:49:60:6d:c3:5a:c3: ec:c7:dc:88:af:eb:b1:03:14:85:fb:1c:b3:77:eb:39:e1:10: db:54:c3:ee:74:ab:52:fd:aa:0f:9c:28:8c:80:5f:a6:64:e1: 61:68:ab:c9:ad:bc:c1:18:64:01:17:a9:07:7a:d2:d2:49:2c: dc:d4:8e:71:32:be:50:b5:05:b9:92:29:38:53:5c:bd:d0:3b: 29:55:d5:3f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeiBEHMi70HR8tPKqwu4wHdfto/UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUxMDIyWhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMWVlYzc1ZTA0NmU2NjJmMGRlYzAyNDBiODZmNTM2MGE3 ZWQ3NDNiMjM1M2I4ODhjZmY1NmE0MjMyZWRkOGQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgLqH32GfIUk8dLMAK8HU4m5ODqW8eg0RyXVJbA9LVcQv6 tGcnQA/WZ6iKl4P1eKvXlwfsWEjtYJJZ3W7Nw45i7Djt8+NuZBJuVZ2VUvAvnRi3 +5c/TjZSon8LRiCRzS/Q/04v+52HTnKMLO5Pkbh//74jM/Vsyn2NOfyXnU4LCJco 3Z9W6uRqtqqUQTWKkA/J24Atd3/kYic2ORVipbx/53+aAFibK1KpxHI5wGohCRCy xQUQeqvmH4+khd11Vb/ezsj2kv9x5c7vnyhWFZnTXRObvZX92ka3rzHLpvIUf2IW HtOEuY1WGtivNnzaAJSEkdzkyGI639KFI1eH3PuvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtlfh6YwVZc4kXdT86VpsAqBls6owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwZThlYWZmLWE5NjktNDAxNC1hZWU1LTAxNzdjYmI1MzgxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEQojANBgkqhkiG9w0BAQsFAAOCAQEAbUN30nNFg98tRPdUqhfpJYLPlSri 7nH3mL9OKdx+eT/Lg/d+MvgvErr23NN3+1SEOHO8DT3GAEoLhQql+EXUmo2WgRKn S4ZE+pvPdmgxfboZUx75h4YbY8ZWQ67MjwcodcYW+FDpSgXpHEP9yH+9vI7hqE1k mwOvAFep2Ees3kUmqBWO5PB0CmIIwPdcFSqjjs77uWrTexS1N8U8xqYLo20HB5iy LaUE9vCJHwwXSWBtw1rD7MfciK/rsQMUhfscs3frOeEQ21TD7nSrUv2qD5wojIBf pmThYWirya28wRhkARepB3rS0kks3NSOcTK+ULUFuZIpOFNcvdA7KVXVPw== -----END CERTIFICATE-----Generated at Tue Aug 5 08:21:39 2025 by rpki-client