$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/02318c64-7444-42be-b088-364d5dfad529.roa File: 02318c64-7444-42be-b088-364d5dfad529.roa (raw, json) Hash identifier: kFHXFOkhnwSrPA+vLRvaGOsT6hInBmgBkJNkmSEfWBc= Subject key identifier: A5:80:6A:7F:21:83:95:DD:12:91:6B:2C:E7:76:D2:98:7B:CD:91:A8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 796EF709E1552FAB2EDD7528EB4CC1E30D45C42D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/02318c64-7444-42be-b088-364d5dfad529.roa Signing time: Fri 01 Aug 2025 15:11:59 +0000 ROA not before: Fri 01 Aug 2025 15:11:59 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.179.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:6e:f7:09:e1:55:2f:ab:2e:dd:75:28:eb:4c:c1:e3:0d:45:c4:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:11:59 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=0e6009c9904ea3072e4a63ffc56adb85303df5c33306ce1b4810c99796ad2187, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f6:cc:18:c4:89:7d:aa:6d:9f:17:33:18:2f: 85:ad:6d:78:4a:ea:10:96:07:86:1c:d8:75:a5:f3: ce:e7:26:3b:af:d3:1f:e6:41:d5:d0:33:3f:37:4c: 17:a0:a2:ba:7c:70:17:26:66:8d:6d:6a:8a:06:6c: ee:3e:c3:c9:5a:1f:35:95:64:6b:21:f6:c7:b2:ce: da:0a:f9:02:19:1d:01:f5:51:2a:a8:5d:df:4c:df: 95:85:22:ea:a2:8e:cb:72:34:bc:f0:34:00:fe:ce: ac:40:e3:6e:5d:df:ff:50:cf:2f:53:a8:e3:2f:ac: 25:87:3f:98:ab:7a:8a:eb:24:f3:2f:0d:91:29:ac: 81:fc:f5:10:e8:c0:72:60:5f:1d:b3:99:10:94:69: 81:f5:2d:28:40:56:31:55:3a:ce:08:f9:54:0f:6d: 66:e8:a7:a8:04:2d:cf:81:a5:dd:31:3f:ad:15:08: 61:95:3b:de:47:58:24:d8:a0:00:70:2d:cb:20:0d: bb:5a:b8:c8:8a:c7:5a:00:52:c8:7e:9f:8c:d8:a9: 9c:15:12:a3:6a:ef:1e:ba:70:8a:fe:f5:73:93:10: e5:2a:64:69:b8:ae:cd:c2:70:8a:6f:03:ac:e4:16: eb:83:8c:c8:d1:9b:8e:e1:da:a0:87:db:e1:0d:05: 07:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:80:6A:7F:21:83:95:DD:12:91:6B:2C:E7:76:D2:98:7B:CD:91:A8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/02318c64-7444-42be-b088-364d5dfad529.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.179.104.0/21 Signature Algorithm: sha256WithRSAEncryption 78:6f:75:a0:1b:60:89:ac:dc:3c:ed:45:fa:a8:cb:30:4c:bb: ad:eb:10:72:12:05:ee:33:46:f5:ea:55:5f:14:81:0d:09:6c: a3:e2:07:96:f1:f3:f0:65:f7:90:aa:e7:14:68:7f:4e:70:f8: 42:5b:62:3f:55:29:f2:af:d6:8b:0d:4f:1d:5e:ad:a1:ff:5f: 25:b5:be:e9:23:b2:bf:77:5d:fd:a8:b7:13:89:ef:b9:45:9c: c9:af:f3:51:ec:fc:a3:bc:03:77:fa:2f:cc:51:21:8b:cc:0e: 7f:3f:2f:91:4f:a8:3f:0b:7b:8c:f7:e6:0d:70:6b:18:c1:09: f9:31:d6:85:dc:6b:be:46:ec:06:3a:ef:c6:c8:b6:0a:2a:8e: 1f:9f:74:6f:5a:e7:6d:06:fe:f1:d0:aa:ec:d7:78:35:ee:27: f1:89:0e:cb:c2:60:d1:d5:0e:c1:a0:8d:be:49:3e:2e:b9:14: a2:24:92:8d:c3:a3:ea:8d:18:95:e9:09:c8:7d:3e:47:bd:b1: cc:1f:e5:2c:87:2a:82:be:a5:12:6e:2d:23:6e:fb:52:60:c3: 64:ba:06:4e:ee:cb:7e:71:09:24:2f:bf:ce:b7:13:f9:3b:e0: 49:43:94:8d:f5:af:46:d8:f9:6d:ed:a2:07:4f:45:1e:bc:87: 72:46:3d:2f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeW73CeFVL6su3XUo60zB4w1FxC0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUxMTU5WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZTYwMDljOTkwNGVhMzA3MmU0YTYzZmZjNTZhZGI4NTMw M2RmNWMzMzMwNmNlMWI0ODEwYzk5Nzk2YWQyMTg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDL9swYxIl9qm2fFzMYL4WtbXhK6hCWB4Yc2HWl887nJjuv 0x/mQdXQMz83TBegorp8cBcmZo1taooGbO4+w8laHzWVZGsh9seyztoK+QIZHQH1 USqoXd9M35WFIuqijstyNLzwNAD+zqxA425d3/9Qzy9TqOMvrCWHP5ireorrJPMv DZEprIH89RDowHJgXx2zmRCUaYH1LShAVjFVOs4I+VQPbWbop6gELc+Bpd0xP60V CGGVO95HWCTYoABwLcsgDbtauMiKx1oAUsh+n4zYqZwVEqNq7x66cIr+9XOTEOUq ZGm4rs3CcIpvA6zkFuuDjMjRm47h2qCH2+ENBQdDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpYBqfyGDld0SkWss53bSmHvNkagwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAyMzE4YzY0LTc0NDQtNDJiZS1iMDg4LTM2NGQ1ZGZhZDUyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBs2gwDQYJKoZIhvcNAQELBQADggEBAHhvdaAbYIms3DztRfqoyzBMu63r EHISBe4zRvXqVV8UgQ0JbKPiB5bx8/Bl95Cq5xRof05w+EJbYj9VKfKv1osNTx1e raH/XyW1vukjsr93Xf2otxOJ77lFnMmv81Hs/KO8A3f6L8xRIYvMDn8/L5FPqD8L e4z35g1waxjBCfkx1oXca75G7AY678bItgoqjh+fdG9a520G/vHQquzXeDXuJ/GJ DsvCYNHVDsGgjb5JPi65FKIkko3Do+qNGJXpCch9Pke9scwf5SyHKoK+pRJuLSNu +1Jgw2S6Bk7uy35xCSQvv863E/k74ElDlI31r0bY+W3togdPRR68h3JGPS8= -----END CERTIFICATE-----Generated at Sun Aug 10 04:16:57 2025 by rpki-client