$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d171a8a1-9f08-410d-8286-615fcfbb13fc.roa File: d171a8a1-9f08-410d-8286-615fcfbb13fc.roa (raw, json) Hash identifier: Puws5TrSWF6dRdOyMwX6o4OEhDyk1bJpTXNCZLKs5XY= Subject key identifier: AD:3D:32:30:06:E8:5F:76:49:01:3E:54:00:D9:ED:B5:03:DD:8E:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42D02A4CFE31916A4DEFD02E913809811BFA52EA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d171a8a1-9f08-410d-8286-615fcfbb13fc.roa Signing time: Wed 23 Jul 2025 00:11:02 +0000 ROA not before: Wed 23 Jul 2025 00:11:02 +0000 ROA not after: Wed 27 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.15.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:d0:2a:4c:fe:31:91:6a:4d:ef:d0:2e:91:38:09:81:1b:fa:52:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 23 00:11:02 2025 GMT Not After : Aug 27 23:59:59 2025 GMT Subject: serialNumber=c0008eea922404b656641db92c3e217dbe5369daa7380dd99dfec83b11454f30, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e3:1d:2c:d8:71:b6:8e:85:fe:76:12:5d:95: cb:81:39:0e:2f:5e:bd:f2:d0:c5:d4:0c:63:1a:29: f6:1c:47:cf:9b:c6:76:23:82:d5:19:95:9a:e0:0b: 15:ab:74:fb:97:45:1e:42:46:ed:38:b4:66:13:95: 66:8c:17:d0:2a:8c:5e:45:56:01:36:38:62:ee:ae: d2:a1:88:2f:d1:06:a2:8b:95:5c:36:72:a5:1a:0b: be:c0:d5:70:f8:61:2c:43:d6:8b:10:00:14:7c:34: 99:ef:2d:90:d8:46:35:cc:38:f6:9a:16:66:ee:d3: df:53:f7:71:b6:5c:43:d4:9d:71:b4:19:3f:2d:ea: 15:64:39:78:97:c5:c6:d6:74:c0:ba:6b:00:c2:3f: 85:b5:59:b2:a3:9e:ed:d0:65:2a:81:25:89:fa:25: 15:bf:12:db:2a:98:ad:93:f4:c3:92:de:95:55:c3: 55:41:d9:50:76:74:b7:4b:0f:5c:c8:6a:5b:e5:cc: 69:ae:f9:c8:ef:28:1d:89:31:c3:56:61:e8:30:56: 45:64:2f:dd:a8:d2:ea:21:01:6d:5e:e1:18:c0:37: fb:76:6a:8a:7d:60:a7:7b:60:f2:0c:a2:1e:dc:f6: 81:7b:14:98:f5:7a:4a:61:ff:3f:26:e1:6b:71:ca: 16:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:3D:32:30:06:E8:5F:76:49:01:3E:54:00:D9:ED:B5:03:DD:8E:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d171a8a1-9f08-410d-8286-615fcfbb13fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.15.176.0/20 Signature Algorithm: sha256WithRSAEncryption 07:c1:e4:8e:24:44:36:84:97:7d:d5:a5:78:65:77:d2:a5:0c: 89:d3:77:c7:c4:cb:ad:26:67:21:8a:30:e9:f9:d7:be:28:2c: df:f7:d3:e8:f3:47:96:b7:51:18:2c:4b:42:62:45:d7:1e:2e: 22:89:0f:f3:46:fe:9f:15:66:5b:2b:29:55:35:8b:35:b8:da: 16:02:ce:68:c7:7f:9b:20:c9:25:82:cd:67:5b:b6:c2:ad:84: 24:cf:71:7f:eb:6b:d1:db:2c:e8:46:5b:0b:e2:43:ba:f8:d4: ce:c4:40:5f:ca:ae:6c:6b:dd:fc:a5:36:6b:b3:db:05:79:01: 76:7d:5f:cd:f7:4f:20:68:49:fa:81:c2:a5:f5:e4:35:06:94: 72:1a:32:97:07:37:6d:bb:cf:47:98:7a:15:11:21:06:12:ea: 5d:27:ab:ca:d7:d5:82:74:e9:6b:17:8e:c3:c4:78:6c:e4:6f: b6:6d:5c:cc:3d:35:8c:df:4d:d8:e8:ed:4b:1a:24:b7:c0:d0: 9e:8f:97:1c:76:c6:b8:c2:c3:b4:0b:57:2b:ae:8c:3c:c4:23: 0c:ce:82:70:d3:27:3f:8a:6d:c3:f8:63:9e:3c:79:cd:69:fd: 3e:1a:8d:29:7b:8b:dd:03:a2:6a:31:cd:57:78:c5:76:36:f6: 45:68:b5:4c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQtAqTP4xkWpN79AukTgJgRv6UuowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIzMDAxMTAyWhcNMjUwODI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMDAwOGVlYTkyMjQwNGI2NTY2NDFkYjkyYzNlMjE3ZGJl NTM2OWRhYTczODBkZDk5ZGZlYzgzYjExNDU0ZjMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD4x0s2HG2joX+dhJdlcuBOQ4vXr3y0MXUDGMaKfYcR8+b xnYjgtUZlZrgCxWrdPuXRR5CRu04tGYTlWaMF9AqjF5FVgE2OGLurtKhiC/RBqKL lVw2cqUaC77A1XD4YSxD1osQABR8NJnvLZDYRjXMOPaaFmbu099T93G2XEPUnXG0 GT8t6hVkOXiXxcbWdMC6awDCP4W1WbKjnu3QZSqBJYn6JRW/EtsqmK2T9MOS3pVV w1VB2VB2dLdLD1zIalvlzGmu+cjvKB2JMcNWYegwVkVkL92o0uohAW1e4RjAN/t2 aop9YKd7YPIMoh7c9oF7FJj1ekph/z8m4WtxyhZTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrT0yMAboX3ZJAT5UANnttQPdjpowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QxNzFhOGExLTlmMDgtNDEwZC04Mjg2LTYxNWZjZmJiMTNmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQQD7AwDQYJKoZIhvcNAQELBQADggEBAAfB5I4kRDaEl33VpXhld9KlDInT d8fEy60mZyGKMOn5174oLN/30+jzR5a3URgsS0JiRdceLiKJD/NG/p8VZlsrKVU1 izW42hYCzmjHf5sgySWCzWdbtsKthCTPcX/ra9HbLOhGWwviQ7r41M7EQF/Krmxr 3fylNmuz2wV5AXZ9X833TyBoSfqBwqX15DUGlHIaMpcHN227z0eYehURIQYS6l0n q8rX1YJ06WsXjsPEeGzkb7ZtXMw9NYzfTdjo7UsaJLfA0J6Plxx2xrjCw7QLVyuu jDzEIwzOgnDTJz+KbcP4Y548ec1p/T4ajSl7i90DomoxzVd4xXY29kVotUw= -----END CERTIFICATE-----Generated at Fri Aug 8 20:49:02 2025 by rpki-client