$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2da1583-5ebe-4a18-8fcd-9a78b9bcefd7.roa File: d2da1583-5ebe-4a18-8fcd-9a78b9bcefd7.roa (raw, json) Hash identifier: RbFzfK8vC9RuNPybXgMrAcY7S4Sb+8AeDE3jmbFLMoo= Subject key identifier: 3F:15:80:11:D2:E3:CC:C6:C8:3D:B4:62:61:64:77:1E:12:32:D1:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BF2C93237AF25A6E54877E9B2242C3F0D1E3E4F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2da1583-5ebe-4a18-8fcd-9a78b9bcefd7.roa Signing time: Fri 25 Jul 2025 00:00:25 +0000 ROA not before: Fri 25 Jul 2025 00:00:25 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.59.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:f2:c9:32:37:af:25:a6:e5:48:77:e9:b2:24:2c:3f:0d:1e:3e:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:00:25 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=67b307e38e9dc23adb6d780c2170cce53a74775bafe7cd740c655aab2de08186, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:6f:aa:6c:31:72:68:a0:c9:df:6f:ab:74:fe: d4:69:aa:9e:1f:16:ed:ac:a1:12:54:94:d4:3f:74: 79:44:01:e9:16:dc:69:f3:5c:0e:be:80:96:11:cb: 61:2b:1c:e0:24:1b:26:ef:3c:40:af:d5:57:ae:b0: 55:1f:5b:35:93:71:1c:fd:c5:d9:1a:d8:db:07:8b: ae:6a:6c:d7:5e:4b:01:ea:21:20:bc:04:6d:d2:52: b5:72:0d:c5:87:db:14:60:9e:91:d5:37:65:f8:3f: 38:77:60:30:dd:81:74:df:76:ea:80:30:20:13:97: 69:23:06:f5:e3:d3:d4:73:e8:1f:ef:28:01:d6:22: f4:53:0a:f1:0f:73:45:43:03:22:64:82:d9:ba:71: 72:3f:b9:f1:9f:3a:11:3e:59:d2:6e:da:62:23:9f: 7f:97:b0:b4:85:6d:b6:85:7f:68:e4:25:99:3e:dd: 7a:31:d1:36:cd:f7:ad:eb:73:83:6e:f6:dd:66:58: a1:be:1a:ba:63:5d:20:38:d4:9d:4f:6b:26:85:32: 2c:10:55:93:e9:30:6f:98:7a:de:59:12:d6:91:13: 57:16:4f:bb:46:4f:52:98:57:76:de:58:bf:f6:12: d2:75:54:22:f6:0c:19:a8:4d:a3:a5:44:87:b2:d8: d1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:15:80:11:D2:E3:CC:C6:C8:3D:B4:62:61:64:77:1E:12:32:D1:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2da1583-5ebe-4a18-8fcd-9a78b9bcefd7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.59.0.0/16 Signature Algorithm: sha256WithRSAEncryption 89:73:36:6b:0f:27:10:92:ad:44:23:1e:8d:5a:9d:08:1e:70: f5:96:71:6d:08:9a:5f:28:ef:69:f7:d6:20:0d:8e:07:69:4d: ba:17:7e:fa:cf:79:8d:57:f8:6a:fe:2e:10:0b:5b:7b:77:f6: 28:d2:83:7b:36:ea:e1:34:15:9f:de:f2:35:79:bd:da:9a:71: fb:8b:fe:68:92:0f:07:c9:83:e8:34:b7:88:c0:d7:99:bb:bf: 04:7d:b7:f1:f6:2c:a5:12:c3:a6:2f:92:91:97:50:2e:49:47: 6a:37:d1:e0:73:9f:46:8d:d7:90:e8:a3:4d:13:07:fd:d6:52: e1:29:41:c2:40:1c:b2:85:45:bd:71:99:47:c7:b9:c5:2a:34: b0:f1:46:59:9b:b4:1f:5f:8c:41:df:25:6f:e6:bb:dd:3a:06: e5:ec:fb:74:2a:1d:c2:c4:6e:f9:21:71:11:9a:66:31:54:ea: 73:80:9e:98:fe:ff:a1:61:90:e7:a4:c0:c8:b4:04:60:fb:0a: 3f:2f:3e:82:1b:e2:e0:ca:be:c6:6f:3c:01:a4:18:cc:6b:74: 86:99:c7:f6:39:85:f1:3b:20:95:3d:00:df:b6:61:ba:56:bf: f7:c4:7c:b3:93:e1:2e:88:88:c4:b2:78:3c:a9:a5:45:8c:a5: 66:9c:c0:48 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUW/LJMjevJablSHfpsiQsPw0ePk8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI1MDAwMDI1WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2N2IzMDdlMzhlOWRjMjNhZGI2ZDc4MGMyMTcwY2NlNTNh NzQ3NzViYWZlN2NkNzQwYzY1NWFhYjJkZTA4MTg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDab6psMXJooMnfb6t0/tRpqp4fFu2soRJUlNQ/dHlEAekW 3GnzXA6+gJYRy2ErHOAkGybvPECv1VeusFUfWzWTcRz9xdka2NsHi65qbNdeSwHq ISC8BG3SUrVyDcWH2xRgnpHVN2X4Pzh3YDDdgXTfduqAMCATl2kjBvXj09Rz6B/v KAHWIvRTCvEPc0VDAyJkgtm6cXI/ufGfOhE+WdJu2mIjn3+XsLSFbbaFf2jkJZk+ 3Xox0TbN963rc4Nu9t1mWKG+GrpjXSA41J1PayaFMiwQVZPpMG+Yet5ZEtaRE1cW T7tGT1KYV3beWL/2EtJ1VCL2DBmoTaOlRIey2NFHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPxWAEdLjzMbIPbRiYWR3HhIy0aYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyZGExNTgzLTVlYmUtNGExOC04ZmNkLTlhNzhiOWJjZWZkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQOzANBgkqhkiG9w0BAQsFAAOCAQEAiXM2aw8nEJKtRCMejVqdCB5w9ZZx bQiaXyjvaffWIA2OB2lNuhd++s95jVf4av4uEAtbe3f2KNKDezbq4TQVn97yNXm9 2ppx+4v+aJIPB8mD6DS3iMDXmbu/BH238fYspRLDpi+SkZdQLklHajfR4HOfRo3X kOijTRMH/dZS4SlBwkAcsoVFvXGZR8e5xSo0sPFGWZu0H1+MQd8lb+a73ToG5ez7 dCodwsRu+SFxEZpmMVTqc4CemP7/oWGQ56TAyLQEYPsKPy8+ghvi4Mq+xm88AaQY zGt0hpnH9jmF8TsglT0A37Zhula/98R8s5PhLoiIxLJ4PKmlRYylZpzASA== -----END CERTIFICATE-----Generated at Wed Aug 6 05:59:52 2025 by rpki-client