$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c5d6cc1-b4cf-437c-af5e-1ba6fdd7c622.roa File: 1c5d6cc1-b4cf-437c-af5e-1ba6fdd7c622.roa (raw, json) Hash identifier: lJB5KBQi/Ho5B7zYdIuWJ3HupPhYyqRGXeybtk1DP4g= Subject key identifier: 42:9F:F4:F8:51:94:01:06:B0:12:50:4B:0A:22:6C:EB:39:B9:75:17 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7AC91A93830E3D7F406BD711B5E31605331C24F0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c5d6cc1-b4cf-437c-af5e-1ba6fdd7c622.roa Signing time: Sat 02 Aug 2025 00:40:18 +0000 ROA not before: Sat 02 Aug 2025 00:40:18 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.28.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:c9:1a:93:83:0e:3d:7f:40:6b:d7:11:b5:e3:16:05:33:1c:24:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:40:18 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=2c8b8fde503df8a433f1b98f3b66a3ba90ff71f9193cf8671a71bfa9b81c524f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:d6:73:22:22:0d:36:be:7f:7b:ce:ac:55:60: ce:44:30:ca:78:ea:2c:e7:fb:d1:cd:38:be:60:89: 5f:9c:6f:35:63:9e:76:85:79:c5:23:4e:67:ae:99: 8c:dc:09:32:ef:8d:98:8e:4a:7c:5c:52:21:5b:6c: 8b:16:b8:33:17:26:08:03:bd:bc:7c:89:b9:c2:4a: c8:96:73:07:c5:ff:e9:08:d9:ae:db:20:fa:b6:80: 3b:7a:d3:ed:b7:a0:da:9d:54:e8:95:d5:ee:c5:f5: 32:93:76:96:07:73:ae:e7:58:62:b0:86:80:9a:06: 88:f6:ef:3f:62:e2:ff:1a:42:6b:0f:3a:43:e1:36: 7a:e9:cc:b6:55:5e:9c:bf:a0:d8:69:f7:bd:fc:34: 81:8d:5b:35:1c:9f:d0:e9:95:8a:0a:6e:29:14:05: 68:87:f5:ef:7d:ba:9d:78:66:c4:48:ab:ac:e0:b0: 84:53:36:94:3b:ef:4c:4f:44:40:31:25:a6:ae:c5: 6b:75:eb:4b:8c:9f:4a:e0:85:50:d3:74:a3:ec:cf: 2a:e4:9b:7e:c8:32:ab:5e:76:87:fc:4c:f1:b6:56: d6:38:77:54:1c:c3:d8:1d:dc:b6:4b:bf:75:1e:eb: c2:d0:2b:dd:91:24:47:e3:96:01:63:0d:20:49:39: 87:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:9F:F4:F8:51:94:01:06:B0:12:50:4B:0A:22:6C:EB:39:B9:75:17 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c5d6cc1-b4cf-437c-af5e-1ba6fdd7c622.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.28.0.0/16 Signature Algorithm: sha256WithRSAEncryption bb:87:8f:3d:d5:82:3f:8c:a7:00:c6:00:96:2e:6d:55:10:dd: 86:5a:f1:32:66:46:c5:a3:f8:02:43:78:17:e5:b9:d0:52:6a: 5f:de:db:d3:46:50:80:28:8f:1f:bd:a1:3c:f0:87:61:42:93: bf:c4:0a:e9:48:4c:42:a9:53:95:85:00:a0:35:57:52:3e:8c: c7:da:4a:18:1e:2b:2f:60:50:1a:1a:e9:9d:3b:57:73:c0:9b: 02:ff:c3:8e:8b:5b:cd:ab:bc:44:20:ae:65:86:5c:d4:b8:57: af:58:59:c8:39:aa:1b:b6:2b:9e:79:97:5c:3f:be:01:45:fa: 41:a3:f9:e9:ca:de:ea:3d:dc:55:d5:19:be:86:e8:8b:cf:45: dc:15:bf:e4:a1:b3:ce:a9:bd:4c:6e:b1:7e:5e:66:b6:92:5f: fc:d2:56:e0:17:4d:9a:62:01:70:18:2c:ff:a9:fc:97:a3:38: 3a:93:8e:ef:6b:14:e1:9d:c6:8d:1b:46:d4:95:f2:f7:a4:b6: 67:26:47:f4:91:84:67:1c:85:23:23:fb:ce:38:ce:1b:2a:15: 95:3b:2f:8f:58:ab:ab:17:c7:86:94:31:4b:5b:a0:cb:73:c0: 31:50:99:51:ba:05:28:07:bf:4e:e8:05:6e:b2:ea:6d:30:88: 15:76:51:1a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeskak4MOPX9Aa9cRteMWBTMcJPAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDA0MDE4WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzhiOGZkZTUwM2RmOGE0MzNmMWI5OGYzYjY2YTNiYTkw ZmY3MWY5MTkzY2Y4NjcxYTcxYmZhOWI4MWM1MjRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC71nMiIg02vn97zqxVYM5EMMp46izn+9HNOL5giV+cbzVj nnaFecUjTmeumYzcCTLvjZiOSnxcUiFbbIsWuDMXJggDvbx8ibnCSsiWcwfF/+kI 2a7bIPq2gDt60+23oNqdVOiV1e7F9TKTdpYHc67nWGKwhoCaBoj27z9i4v8aQmsP OkPhNnrpzLZVXpy/oNhp9738NIGNWzUcn9DplYoKbikUBWiH9e99up14ZsRIq6zg sIRTNpQ770xPREAxJaauxWt160uMn0rghVDTdKPszyrkm37IMqtedof8TPG2VtY4 d1Qcw9gd3LZLv3Ue68LQK92RJEfjlgFjDSBJOYdNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQp/0+FGUAQawElBLCiJs6zm5dRcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjNWQ2Y2MxLWI0Y2YtNDM3Yy1hZjVlLTFiYTZmZGQ3YzYyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQHDANBgkqhkiG9w0BAQsFAAOCAQEAu4ePPdWCP4ynAMYAli5tVRDdhlrx MmZGxaP4AkN4F+W50FJqX97b00ZQgCiPH72hPPCHYUKTv8QK6UhMQqlTlYUAoDVX Uj6Mx9pKGB4rL2BQGhrpnTtXc8CbAv/Djotbzau8RCCuZYZc1LhXr1hZyDmqG7Yr nnmXXD++AUX6QaP56cre6j3cVdUZvoboi89F3BW/5KGzzqm9TG6xfl5mtpJf/NJW 4BdNmmIBcBgs/6n8l6M4OpOO72sU4Z3GjRtG1JXy96S2ZyZH9JGEZxyFIyP7zjjO GyoVlTsvj1irqxfHhpQxS1ugy3PAMVCZUboFKAe/TugFbrLqbTCIFXZRGg== -----END CERTIFICATE-----Generated at Mon Aug 4 22:20:43 2025 by rpki-client