$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/167c2022-ea91-49dd-a73e-cd5a040c15b6.roa File: 167c2022-ea91-49dd-a73e-cd5a040c15b6.roa (raw, json) Hash identifier: qDjUuFJkVaggsL/BVds/QxB8grxhzjgrZtwYdwD6q+k= Subject key identifier: 1D:B8:6C:F4:64:B9:67:2F:FC:DF:85:46:4E:0B:9E:53:35:B6:55:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 57B8243C6759B9071291F6963E6DD0BF0CFA57B8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/167c2022-ea91-49dd-a73e-cd5a040c15b6.roa Signing time: Wed 23 Jul 2025 00:22:10 +0000 ROA not before: Wed 23 Jul 2025 00:22:10 +0000 ROA not after: Wed 27 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 184.72.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:b8:24:3c:67:59:b9:07:12:91:f6:96:3e:6d:d0:bf:0c:fa:57:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 23 00:22:10 2025 GMT Not After : Aug 27 23:59:59 2025 GMT Subject: serialNumber=291b29f402949b06626f9d336d16aba9c78c0e035b7e7f46fbca848b482795bf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:af:08:a5:b4:b5:21:b1:25:04:8b:76:cc:a6: 27:b5:af:ab:eb:67:75:78:d8:d7:99:06:02:1c:b1: 2a:67:7d:ac:eb:e1:2b:3b:81:ec:d9:91:ab:18:92: 85:7e:bf:04:7b:78:45:b1:d4:5e:f4:93:d8:aa:40: dc:99:22:4d:27:e2:c2:25:9c:a4:99:14:73:cd:bb: c5:d7:05:53:82:67:25:ce:04:d1:03:40:a9:7a:79: 32:37:df:9b:ec:2f:cd:f7:c4:0d:fe:d6:15:67:ff: e1:ed:9b:0a:64:0d:0d:4b:ca:bc:56:b9:9e:93:1f: d8:e5:d3:c4:5b:9a:c4:78:15:29:90:f6:37:6e:75: 86:a0:f8:46:2e:39:45:5c:cc:ab:41:11:73:53:e2: fa:47:a4:68:50:4c:0b:50:d2:57:57:37:8f:c2:ac: a6:6e:ee:31:de:4b:c7:4d:b4:3c:e7:62:82:ac:50: 2c:a3:ab:0a:ce:70:ba:3d:43:a3:63:22:f0:46:7d: aa:20:02:91:52:76:14:74:c4:e6:08:18:8e:fa:59: fd:cc:de:9b:7f:66:0f:f9:83:ef:af:4d:b6:9b:6a: 5e:1a:63:78:02:55:1f:58:29:1a:d6:f3:37:c4:ef: 91:ea:90:e3:33:52:32:ee:c2:55:67:00:70:d0:2d: bd:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:B8:6C:F4:64:B9:67:2F:FC:DF:85:46:4E:0B:9E:53:35:B6:55:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/167c2022-ea91-49dd-a73e-cd5a040c15b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.64.0/18 Signature Algorithm: sha256WithRSAEncryption 50:e8:e9:09:b6:f2:78:28:84:96:cc:e5:55:7b:33:64:91:dd: 80:91:3c:20:a5:62:f3:1e:49:74:91:6c:18:74:9f:89:f4:98: 34:1a:f6:31:7d:de:72:0d:15:c3:a1:e2:b9:f8:54:c2:52:bc: e3:92:e4:6e:3a:e4:33:32:9a:ff:81:11:c9:7c:9f:1d:5c:06: 80:ff:58:15:fa:5a:b3:87:ad:d5:18:4a:0e:8b:7a:31:db:49: 46:d1:10:69:2d:1b:f8:2e:2c:0b:00:f4:1f:95:8c:b8:56:72: 7c:77:6a:bb:c2:cd:b7:ad:66:dc:94:08:00:4a:be:60:f7:ea: 9c:1c:5b:02:7a:88:36:bf:15:cb:f0:9b:1b:a6:03:8c:5c:b0: 16:b5:ff:ba:82:76:57:1d:de:e8:89:32:7e:93:cf:a1:6b:51: d9:b1:7b:c8:8f:95:ff:a5:eb:d6:62:7d:59:d9:db:70:d5:d7: 98:89:72:7e:c0:36:8c:7f:3b:5c:77:96:0a:ce:b2:65:cc:eb: 90:44:ae:de:bc:71:30:8e:2e:52:29:66:69:9c:6b:22:91:ac: b1:9f:dd:c7:b5:01:4a:8b:67:74:c9:ba:c4:cb:3f:36:a6:7f: d5:03:75:4c:a9:78:d5:cf:79:c7:83:51:fc:4e:98:07:73:e8: 6f:30:c5:11 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV7gkPGdZuQcSkfaWPm3Qvwz6V7gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIzMDAyMjEwWhcNMjUwODI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTFiMjlmNDAyOTQ5YjA2NjI2ZjlkMzM2ZDE2YWJhOWM3 OGMwZTAzNWI3ZTdmNDZmYmNhODQ4YjQ4Mjc5NWJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCarwiltLUhsSUEi3bMpie1r6vrZ3V42NeZBgIcsSpnfazr 4Ss7gezZkasYkoV+vwR7eEWx1F70k9iqQNyZIk0n4sIlnKSZFHPNu8XXBVOCZyXO BNEDQKl6eTI335vsL833xA3+1hVn/+HtmwpkDQ1LyrxWuZ6TH9jl08RbmsR4FSmQ 9jdudYag+EYuOUVczKtBEXNT4vpHpGhQTAtQ0ldXN4/CrKZu7jHeS8dNtDznYoKs UCyjqwrOcLo9Q6NjIvBGfaogApFSdhR0xOYIGI76Wf3M3pt/Zg/5g++vTbabal4a Y3gCVR9YKRrW8zfE75HqkOMzUjLuwlVnAHDQLb3xAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHbhs9GS5Zy/834VGTgueUzW2VZIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2N2MyMDIyLWVhOTEtNDlkZC1hNzNlLWNkNWEwNDBjMTViNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAa4SEAwDQYJKoZIhvcNAQELBQADggEBAFDo6Qm28ngohJbM5VV7M2SR3YCR PCClYvMeSXSRbBh0n4n0mDQa9jF93nINFcOh4rn4VMJSvOOS5G465DMymv+BEcl8 nx1cBoD/WBX6WrOHrdUYSg6LejHbSUbREGktG/guLAsA9B+VjLhWcnx3arvCzbet ZtyUCABKvmD36pwcWwJ6iDa/FcvwmxumA4xcsBa1/7qCdlcd3uiJMn6Tz6FrUdmx e8iPlf+l69ZifVnZ23DV15iJcn7ANox/O1x3lgrOsmXM65BErt68cTCOLlIpZmmc ayKRrLGf3ce1AUqLZ3TJusTLPzamf9UDdUypeNXPeceDUfxOmAdz6G8wxRE= -----END CERTIFICATE-----Generated at Mon Aug 4 14:50:47 2025 by rpki-client