$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a53817fd-b599-4741-a058-100f3660315d.roa File: a53817fd-b599-4741-a058-100f3660315d.roa (raw, json) Hash identifier: 2cVntWitzjQLLYKwUusDtW2Fb1XprI2dkjFywm2W+2I= Subject key identifier: F5:84:6A:71:EA:6C:54:52:66:F4:A6:88:D4:D8:AC:10:A2:D5:9C:77 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 526FFCBB4923FC74ED5E8B44819E98BC8A4C2BB4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a53817fd-b599-4741-a058-100f3660315d.roa Signing time: Fri 25 Jul 2025 00:00:29 +0000 ROA not before: Fri 25 Jul 2025 00:00:29 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 163.3.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:6f:fc:bb:49:23:fc:74:ed:5e:8b:44:81:9e:98:bc:8a:4c:2b:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:00:29 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=5fefc1c38333aa83bf54f1a9c4e5e499d88d9c600b7231c0c6756f25d5773735, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7f:de:1c:d9:10:75:a5:65:58:51:58:d5:fc: 76:d0:00:37:14:d0:68:48:91:ec:19:57:7f:86:87: c2:65:3c:b3:0b:4d:86:25:ac:66:7d:e4:90:bf:28: 70:b3:80:c8:5b:ba:4a:a1:88:1c:84:10:2d:72:f5: 55:30:ae:c8:06:0b:f5:6e:0c:68:fa:cf:c4:ba:9e: 5e:12:cc:4f:c9:09:e5:eb:76:34:e8:bf:94:ba:c9: 77:74:f9:4d:00:7c:db:b1:35:f9:52:18:39:ff:ff: 18:e2:c3:98:18:ff:1b:ef:ef:a5:ef:a5:63:6e:28: 6f:48:7b:49:51:f0:cd:17:2f:23:69:06:36:0b:be: 89:2a:eb:61:e7:03:55:78:ce:f0:cf:9e:07:31:69: 1a:90:ce:d7:db:9b:31:6c:c8:b9:86:5d:af:b7:e8: 6d:d2:e6:45:41:45:1b:f0:f7:b0:0c:db:07:2d:da: 1e:44:64:8b:e6:1b:cd:00:e5:0d:4c:d5:aa:38:b3: ba:ca:5d:99:f7:41:72:5d:a6:c3:d4:5d:10:9f:ae: a7:43:02:40:31:45:05:0e:f8:08:8e:a2:92:c9:68: 2f:0f:e5:ac:75:d1:aa:81:e9:d0:5f:cd:f3:1f:e5: 21:d4:ea:9e:c5:dd:51:6b:8d:e7:e9:08:4e:a4:ae: 1c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:84:6A:71:EA:6C:54:52:66:F4:A6:88:D4:D8:AC:10:A2:D5:9C:77 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a53817fd-b599-4741-a058-100f3660315d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 163.3.0.0/16 Signature Algorithm: sha256WithRSAEncryption 98:64:87:ff:78:ad:cd:fe:45:08:ca:fe:dd:4d:eb:c5:fc:d0: f5:1a:fc:5f:63:3e:c9:39:23:10:56:a7:b3:60:51:db:6c:a2: d8:db:b8:e9:67:2b:49:c7:ec:ee:24:0f:33:3b:df:54:19:c7: 3f:5d:9c:40:9e:cc:90:31:8f:5f:a9:99:59:70:0a:87:86:e9: bd:a0:33:fa:81:09:f9:f0:11:41:02:8d:a0:34:02:00:aa:10: 47:4a:26:3c:11:84:27:09:b8:26:33:20:2c:21:d5:37:32:2c: 20:cf:79:98:c3:55:c9:ee:24:e2:53:91:ac:3a:3a:bf:5b:53: 3f:cb:4d:e6:87:be:ba:e5:da:36:7f:97:12:02:fb:85:86:6e: 4a:78:e2:45:12:9c:9d:02:d1:2f:94:cb:c2:7c:d3:67:dc:bc: 96:ce:be:a3:84:b9:ce:81:5c:17:01:5e:c5:17:dc:1d:7b:a8: a1:70:46:cb:11:0c:a9:61:3f:87:7b:f9:d5:19:1b:98:1a:fa: 32:ff:aa:b3:55:51:fa:2b:b1:9c:62:fe:41:49:ce:7f:b1:f6: f6:94:1f:f5:10:34:9a:9c:b2:36:9d:ea:e2:3d:db:ee:75:87: 1d:69:2c:1b:c7:b1:81:b1:45:bc:c9:09:04:9c:64:59:60:b9: d2:c5:b8:52 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUm/8u0kj/HTtXotEgZ6YvIpMK7QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI1MDAwMDI5WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZmVmYzFjMzgzMzNhYTgzYmY1NGYxYTljNGU1ZTQ5OWQ4 OGQ5YzYwMGI3MjMxYzBjNjc1NmYyNWQ1NzczNzM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUf94c2RB1pWVYUVjV/HbQADcU0GhIkewZV3+Gh8JlPLML TYYlrGZ95JC/KHCzgMhbukqhiByEEC1y9VUwrsgGC/VuDGj6z8S6nl4SzE/JCeXr djTov5S6yXd0+U0AfNuxNflSGDn//xjiw5gY/xvv76XvpWNuKG9Ie0lR8M0XLyNp BjYLvokq62HnA1V4zvDPngcxaRqQztfbmzFsyLmGXa+36G3S5kVBRRvw97AM2wct 2h5EZIvmG80A5Q1M1ao4s7rKXZn3QXJdpsPUXRCfrqdDAkAxRQUO+AiOopLJaC8P 5ax10aqB6dBfzfMf5SHU6p7F3VFrjefpCE6krhzzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9YRqcepsVFJm9KaI1NisEKLVnHcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1MzgxN2ZkLWI1OTktNDc0MS1hMDU4LTEwMGYzNjYwMzE1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCjAzANBgkqhkiG9w0BAQsFAAOCAQEAmGSH/3itzf5FCMr+3U3rxfzQ9Rr8 X2M+yTkjEFans2BR22yi2Nu46WcrScfs7iQPMzvfVBnHP12cQJ7MkDGPX6mZWXAK h4bpvaAz+oEJ+fARQQKNoDQCAKoQR0omPBGEJwm4JjMgLCHVNzIsIM95mMNVye4k 4lORrDo6v1tTP8tN5oe+uuXaNn+XEgL7hYZuSnjiRRKcnQLRL5TLwnzTZ9y8ls6+ o4S5zoFcFwFexRfcHXuooXBGyxEMqWE/h3v51RkbmBr6Mv+qs1VR+iuxnGL+QUnO f7H29pQf9RA0mpyyNp3q4j3b7nWHHWksG8exgbFFvMkJBJxkWWC50sW4Ug== -----END CERTIFICATE-----Generated at Sat Aug 9 15:19:02 2025 by rpki-client