$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f49dcf4f-74f0-4445-8e41-0534ecc0008c.roa File: f49dcf4f-74f0-4445-8e41-0534ecc0008c.roa (raw, json) Hash identifier: VnswaEDRtJIAhWlpB8PZ3M6C3YQB5dXXqSeOlET+GhI= Subject key identifier: 0E:9A:1C:F1:C0:47:CC:58:E7:E5:95:0D:3A:8B:C2:9F:1B:08:ED:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C1C5E4881CF3C44240CED6C9A01E54735BC0B34 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f49dcf4f-74f0-4445-8e41-0534ecc0008c.roa Signing time: Mon 04 Aug 2025 16:21:56 +0000 ROA not before: Mon 04 Aug 2025 16:21:56 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.39.160.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:1c:5e:48:81:cf:3c:44:24:0c:ed:6c:9a:01:e5:47:35:bc:0b:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:21:56 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=d89082113f380787c7a438321abfd0f7d4c1a64504f13d6df27d1be7fde6f875, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:eb:ca:d4:37:5e:0e:f8:5b:73:28:b9:78:db: 97:b7:0d:d5:fc:4b:dc:ff:47:1a:c1:b9:bc:72:a9: aa:fd:0f:f1:ad:2d:cc:e7:78:01:cf:71:9c:01:77: 6f:d7:09:37:9b:4d:03:34:cc:68:f4:e3:8e:b4:38: 34:e5:b5:41:d2:45:37:83:3f:b8:ef:40:1f:f4:34: 73:a1:61:40:d4:f2:09:3a:e4:54:6f:b4:76:37:73: 66:27:42:a8:d9:a3:63:f8:53:33:af:f8:84:2d:c5: 4e:46:9f:c0:f8:17:13:a1:0d:09:61:8f:3e:9e:7d: dc:40:e9:b3:13:7f:91:47:62:61:c3:6b:49:0d:ec: 7b:23:9e:b2:0b:8d:95:41:df:f8:85:5c:b9:0d:79: 6e:7b:a9:35:0b:e7:98:cb:30:63:59:c1:1f:49:bd: 9a:5d:a1:f6:d8:c8:ef:91:ba:c4:7a:fe:1b:6a:2d: 8e:47:7d:4f:fe:f9:55:aa:27:18:fe:ea:98:4a:d3: f7:77:b9:64:df:4e:80:ba:86:8a:db:59:aa:5d:15: a4:92:ad:a3:0f:c1:89:8d:26:4a:67:ca:f2:61:ea: 40:81:84:aa:32:d9:f0:5d:40:82:a0:56:45:6a:fc: 26:c0:2b:3c:94:d6:20:1b:7c:45:5b:2e:54:d5:2f: df:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:9A:1C:F1:C0:47:CC:58:E7:E5:95:0D:3A:8B:C2:9F:1B:08:ED:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f49dcf4f-74f0-4445-8e41-0534ecc0008c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.39.160.0/21 Signature Algorithm: sha256WithRSAEncryption 28:e8:4c:67:e1:1e:f9:88:35:f2:8a:7c:a7:8a:e0:23:3c:32: 01:72:ce:5b:76:88:04:96:58:a5:4d:ec:ce:61:99:9b:46:a3: 3b:a4:7b:7c:22:ca:c2:90:9a:1f:3a:c1:cd:e1:e4:62:7d:f0: 88:9e:c3:fd:be:0b:ed:92:ca:8c:db:e2:60:80:d1:fc:70:72: f8:94:34:0f:f0:b6:da:5f:52:1b:e5:38:84:21:ea:80:2f:9a: 79:3c:58:f3:c2:af:5c:0e:d5:cd:96:ff:8d:25:ed:06:d1:a4: 97:5a:6c:29:75:e3:c9:02:1d:68:ec:ed:37:fa:88:cc:57:96: 1d:4f:d9:42:69:3e:a6:ad:5f:e1:e6:96:8a:dc:7c:fc:24:cd: 45:7e:c2:ad:4b:d8:4c:2f:8e:2a:1d:23:cd:c8:b9:4a:e5:fa: e6:4b:b2:16:e1:99:50:b7:8b:88:0e:f6:87:10:cb:49:22:07: b4:44:75:37:e5:cc:d0:af:9d:23:ab:79:79:73:e0:ce:a7:7d: 04:28:a7:e3:cb:da:26:3c:86:e3:1b:62:dc:19:07:2a:39:4a: ca:9e:54:2d:53:d0:36:2b:cf:59:d9:bb:7b:24:a2:26:2b:1a: 26:a3:33:27:31:22:50:7f:f9:07:55:60:87:03:25:d9:64:dd: e0:87:07:ee -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXBxeSIHPPEQkDO1smgHlRzW8CzQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTYyMTU2WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkODkwODIxMTNmMzgwNzg3YzdhNDM4MzIxYWJmZDBmN2Q0 YzFhNjQ1MDRmMTNkNmRmMjdkMWJlN2ZkZTZmODc1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC868rUN14O+FtzKLl425e3DdX8S9z/RxrBubxyqar9D/Gt LczneAHPcZwBd2/XCTebTQM0zGj04460ODTltUHSRTeDP7jvQB/0NHOhYUDU8gk6 5FRvtHY3c2YnQqjZo2P4UzOv+IQtxU5Gn8D4FxOhDQlhjz6efdxA6bMTf5FHYmHD a0kN7HsjnrILjZVB3/iFXLkNeW57qTUL55jLMGNZwR9JvZpdofbYyO+RusR6/htq LY5HfU/++VWqJxj+6phK0/d3uWTfToC6horbWapdFaSSraMPwYmNJkpnyvJh6kCB hKoy2fBdQIKgVkVq/CbAKzyU1iAbfEVbLlTVL9/zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDpoc8cBHzFjn5ZUNOovCnxsI7WswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y0OWRjZjRmLTc0ZjAtNDQ0NS04ZTQxLTA1MzRlY2MwMDA4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPYJ6AwDQYJKoZIhvcNAQELBQADggEBACjoTGfhHvmINfKKfKeK4CM8MgFy zlt2iASWWKVN7M5hmZtGozuke3wiysKQmh86wc3h5GJ98Iiew/2+C+2Syozb4mCA 0fxwcviUNA/wttpfUhvlOIQh6oAvmnk8WPPCr1wO1c2W/40l7QbRpJdabCl148kC HWjs7Tf6iMxXlh1P2UJpPqatX+HmlorcfPwkzUV+wq1L2EwvjiodI83IuUrl+uZL shbhmVC3i4gO9ocQy0kiB7REdTflzNCvnSOreXlz4M6nfQQop+PL2iY8huMbYtwZ Byo5SsqeVC1T0DYrz1nZu3skoiYrGiajMycxIlB/+QdVYIcDJdlk3eCHB+4= -----END CERTIFICATE-----Generated at Wed Aug 6 12:40:45 2025 by rpki-client