$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c62399b-5fa5-4a29-9b29-65771416f2a5.roa File: 7c62399b-5fa5-4a29-9b29-65771416f2a5.roa (raw, json) Hash identifier: uCgrfgDi3AsOIcro1zMrpyiJ2JmxDBCbtDmgQ83+u9o= Subject key identifier: C0:20:DE:BE:C5:40:FA:90:EC:6D:7C:D2:E9:43:F4:C2:AC:B8:33:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FF897F370BEFD2579E7079AB24CA3E16FF74EF6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c62399b-5fa5-4a29-9b29-65771416f2a5.roa Signing time: Fri 08 Aug 2025 00:00:38 +0000 ROA not before: Fri 08 Aug 2025 00:00:38 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.29.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:f8:97:f3:70:be:fd:25:79:e7:07:9a:b2:4c:a3:e1:6f:f7:4e:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:00:38 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=693de7a025843cda74cafe6db966fd9780bc9074185769c013105e6d68f82ba6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f1:00:8f:c1:ae:9b:f6:e0:75:00:68:95:cb: ad:51:98:f0:9d:15:90:c9:58:74:c5:7a:60:85:f0: 29:ee:5e:cd:8e:9e:5c:48:ba:d7:3c:02:58:88:11: 88:34:63:75:8b:3b:dd:33:c2:11:af:32:73:f3:12: 9d:70:9e:2f:53:fe:2d:ac:78:97:f2:c4:43:2b:11: 5d:12:98:ae:66:0d:b0:54:16:d3:f7:90:52:9b:07: 40:9d:00:d3:76:88:37:05:9b:4c:21:0a:dd:97:ce: 6a:54:12:e1:6b:b6:91:67:09:2a:24:73:20:9d:fc: 5f:fc:04:66:f0:11:7e:86:d2:b6:f2:16:fb:c8:a7: 3d:7d:90:75:21:ef:f3:42:94:61:81:58:4b:8e:75: 51:0a:96:03:cd:be:f9:a7:0f:af:9f:c7:fc:23:7c: 1e:85:a6:e7:f2:8e:3c:21:1c:3f:95:73:5d:ce:e3: fd:43:e3:25:01:c8:4c:93:d7:10:35:a8:7a:9f:44: d8:84:ab:81:cf:9e:c3:04:05:52:8f:3f:4f:95:b5: 2c:24:01:8f:46:35:75:30:d5:82:85:8f:ab:c5:f5: d8:81:ac:12:9f:b0:27:7e:1a:a9:26:23:10:96:56: 76:e5:e6:b8:94:1f:75:d2:d8:05:cc:7f:22:4a:03: 76:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:20:DE:BE:C5:40:FA:90:EC:6D:7C:D2:E9:43:F4:C2:AC:B8:33:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c62399b-5fa5-4a29-9b29-65771416f2a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.29.0.0/16 Signature Algorithm: sha256WithRSAEncryption 79:55:59:f5:7a:b0:b6:53:ed:37:a4:00:5b:1e:87:7c:b5:f8: 07:90:45:9f:b5:08:00:6c:bc:a9:e2:2b:89:12:99:27:80:04: ee:81:ea:29:25:4e:65:2c:e7:cb:4e:c4:10:68:73:67:3e:84: 38:20:0b:25:22:41:87:b3:a3:21:6b:8d:ef:bb:35:15:89:d1: fb:37:90:e7:fa:0d:61:02:ea:71:58:28:c9:bc:59:e9:4a:a6: 6d:b5:f7:8e:3e:5d:dc:50:11:fe:db:5a:e7:9c:90:17:f4:79: 27:5c:be:98:66:7f:c3:90:ba:1f:13:c7:83:00:14:b2:e9:95: 16:0f:a8:0d:59:8c:5f:17:9a:55:af:3f:72:f9:c1:8b:47:a2: 6d:c4:4b:21:e7:04:75:e2:36:6b:24:ab:33:86:f6:55:25:22: 1a:9d:b2:fb:03:dd:ec:28:7f:74:bb:7c:8b:22:30:27:cc:7e: 0f:4e:bf:22:9f:52:2e:13:6a:38:cf:81:db:24:c4:57:5f:6f: 3d:5d:d5:a4:60:a4:9c:e3:03:94:90:7c:49:d5:5c:c7:30:8d: d4:f6:16:28:f8:fe:88:74:e6:c2:a8:de:30:09:9e:67:eb:ed: 05:b0:57:f4:d2:f7:ea:47:87:c9:3f:21:c3:2a:f9:2b:c3:3f: 6f:a6:64:3a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUD/iX83C+/SV55weaskyj4W/3TvYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAwMDM4WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTNkZTdhMDI1ODQzY2RhNzRjYWZlNmRiOTY2ZmQ5Nzgw YmM5MDc0MTg1NzY5YzAxMzEwNWU2ZDY4ZjgyYmE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDE8QCPwa6b9uB1AGiVy61RmPCdFZDJWHTFemCF8CnuXs2O nlxIutc8AliIEYg0Y3WLO90zwhGvMnPzEp1wni9T/i2seJfyxEMrEV0SmK5mDbBU FtP3kFKbB0CdANN2iDcFm0whCt2XzmpUEuFrtpFnCSokcyCd/F/8BGbwEX6G0rby FvvIpz19kHUh7/NClGGBWEuOdVEKlgPNvvmnD6+fx/wjfB6FpufyjjwhHD+Vc13O 4/1D4yUByEyT1xA1qHqfRNiEq4HPnsMEBVKPP0+VtSwkAY9GNXUw1YKFj6vF9diB rBKfsCd+GqkmIxCWVnbl5riUH3XS2AXMfyJKA3b7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwCDevsVA+pDsbXzS6UP0wqy4Mx8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjNjIzOTliLTVmYTUtNGEyOS05YjI5LTY1NzcxNDE2ZjJhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQHTANBgkqhkiG9w0BAQsFAAOCAQEAeVVZ9XqwtlPtN6QAWx6HfLX4B5BF n7UIAGy8qeIriRKZJ4AE7oHqKSVOZSzny07EEGhzZz6EOCALJSJBh7OjIWuN77s1 FYnR+zeQ5/oNYQLqcVgoybxZ6UqmbbX3jj5d3FAR/tta55yQF/R5J1y+mGZ/w5C6 HxPHgwAUsumVFg+oDVmMXxeaVa8/cvnBi0eibcRLIecEdeI2aySrM4b2VSUiGp2y +wPd7Ch/dLt8iyIwJ8x+D06/Ip9SLhNqOM+B2yTEV19vPV3VpGCknOMDlJB8SdVc xzCN1PYWKPj+iHTmwqjeMAmeZ+vtBbBX9NL36keHyT8hwyr5K8M/b6ZkOg== -----END CERTIFICATE-----Generated at Sat Aug 9 22:45:48 2025 by rpki-client