$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa File: a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa (raw, json) Hash identifier: SFn+CBBgEMj/OPjgCSgrgeZRw5+ZhKOgRvtEdxExCtQ= Subject key identifier: 37:8E:AC:6C:31:14:98:99:BA:17:1C:61:18:BA:14:42:B4:81:19:0C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5196E4171C5EC7D895B1652A0BD550985D499411 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa Signing time: Mon 28 Jul 2025 15:20:25 +0000 ROA not before: Mon 28 Jul 2025 15:20:25 +0000 ROA not after: Mon 01 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 16.64.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:96:e4:17:1c:5e:c7:d8:95:b1:65:2a:0b:d5:50:98:5d:49:94:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 28 15:20:25 2025 GMT Not After : Sep 1 23:59:59 2025 GMT Subject: serialNumber=cb0c6b20227e2f8f7b483b7e4b981fed201f0613adf22eca2133b48159706e50, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8c:90:84:e6:12:8e:87:b5:82:de:9f:a6:e5: 59:36:16:9a:33:42:18:6b:43:11:ef:37:49:de:71: 7f:a8:93:d4:9a:88:b5:43:b4:f8:96:da:ca:14:01: 77:03:ca:2a:29:8f:d5:40:fe:02:d8:a2:77:0c:c1: df:ef:26:4e:61:ef:62:a1:32:4c:df:ff:dd:33:18: c5:2f:1c:aa:40:de:af:00:fa:a2:70:25:68:24:ac: e3:7a:de:83:d0:ec:e5:1a:a3:91:b5:5a:85:7d:81: 47:e0:a1:7b:75:e7:14:25:a3:ed:4a:a8:f6:21:f8: 43:ea:4b:50:74:0b:38:b8:54:b2:86:b3:46:e4:3b: 03:de:a1:53:9d:47:0a:b5:8c:68:4c:ff:0b:04:cf: 64:1d:b6:31:d7:97:7b:c4:5e:16:04:0a:a3:40:7d: 2b:0b:53:71:de:67:49:c8:a8:b2:70:26:e0:a5:93: d8:69:4e:42:cc:c6:8d:de:7e:c3:ad:2f:2d:14:8f: bb:c1:0f:00:d1:72:a9:f1:10:4a:fa:4b:0f:17:05: 80:a3:83:5a:f3:fd:c2:92:d1:81:3a:1f:88:1a:5d: 60:52:bd:93:ef:90:f2:49:ff:0c:ab:ac:56:19:16: 4d:21:8f:fe:cf:c6:05:ba:84:3c:85:9d:95:2d:3f: 5a:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:8E:AC:6C:31:14:98:99:BA:17:1C:61:18:BA:14:42:B4:81:19:0C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a08ba7ca-e89d-4d87-8eb3-23f2061ec4f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.64.0.0/17 Signature Algorithm: sha256WithRSAEncryption 79:c5:4b:58:25:a8:48:32:14:7e:da:54:fb:81:fd:77:54:51: f3:01:be:ab:51:e4:13:34:ed:c7:41:49:0e:b5:31:4d:2d:7f: dd:c7:89:3f:8c:15:24:be:d2:72:23:93:99:5e:1d:21:87:61: 7a:44:f2:c1:7f:d6:81:43:c7:65:19:f9:32:d9:71:a3:85:77: 5f:a3:6a:66:f0:c2:9a:26:26:4d:19:89:74:e3:91:94:80:d0: 33:c5:36:2a:d7:2a:28:08:42:b1:57:cd:77:38:11:75:ce:55: 7a:69:46:af:fd:30:40:72:59:ba:99:ee:43:71:4f:ce:26:57: 22:df:1e:e2:bd:3e:70:6e:47:ff:41:c4:b6:0d:76:c0:f6:5e: 6b:86:3b:b0:02:e1:f3:a8:ca:40:f8:d8:5d:cc:0e:3f:09:33: a2:39:2b:7c:df:ce:ca:42:10:e0:20:b0:8e:1f:a9:2a:d7:72: f3:5b:32:d6:5d:f7:a0:b2:f6:33:d6:40:d1:73:d2:58:13:8b: 38:7b:40:7f:49:94:dd:5c:cd:45:9e:1c:38:68:69:b4:ec:e2: 32:e8:5a:81:03:4f:07:69:ff:92:02:fb:61:80:f3:e0:09:ad: 75:8a:00:85:5a:d4:fa:43:e0:3f:ef:08:ce:5d:ae:6c:1f:03: fb:3b:e2:f5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUZbkFxxex9iVsWUqC9VQmF1JlBEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI4MTUyMDI1WhcNMjUwOTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYjBjNmIyMDIyN2UyZjhmN2I0ODNiN2U0Yjk4MWZlZDIw MWYwNjEzYWRmMjJlY2EyMTMzYjQ4MTU5NzA2ZTUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEjJCE5hKOh7WC3p+m5Vk2FpozQhhrQxHvN0necX+ok9Sa iLVDtPiW2soUAXcDyiopj9VA/gLYoncMwd/vJk5h72KhMkzf/90zGMUvHKpA3q8A +qJwJWgkrON63oPQ7OUao5G1WoV9gUfgoXt15xQlo+1KqPYh+EPqS1B0Czi4VLKG s0bkOwPeoVOdRwq1jGhM/wsEz2QdtjHXl3vEXhYECqNAfSsLU3HeZ0nIqLJwJuCl k9hpTkLMxo3efsOtLy0Uj7vBDwDRcqnxEEr6Sw8XBYCjg1rz/cKS0YE6H4gaXWBS vZPvkPJJ/wyrrFYZFk0hj/7PxgW6hDyFnZUtP1rLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUN46sbDEUmJm6FxxhGLoUQrSBGQwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EwOGJhN2NhLWU4OWQtNGQ4Ny04ZWIzLTIzZjIwNjFlYzRmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcQQAAwDQYJKoZIhvcNAQELBQADggEBAHnFS1glqEgyFH7aVPuB/XdUUfMB vqtR5BM07cdBSQ61MU0tf93HiT+MFSS+0nIjk5leHSGHYXpE8sF/1oFDx2UZ+TLZ caOFd1+jambwwpomJk0ZiXTjkZSA0DPFNirXKigIQrFXzXc4EXXOVXppRq/9MEBy WbqZ7kNxT84mVyLfHuK9PnBuR/9BxLYNdsD2XmuGO7AC4fOoykD42F3MDj8JM6I5 K3zfzspCEOAgsI4fqSrXcvNbMtZd96Cy9jPWQNFz0lgTizh7QH9JlN1czUWeHDho abTs4jLoWoEDTwdp/5IC+2GA8+AJrXWKAIVa1PpD4D/vCM5drmwfA/s74vU= -----END CERTIFICATE-----Generated at Wed Aug 6 16:08:00 2025 by rpki-client