$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2304bbf7-aaad-4af6-85cf-ac713779380e.roa File: 2304bbf7-aaad-4af6-85cf-ac713779380e.roa (raw, json) Hash identifier: qG1BmnbGN3n+/femHwT9tl8RH322jVVj2Rz1EwHvdzs= Subject key identifier: 24:70:41:03:1E:47:C0:9F:B2:97:44:A5:72:71:03:3F:A9:45:46:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36996154CCEF0FEABC8D9BD1D73B0188D7D835D0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2304bbf7-aaad-4af6-85cf-ac713779380e.roa Signing time: Mon 04 Aug 2025 15:11:48 +0000 ROA not before: Mon 04 Aug 2025 15:11:48 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:99:61:54:cc:ef:0f:ea:bc:8d:9b:d1:d7:3b:01:88:d7:d8:35:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:11:48 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=8814f5f14f4da6863ab6b152e3f2f06635c833d75a796100748e1a95b328994a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b3:27:a2:e4:49:99:a1:e1:2c:61:13:ea:70: 3d:13:e6:11:d6:ec:97:e3:16:2d:30:a5:d7:fe:26: 16:ed:47:02:9f:ef:60:76:fc:68:37:d5:dc:73:ac: 74:dc:a1:5e:5a:f5:fd:5b:f3:7c:49:47:10:6f:07: 99:7c:bf:3f:21:21:4a:12:b8:03:58:81:12:72:60: 58:4d:71:e8:74:6e:91:1c:37:c6:0f:39:5e:6d:fd: d4:92:33:46:6e:78:8f:7a:e3:38:d1:1a:ee:3d:1c: 41:07:47:b9:27:91:87:60:35:9b:9a:1a:e7:81:55: de:c5:8f:04:e5:d7:18:85:fb:f0:44:bb:25:ad:5c: de:78:f4:80:86:ee:b1:08:7a:f3:3b:d1:7b:7a:f1: ce:cc:47:d8:46:20:d0:3d:96:e8:c6:04:d2:c6:14: 04:1f:70:cb:95:10:5b:e7:05:ec:c7:87:5d:fd:d9: f5:95:48:c9:f4:7f:0b:1f:c7:9d:76:cf:87:a8:90: 8a:2e:04:60:06:be:e7:00:da:5c:ae:7b:80:3d:85: 6b:6f:8a:06:0e:c8:05:f7:32:d2:7b:dc:f7:ad:d6: 56:2f:9a:f9:bb:b2:29:43:98:74:95:35:9c:d6:48: cf:94:ae:84:d2:8c:93:b7:65:44:4d:4f:6d:e7:69: 80:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:70:41:03:1E:47:C0:9F:B2:97:44:A5:72:71:03:3F:A9:45:46:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2304bbf7-aaad-4af6-85cf-ac713779380e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.68.0/22 Signature Algorithm: sha256WithRSAEncryption d0:fb:8f:e4:32:60:3f:84:fd:fb:5b:26:25:a9:dc:c9:8d:57: 33:6e:4c:41:59:34:d2:e0:1b:74:7c:68:70:f5:39:02:a7:1f: 61:1a:f8:5f:35:c8:cc:2c:df:39:7c:57:fd:59:42:6f:2a:f7: 35:fc:6a:02:13:8d:f9:39:ed:1b:b3:0d:0a:69:24:7d:23:81: 8e:1d:3e:9d:5d:a1:35:fe:93:78:f9:29:3b:7f:23:c5:17:1d: 3f:fa:d9:36:5d:7f:c8:fd:1a:17:15:4c:f5:45:f9:2b:8c:59: 4e:51:e3:e0:d7:b6:88:f5:7d:3a:a5:b2:2d:e4:cd:55:12:0e: 1e:76:c2:39:37:d0:8d:4d:e0:ae:e6:08:2d:0f:6d:2c:7f:ee: c5:87:2c:e7:6b:99:74:f3:9f:30:54:a0:ed:bd:95:d6:a9:60: d9:45:db:d9:bb:72:b8:c1:86:51:bd:f2:03:41:a3:18:89:3d: 14:19:cc:79:4d:17:e6:7b:80:d6:86:bb:ce:eb:0a:8e:ad:0b: eb:13:ed:89:cd:b2:01:f3:19:18:61:94:f3:d6:9b:2d:02:2d: 82:e4:fe:c3:97:79:c2:f3:90:46:0f:c6:04:0b:97:33:6d:d0: 76:ea:82:f0:8c:78:0a:b0:a4:b5:fe:58:ec:47:8c:89:ea:32: b2:f7:38:5c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNplhVMzvD+q8jZvR1zsBiNfYNdAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTUxMTQ4WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODE0ZjVmMTRmNGRhNjg2M2FiNmIxNTJlM2YyZjA2NjM1 YzgzM2Q3NWE3OTYxMDA3NDhlMWE5NWIzMjg5OTRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxsyei5EmZoeEsYRPqcD0T5hHW7JfjFi0wpdf+JhbtRwKf 72B2/Gg31dxzrHTcoV5a9f1b83xJRxBvB5l8vz8hIUoSuANYgRJyYFhNceh0bpEc N8YPOV5t/dSSM0ZueI964zjRGu49HEEHR7knkYdgNZuaGueBVd7FjwTl1xiF+/BE uyWtXN549ICG7rEIevM70Xt68c7MR9hGINA9lujGBNLGFAQfcMuVEFvnBezHh139 2fWVSMn0fwsfx512z4eokIouBGAGvucA2lyue4A9hWtvigYOyAX3MtJ73Pet1lYv mvm7silDmHSVNZzWSM+UroTSjJO3ZURNT23naYDfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJHBBAx5HwJ+yl0SlcnEDP6lFRgUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzMDRiYmY3LWFhYWQtNGFmNi04NWNmLWFjNzEzNzc5MzgwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBskQwDQYJKoZIhvcNAQELBQADggEBAND7j+QyYD+E/ftbJiWp3MmNVzNu TEFZNNLgG3R8aHD1OQKnH2Ea+F81yMws3zl8V/1ZQm8q9zX8agITjfk57RuzDQpp JH0jgY4dPp1doTX+k3j5KTt/I8UXHT/62TZdf8j9GhcVTPVF+SuMWU5R4+DXtoj1 fTqlsi3kzVUSDh52wjk30I1N4K7mCC0PbSx/7sWHLOdrmXTznzBUoO29ldapYNlF 29m7crjBhlG98gNBoxiJPRQZzHlNF+Z7gNaGu87rCo6tC+sT7YnNsgHzGRhhlPPW my0CLYLk/sOXecLzkEYPxgQLlzNt0HbqgvCMeAqwpLX+WOxHjInqMrL3OFw= -----END CERTIFICATE-----Generated at Sat Aug 9 05:46:02 2025 by rpki-client