$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65a01aad-4382-4698-b0f7-79abb6735744.roa File: 65a01aad-4382-4698-b0f7-79abb6735744.roa (raw, json) Hash identifier: WZ69cAAau75jTk4C6D6kQJoHMSaQOi8vUDaQYAtJFlE= Subject key identifier: C0:85:14:93:D0:7E:02:2E:CF:6D:57:52:DF:CE:CC:D2:21:DA:F8:F6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E79BCFBCAA102DBDF791C2309DDEB41FE3C2A9D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65a01aad-4382-4698-b0f7-79abb6735744.roa Signing time: Fri 08 Aug 2025 00:01:51 +0000 ROA not before: Fri 08 Aug 2025 00:01:51 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.57.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:79:bc:fb:ca:a1:02:db:df:79:1c:23:09:dd:eb:41:fe:3c:2a:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:01:51 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=0f945824eeb29d67ac9714f7a0d67b862180137565670b6f26aab4dcdc4d1952, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:49:cd:af:41:ce:07:c6:b0:d8:16:bd:4c:fc: f6:11:56:7e:02:c4:e2:b4:01:00:0f:58:41:66:95: 12:ea:8e:0b:1e:82:12:dc:f2:bf:60:a4:49:72:56: 07:3a:e8:7c:05:a6:6e:7f:03:91:da:c5:14:15:4e: fe:ed:9b:a5:f2:be:31:43:74:e6:50:ee:87:ba:90: 4b:09:49:5e:8d:74:5d:6d:14:9d:9d:17:27:75:61: 6c:91:20:81:d4:28:7e:d7:4b:c0:fb:15:b9:3e:7d: e2:9b:ac:8a:60:0f:0f:6a:f5:8e:0a:06:80:f0:08: f2:a3:86:ed:58:cc:48:dd:16:a8:67:2e:62:27:6e: fb:52:eb:8b:ec:80:a7:0e:e6:e6:c6:17:98:94:f1: e5:26:e6:29:ce:ca:0f:d9:e6:ea:12:b2:d8:13:6f: fd:58:a5:4c:b9:d4:ca:84:c9:95:e5:c4:94:47:57: ad:f3:1f:68:33:27:68:05:30:c3:7b:4a:95:13:a0: 4a:b9:f7:c8:37:a2:a9:c9:42:71:35:4b:b8:32:d0: 52:8d:46:cb:e5:b4:9e:ce:9e:05:67:cc:ab:86:68: 0a:ae:77:a2:e1:f5:3c:d1:38:47:19:1e:ac:c0:27: 85:00:79:3c:ed:a9:bc:f4:0a:29:46:29:02:35:fb: 00:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:85:14:93:D0:7E:02:2E:CF:6D:57:52:DF:CE:CC:D2:21:DA:F8:F6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65a01aad-4382-4698-b0f7-79abb6735744.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.57.0.0/18 Signature Algorithm: sha256WithRSAEncryption 68:11:28:5c:ce:99:aa:e7:70:9d:a8:6c:93:0e:d6:8e:dd:e4: 1f:a5:17:6a:a3:1f:98:f4:20:a3:b7:36:36:22:f4:02:87:57: 3d:bb:06:c2:75:15:04:39:41:0c:54:64:c0:95:e0:b3:5c:11: 6e:b9:70:be:42:04:35:43:8d:c1:98:c6:7b:70:63:ba:94:ec: ba:a7:c7:2d:35:9e:2c:e4:1a:a5:d8:88:79:43:da:b2:ac:58: 3a:a3:2f:c5:e4:12:fb:c8:62:29:4f:61:bb:5c:f3:09:23:6d: 00:0c:b3:b4:83:c4:c7:fd:43:e6:0b:a0:4f:24:f5:8a:26:f1: 88:7d:4f:fa:56:36:79:1e:74:4d:1e:7c:c9:90:40:a2:71:c5: f5:c7:81:b4:1c:5f:6e:f2:85:11:a8:81:fa:d7:8e:e6:fd:c4: 9b:9f:e8:11:27:c3:14:04:cf:f8:04:73:24:34:66:fc:b2:81: 44:b7:d0:b8:4b:13:cf:1a:51:98:0b:92:78:3f:33:a7:ba:7b: f1:e6:61:ab:86:41:be:ed:9c:be:ee:9b:4d:75:68:ad:d0:dd: a2:0e:09:c4:70:28:65:be:e8:f1:b1:72:01:f4:c8:04:bd:35: e3:35:12:8c:98:2d:50:ce:86:b1:b6:92:96:3a:b9:bb:6b:cc: ec:ad:25:2b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULnm8+8qhAtvfeRwjCd3rQf48Kp0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAwMTUxWhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZjk0NTgyNGVlYjI5ZDY3YWM5NzE0ZjdhMGQ2N2I4NjIx ODAxMzc1NjU2NzBiNmYyNmFhYjRkY2RjNGQxOTUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWSc2vQc4HxrDYFr1M/PYRVn4CxOK0AQAPWEFmlRLqjgse ghLc8r9gpElyVgc66HwFpm5/A5HaxRQVTv7tm6XyvjFDdOZQ7oe6kEsJSV6NdF1t FJ2dFyd1YWyRIIHUKH7XS8D7Fbk+feKbrIpgDw9q9Y4KBoDwCPKjhu1YzEjdFqhn LmInbvtS64vsgKcO5ubGF5iU8eUm5inOyg/Z5uoSstgTb/1YpUy51MqEyZXlxJRH V63zH2gzJ2gFMMN7SpUToEq598g3oqnJQnE1S7gy0FKNRsvltJ7OngVnzKuGaAqu d6Lh9TzROEcZHqzAJ4UAeTztqbz0CilGKQI1+wATAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwIUUk9B+Ai7PbVdS387M0iHa+PYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1YTAxYWFkLTQzODItNDY5OC1iMGY3LTc5YWJiNjczNTc0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYQOQAwDQYJKoZIhvcNAQELBQADggEBAGgRKFzOmarncJ2obJMO1o7d5B+l F2qjH5j0IKO3NjYi9AKHVz27BsJ1FQQ5QQxUZMCV4LNcEW65cL5CBDVDjcGYxntw Y7qU7Lqnxy01nizkGqXYiHlD2rKsWDqjL8XkEvvIYilPYbtc8wkjbQAMs7SDxMf9 Q+YLoE8k9Yom8Yh9T/pWNnkedE0efMmQQKJxxfXHgbQcX27yhRGogfrXjub9xJuf 6BEnwxQEz/gEcyQ0ZvyygUS30LhLE88aUZgLkng/M6e6e/HmYauGQb7tnL7um011 aK3Q3aIOCcRwKGW+6PGxcgH0yAS9NeM1EoyYLVDOhrG2kpY6ubtrzOytJSs= -----END CERTIFICATE-----Generated at Fri Aug 8 21:03:16 2025 by rpki-client