$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39987a4f-c632-4bdd-8f12-5e92d4db3be2.roa File: 39987a4f-c632-4bdd-8f12-5e92d4db3be2.roa (raw, json) Hash identifier: 7kRWBAWuTTOCzVF0xooZKjytOujXXJNbYVbttEH7qOg= Subject key identifier: E5:5E:D0:AC:6C:AD:93:DE:03:A7:17:EC:77:BB:BA:9A:2F:3D:D0:0C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 083997630190175BA0DE01FD526F9949D8AAE696 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39987a4f-c632-4bdd-8f12-5e92d4db3be2.roa Signing time: Sat 02 Aug 2025 00:10:35 +0000 ROA not before: Sat 02 Aug 2025 00:10:35 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.21.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:39:97:63:01:90:17:5b:a0:de:01:fd:52:6f:99:49:d8:aa:e6:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:10:35 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=798f512a525504f06f56f776be5433fef2350afec1c44668414f8432968bb9e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:03:bf:19:40:c3:67:d6:4e:2e:c4:58:5f:94: af:ef:55:83:74:5a:13:85:ed:38:54:7e:eb:8e:15: c4:05:ee:53:55:25:36:b1:1c:13:83:1d:8a:a3:3e: f5:8c:03:bf:56:e8:2f:8f:a7:0f:f6:39:a0:5b:b7: 5f:8b:bc:a1:26:a1:a8:d3:13:14:e6:d8:cd:8f:fd: 73:ec:a1:81:03:ab:9f:22:05:29:b2:0f:f3:36:81: 0a:6e:d0:6e:c7:64:d0:98:88:ac:4d:c9:92:37:9b: a8:79:d6:ab:e1:83:53:3f:f5:8e:cd:28:a2:aa:f5: 31:ed:67:fe:13:b2:f7:72:30:ca:4c:0e:f9:cb:a8: 50:e9:11:5d:0a:38:4f:29:eb:05:24:67:fa:70:51: 62:08:6e:61:c9:8f:4e:06:60:df:c8:9f:9d:18:ba: 41:22:80:01:40:68:03:d1:ef:e6:92:66:01:59:81: 89:43:8f:fe:cf:c9:8d:50:a7:57:cc:4f:c1:c6:b7: d6:96:23:eb:78:b2:f5:c6:7e:dc:d6:ca:53:d4:9c: d3:60:55:3a:ad:88:d7:69:c4:36:be:4a:76:73:57: b6:79:2a:e0:99:01:d5:4b:24:f5:7a:cb:d0:a3:f4: bd:41:66:6d:9c:a0:3c:a9:13:0d:c7:35:ee:89:45: 8e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:5E:D0:AC:6C:AD:93:DE:03:A7:17:EC:77:BB:BA:9A:2F:3D:D0:0C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39987a4f-c632-4bdd-8f12-5e92d4db3be2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.200.0/21 Signature Algorithm: sha256WithRSAEncryption 8c:f1:a4:bf:fa:79:26:c9:e2:2f:32:83:8a:b8:0c:54:c9:e0: 02:d7:3d:58:f1:7d:60:e6:9e:9b:75:ea:e7:03:74:f1:52:a2: 9a:b8:b4:d8:f5:4b:f3:ff:ba:77:d6:08:26:0e:46:78:37:12: 89:cf:17:86:49:67:08:b4:75:52:5f:fc:a1:1c:ce:2b:c0:a2: 70:22:af:ca:4b:7d:01:f9:a7:eb:9f:54:e9:f4:88:03:de:89: f0:8f:0a:a9:83:76:9f:1b:50:49:0a:40:ff:2d:a2:f3:78:13: 87:0a:99:86:a4:e1:23:13:59:99:d5:4f:10:8e:e2:12:94:75: 89:f5:d1:48:89:8b:00:bc:96:0e:11:a1:73:95:81:4f:e3:5d: 7f:e2:29:3f:03:c7:21:6c:6d:b1:7e:fe:a9:77:af:0d:4a:c2: ba:57:f2:b0:fa:1b:91:3e:8f:99:7d:45:4b:58:91:af:e1:4b: e5:45:d6:8d:09:1c:8d:75:bd:bc:a5:9f:cc:87:6f:2e:6a:07: 46:53:f9:c9:4e:1e:b9:39:1c:eb:ab:35:71:51:b4:b4:8d:a2: 45:23:f4:39:1c:ba:55:cf:07:d5:c2:42:a6:1e:60:e5:76:c6: 3d:c3:be:38:81:68:4e:d9:37:51:c5:1e:a2:00:8e:25:c1:e3: a5:f7:4b:84 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCDmXYwGQF1ug3gH9Um+ZSdiq5pYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDAxMDM1WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OThmNTEyYTUyNTUwNGYwNmY1NmY3NzZiZTU0MzNmZWYy MzUwYWZlYzFjNDQ2Njg0MTRmODQzMjk2OGJiOWU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/A78ZQMNn1k4uxFhflK/vVYN0WhOF7ThUfuuOFcQF7lNV JTaxHBODHYqjPvWMA79W6C+Ppw/2OaBbt1+LvKEmoajTExTm2M2P/XPsoYEDq58i BSmyD/M2gQpu0G7HZNCYiKxNyZI3m6h51qvhg1M/9Y7NKKKq9THtZ/4TsvdyMMpM DvnLqFDpEV0KOE8p6wUkZ/pwUWIIbmHJj04GYN/In50YukEigAFAaAPR7+aSZgFZ gYlDj/7PyY1Qp1fMT8HGt9aWI+t4svXGftzWylPUnNNgVTqtiNdpxDa+SnZzV7Z5 KuCZAdVLJPV6y9Cj9L1BZm2coDypEw3HNe6JRY7JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5V7QrGytk94Dpxfsd7u6mi890AwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM5OTg3YTRmLWM2MzItNGJkZC04ZjEyLTVlOTJkNGRiM2JlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANrFcgwDQYJKoZIhvcNAQELBQADggEBAIzxpL/6eSbJ4i8yg4q4DFTJ4ALX PVjxfWDmnpt16ucDdPFSopq4tNj1S/P/unfWCCYORng3EonPF4ZJZwi0dVJf/KEc zivAonAir8pLfQH5p+ufVOn0iAPeifCPCqmDdp8bUEkKQP8tovN4E4cKmYak4SMT WZnVTxCO4hKUdYn10UiJiwC8lg4RoXOVgU/jXX/iKT8DxyFsbbF+/ql3rw1KwrpX 8rD6G5E+j5l9RUtYka/hS+VF1o0JHI11vbyln8yHby5qB0ZT+clOHrk5HOurNXFR tLSNokUj9DkculXPB9XCQqYeYOV2xj3DvjiBaE7ZN1HFHqIAjiXB46X3S4Q= -----END CERTIFICATE-----Generated at Tue Aug 5 20:14:15 2025 by rpki-client