$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4a5c37-6429-4730-82fb-4ab5c589cd7d.roa File: 2a4a5c37-6429-4730-82fb-4ab5c589cd7d.roa (raw, json) Hash identifier: Ea4IkU/bBFcUw2HuDbpvzYoFfkpglOukySxSmGdS9DU= Subject key identifier: 88:D8:85:F9:0B:59:A2:88:6F:8E:5E:6A:DA:7F:37:04:2F:3A:49:9D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 583E354EFF4C8B31879D9832ECBF87A44D73E962 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4a5c37-6429-4730-82fb-4ab5c589cd7d.roa Signing time: Fri 01 Aug 2025 15:12:17 +0000 ROA not before: Fri 01 Aug 2025 15:12:17 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 157.175.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:3e:35:4e:ff:4c:8b:31:87:9d:98:32:ec:bf:87:a4:4d:73:e9:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:12:17 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=c1f27f4a7e4b45f4b320f0388eacb119acdc80a54f70435a404cfcc5cd3e8a3b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9c:1d:c7:bf:30:08:92:d7:0c:33:f3:47:2e: 74:0e:ca:9a:a5:69:8e:e6:2c:40:c5:09:78:0e:2f: a4:39:85:3a:76:57:d3:01:d8:cc:99:42:ff:cb:12: 40:a4:f1:93:68:ce:aa:b9:cb:cb:99:55:ea:a9:73: b0:dd:d0:77:8e:b0:0a:dd:38:be:37:f2:2f:f9:9e: 06:cc:3c:f3:98:6d:8c:74:93:31:68:ff:2d:80:a6: d1:5d:87:0a:31:05:f5:13:23:2a:65:81:b1:3c:40: 51:99:d4:a6:dd:1d:0b:0d:1f:c1:35:b4:8f:0b:8d: cd:80:e0:fd:ac:4e:e0:5d:c5:3a:bf:d4:fb:27:40: 9d:89:00:a4:26:31:48:fa:34:97:c2:f9:31:2c:1d: bf:cb:b9:0b:62:9d:c3:b2:da:36:1c:36:b6:19:c6: a4:bd:a9:9a:0d:74:b5:f1:7c:cb:2c:47:4c:db:e8: 47:b8:d4:be:e1:85:fa:b3:3c:c4:ed:ba:46:76:e1: c3:b4:26:31:30:dc:c8:b6:aa:6c:93:d4:c6:b8:1f: 63:fb:1c:a7:be:57:00:60:94:43:46:28:c6:8e:64: ef:a0:7f:c0:00:b6:e9:1f:42:e2:b3:92:e5:40:bb: a7:4a:58:48:9f:ff:90:a2:63:4f:14:2f:bb:79:4c: 90:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:D8:85:F9:0B:59:A2:88:6F:8E:5E:6A:DA:7F:37:04:2F:3A:49:9D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4a5c37-6429-4730-82fb-4ab5c589cd7d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.175.4.0/22 Signature Algorithm: sha256WithRSAEncryption be:4d:19:4d:1b:c9:29:51:c4:a8:96:92:1f:59:2d:f8:7f:ff: 07:66:0d:66:fb:99:a3:a4:5f:87:28:d5:26:6a:a9:81:37:14: 4a:8f:c7:33:27:c9:bd:a3:6a:00:9c:5b:73:94:dc:8d:29:56: c6:4e:17:b9:c9:52:d3:89:13:56:a7:07:2d:f7:f2:30:f3:bc: 7e:4d:a8:65:ba:5e:2c:79:18:55:ea:52:55:15:db:f1:34:12: 73:ae:47:4b:01:69:fc:94:4f:20:81:c8:ac:52:a8:aa:bf:da: 4a:25:39:04:3b:0d:75:86:5b:b8:35:5b:40:da:3f:3a:27:20: ea:4d:56:d3:1b:0a:6e:92:b7:d7:1d:7c:a7:23:00:a9:bd:6d: 94:d1:f5:29:4a:1d:18:25:fc:0b:19:b7:7f:61:cd:4c:a7:21: fa:ca:98:1e:89:f9:8c:19:1b:ac:ca:f7:4e:b3:29:49:f1:75: db:8b:95:af:3d:e3:e0:07:b1:a5:e4:ea:21:e2:3c:19:aa:a6: eb:9d:91:8c:3c:1d:0d:1a:94:86:0c:c8:3a:1a:2b:54:db:65: 80:6e:eb:57:0d:c5:64:c5:ec:1c:42:17:c6:a7:9b:40:af:8a: d2:6f:cd:5a:50:a0:48:a9:50:ae:5c:3d:62:44:cc:e6:55:27: 95:2b:49:f3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWD41Tv9MizGHnZgy7L+HpE1z6WIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUxMjE3WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMWYyN2Y0YTdlNGI0NWY0YjMyMGYwMzg4ZWFjYjExOWFj ZGM4MGE1NGY3MDQzNWE0MDRjZmNjNWNkM2U4YTNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMnB3HvzAIktcMM/NHLnQOypqlaY7mLEDFCXgOL6Q5hTp2 V9MB2MyZQv/LEkCk8ZNozqq5y8uZVeqpc7Dd0HeOsArdOL438i/5ngbMPPOYbYx0 kzFo/y2AptFdhwoxBfUTIyplgbE8QFGZ1KbdHQsNH8E1tI8Ljc2A4P2sTuBdxTq/ 1PsnQJ2JAKQmMUj6NJfC+TEsHb/LuQtincOy2jYcNrYZxqS9qZoNdLXxfMssR0zb 6Ee41L7hhfqzPMTtukZ24cO0JjEw3Mi2qmyT1Ma4H2P7HKe+VwBglENGKMaOZO+g f8AAtukfQuKzkuVAu6dKWEif/5CiY08UL7t5TJDRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiNiF+QtZoohvjl5q2n83BC86SZ0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhNGE1YzM3LTY0MjktNDczMC04MmZiLTRhYjVjNTg5Y2Q3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKdrwQwDQYJKoZIhvcNAQELBQADggEBAL5NGU0bySlRxKiWkh9ZLfh//wdm DWb7maOkX4co1SZqqYE3FEqPxzMnyb2jagCcW3OU3I0pVsZOF7nJUtOJE1anBy33 8jDzvH5NqGW6Xix5GFXqUlUV2/E0EnOuR0sBafyUTyCByKxSqKq/2kolOQQ7DXWG W7g1W0DaPzonIOpNVtMbCm6St9cdfKcjAKm9bZTR9SlKHRgl/AsZt39hzUynIfrK mB6J+YwZG6zK906zKUnxdduLla894+AHsaXk6iHiPBmqpuudkYw8HQ0alIYMyDoa K1TbZYBu61cNxWTF7BxCF8anm0CvitJvzVpQoEipUK5cPWJEzOZVJ5UrSfM= -----END CERTIFICATE-----Generated at Wed Aug 6 13:19:47 2025 by rpki-client