$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/158b805b-2506-47c4-a087-7b0accaf249e.roa File: 158b805b-2506-47c4-a087-7b0accaf249e.roa (raw, json) Hash identifier: yg5WgSUbA72osPJwWcTq3KdrQh3H6e5Om4MRm9yuqWc= Subject key identifier: 62:7A:E8:37:6A:86:E2:EB:A3:E1:89:99:49:A5:B2:CB:6D:E6:CF:E4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 272614EAC1E3ED95E335B8D01F4B416DFE0AFB01 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/158b805b-2506-47c4-a087-7b0accaf249e.roa Signing time: Wed 06 Aug 2025 00:10:26 +0000 ROA not before: Wed 06 Aug 2025 00:10:26 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.71.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:26:14:ea:c1:e3:ed:95:e3:35:b8:d0:1f:4b:41:6d:fe:0a:fb:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 6 00:10:26 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=3a59b65f9ccadb9c94549234dcf4825a1ba59e142399df588730a09b871cbe74, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d2:3e:74:68:c3:a9:ce:18:2e:69:be:b9:d9: 8e:37:94:b6:ea:f3:b9:95:84:49:04:d0:3f:2c:71: 72:7a:0d:56:1a:8e:20:47:1b:b9:a0:b4:e4:72:ae: 78:fc:42:0d:32:d1:1c:7e:68:c6:4f:3c:2b:cf:4d: ce:96:c2:5b:c7:28:01:62:8a:8f:50:71:98:87:b4: 75:83:9b:24:ed:ea:02:0a:80:43:a4:37:ee:e7:65: f1:89:c6:9a:5a:49:37:0f:d7:dd:b4:c0:58:ab:73: 2f:9f:51:a4:21:af:b5:d1:74:05:a4:cd:6c:13:ff: 10:52:f9:b0:d5:82:31:08:aa:31:a1:bc:d7:5d:9a: c1:21:b2:e8:1d:9b:b3:75:9b:d9:2d:02:43:4e:43: 4c:ad:31:89:85:66:58:2e:47:0d:ea:81:bd:a3:16: 23:b6:7c:04:3c:3e:fa:75:66:aa:35:00:2b:63:22: f1:4c:3f:01:87:10:1d:04:c5:7c:f2:bc:a6:06:02: 2e:45:95:a4:b8:a5:d6:41:53:cb:c9:56:41:97:33: a2:e4:65:3c:c7:a6:c0:57:66:93:5c:ce:84:fc:db: 79:e5:1e:b6:71:8a:ce:8a:40:47:45:0d:f4:ec:a6: af:7a:52:73:61:ab:df:95:d6:02:3a:27:ec:03:83: d0:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:7A:E8:37:6A:86:E2:EB:A3:E1:89:99:49:A5:B2:CB:6D:E6:CF:E4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/158b805b-2506-47c4-a087-7b0accaf249e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.71.32.0/19 Signature Algorithm: sha256WithRSAEncryption 35:64:89:39:49:71:a1:83:46:83:53:5a:db:df:93:71:a2:d1: 68:84:e3:a9:a7:f9:48:ce:8d:32:c9:d9:aa:3b:41:82:2a:09: d8:af:f0:78:9b:7f:80:82:cb:b8:a1:85:47:ce:e8:5f:fb:8a: 39:75:f4:cf:24:61:28:14:3c:84:6c:be:f9:dc:05:0b:f7:5f: 3a:43:9e:ac:d0:33:e1:43:79:68:c9:22:c1:1c:7f:e1:e6:0d: 3b:67:39:8c:a8:7d:a9:f0:51:11:40:37:e7:58:80:d6:8b:72: e8:e9:49:1e:d0:9a:0c:55:0e:b2:ce:af:9a:a3:a4:2a:3e:ae: ce:97:76:69:26:48:f8:25:78:5d:39:29:26:3a:55:ab:50:24: 2b:f9:79:38:0a:d0:c7:3d:5a:b5:aa:60:01:5e:20:61:00:25: 68:5c:67:d8:8f:1a:c5:4c:0f:fd:7c:5c:1c:4c:fd:2f:09:eb: 97:de:90:1e:84:39:f3:87:9e:1d:a1:f6:48:b8:6d:35:b0:38: 75:4a:ab:2f:ba:e8:83:bf:f9:33:3b:04:f7:57:85:11:b3:ff: c4:14:20:af:c3:4d:ac:98:51:c4:70:6e:28:a5:f8:5b:bf:86: 27:27:35:d2:58:91:fd:75:22:bb:c3:1d:ac:3b:d1:ff:ce:87: 43:7a:d7:f6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJyYU6sHj7ZXjNbjQH0tBbf4K+wEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA2MDAxMDI2WhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTU5YjY1ZjljY2FkYjljOTQ1NDkyMzRkY2Y0ODI1YTFi YTU5ZTE0MjM5OWRmNTg4NzMwYTA5Yjg3MWNiZTc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDh0j50aMOpzhguab652Y43lLbq87mVhEkE0D8scXJ6DVYa jiBHG7mgtORyrnj8Qg0y0Rx+aMZPPCvPTc6WwlvHKAFiio9QcZiHtHWDmyTt6gIK gEOkN+7nZfGJxppaSTcP1920wFircy+fUaQhr7XRdAWkzWwT/xBS+bDVgjEIqjGh vNddmsEhsugdm7N1m9ktAkNOQ0ytMYmFZlguRw3qgb2jFiO2fAQ8Pvp1Zqo1ACtj IvFMPwGHEB0ExXzyvKYGAi5FlaS4pdZBU8vJVkGXM6LkZTzHpsBXZpNczoT823nl HrZxis6KQEdFDfTspq96UnNhq9+V1gI6J+wDg9AxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYnroN2qG4uuj4YmZSaWyy23mz+QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1OGI4MDViLTI1MDYtNDdjNC1hMDg3LTdiMGFjY2FmMjQ5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUQRyAwDQYJKoZIhvcNAQELBQADggEBADVkiTlJcaGDRoNTWtvfk3Gi0WiE 46mn+UjOjTLJ2ao7QYIqCdiv8Hibf4CCy7ihhUfO6F/7ijl19M8kYSgUPIRsvvnc BQv3XzpDnqzQM+FDeWjJIsEcf+HmDTtnOYyofanwURFAN+dYgNaLcujpSR7QmgxV DrLOr5qjpCo+rs6XdmkmSPgleF05KSY6VatQJCv5eTgK0Mc9WrWqYAFeIGEAJWhc Z9iPGsVMD/18XBxM/S8J65fekB6EOfOHnh2h9ki4bTWwOHVKqy+66IO/+TM7BPdX hRGz/8QUIK/DTayYUcRwbiil+Fu/hicnNdJYkf11IrvDHaw70f/Oh0N61/Y= -----END CERTIFICATE-----Generated at Thu Aug 7 04:38:52 2025 by rpki-client