$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21224473-433c-4fa2-9491-e141ae8efbea.roa File: 21224473-433c-4fa2-9491-e141ae8efbea.roa (raw, json) Hash identifier: rOdKx1UISkrwXaIELEwZEF6BYCzO6mzCslMKtdspOLA= Subject key identifier: EC:E4:DF:8E:50:D7:2E:D3:02:CE:C6:02:E0:AD:54:53:48:FB:12:EC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 34D866F50EAA15F7E13B57F6005271E94DF5B4FE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21224473-433c-4fa2-9491-e141ae8efbea.roa Signing time: Tue 05 Aug 2025 00:50:23 +0000 ROA not before: Tue 05 Aug 2025 00:50:23 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 75.3.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:d8:66:f5:0e:aa:15:f7:e1:3b:57:f6:00:52:71:e9:4d:f5:b4:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:50:23 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=38601e25f6b7646f533bcfb904ff6e3d99cba145849349e6574ef960e8e5065d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6c:ac:87:d9:2e:0b:d4:f1:c1:c0:ff:e2:9f: 0a:ba:fd:7a:4e:bf:19:ac:b9:d9:31:6f:c2:81:15: e7:02:8a:48:b7:f8:34:a2:ac:af:db:b7:be:d0:99: 5c:52:d7:8f:08:72:c0:3a:13:24:6e:69:ae:a4:a7: 18:44:95:39:e7:46:11:37:f1:99:ba:0c:71:6b:3b: 4e:26:e1:8c:80:0e:2c:8b:ad:21:46:08:49:46:c0: 11:73:07:d1:0a:fe:71:82:f7:f7:10:86:f2:90:9d: f6:8f:b6:c3:dc:e3:a2:99:2a:0d:fc:23:e7:cc:63: 71:8e:78:bf:25:64:37:93:ab:82:f6:97:2f:85:49: bb:01:57:8a:1c:6a:a3:f6:03:9f:a2:fb:3d:bd:ff: fc:3a:08:a1:58:a7:82:b5:0f:d4:d1:44:1c:47:5a: 94:f6:71:11:01:fe:52:e1:3f:cd:5e:ef:80:ec:10: 82:18:77:80:2d:6a:e2:34:13:bf:f6:ad:03:77:df: 75:51:0e:ef:b2:e8:76:64:fc:69:46:63:37:3c:d6: 4d:9c:a9:10:d8:29:e4:a0:b4:c2:ea:6c:58:ea:90: 54:96:23:3f:4a:f7:a1:23:40:c3:a5:bf:44:c4:f3: 60:4f:6b:e0:6e:a1:22:ed:05:3b:7d:90:ad:c1:a1: 36:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:E4:DF:8E:50:D7:2E:D3:02:CE:C6:02:E0:AD:54:53:48:FB:12:EC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21224473-433c-4fa2-9491-e141ae8efbea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.3.128.0/18 Signature Algorithm: sha256WithRSAEncryption 45:47:25:44:bc:3a:25:75:c8:9e:d6:39:04:19:7e:a4:ac:81: ab:c6:41:84:49:ae:e5:55:8e:cc:b9:69:58:5c:13:5f:15:12: 25:19:8a:a2:e5:c5:30:b3:19:0c:c3:30:67:4a:df:5d:22:95: fa:69:1a:ed:34:a8:db:44:6d:28:ef:ae:f3:87:d0:14:b9:43: 9f:61:79:4b:88:0e:8c:bb:19:11:96:60:2a:0a:20:3d:d0:01: 52:a7:a4:39:24:69:c8:7b:4d:cf:41:b8:c8:5a:9e:a9:61:45: ba:50:fb:e6:36:3f:30:36:15:55:57:74:8f:5e:fc:bb:70:c8: 1b:38:11:05:6b:e3:47:72:e3:ba:51:67:66:64:74:86:f0:44: 5d:2b:00:f1:bd:c3:04:bf:40:6b:be:a5:a9:d4:18:92:ba:e4: da:78:0f:4e:89:dc:02:f4:22:2a:13:d7:e4:3c:e5:9e:45:bd: 93:32:fd:c1:34:ad:4b:93:16:a1:3a:50:37:c4:e7:17:b1:75: 4b:68:99:71:cf:19:c9:d6:f4:3f:25:e4:88:53:00:f8:59:60: 98:9f:11:03:29:76:c5:0d:8e:6b:4a:40:1d:3e:33:9d:1b:fa: db:e8:14:e7:88:60:5c:6c:db:17:b2:c7:33:b6:76:3f:4e:d7: e5:25:8c:f5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNNhm9Q6qFffhO1f2AFJx6U31tP4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDA1MDIzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzODYwMWUyNWY2Yjc2NDZmNTMzYmNmYjkwNGZmNmUzZDk5 Y2JhMTQ1ODQ5MzQ5ZTY1NzRlZjk2MGU4ZTUwNjVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7bKyH2S4L1PHBwP/inwq6/XpOvxmsudkxb8KBFecCiki3 +DSirK/bt77QmVxS148IcsA6EyRuaa6kpxhElTnnRhE38Zm6DHFrO04m4YyADiyL rSFGCElGwBFzB9EK/nGC9/cQhvKQnfaPtsPc46KZKg38I+fMY3GOeL8lZDeTq4L2 ly+FSbsBV4ocaqP2A5+i+z29//w6CKFYp4K1D9TRRBxHWpT2cREB/lLhP81e74Ds EIIYd4AtauI0E7/2rQN333VRDu+y6HZk/GlGYzc81k2cqRDYKeSgtMLqbFjqkFSW Iz9K96EjQMOlv0TE82BPa+BuoSLtBTt9kK3BoTZnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7OTfjlDXLtMCzsYC4K1UU0j7EuwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxMjI0NDczLTQzM2MtNGZhMi05NDkxLWUxNDFhZThlZmJlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZLA4AwDQYJKoZIhvcNAQELBQADggEBAEVHJUS8OiV1yJ7WOQQZfqSsgavG QYRJruVVjsy5aVhcE18VEiUZiqLlxTCzGQzDMGdK310ilfppGu00qNtEbSjvrvOH 0BS5Q59heUuIDoy7GRGWYCoKID3QAVKnpDkkach7Tc9BuMhanqlhRbpQ++Y2PzA2 FVVXdI9e/LtwyBs4EQVr40dy47pRZ2ZkdIbwRF0rAPG9wwS/QGu+panUGJK65Np4 D06J3AL0IioT1+Q85Z5FvZMy/cE0rUuTFqE6UDfE5xexdUtomXHPGcnW9D8l5IhT APhZYJifEQMpdsUNjmtKQB0+M50b+tvoFOeIYFxs2xeyxzO2dj9O1+UljPU= -----END CERTIFICATE-----Generated at Fri Aug 8 20:48:42 2025 by rpki-client