$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11b6d8d5-1cfc-48ae-8156-332dde92d52e.roa File: 11b6d8d5-1cfc-48ae-8156-332dde92d52e.roa (raw, json) Hash identifier: a0hYpk6N0cP1I8gmKsnV1ljbrpakyeobAAwlCHg8qwo= Subject key identifier: D1:F8:D5:B8:64:37:23:43:EF:3D:11:52:85:9D:10:47:4C:BE:91:44 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7EB343F5444E1E9E99D276E278E642F703C24954 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11b6d8d5-1cfc-48ae-8156-332dde92d52e.roa Signing time: Sat 02 Aug 2025 00:31:14 +0000 ROA not before: Sat 02 Aug 2025 00:31:14 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.56.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:b3:43:f5:44:4e:1e:9e:99:d2:76:e2:78:e6:42:f7:03:c2:49:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:31:14 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=7e1f03f890bba8f522c630c6facd9fe1410c2d495e72587c3f0c8e5d22712ed7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:b7:d5:d4:e9:9a:aa:32:f7:97:69:95:a2:c0: 8b:06:b9:be:ca:dd:53:a9:4d:70:19:e0:37:a7:3a: 3e:41:41:16:e2:ab:d3:92:8b:ff:31:4a:ab:ff:40: 88:0b:ce:ec:bb:9b:fc:69:cd:62:71:52:70:66:17: b1:49:fc:7e:8f:bf:79:38:78:87:0b:02:c7:9d:e6: 0a:ca:d1:67:d0:34:d3:38:61:50:fd:ab:04:ec:62: 14:85:b3:97:02:63:3a:e4:e2:b2:6e:95:4f:d0:9f: ca:f9:d2:71:78:86:0e:a1:57:fb:57:11:54:fc:91: e7:0a:58:10:9e:3c:4b:ab:c6:8a:3d:2d:70:7f:78: 5a:69:35:1a:08:22:ec:63:9e:92:49:01:f0:1b:a2: 95:b7:c1:e1:be:22:11:96:39:d2:1b:06:ea:64:57: 59:83:60:a0:46:cc:8b:18:05:e3:e2:e6:44:9d:3a: e8:f2:e2:f7:9a:d5:28:b5:fc:fe:19:b0:4f:59:86: 0a:98:25:99:46:37:73:be:b6:0e:7c:6c:0e:af:f5: 54:45:c6:b8:30:fd:f9:21:4f:a8:ee:fe:68:f1:bf: ca:e6:94:3b:67:35:c4:13:4b:89:49:bf:5f:21:89: 85:34:32:6f:b3:51:4e:02:0c:c9:11:58:6c:1d:ff: 06:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F8:D5:B8:64:37:23:43:EF:3D:11:52:85:9D:10:47:4C:BE:91:44 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11b6d8d5-1cfc-48ae-8156-332dde92d52e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.56.160.0/19 Signature Algorithm: sha256WithRSAEncryption af:de:91:c7:2c:5a:dd:0d:36:e6:a4:21:7d:7a:2b:84:b7:b1: c6:13:86:a4:4c:10:ce:4f:69:76:10:2b:56:7d:bc:3e:a8:8b: bd:41:b5:63:c4:fc:b8:72:b8:6b:a1:3a:92:95:9b:c5:19:3a: 91:b6:86:57:5b:5e:03:60:13:88:55:6b:a8:98:b0:7e:20:d5: f7:5c:e4:20:f6:a9:6e:ca:d4:4a:ca:dc:d8:73:03:96:c5:f8: 45:18:ce:c7:ca:1e:64:10:37:2f:1a:b9:6b:e5:2b:34:3e:7e: 44:8f:79:33:c5:45:71:6b:cc:50:31:d8:00:23:a3:85:c7:30: d2:f8:ee:3c:07:7b:6d:28:20:30:22:18:84:e6:c8:79:20:89: ad:5d:67:7c:a9:2f:15:d5:2e:66:04:0c:c9:9e:7d:ed:94:71: bf:f3:cb:38:e2:b7:90:bb:c3:84:17:1c:62:17:ad:a8:a0:49: 29:a7:9c:71:ba:b1:5a:15:8e:8e:f2:08:8a:a4:3a:c5:6b:6c: ab:13:39:2d:aa:70:9e:bc:7a:4d:78:6b:80:d0:94:b6:62:7c: 93:08:cd:99:af:af:e7:75:f8:c1:cc:d3:b3:b1:94:b3:9e:39: 1e:58:e1:b5:58:9f:bd:2c:7b:79:a1:6a:d5:bc:ff:b1:d4:71: 1e:df:ae:dd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfrND9UROHp6Z0nbieOZC9wPCSVQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDAzMTE0WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTFmMDNmODkwYmJhOGY1MjJjNjMwYzZmYWNkOWZlMTQx MGMyZDQ5NWU3MjU4N2MzZjBjOGU1ZDIyNzEyZWQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCht9XU6ZqqMveXaZWiwIsGub7K3VOpTXAZ4DenOj5BQRbi q9OSi/8xSqv/QIgLzuy7m/xpzWJxUnBmF7FJ/H6Pv3k4eIcLAsed5grK0WfQNNM4 YVD9qwTsYhSFs5cCYzrk4rJulU/Qn8r50nF4hg6hV/tXEVT8kecKWBCePEurxoo9 LXB/eFppNRoIIuxjnpJJAfAbopW3weG+IhGWOdIbBupkV1mDYKBGzIsYBePi5kSd Oujy4vea1Si1/P4ZsE9ZhgqYJZlGN3O+tg58bA6v9VRFxrgw/fkhT6ju/mjxv8rm lDtnNcQTS4lJv18hiYU0Mm+zUU4CDMkRWGwd/wZzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0fjVuGQ3I0PvPRFShZ0QR0y+kUQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzExYjZkOGQ1LTFjZmMtNDhhZS04MTU2LTMzMmRkZTkyZDUyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUQOKAwDQYJKoZIhvcNAQELBQADggEBAK/ekccsWt0NNuakIX16K4S3scYT hqRMEM5PaXYQK1Z9vD6oi71BtWPE/LhyuGuhOpKVm8UZOpG2hldbXgNgE4hVa6iY sH4g1fdc5CD2qW7K1ErK3NhzA5bF+EUYzsfKHmQQNy8auWvlKzQ+fkSPeTPFRXFr zFAx2AAjo4XHMNL47jwHe20oIDAiGITmyHkgia1dZ3ypLxXVLmYEDMmefe2Ucb/z yzjit5C7w4QXHGIXraigSSmnnHG6sVoVjo7yCIqkOsVrbKsTOS2qcJ68ek14a4DQ lLZifJMIzZmvr+d1+MHM07OxlLOeOR5Y4bVYn70se3mhatW8/7HUcR7frt0= -----END CERTIFICATE-----Generated at Wed Aug 6 05:58:42 2025 by rpki-client