$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f188b8ee-3a4b-4868-9d1b-037431b45053.roa File: f188b8ee-3a4b-4868-9d1b-037431b45053.roa (raw, json) Hash identifier: FnU800y62EG5v4g6JxNKQGiM3oo62qh28icvOrs2ArU= Subject key identifier: DD:22:1A:03:EC:22:C3:8E:8A:62:53:B7:AA:42:4D:DC:53:B5:8C:A3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 51BB5AB12CB888FFDAAF92468F1B717E99F2A7BB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f188b8ee-3a4b-4868-9d1b-037431b45053.roa Signing time: Tue 05 Aug 2025 00:20:33 +0000 ROA not before: Tue 05 Aug 2025 00:20:33 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.16.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:bb:5a:b1:2c:b8:88:ff:da:af:92:46:8f:1b:71:7e:99:f2:a7:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:20:33 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=79b25d8933070a71e07a88da56090213fe903c345e162ec352172e0717199cae, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:21:63:c8:d1:0d:75:cf:da:27:ce:69:ac:75: 72:2c:de:ed:b6:d3:1c:37:da:df:e6:2b:00:f4:9c: 7e:76:ff:0f:23:9e:47:c5:97:54:0b:4e:7f:13:04: 75:bc:7f:75:1c:74:41:b6:97:85:8d:c4:4d:90:52: ab:94:05:aa:fb:3b:ca:9e:ee:92:70:32:84:21:94: e6:66:9b:da:15:13:89:a4:fa:24:a4:71:76:d6:4b: 8e:04:0a:ba:42:fa:0a:ee:75:33:ef:39:8d:32:01: a9:50:2e:65:cd:e8:2f:aa:93:f4:78:c6:31:ec:14: 70:f8:24:f8:4e:e5:4e:7b:bc:d6:c8:99:60:9a:48: 25:9d:9f:31:4e:fc:8c:16:27:82:8e:6c:39:7f:58: 85:da:d0:19:01:00:49:e2:ae:4d:a8:13:bd:c8:f9: b1:5f:bc:ca:02:61:00:a5:ca:76:3f:e3:46:c1:a8: c9:95:dc:c2:a7:1a:44:80:39:26:4a:3b:b8:01:cd: b7:b9:a3:95:e3:b8:7b:14:78:17:aa:b6:82:70:56: 30:ff:1d:62:85:e4:7d:5e:f6:76:4e:4d:65:3e:5b: e6:16:93:3a:9e:ea:b4:bb:1f:cf:02:37:b9:66:40: 54:3a:2a:9f:cd:ff:66:39:c8:e4:fd:7e:d6:2f:a2: d8:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:22:1A:03:EC:22:C3:8E:8A:62:53:B7:AA:42:4D:DC:53:B5:8C:A3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f188b8ee-3a4b-4868-9d1b-037431b45053.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.16.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4e:ab:66:95:eb:aa:7c:88:cf:5f:45:eb:2c:aa:a0:0b:29:15: b3:b8:b5:2c:a6:ea:f7:8b:b5:67:87:3b:c4:97:d1:d9:3a:28: ef:35:db:53:0e:8c:9a:7b:bd:4e:a1:61:16:cf:f7:0e:a3:b3: 35:3b:3b:ab:07:d6:53:d5:6c:07:60:9f:e2:0c:92:5e:b7:be: de:ae:10:ca:cb:20:8d:b9:12:f6:ca:40:de:7a:8a:df:15:fd: 2c:2c:22:68:29:0e:77:7a:91:a4:0f:4e:f2:15:82:50:a5:8c: 72:e6:d8:c6:9c:fb:fc:e5:f0:fe:e7:f0:d0:3b:a8:0a:db:8d: b3:d0:25:d2:8f:9e:52:43:24:ed:c4:e7:56:56:94:65:ee:24: fa:b8:c4:36:cd:f6:11:71:7d:32:e7:d2:60:97:03:6f:8a:86: 23:a8:0b:55:c0:92:b2:63:88:06:2f:19:45:c7:be:8c:64:8e: f9:5a:dc:bb:f7:9b:61:60:fe:ee:63:21:3f:9e:26:69:54:95: e5:b2:0a:6c:b1:b5:77:d4:49:c7:8d:90:83:f0:e1:bc:83:e0: 62:40:c2:66:e5:bd:1f:ad:74:24:bd:e8:7b:e8:21:57:2f:31: 81:cc:d4:30:37:9d:45:a5:b8:ba:b2:70:6f:80:d1:92:f5:82: cc:fb:cb:e1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUbtasSy4iP/ar5JGjxtxfpnyp7swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDAyMDMzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OWIyNWQ4OTMzMDcwYTcxZTA3YTg4ZGE1NjA5MDIxM2Zl OTAzYzM0NWUxNjJlYzM1MjE3MmUwNzE3MTk5Y2FlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRIWPI0Q11z9onzmmsdXIs3u220xw32t/mKwD0nH52/w8j nkfFl1QLTn8TBHW8f3UcdEG2l4WNxE2QUquUBar7O8qe7pJwMoQhlOZmm9oVE4mk +iSkcXbWS44ECrpC+grudTPvOY0yAalQLmXN6C+qk/R4xjHsFHD4JPhO5U57vNbI mWCaSCWdnzFO/IwWJ4KObDl/WIXa0BkBAEnirk2oE73I+bFfvMoCYQClynY/40bB qMmV3MKnGkSAOSZKO7gBzbe5o5XjuHsUeBeqtoJwVjD/HWKF5H1e9nZOTWU+W+YW kzqe6rS7H88CN7lmQFQ6Kp/N/2Y5yOT9ftYvotgNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3SIaA+wiw46KYlO3qkJN3FO1jKMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxODhiOGVlLTNhNGItNDg2OC05ZDFiLTAzNzQzMWI0NTA1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4EDANBgkqhkiG9w0BAQsFAAOCAQEATqtmleuqfIjPX0XrLKqgCykVs7i1 LKbq94u1Z4c7xJfR2Too7zXbUw6Mmnu9TqFhFs/3DqOzNTs7qwfWU9VsB2Cf4gyS Xre+3q4QyssgjbkS9spA3nqK3xX9LCwiaCkOd3qRpA9O8hWCUKWMcubYxpz7/OXw /ufw0DuoCtuNs9Al0o+eUkMk7cTnVlaUZe4k+rjENs32EXF9MufSYJcDb4qGI6gL VcCSsmOIBi8ZRce+jGSO+Vrcu/ebYWD+7mMhP54maVSV5bIKbLG1d9RJx42Qg/Dh vIPgYkDCZuW9H610JL3oe+ghVy8xgczUMDedRaW4urJwb4DRkvWCzPvL4Q== -----END CERTIFICATE-----Generated at Sat Aug 9 15:19:02 2025 by rpki-client