$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/039a5967-2b5f-4316-9dd1-35af5965b5a7.roa File: 039a5967-2b5f-4316-9dd1-35af5965b5a7.roa (raw, json) Hash identifier: KwGVHTz/jzjmx/3UK7U+xasZwmpJQzQw6PWbna8sdnQ= Subject key identifier: 9B:51:CF:C9:34:F2:36:E4:92:14:D1:DB:BE:D0:EE:FC:C0:8B:6C:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 671037247933CD58BFC6373DE78E8E75C8683DAF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/039a5967-2b5f-4316-9dd1-35af5965b5a7.roa Signing time: Tue 22 Jul 2025 00:11:49 +0000 ROA not before: Tue 22 Jul 2025 00:11:49 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 192.157.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:10:37:24:79:33:cd:58:bf:c6:37:3d:e7:8e:8e:75:c8:68:3d:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 00:11:49 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=41ed54e6eee28fdc082261705a7d20e6505229b03ac7913579fcc79497cfa6e8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3e:fc:7d:56:c0:0e:b7:b0:b4:4e:01:c4:6d: ec:66:0f:d4:22:27:f2:6e:98:39:11:0a:4a:1e:f6: f5:10:9a:5f:2d:bf:4c:a9:06:72:3c:88:8b:8e:96: b8:a4:90:71:59:21:0a:1f:da:ba:1d:ac:57:47:b1: d1:2c:d2:8c:8e:e8:ed:cf:8f:84:a2:1d:27:32:58: 20:00:7e:c8:9e:db:91:96:ba:7d:00:6d:c0:9d:80: 04:0b:23:be:2c:26:17:2e:4a:6b:d9:27:03:2d:84: c0:e8:83:f4:d2:26:73:fc:ce:5f:d4:43:29:c5:da: f2:b4:1f:e4:29:56:94:19:cd:e1:f0:75:9d:16:b3: 43:84:5a:07:bc:02:73:59:8e:69:d8:5f:39:cc:f7: 44:ca:9c:40:32:7e:72:3c:de:98:90:dd:61:84:7f: 5d:8f:9f:0d:94:ed:90:76:79:b3:95:66:c0:ce:fa: 22:36:58:09:d2:95:04:85:bc:b7:1e:39:91:4a:fd: 58:5f:31:12:93:e7:93:5b:12:c1:2c:93:78:50:6e: 8d:a1:5c:9f:23:3e:70:ea:e8:f4:cf:ec:79:43:e9: 64:de:7e:ab:22:aa:95:c9:2d:37:90:6c:36:ef:56: 17:20:7d:d3:9b:f7:f5:e5:be:bf:8b:83:36:45:aa: 7f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:51:CF:C9:34:F2:36:E4:92:14:D1:DB:BE:D0:EE:FC:C0:8B:6C:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/039a5967-2b5f-4316-9dd1-35af5965b5a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.157.32.0/22 Signature Algorithm: sha256WithRSAEncryption d7:d5:3d:f1:37:90:a7:c6:35:a7:7d:62:77:af:2e:d1:d9:56: ba:68:b5:4d:4c:95:84:32:cd:06:f9:90:49:ea:e7:e7:c8:68: bc:15:81:ba:14:13:62:84:98:34:29:34:6a:ee:00:1b:0d:76: d5:3e:bd:36:e8:34:c5:23:23:54:66:39:b7:f6:60:08:74:7a: e1:ad:74:89:b9:45:a3:cf:72:41:8a:79:ec:0b:77:04:9b:39: ba:7d:bc:b6:e2:74:e0:c9:eb:42:9f:b1:d5:54:2e:7f:cd:ee: 16:b0:98:9a:27:3a:80:d5:a9:96:29:d7:e9:09:49:7b:b7:4d: 88:b4:11:d8:21:45:0c:c9:32:f4:73:56:3b:5c:37:a3:5a:03: 95:83:ca:7a:be:31:ea:f3:f4:03:ee:75:f7:fd:ee:b5:f7:0b: cc:dc:97:7c:12:e5:32:f3:54:4a:ec:da:a9:56:76:d2:68:6a: 2b:f8:d3:df:d6:1f:b7:1a:34:e7:ab:6e:85:a0:38:71:50:ce: 5d:0f:f4:ab:35:58:ca:dd:da:32:ec:cb:b9:2d:c7:d6:7c:4e: 27:0b:ec:d6:88:3e:93:2a:a8:98:b4:63:a2:bc:58:7e:ce:e6: f8:39:1c:17:e6:6a:51:cb:7a:a4:ea:c3:c9:3b:21:fb:19:1d: 02:72:bb:fa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZxA3JHkzzVi/xjc9546OdchoPa8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMDAxMTQ5WhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MWVkNTRlNmVlZTI4ZmRjMDgyMjYxNzA1YTdkMjBlNjUw NTIyOWIwM2FjNzkxMzU3OWZjYzc5NDk3Y2ZhNmU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAPvx9VsAOt7C0TgHEbexmD9QiJ/JumDkRCkoe9vUQml8t v0ypBnI8iIuOlrikkHFZIQof2rodrFdHsdEs0oyO6O3Pj4SiHScyWCAAfsie25GW un0AbcCdgAQLI74sJhcuSmvZJwMthMDog/TSJnP8zl/UQynF2vK0H+QpVpQZzeHw dZ0Ws0OEWge8AnNZjmnYXznM90TKnEAyfnI83piQ3WGEf12Pnw2U7ZB2ebOVZsDO +iI2WAnSlQSFvLceOZFK/VhfMRKT55NbEsEsk3hQbo2hXJ8jPnDq6PTP7HlD6WTe fqsiqpXJLTeQbDbvVhcgfdOb9/Xlvr+LgzZFqn95AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm1HPyTTyNuSSFNHbvtDu/MCLbMAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzOWE1OTY3LTJiNWYtNDMxNi05ZGQxLTM1YWY1OTY1YjVhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALAnSAwDQYJKoZIhvcNAQELBQADggEBANfVPfE3kKfGNad9YnevLtHZVrpo tU1MlYQyzQb5kEnq5+fIaLwVgboUE2KEmDQpNGruABsNdtU+vTboNMUjI1RmObf2 YAh0euGtdIm5RaPPckGKeewLdwSbObp9vLbidODJ60KfsdVULn/N7hawmJonOoDV qZYp1+kJSXu3TYi0EdghRQzJMvRzVjtcN6NaA5WDynq+Merz9APudff97rX3C8zc l3wS5TLzVErs2qlWdtJoaiv409/WH7caNOerboWgOHFQzl0P9Ks1WMrd2jLsy7kt x9Z8TicL7NaIPpMqqJi0Y6K8WH7O5vg5HBfmalHLeqTqw8k7IfsZHQJyu/o= -----END CERTIFICATE-----Generated at Wed Aug 6 00:48:10 2025 by rpki-client