$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3803ed73-f0b7-4d1e-a251-bcf48df08162.roa File: 3803ed73-f0b7-4d1e-a251-bcf48df08162.roa (raw, json) Hash identifier: 8+LZRBh1UT8Xg4QvZknt6Y6emu8YIunEzmdkJauDBQk= Subject key identifier: B8:1A:48:3B:3E:6F:F6:2C:7C:8E:A2:55:6B:4B:A8:AB:30:E8:5E:6F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 47C57D225A52255A37A8DB3F60FDCDFE35D77797 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3803ed73-f0b7-4d1e-a251-bcf48df08162.roa Signing time: Sat 02 Aug 2025 00:21:53 +0000 ROA not before: Sat 02 Aug 2025 00:21:53 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.22.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:c5:7d:22:5a:52:25:5a:37:a8:db:3f:60:fd:cd:fe:35:d7:77:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:21:53 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=14994b7a123fd9d17c1020301b6ad4465a3855b85c535da9e63821e1be1b4b13, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:6e:0d:a6:d2:e9:51:0a:71:18:fd:ee:bd:60: c8:72:4f:be:67:11:7b:1a:b1:6c:86:6a:c9:45:6c: a3:16:2e:bb:fd:d7:dc:db:62:89:6b:27:a3:e6:b3: b5:12:40:2d:25:0a:30:52:01:ba:50:e5:24:84:f0: 17:fb:79:6a:f9:dd:ed:d1:50:5f:04:e2:91:61:87: 6b:92:01:b4:bb:43:1d:43:a4:7f:21:7d:f1:46:6d: c4:b9:52:e3:88:ec:6b:93:a3:b3:d2:ae:b2:77:ab: d4:53:1f:72:31:f3:94:49:11:79:40:54:0f:a6:30: ac:1f:49:15:a9:78:ba:0f:b1:5f:e7:72:7b:54:71: 86:2b:c6:c7:33:4f:af:55:2c:03:3f:14:36:1e:c0: 08:34:b8:87:d0:fe:05:10:1e:18:85:65:4a:1a:50: 09:da:60:76:b5:7b:df:32:e1:db:e3:40:d0:d4:36: fe:23:d1:ea:76:96:92:29:23:4a:05:ca:a2:ba:df: 3a:6f:4c:7e:9e:ab:b6:e4:45:03:92:23:bd:71:47: 28:c9:57:af:0d:70:7b:b2:8e:84:ef:3d:59:20:44: 80:f4:cc:e9:87:28:7c:55:fa:f2:ad:ea:a6:c4:ae: cf:88:10:55:1c:77:fd:23:ad:78:27:8d:e6:4e:a0: 85:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:1A:48:3B:3E:6F:F6:2C:7C:8E:A2:55:6B:4B:A8:AB:30:E8:5E:6F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3803ed73-f0b7-4d1e-a251-bcf48df08162.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.22.192.0/18 Signature Algorithm: sha256WithRSAEncryption 88:ad:db:d3:45:cc:b8:ad:9e:cb:a2:31:57:ee:01:5a:7f:a7: 01:7d:38:f8:c6:30:71:94:3c:04:f6:95:98:0d:7d:af:18:89: 9c:15:20:95:5f:1f:7e:05:54:85:8f:d2:f5:90:ab:44:03:cf: 58:df:9b:b1:44:d3:ca:6e:ec:00:4f:94:ca:40:d5:3a:c2:a3: 16:f9:92:39:0e:3d:08:d9:bf:99:68:28:8b:2e:d8:71:14:b6: da:8f:8b:a3:5f:38:ae:90:c5:dd:ba:90:36:34:79:24:4a:f0: 36:28:12:61:5c:cb:c6:7e:08:5b:bf:26:b6:3b:d3:2d:1e:c8: ac:9f:1d:4a:a8:e3:64:ff:bc:f4:4b:57:ab:9d:f3:11:b7:75: 18:3a:2b:47:8e:bc:50:95:70:6e:e7:e9:4b:21:15:a0:67:53: ec:f4:3f:69:c4:f7:3c:9f:2a:99:f9:31:80:39:72:48:00:51: b7:ec:78:96:31:ac:2a:10:2a:27:a3:da:27:8a:d7:fe:e0:d8: 27:80:7d:d3:87:2d:4b:d2:21:d4:b5:a0:50:b5:53:a2:42:19: 55:34:ea:f5:b8:0b:eb:de:58:33:ad:4a:8c:e5:cc:af:37:aa: de:fc:f9:c6:7c:21:4d:16:d7:1b:2f:53:7e:07:84:80:28:ae: ee:52:79:65 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR8V9IlpSJVo3qNs/YP3N/jXXd5cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDAyMTUzWhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDk5NGI3YTEyM2ZkOWQxN2MxMDIwMzAxYjZhZDQ0NjVh Mzg1NWI4NWM1MzVkYTllNjM4MjFlMWJlMWI0YjEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYbg2m0ulRCnEY/e69YMhyT75nEXsasWyGaslFbKMWLrv9 19zbYolrJ6Pms7USQC0lCjBSAbpQ5SSE8Bf7eWr53e3RUF8E4pFhh2uSAbS7Qx1D pH8hffFGbcS5UuOI7GuTo7PSrrJ3q9RTH3Ix85RJEXlAVA+mMKwfSRWpeLoPsV/n cntUcYYrxsczT69VLAM/FDYewAg0uIfQ/gUQHhiFZUoaUAnaYHa1e98y4dvjQNDU Nv4j0ep2lpIpI0oFyqK63zpvTH6eq7bkRQOSI71xRyjJV68NcHuyjoTvPVkgRID0 zOmHKHxV+vKt6qbErs+IEFUcd/0jrXgnjeZOoIUFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuBpIOz5v9ix8jqJVa0uoqzDoXm8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4MDNlZDczLWYwYjctNGQxZS1hMjUxLWJjZjQ4ZGYwODE2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZrFsAwDQYJKoZIhvcNAQELBQADggEBAIit29NFzLitnsuiMVfuAVp/pwF9 OPjGMHGUPAT2lZgNfa8YiZwVIJVfH34FVIWP0vWQq0QDz1jfm7FE08pu7ABPlMpA 1TrCoxb5kjkOPQjZv5loKIsu2HEUttqPi6NfOK6Qxd26kDY0eSRK8DYoEmFcy8Z+ CFu/JrY70y0eyKyfHUqo42T/vPRLV6ud8xG3dRg6K0eOvFCVcG7n6UshFaBnU+z0 P2nE9zyfKpn5MYA5ckgAUbfseJYxrCoQKiej2ieK1/7g2CeAfdOHLUvSIdS1oFC1 U6JCGVU06vW4C+veWDOtSozlzK83qt78+cZ8IU0W1xsvU34HhIAoru5SeWU= -----END CERTIFICATE-----Generated at Sat Aug 9 03:03:57 2025 by rpki-client