$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8eaa4749-a045-4880-ab8c-90d7c1406a2c.roa File: 8eaa4749-a045-4880-ab8c-90d7c1406a2c.roa (raw, json) Hash identifier: DrKgchEzQ9o3lfIw8fSppMhqycUSIsecj2GtfhtxJGs= Subject key identifier: 80:06:EF:D5:AD:18:06:39:02:2B:E5:51:EE:B6:47:07:81:D2:0D:BB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 53FAB30EF3CB6B10F643F0F4C82347556054E3BD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8eaa4749-a045-4880-ab8c-90d7c1406a2c.roa Signing time: Sat 02 Aug 2025 00:31:58 +0000 ROA not before: Sat 02 Aug 2025 00:31:58 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.184.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:fa:b3:0e:f3:cb:6b:10:f6:43:f0:f4:c8:23:47:55:60:54:e3:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:31:58 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=e2384b9eae01012028d18b346068d7af5fa6f726d2079ba0f31610c4f204f08d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:d4:76:45:76:4a:51:4a:f7:97:4d:76:0c:99: 89:09:13:b0:c1:22:46:87:65:19:0b:85:5c:bf:fe: 8f:ee:b0:97:4c:05:9b:6b:40:20:74:bf:43:09:78: d3:3f:33:bc:fe:af:35:04:0c:eb:a9:6e:dd:a0:1e: 63:3e:2f:e1:ec:ca:74:7d:a9:5b:46:72:65:e4:cf: e7:0a:a6:8c:fd:8d:07:32:51:be:d4:b9:1d:b6:d8: 12:8c:32:85:83:39:e9:71:c9:38:bb:7b:2f:23:16: a3:b5:3b:b8:b6:9b:52:1d:de:ee:42:b0:f1:34:7c: ac:06:8e:c9:66:dd:2d:08:89:d2:84:c2:41:eb:33: f5:40:41:3e:41:8f:1b:e3:6b:c3:99:31:59:4b:ab: 35:d6:fe:df:54:80:e2:b1:14:9e:f3:6f:b0:52:47: 9c:f1:4e:b9:b9:e3:96:57:13:09:eb:94:85:64:1f: e7:ef:76:62:58:12:a0:d8:d5:a5:77:07:66:c3:76: 69:10:38:4e:a5:68:ed:fc:d8:4f:b6:ab:37:ef:7a: 5d:1c:61:8a:94:76:d7:43:ca:a5:df:47:1b:2f:23: 64:fb:8d:2c:59:34:9d:ad:bb:a8:e9:15:85:9a:99: 79:c4:1c:ce:5d:57:5e:e1:00:07:59:bd:01:7b:bd: 3c:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:06:EF:D5:AD:18:06:39:02:2B:E5:51:EE:B6:47:07:81:D2:0D:BB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8eaa4749-a045-4880-ab8c-90d7c1406a2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.184.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7d:42:43:c8:9c:be:3f:5e:2f:39:3b:6a:99:a8:2c:bd:a4:bf: b2:21:98:82:ab:dc:85:6d:b9:60:be:95:e5:aa:1f:48:cd:c9: be:13:20:c2:8d:f3:61:02:c7:79:00:97:ba:61:b6:c1:8f:b0: f8:8f:82:46:42:0e:8c:98:54:2e:44:e7:7c:92:03:d3:f2:29: ef:34:dd:01:91:96:65:fa:d5:53:c6:a7:9b:77:d8:a7:e4:dc: 74:79:82:a2:cb:40:ac:2d:cf:aa:ba:35:10:1a:4b:dd:4d:31: 92:7f:74:d4:7e:33:ce:02:bc:56:9f:ea:1a:6b:12:2b:af:0c: 8c:bf:80:74:df:08:cd:05:97:7b:ad:0a:ec:8d:51:a0:46:c6: a2:38:84:16:f7:9c:bc:10:92:88:35:bb:99:b5:27:6c:a0:3a: 76:a8:88:6e:41:b4:94:c9:c6:b2:f3:bd:50:de:ff:4f:c7:07: 86:e6:b6:ce:38:08:dd:a7:b1:9b:20:a6:a4:d9:77:cb:5d:7c: 3e:dc:11:eb:9f:a5:f0:fe:5b:51:28:14:e2:2e:b5:26:32:a9: 9f:86:7d:32:e0:7c:6b:bf:78:d7:50:f5:d8:6f:e1:f3:e8:cc: 81:64:33:34:e8:a2:19:e3:74:fc:7b:17:4e:ae:a5:04:78:44: be:c0:96:52 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUU/qzDvPLaxD2Q/D0yCNHVWBU470wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDAzMTU4WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjM4NGI5ZWFlMDEwMTIwMjhkMThiMzQ2MDY4ZDdhZjVm YTZmNzI2ZDIwNzliYTBmMzE2MTBjNGYyMDRmMDhkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDk1HZFdkpRSveXTXYMmYkJE7DBIkaHZRkLhVy//o/usJdM BZtrQCB0v0MJeNM/M7z+rzUEDOupbt2gHmM+L+HsynR9qVtGcmXkz+cKpoz9jQcy Ub7UuR222BKMMoWDOelxyTi7ey8jFqO1O7i2m1Id3u5CsPE0fKwGjslm3S0IidKE wkHrM/VAQT5Bjxvja8OZMVlLqzXW/t9UgOKxFJ7zb7BSR5zxTrm545ZXEwnrlIVk H+fvdmJYEqDY1aV3B2bDdmkQOE6laO382E+2qzfvel0cYYqUdtdDyqXfRxsvI2T7 jSxZNJ2tu6jpFYWamXnEHM5dV17hAAdZvQF7vTzZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUgAbv1a0YBjkCK+VR7rZHB4HSDbswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlYWE0NzQ5LWEwNDUtNDg4MC1hYjhjLTkwZDdjMTQwNmEyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQuDANBgkqhkiG9w0BAQsFAAOCAQEAfUJDyJy+P14vOTtqmagsvaS/siGY gqvchW25YL6V5aofSM3JvhMgwo3zYQLHeQCXumG2wY+w+I+CRkIOjJhULkTnfJID 0/Ip7zTdAZGWZfrVU8anm3fYp+TcdHmCostArC3Pqro1EBpL3U0xkn901H4zzgK8 Vp/qGmsSK68MjL+AdN8IzQWXe60K7I1RoEbGojiEFvecvBCSiDW7mbUnbKA6dqiI bkG0lMnGsvO9UN7/T8cHhua2zjgI3aexmyCmpNl3y118PtwR65+l8P5bUSgU4i61 JjKpn4Z9MuB8a79411D12G/h8+jMgWQzNOiiGeN0/HsXTq6lBHhEvsCWUg== -----END CERTIFICATE-----Generated at Tue Aug 5 17:08:22 2025 by rpki-client