$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a2f6a8-3e69-4d87-82a9-ab06bfa8dc23.roa File: a5a2f6a8-3e69-4d87-82a9-ab06bfa8dc23.roa (raw, json) Hash identifier: AyoF5uyQriUp/Iju7zpdbMOOdxQNC3Bp00c9vldS16M= Subject key identifier: C9:7C:12:38:DE:0A:76:55:E2:E1:EA:9C:75:23:4C:90:27:71:41:4E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 545BE4DB3268B182950F3AAC72E4CB2FFDA79CD1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a2f6a8-3e69-4d87-82a9-ab06bfa8dc23.roa Signing time: Mon 04 Aug 2025 15:21:59 +0000 ROA not before: Mon 04 Aug 2025 15:21:59 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.24.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:5b:e4:db:32:68:b1:82:95:0f:3a:ac:72:e4:cb:2f:fd:a7:9c:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:21:59 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=036e2db7e3033b07d6a25a04b0b2687715fb87ba3e6e6b3552dd7d48d02596d4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8d:48:07:d3:a1:71:be:8f:d4:7e:1b:91:a5: cd:df:41:68:02:7e:2d:eb:78:05:22:67:03:9b:e9: 4d:88:11:8a:ca:a4:ab:a4:31:e7:62:97:36:7b:e7: d9:34:7a:fc:78:c1:a7:4b:cb:9b:d2:fb:bc:41:50: 38:5c:83:dc:ae:c4:35:3b:b4:88:d7:a9:8f:de:e8: 52:23:1f:45:1e:8d:1f:30:e5:e8:fa:41:f3:5a:83: 8b:6f:1e:51:a9:ab:b1:4d:9c:91:93:46:37:94:e4: 02:b9:b1:b4:0b:23:66:79:c6:6e:cb:93:fe:ca:4e: d6:2a:26:be:16:06:1b:13:cb:4c:6a:7d:ea:0e:e5: bb:9f:df:3c:37:7c:69:64:8a:65:79:2a:89:3f:9a: 2c:a1:cd:ca:c1:3a:6d:9f:e3:b7:82:cb:2d:c8:e5: 5a:58:79:8c:5e:18:71:5b:3c:0e:78:13:71:cc:af: 50:3e:75:1e:65:4f:6a:59:96:90:0c:b5:54:50:91: d1:4c:75:f2:95:33:7f:49:3d:68:1e:63:f3:55:5f: 91:79:52:6f:fa:d6:b3:37:ed:3f:67:1e:fa:ec:b2: 57:ad:b4:03:f7:85:cc:2a:23:85:44:44:90:77:c2: e8:d6:94:a0:3e:41:04:0b:0a:8c:49:64:91:0f:81: 28:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:7C:12:38:DE:0A:76:55:E2:E1:EA:9C:75:23:4C:90:27:71:41:4E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a2f6a8-3e69-4d87-82a9-ab06bfa8dc23.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.24.0.0/15 Signature Algorithm: sha256WithRSAEncryption 1c:af:4a:df:e1:d4:f9:87:95:ee:4b:9e:db:32:22:3d:a5:06: 44:32:10:1a:d7:e2:7d:46:b0:8e:5c:89:da:a1:bf:b0:09:55: d0:35:1a:b2:2d:c3:25:f7:8b:a6:bb:9a:86:3b:23:fb:91:d3: 7e:2b:7e:af:44:6b:47:c6:88:5f:af:a7:82:e9:d1:f8:a6:1a: 02:64:a6:d8:ec:a3:42:c0:bb:49:62:ad:a0:51:5f:5c:ab:87: 9d:b2:5b:a2:5d:43:f2:f1:4c:b8:89:1c:75:5b:b4:1a:20:43: c6:1c:13:a5:93:25:16:b8:55:ef:67:c9:41:1f:28:6c:31:cf: 8c:69:94:80:2c:94:3a:df:0d:ea:3c:b0:a2:b7:ec:78:45:f7: 9c:85:eb:31:95:d0:ae:d5:1c:54:ac:53:c6:23:33:fe:65:50: 76:d0:bb:7c:cf:fc:a6:fe:c4:41:3a:35:40:35:f1:87:52:0b: 90:d9:c1:33:60:0f:62:85:2d:4b:7b:59:ee:8e:de:92:1c:e6: 37:98:09:d3:21:dc:05:0d:9a:1c:52:e7:c3:d5:e7:05:d3:8b: 86:54:12:16:3c:1c:d3:bc:99:15:af:81:6c:d5:68:33:6b:f2: 5d:a2:bf:76:23:32:e1:9f:31:e9:13:aa:42:55:dc:cb:09:74: e3:24:43:ec -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVFvk2zJosYKVDzqscuTLL/2nnNEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTUyMTU5WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzZlMmRiN2UzMDMzYjA3ZDZhMjVhMDRiMGIyNjg3NzE1 ZmI4N2JhM2U2ZTZiMzU1MmRkN2Q0OGQwMjU5NmQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyjUgH06Fxvo/UfhuRpc3fQWgCfi3reAUiZwOb6U2IEYrK pKukMedilzZ759k0evx4wadLy5vS+7xBUDhcg9yuxDU7tIjXqY/e6FIjH0UejR8w 5ej6QfNag4tvHlGpq7FNnJGTRjeU5AK5sbQLI2Z5xm7Lk/7KTtYqJr4WBhsTy0xq feoO5buf3zw3fGlkimV5Kok/miyhzcrBOm2f47eCyy3I5VpYeYxeGHFbPA54E3HM r1A+dR5lT2pZlpAMtVRQkdFMdfKVM39JPWgeY/NVX5F5Um/61rM37T9nHvrsslet tAP3hcwqI4VERJB3wujWlKA+QQQLCoxJZJEPgSiTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyXwSON4KdlXi4eqcdSNMkCdxQU4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1YTJmNmE4LTNlNjktNGQ4Ny04MmE5LWFiMDZiZmE4ZGMyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEQGDANBgkqhkiG9w0BAQsFAAOCAQEAHK9K3+HU+YeV7kue2zIiPaUGRDIQ GtfifUawjlyJ2qG/sAlV0DUasi3DJfeLpruahjsj+5HTfit+r0RrR8aIX6+ngunR +KYaAmSm2OyjQsC7SWKtoFFfXKuHnbJbol1D8vFMuIkcdVu0GiBDxhwTpZMlFrhV 72fJQR8obDHPjGmUgCyUOt8N6jyworfseEX3nIXrMZXQrtUcVKxTxiMz/mVQdtC7 fM/8pv7EQTo1QDXxh1ILkNnBM2APYoUtS3tZ7o7ekhzmN5gJ0yHcBQ2aHFLnw9Xn BdOLhlQSFjwc07yZFa+BbNVoM2vyXaK/diMy4Z8x6ROqQlXcywl04yRD7A== -----END CERTIFICATE-----Generated at Mon Aug 4 22:20:42 2025 by rpki-client