$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18b90430-ec8d-405b-a438-dcdab8639f31.roa File: 18b90430-ec8d-405b-a438-dcdab8639f31.roa (raw, json) Hash identifier: BigCbKCDRKnbu90vbAOw/E9FdJEWdGW+HcM5XUG4fj0= Subject key identifier: CF:E0:90:82:AD:54:02:42:18:3E:2A:73:4A:CB:8B:DB:9F:E8:1E:91 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5939F2FAAA5E3B1D91252DACCCF783D29331757F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18b90430-ec8d-405b-a438-dcdab8639f31.roa Signing time: Wed 23 Jul 2025 00:11:01 +0000 ROA not before: Wed 23 Jul 2025 00:11:01 +0000 ROA not after: Wed 27 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 16.15.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:39:f2:fa:aa:5e:3b:1d:91:25:2d:ac:cc:f7:83:d2:93:31:75:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 23 00:11:01 2025 GMT Not After : Aug 27 23:59:59 2025 GMT Subject: serialNumber=d6d80e030891dd58f513ce8bd2512071fb96c4dedd1acc27c267c5654c03f2ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d6:61:d2:7d:10:6e:c5:d2:fb:48:50:75:45: 5b:12:83:13:34:42:27:bc:1d:da:76:56:2f:b9:cf: cb:f4:9a:5e:b2:6b:6f:bd:57:24:d7:50:dc:2a:5b: 07:db:76:3e:51:70:19:42:e9:94:c5:4d:c5:f6:8a: fd:d6:5d:d0:df:5a:1e:de:63:36:e6:3f:bb:f6:11: 88:5a:66:bd:40:8f:f3:a2:f0:a3:48:c2:0e:e8:67: 66:4a:f9:1a:28:3a:76:64:46:90:03:27:84:df:2e: 66:6a:0d:67:3d:c6:67:17:6c:2d:0d:02:8c:85:28: 7c:d3:53:10:8b:84:33:5e:a3:52:c2:7f:b6:fe:f7: 82:c9:77:f6:c8:7b:37:db:88:97:72:88:89:f1:01: 30:b6:3e:84:b1:4f:f8:7f:75:74:71:8f:34:d6:7b: 84:1b:3b:ef:f3:dc:79:5f:4c:c5:38:12:53:d9:08: 9e:15:cd:47:19:5f:a1:49:13:06:2e:da:f6:b8:3c: b7:d6:6b:8c:64:4c:5e:e1:fc:41:d6:74:78:03:e6: 0a:b4:9a:03:57:2d:94:70:c5:f0:57:7a:08:41:58: 59:16:fd:08:8e:6d:d2:6d:dd:14:3a:6e:ba:0a:ad: 9d:86:6e:57:c8:e3:e9:b4:8e:91:3b:48:5f:31:bf: 7f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E0:90:82:AD:54:02:42:18:3E:2A:73:4A:CB:8B:DB:9F:E8:1E:91 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18b90430-ec8d-405b-a438-dcdab8639f31.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.15.176.0/20 Signature Algorithm: sha256WithRSAEncryption 69:a8:c1:d9:ac:f4:13:fa:c2:8f:53:8e:23:47:87:7f:b4:a8: 74:6f:25:e8:b6:1c:ad:eb:e8:22:df:f3:d0:f8:a0:e9:23:52: ea:40:19:3c:d0:37:61:74:ce:d2:68:24:01:11:d1:14:21:e1: 8c:14:7c:50:8e:58:9f:32:9d:84:e4:b7:d5:c8:cb:84:33:d2: 6c:94:3b:45:8b:25:f2:69:2c:c5:28:a9:e4:e7:eb:4c:6b:f5: 24:36:0b:dc:5f:9c:b7:d8:52:8b:94:a2:4b:0f:a5:e5:5d:c7: 62:f4:3c:b3:8b:a5:15:c7:a2:da:7e:6e:f2:8e:e0:f0:09:85: 4c:59:d6:12:db:a1:59:b7:d7:da:3e:70:03:3c:dc:a7:ba:ec: a2:f6:00:0c:1e:9a:c6:61:18:9c:35:dc:23:21:cb:23:a6:4e: 27:eb:e9:18:27:8e:db:23:f5:55:ce:95:08:85:1f:15:cb:35: 8d:88:9e:c4:72:ac:93:d8:f5:ea:d6:9f:d1:23:5a:dd:72:61: 3c:16:80:4d:53:64:5e:cb:9d:52:08:1c:7e:56:0f:02:d9:df: a3:f6:cc:f3:c7:40:21:3d:a3:26:13:1a:30:18:e7:40:5e:d5: 74:23:bc:71:4a:57:26:f2:42:93:e0:94:38:22:9c:41:fd:f0: b0:f9:49:5a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWTny+qpeOx2RJS2szPeD0pMxdX8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIzMDAxMTAxWhcNMjUwODI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNmQ4MGUwMzA4OTFkZDU4ZjUxM2NlOGJkMjUxMjA3MWZi OTZjNGRlZGQxYWNjMjdjMjY3YzU2NTRjMDNmMmNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCo1mHSfRBuxdL7SFB1RVsSgxM0Qie8Hdp2Vi+5z8v0ml6y a2+9VyTXUNwqWwfbdj5RcBlC6ZTFTcX2iv3WXdDfWh7eYzbmP7v2EYhaZr1Aj/Oi 8KNIwg7oZ2ZK+RooOnZkRpADJ4TfLmZqDWc9xmcXbC0NAoyFKHzTUxCLhDNeo1LC f7b+94LJd/bIezfbiJdyiInxATC2PoSxT/h/dXRxjzTWe4QbO+/z3HlfTMU4ElPZ CJ4VzUcZX6FJEwYu2va4PLfWa4xkTF7h/EHWdHgD5gq0mgNXLZRwxfBXeghBWFkW /QiObdJt3RQ6broKrZ2GblfI4+m0jpE7SF8xv3/JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUz+CQgq1UAkIYPipzSsuL25/oHpEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE4YjkwNDMwLWVjOGQtNDA1Yi1hNDM4LWRjZGFiODYzOWYzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQQD7AwDQYJKoZIhvcNAQELBQADggEBAGmowdms9BP6wo9TjiNHh3+0qHRv Jei2HK3r6CLf89D4oOkjUupAGTzQN2F0ztJoJAER0RQh4YwUfFCOWJ8ynYTkt9XI y4Qz0myUO0WLJfJpLMUoqeTn60xr9SQ2C9xfnLfYUouUoksPpeVdx2L0PLOLpRXH otp+bvKO4PAJhUxZ1hLboVm319o+cAM83Ke67KL2AAwemsZhGJw13CMhyyOmTifr 6Rgnjtsj9VXOlQiFHxXLNY2InsRyrJPY9erWn9EjWt1yYTwWgE1TZF7LnVIIHH5W DwLZ36P2zPPHQCE9oyYTGjAY50Be1XQjvHFKVybyQpPglDginEH98LD5SVo= -----END CERTIFICATE-----Generated at Wed Aug 6 13:17:50 2025 by rpki-client