$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3589350f-7992-407d-b32f-3238cdd65087.roa File: 3589350f-7992-407d-b32f-3238cdd65087.roa (raw, json) Hash identifier: uK+KmpRKHvRg+wDsZkj1SNsy0Szp+EaDX4ozRpt5q5g= Subject key identifier: 42:9C:0D:BF:CC:90:EB:2F:CB:4D:08:ED:81:92:AE:A8:90:B6:14:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C31F3F5C7C17BC64937C45FD22F5904EC46A513 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3589350f-7992-407d-b32f-3238cdd65087.roa Signing time: Tue 05 Aug 2025 00:51:19 +0000 ROA not before: Tue 05 Aug 2025 00:51:19 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 72.44.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:31:f3:f5:c7:c1:7b:c6:49:37:c4:5f:d2:2f:59:04:ec:46:a5:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:51:19 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=683def3469df89f7b7a2e9eb4c9d63329c2d1526303711678557448df7f59baa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9c:ce:d5:82:76:2b:d5:c0:73:61:17:82:71: dd:41:76:30:1e:21:58:4f:1b:2e:26:d2:4b:fc:52: 87:a3:8e:1f:bd:bd:fc:2e:f3:50:08:67:1c:62:4f: cc:b1:6a:00:bb:f5:d2:34:4e:fc:e7:a8:df:f8:31: d1:c6:13:ee:ab:86:d6:77:bb:0c:f8:6c:50:84:f9: 06:0d:27:8c:5a:12:bd:1f:10:f6:84:ad:e6:5d:bf: d0:9b:37:ef:65:ea:c6:11:6f:90:39:b1:d5:9d:b0: e9:77:b8:a5:80:1e:d4:33:71:2e:81:e1:0c:c8:8a: f8:e9:60:a0:09:aa:37:04:d5:93:ca:a5:c7:ee:81: b9:a5:0e:83:df:72:ef:c7:be:43:2f:52:db:dd:cb: 75:1e:f7:57:9c:8b:56:b8:ae:55:84:67:ca:16:1f: 0e:c4:61:86:39:69:6a:2d:25:1b:28:a3:25:cb:0e: c8:08:f2:bf:d9:bd:49:27:55:a8:29:70:3f:9d:fd: b3:e3:8b:70:2d:43:a6:ec:a8:ed:20:26:0f:b8:5c: b5:f9:3b:c4:fb:ab:b1:c5:ec:95:fd:02:54:1e:0b: fd:6e:24:3a:70:d6:48:6d:70:6f:92:72:64:a5:1d: 31:78:b7:ec:7e:5d:48:30:bb:0b:9c:c9:79:06:53: 90:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:9C:0D:BF:CC:90:EB:2F:CB:4D:08:ED:81:92:AE:A8:90:B6:14:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3589350f-7992-407d-b32f-3238cdd65087.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.44.40.0/21 Signature Algorithm: sha256WithRSAEncryption 57:c6:8d:30:e2:a3:46:4a:59:eb:0f:44:25:cb:d6:0a:41:9e: 6f:4e:7a:71:6e:13:8a:94:26:d7:73:7d:53:e1:d0:c6:f2:d2: 23:a0:58:1a:79:ed:f0:39:f0:ca:f8:f9:fa:8a:0e:07:aa:fa: 77:13:8b:4f:f0:fa:69:c3:29:e6:6d:d7:4c:dd:47:f0:dc:ef: 40:b9:a7:5c:b6:e3:3e:1f:ef:3d:b0:3f:08:63:4c:09:67:ff: db:06:a5:54:43:34:3a:87:4a:ea:17:ca:f6:9c:18:9f:0b:83: 0f:0e:a3:44:80:fa:d4:2a:0e:30:d6:52:20:92:ba:7a:ab:ef: 37:71:73:4f:38:4d:fc:30:13:31:73:82:b0:1e:d8:b4:0c:a9: 9b:e3:87:cf:c2:50:00:ce:06:f2:3a:a3:06:b0:f6:7f:1b:66: e6:00:9f:6a:f0:e6:89:07:a4:da:38:d3:51:45:c2:67:a6:7d: 44:f9:29:03:a1:ce:db:eb:d7:30:8a:cd:17:f3:51:6d:63:71: 70:60:2b:b4:e7:17:3a:57:be:53:51:87:63:31:58:60:68:eb: 7b:f8:7b:17:b1:cd:ba:2e:72:76:8d:64:fb:5c:9a:1e:9f:08: 48:fc:70:a5:26:f4:86:29:8d:a3:19:61:5f:fb:04:60:5a:5a: 19:b1:97:fe -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbDHz9cfBe8ZJN8Rf0i9ZBOxGpRMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDA1MTE5WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODNkZWYzNDY5ZGY4OWY3YjdhMmU5ZWI0YzlkNjMzMjlj MmQxNTI2MzAzNzExNjc4NTU3NDQ4ZGY3ZjU5YmFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpnM7VgnYr1cBzYReCcd1BdjAeIVhPGy4m0kv8Uoejjh+9 vfwu81AIZxxiT8yxagC79dI0TvznqN/4MdHGE+6rhtZ3uwz4bFCE+QYNJ4xaEr0f EPaEreZdv9CbN+9l6sYRb5A5sdWdsOl3uKWAHtQzcS6B4QzIivjpYKAJqjcE1ZPK pcfugbmlDoPfcu/HvkMvUtvdy3Ue91eci1a4rlWEZ8oWHw7EYYY5aWotJRsooyXL DsgI8r/ZvUknVagpcD+d/bPji3AtQ6bsqO0gJg+4XLX5O8T7q7HF7JX9AlQeC/1u JDpw1khtcG+ScmSlHTF4t+x+XUgwuwucyXkGU5ABAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQpwNv8yQ6y/LTQjtgZKuqJC2FIgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1ODkzNTBmLTc5OTItNDA3ZC1iMzJmLTMyMzhjZGQ2NTA4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANILCgwDQYJKoZIhvcNAQELBQADggEBAFfGjTDio0ZKWesPRCXL1gpBnm9O enFuE4qUJtdzfVPh0Mby0iOgWBp57fA58Mr4+fqKDgeq+ncTi0/w+mnDKeZt10zd R/Dc70C5p1y24z4f7z2wPwhjTAln/9sGpVRDNDqHSuoXyvacGJ8Lgw8Oo0SA+tQq DjDWUiCSunqr7zdxc084TfwwEzFzgrAe2LQMqZvjh8/CUADOBvI6owaw9n8bZuYA n2rw5okHpNo401FFwmemfUT5KQOhztvr1zCKzRfzUW1jcXBgK7TnFzpXvlNRh2Mx WGBo63v4exexzboucnaNZPtcmh6fCEj8cKUm9IYpjaMZYV/7BGBaWhmxl/4= -----END CERTIFICATE-----Generated at Sun Aug 10 16:02:55 2025 by rpki-client