$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cfc7c17-cd85-463f-abbc-88fa8bb68af4.roa File: 3cfc7c17-cd85-463f-abbc-88fa8bb68af4.roa (raw, json) Hash identifier: R/A1y7q+j8el96e283//5/jyIK10jQXCilgEJPsTqH4= Subject key identifier: 96:3A:5F:00:38:FC:DE:AC:CE:76:62:04:3C:65:8D:81:98:7C:E0:A9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2ADA594B4E5C072A58C5D23786FFFCE0BDACE965 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cfc7c17-cd85-463f-abbc-88fa8bb68af4.roa Signing time: Sat 02 Aug 2025 00:40:23 +0000 ROA not before: Sat 02 Aug 2025 00:40:23 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.56.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:da:59:4b:4e:5c:07:2a:58:c5:d2:37:86:ff:fc:e0:bd:ac:e9:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:40:23 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=08e4bbac9e4323a20f820533e30abdde427b0b4720c5f1a3d71d913e3dbb7e87, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:89:a8:00:fc:9e:f4:12:9c:33:d5:1c:37:ed: 46:ec:5b:37:91:63:49:fe:d3:7a:72:1b:71:62:a3: 22:31:d1:29:0e:b8:68:9b:eb:c0:ef:0b:88:0d:d2: c7:71:1e:40:db:9c:50:7c:f0:58:47:a5:5c:86:0c: b8:cb:37:77:3a:df:39:04:45:8f:57:89:72:3f:d5: 35:c3:3f:b1:41:ed:ff:be:0f:a6:26:82:36:a1:7f: ad:19:b4:bf:e8:31:43:39:4c:29:18:83:5e:19:bf: cb:57:db:a6:7f:13:44:79:3f:5e:fc:f2:57:82:77: d7:ee:ec:68:9e:62:ba:fe:91:60:43:60:92:81:56: 7c:5f:32:4a:51:1d:96:bb:f9:af:a7:ea:b5:13:95: ae:fb:f2:bb:73:4e:62:4f:23:0b:57:8c:48:a4:76: 9e:83:5e:02:d8:cc:78:00:7d:c8:a4:10:36:d5:06: 64:eb:98:76:ae:6b:3b:2c:71:48:cc:5c:8c:f0:8d: 9a:08:59:b4:2d:3e:52:aa:21:f5:4f:02:d9:8f:51: 99:05:ed:f5:38:2e:8d:3d:3d:b8:6e:2a:9c:c9:8d: ec:b8:6b:81:67:47:0e:64:a9:7b:d2:aa:bd:a1:7c: 46:22:5f:bf:63:41:2d:06:90:9e:96:be:77:c5:0b: 6d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:3A:5F:00:38:FC:DE:AC:CE:76:62:04:3C:65:8D:81:98:7C:E0:A9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cfc7c17-cd85-463f-abbc-88fa8bb68af4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.56.128.0/18 Signature Algorithm: sha256WithRSAEncryption 4d:c5:7f:3c:a3:6d:ca:e7:42:e5:5e:07:6d:58:e0:dc:39:26: d2:ba:2c:3a:af:5b:d2:1f:3c:7d:3e:ea:ef:1b:8b:4e:fd:f0: 28:02:37:1b:f8:56:31:de:dd:4c:67:53:3e:11:5a:16:fb:e5: 65:8b:3b:82:66:43:68:a1:1f:53:bf:05:71:14:a1:90:82:39: 9f:c4:16:9b:de:c5:19:0a:0e:c8:a5:8c:48:94:2f:dd:2e:53: 88:ec:8f:b5:f2:e7:24:a3:fe:0e:d8:87:99:0e:14:cc:5b:6b: 05:7d:b6:16:01:ac:ec:ed:2d:91:77:d6:a5:33:74:7c:ce:76: 2b:02:52:2f:4d:28:e0:14:d0:6f:c2:95:76:a4:61:42:05:42: df:21:8a:66:2c:b4:0d:1d:3a:7d:44:b8:1d:dd:91:50:68:a9: bb:0d:0e:c7:3c:8e:b0:05:41:60:96:c2:af:ed:d7:10:4a:cb: 19:31:67:76:4a:e5:83:d8:4c:f3:69:ec:8b:90:ef:5c:18:a2: 8e:64:d1:90:bf:15:13:1b:a7:15:66:3b:cf:e9:2b:fa:2e:7f: e8:1a:e6:83:02:ed:3c:28:83:7b:05:ef:65:0c:91:80:52:9b: c7:e4:f7:15:2f:68:34:de:99:a1:d3:e6:11:88:a1:cb:b7:5d: 1e:f7:a3:7e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKtpZS05cBypYxdI3hv/84L2s6WUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDA0MDIzWhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOGU0YmJhYzllNDMyM2EyMGY4MjA1MzNlMzBhYmRkZTQy N2IwYjQ3MjBjNWYxYTNkNzFkOTEzZTNkYmI3ZTg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBiagA/J70Epwz1Rw37UbsWzeRY0n+03pyG3FioyIx0SkO uGib68DvC4gN0sdxHkDbnFB88FhHpVyGDLjLN3c63zkERY9XiXI/1TXDP7FB7f++ D6Ymgjahf60ZtL/oMUM5TCkYg14Zv8tX26Z/E0R5P1788leCd9fu7GieYrr+kWBD YJKBVnxfMkpRHZa7+a+n6rUTla778rtzTmJPIwtXjEikdp6DXgLYzHgAfcikEDbV BmTrmHauazsscUjMXIzwjZoIWbQtPlKqIfVPAtmPUZkF7fU4Lo09PbhuKpzJjey4 a4FnRw5kqXvSqr2hfEYiX79jQS0GkJ6WvnfFC23ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUljpfADj83qzOdmIEPGWNgZh84KkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjZmM3YzE3LWNkODUtNDYzZi1hYmJjLTg4ZmE4YmI2OGFmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYQOIAwDQYJKoZIhvcNAQELBQADggEBAE3FfzyjbcrnQuVeB21Y4Nw5JtK6 LDqvW9IfPH0+6u8bi0798CgCNxv4VjHe3UxnUz4RWhb75WWLO4JmQ2ihH1O/BXEU oZCCOZ/EFpvexRkKDsiljEiUL90uU4jsj7Xy5ySj/g7Yh5kOFMxbawV9thYBrOzt LZF31qUzdHzOdisCUi9NKOAU0G/ClXakYUIFQt8himYstA0dOn1EuB3dkVBoqbsN Dsc8jrAFQWCWwq/t1xBKyxkxZ3ZK5YPYTPNp7IuQ71wYoo5k0ZC/FRMbpxVmO8/p K/ouf+ga5oMC7Twog3sF72UMkYBSm8fk9xUvaDTemaHT5hGIocu3XR73o34= -----END CERTIFICATE-----Generated at Mon Aug 4 22:20:14 2025 by rpki-client