$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/662cd1e7-52b9-46fe-aded-bb1573a8af72.roa File: 662cd1e7-52b9-46fe-aded-bb1573a8af72.roa (raw, json) Hash identifier: +o59dNZyUtYhMrh28+MM8HUqIViF5h7Thgfqe45oZ+8= Subject key identifier: 31:31:6C:76:0B:94:5D:70:B2:2A:A4:69:AD:6B:FE:85:A2:45:2C:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 18640BB4F6C25B9D25EA4EFF2DB54DFBF9B24126 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/662cd1e7-52b9-46fe-aded-bb1573a8af72.roa Signing time: Sat 02 Aug 2025 00:41:54 +0000 ROA not before: Sat 02 Aug 2025 00:41:54 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.63.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:64:0b:b4:f6:c2:5b:9d:25:ea:4e:ff:2d:b5:4d:fb:f9:b2:41:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:41:54 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=2c562120c0ddfe32f5205d76f62445344672629c6012f36096aa07e23f2f7924, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:fe:8f:39:b8:ca:50:02:33:31:85:cf:ed:b0: d7:05:5a:0d:76:46:92:00:ac:eb:7f:7c:3a:5b:df: 6a:54:6a:58:32:f7:eb:c2:16:54:51:ca:e4:5e:f5: b3:f3:db:78:27:ee:06:f9:5c:c1:6e:f9:47:36:9b: 46:b1:55:74:5f:45:14:7e:89:d1:c1:a9:0d:5d:8a: ea:47:fd:ad:ca:63:1a:27:e1:a4:63:94:08:58:42: 90:cb:ba:d8:3b:76:92:be:fb:ca:e1:37:e3:4a:b7: b6:84:56:50:97:f6:19:60:18:ce:9a:61:cc:45:6f: 54:c6:18:83:58:33:11:0f:70:f3:b3:2f:93:2d:16: 35:d7:e8:45:33:c1:be:aa:21:13:61:ef:eb:b6:57: 14:79:d5:a1:97:e3:fd:36:0a:29:04:50:68:68:d8: 81:4e:f4:81:78:46:3b:60:f5:76:6f:4a:9c:a3:53: 1e:b5:90:a9:58:0e:f2:49:c1:2c:a0:94:ad:ca:21: cd:99:75:2a:cd:91:6c:2b:32:38:c9:29:f7:27:e1: 79:3c:a5:de:63:d2:bb:19:01:d6:b9:5c:a8:4c:34: 3a:93:52:be:1e:43:ba:93:6e:1b:1e:f8:6d:7b:c9: 3b:98:d5:a4:07:15:eb:62:c2:44:48:ec:2e:ca:b6: 0e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:31:6C:76:0B:94:5D:70:B2:2A:A4:69:AD:6B:FE:85:A2:45:2C:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/662cd1e7-52b9-46fe-aded-bb1573a8af72.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.63.88.0/22 Signature Algorithm: sha256WithRSAEncryption a6:fb:63:2d:d3:c5:02:06:a8:13:3e:bd:a0:bb:fc:f1:36:f1: e6:7f:cc:4f:f7:3e:a8:7d:63:c4:47:c3:25:c0:e3:7d:09:b2: 5c:84:22:81:2b:f7:65:7e:93:40:63:5e:74:ec:ee:87:80:54: bf:6f:54:70:be:3d:02:0c:0d:1c:3d:52:c3:3c:d9:ab:57:b3: ee:a5:e0:3e:0a:c9:6a:bf:eb:d9:ae:04:0d:dd:db:bd:04:bf: d9:fc:57:f6:d5:54:95:ce:b7:b9:db:a2:b1:58:a7:a4:1c:63: cd:bb:36:55:17:16:6f:00:46:83:cb:c8:9e:91:eb:e5:e6:be: 71:94:9d:70:93:c3:ba:09:66:0d:98:7a:3b:a7:57:c8:a1:41: c6:5f:5f:f7:0b:e1:5b:4b:81:f7:26:0e:0b:89:89:db:f1:f0: 50:39:1d:52:bb:15:7e:ec:d0:db:53:29:ba:d2:2d:4f:81:d7: 0a:8d:9d:85:17:e5:82:9c:69:5e:f9:73:81:97:e5:0b:d8:cb: b5:63:67:87:29:32:28:85:41:f9:8d:8a:e5:34:f1:07:20:49: 91:d7:43:34:f6:30:3d:f5:c3:70:0a:9d:65:fd:9d:15:a5:10: 39:12:83:29:4b:b3:e1:0c:77:ad:86:46:91:46:e5:db:e3:eb: b4:3e:13:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGGQLtPbCW50l6k7/LbVN+/myQSYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDA0MTU0WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzU2MjEyMGMwZGRmZTMyZjUyMDVkNzZmNjI0NDUzNDQ2 NzI2MjljNjAxMmYzNjA5NmFhMDdlMjNmMmY3OTI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDX/o85uMpQAjMxhc/tsNcFWg12RpIArOt/fDpb32pUalgy 9+vCFlRRyuRe9bPz23gn7gb5XMFu+Uc2m0axVXRfRRR+idHBqQ1diupH/a3KYxon 4aRjlAhYQpDLutg7dpK++8rhN+NKt7aEVlCX9hlgGM6aYcxFb1TGGINYMxEPcPOz L5MtFjXX6EUzwb6qIRNh7+u2VxR51aGX4/02CikEUGho2IFO9IF4Rjtg9XZvSpyj Ux61kKlYDvJJwSyglK3KIc2ZdSrNkWwrMjjJKfcn4Xk8pd5j0rsZAda5XKhMNDqT Ur4eQ7qTbhse+G17yTuY1aQHFetiwkRI7C7Ktg53AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMTFsdguUXXCyKqRprWv+haJFLMYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY2MmNkMWU3LTUyYjktNDZmZS1hZGVkLWJiMTU3M2E4YWY3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIQP1gwDQYJKoZIhvcNAQELBQADggEBAKb7Yy3TxQIGqBM+vaC7/PE28eZ/ zE/3Pqh9Y8RHwyXA430JslyEIoEr92V+k0BjXnTs7oeAVL9vVHC+PQIMDRw9UsM8 2atXs+6l4D4KyWq/69muBA3d270Ev9n8V/bVVJXOt7nborFYp6QcY827NlUXFm8A RoPLyJ6R6+XmvnGUnXCTw7oJZg2YejunV8ihQcZfX/cL4VtLgfcmDguJidvx8FA5 HVK7FX7s0NtTKbrSLU+B1wqNnYUX5YKcaV75c4GX5QvYy7VjZ4cpMiiFQfmNiuU0 8QcgSZHXQzT2MD31w3AKnWX9nRWlEDkSgylLs+EMd62GRpFG5dvj67Q+E6g= -----END CERTIFICATE-----Generated at Fri Aug 8 21:02:26 2025 by rpki-client