$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d163000-da92-4a82-87fe-0bc2263033d1.roa File: 2d163000-da92-4a82-87fe-0bc2263033d1.roa (raw, json) Hash identifier: uT4wjowpuGb6sjaeiOBSj/U88zYsfPN+qerbfbje1J4= Subject key identifier: 98:F6:8D:DF:03:D8:80:2C:DB:7D:06:94:0B:DF:AE:F7:CC:AE:F4:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 62202898578DF250DBF91A3D6FFB71D45B30F5F7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d163000-da92-4a82-87fe-0bc2263033d1.roa Signing time: Sat 26 Jul 2025 00:10:36 +0000 ROA not before: Sat 26 Jul 2025 00:10:36 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 78.12.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:20:28:98:57:8d:f2:50:db:f9:1a:3d:6f:fb:71:d4:5b:30:f5:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 26 00:10:36 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=91af32f656441b062a2a9f2f03a880f16ed8c8c1992cc9368dbe03cb0c340fb8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b8:a1:a9:8c:40:88:84:ad:de:c3:d6:d7:d6: 03:93:72:ff:4e:9f:04:dd:19:cc:d0:47:36:05:ff: 35:1c:5e:81:10:26:9c:a4:98:89:e8:e6:c8:ce:b8: 89:7a:4d:17:0d:df:2e:7b:52:5b:33:e1:87:99:da: 92:c4:7d:1d:a3:cb:ab:b4:88:60:f0:ee:3c:ad:21: b8:0d:95:b3:08:2c:12:dd:ce:77:91:2c:be:37:a7: f0:ba:9e:37:37:85:ee:0c:95:1e:ce:5b:de:8f:0b: 7f:cd:44:75:08:18:29:3b:a8:e8:8e:f5:fb:01:f1: 90:2d:c7:c5:db:6f:4d:86:62:9b:15:1a:2f:59:11: c2:c6:c6:ee:61:95:56:cb:34:f1:94:4a:73:d9:e9: fe:c2:96:d2:3c:d0:af:ff:d1:b3:0e:a7:b1:0c:ae: a9:bf:63:a3:f0:e2:61:2a:28:54:90:21:85:41:9c: 10:51:3b:27:4a:63:36:a5:64:b0:27:a3:8e:02:a4: 14:8c:51:88:1f:d0:87:c8:e3:16:d9:ed:ee:05:bd: 98:ba:36:6f:82:de:bd:ab:64:99:d7:6a:24:57:a0: 05:0b:78:b8:74:64:31:17:c6:68:31:64:af:5f:7b: a1:8e:ed:cd:5a:0a:56:02:0b:9a:b1:20:3a:5f:a6: c6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:F6:8D:DF:03:D8:80:2C:DB:7D:06:94:0B:DF:AE:F7:CC:AE:F4:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d163000-da92-4a82-87fe-0bc2263033d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.12.64.0/23 Signature Algorithm: sha256WithRSAEncryption 38:33:1d:b4:a6:bf:5e:59:5f:56:8f:f0:cd:84:d4:c4:db:b1: ca:9b:aa:b8:37:01:da:65:bc:52:50:29:91:47:0b:4f:8a:cb: b4:09:e2:fa:d5:ba:9c:91:d2:82:a0:0d:b3:09:20:f8:c9:32: 64:fb:2b:0f:c5:57:5a:c2:c7:29:96:8a:dc:e0:0d:56:4d:0e: b6:94:c3:13:9f:3b:37:90:79:ee:7e:16:1e:d6:f5:83:5d:21: 89:f6:b4:61:b2:91:6d:da:b1:6c:f3:0a:da:28:12:f8:ef:19: c1:1a:68:83:8c:5d:29:a3:02:34:0f:fd:f3:38:88:fb:70:28: c8:16:1a:6d:06:5f:9f:c0:55:2c:5c:07:96:d9:f7:de:c8:3a: 85:b0:48:56:b5:a5:b8:dd:64:ec:b0:23:89:20:37:64:22:6e: 14:a8:81:5c:c5:2a:78:44:f1:4c:85:b8:8d:e6:02:1e:06:55: 87:4c:62:de:47:c9:50:2d:f8:58:b3:aa:25:1a:7c:59:17:19: d1:c4:94:da:0a:70:10:fb:65:b1:9e:51:b8:ee:6d:3b:00:93: f3:08:11:44:53:b7:cd:18:bc:c3:fc:d7:81:36:56:f1:cd:33: ec:61:b5:b9:06:53:13:10:ab:ff:3e:b6:a5:e5:62:bc:6b:8b: 6c:d4:35:32 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYiAomFeN8lDb+Ro9b/tx1Fsw9fcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI2MDAxMDM2WhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MWFmMzJmNjU2NDQxYjA2MmEyYTlmMmYwM2E4ODBmMTZl ZDhjOGMxOTkyY2M5MzY4ZGJlMDNjYjBjMzQwZmI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjuKGpjECIhK3ew9bX1gOTcv9OnwTdGczQRzYF/zUcXoEQ JpykmIno5sjOuIl6TRcN3y57Ulsz4YeZ2pLEfR2jy6u0iGDw7jytIbgNlbMILBLd zneRLL43p/C6njc3he4MlR7OW96PC3/NRHUIGCk7qOiO9fsB8ZAtx8Xbb02GYpsV Gi9ZEcLGxu5hlVbLNPGUSnPZ6f7CltI80K//0bMOp7EMrqm/Y6Pw4mEqKFSQIYVB nBBROydKYzalZLAno44CpBSMUYgf0IfI4xbZ7e4FvZi6Nm+C3r2rZJnXaiRXoAUL eLh0ZDEXxmgxZK9fe6GO7c1aClYCC5qxIDpfpsajAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmPaN3wPYgCzbfQaUC9+u98yu9HUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJkMTYzMDAwLWRhOTItNGE4Mi04N2ZlLTBiYzIyNjMwMzNkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFODEAwDQYJKoZIhvcNAQELBQADggEBADgzHbSmv15ZX1aP8M2E1MTbscqb qrg3AdplvFJQKZFHC0+Ky7QJ4vrVupyR0oKgDbMJIPjJMmT7Kw/FV1rCxymWitzg DVZNDraUwxOfOzeQee5+Fh7W9YNdIYn2tGGykW3asWzzCtooEvjvGcEaaIOMXSmj AjQP/fM4iPtwKMgWGm0GX5/AVSxcB5bZ997IOoWwSFa1pbjdZOywI4kgN2QibhSo gVzFKnhE8UyFuI3mAh4GVYdMYt5HyVAt+FizqiUafFkXGdHElNoKcBD7ZbGeUbju bTsAk/MIEURTt80YvMP814E2VvHNM+xhtbkGUxMQq/8+tqXlYrxri2zUNTI= -----END CERTIFICATE-----Generated at Thu Aug 7 05:15:12 2025 by rpki-client