$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47479cc3-c3ca-442e-9bef-1e53a9b87918.roa File: 47479cc3-c3ca-442e-9bef-1e53a9b87918.roa (raw, json) Hash identifier: fR1blntgW7RFoSCD5YUGCOKWB5yQ0hT0i9VHhKvDcBE= Subject key identifier: 98:50:D6:41:CD:19:3E:5A:DC:5F:28:02:20:92:19:1E:16:C2:E4:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 188A6A3DB99E72628EFD393CF7CD7E748E90590A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47479cc3-c3ca-442e-9bef-1e53a9b87918.roa Signing time: Sat 02 Aug 2025 00:41:16 +0000 ROA not before: Sat 02 Aug 2025 00:41:16 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 162.250.238.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:8a:6a:3d:b9:9e:72:62:8e:fd:39:3c:f7:cd:7e:74:8e:90:59:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:41:16 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=9d9a752b7be90bb879f6b7cc9a4b1c6d5a8cf89d265dd6ce2483d7cf0ba1df20, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:52:60:44:29:7f:2c:a6:7a:91:42:43:ab:ec: 5c:24:23:9b:5e:47:0e:31:58:93:17:9a:e5:3a:1e: 42:32:be:d0:02:47:b3:05:c5:a8:4c:cd:6f:83:9e: e1:c2:10:03:88:32:22:b8:8e:8e:f9:ce:b9:09:c6: 3d:54:3e:c8:c1:29:65:cf:c1:9f:32:40:2b:01:16: 48:63:95:41:33:4b:db:44:de:84:96:af:ce:a9:f5: 6c:f5:d1:19:de:67:52:fe:6f:8d:91:2f:47:23:cb: 44:d2:b7:ff:a9:78:79:11:bf:8d:18:43:44:cf:37: c1:ae:4f:31:55:19:ea:64:33:83:ff:74:83:1a:28: 34:f7:6f:ec:34:8f:f0:e8:91:a3:ce:b7:d7:86:cf: b3:db:a9:9a:a0:6b:ff:bc:27:f4:b2:ba:06:fe:3f: 23:cf:4a:45:56:4b:bc:29:b5:6d:a5:d2:a6:7d:c5: e5:3e:8f:f9:85:e9:29:f5:b0:a4:a6:54:66:6e:9b: 97:47:04:ba:f8:b4:97:f4:e5:69:81:94:83:98:f5: b1:98:7f:56:01:11:0c:7a:16:2a:ff:b5:aa:3f:fd: af:bd:ab:6c:57:93:a4:df:9b:8f:26:a9:09:30:ad: 66:e8:d4:fa:5c:f4:9a:97:1f:f8:85:e3:34:48:81: 75:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:50:D6:41:CD:19:3E:5A:DC:5F:28:02:20:92:19:1E:16:C2:E4:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47479cc3-c3ca-442e-9bef-1e53a9b87918.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.250.238.0/23 Signature Algorithm: sha256WithRSAEncryption ad:fc:4b:76:b3:9e:7d:cb:46:a5:ad:4b:b1:88:de:0e:f1:41: 69:df:1d:6d:e3:cf:3a:a4:bc:3e:04:2f:f0:b9:56:85:bb:e9: d9:37:19:8d:22:b2:b6:25:1d:52:9a:01:f4:7c:d6:df:7e:d0: 3f:e9:08:0d:e5:69:3d:f2:e4:e0:22:f4:a1:75:b4:92:8d:a0: 8d:66:85:1c:28:e0:8b:41:71:a0:10:44:2b:79:48:ed:7a:4a: 3c:9b:fc:20:d9:13:0a:9d:92:28:ef:1d:36:7f:51:c9:dd:cc: 81:31:b5:c3:bd:14:79:89:e5:dd:ef:6b:87:94:c7:ac:66:af: 51:f6:53:db:35:b8:6c:74:87:2e:ab:e8:1e:75:9a:7f:9a:6c: 5a:21:45:84:d7:62:2b:ce:f5:c6:e5:e8:20:04:64:5b:97:ce: b5:a6:33:a0:9b:f2:5d:25:61:21:c7:3c:2b:c3:27:08:e9:6b: af:3f:7a:dd:51:a0:64:c1:f5:56:52:3e:82:21:6f:3d:34:e7: 0b:d6:7a:7c:6f:3c:24:95:18:7d:73:4f:68:c9:94:1b:6d:6c: 08:49:7a:21:b1:f2:b7:e6:6f:e6:2e:6b:b4:41:ca:b0:b1:08: 0a:27:76:f4:45:7c:b7:95:4a:f9:a1:b8:eb:28:e0:85:be:48: b8:74:95:34 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGIpqPbmecmKO/Tk8981+dI6QWQowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDA0MTE2WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDlhNzUyYjdiZTkwYmI4NzlmNmI3Y2M5YTRiMWM2ZDVh OGNmODlkMjY1ZGQ2Y2UyNDgzZDdjZjBiYTFkZjIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfUmBEKX8spnqRQkOr7FwkI5teRw4xWJMXmuU6HkIyvtAC R7MFxahMzW+DnuHCEAOIMiK4jo75zrkJxj1UPsjBKWXPwZ8yQCsBFkhjlUEzS9tE 3oSWr86p9Wz10RneZ1L+b42RL0cjy0TSt/+peHkRv40YQ0TPN8GuTzFVGepkM4P/ dIMaKDT3b+w0j/DokaPOt9eGz7PbqZqga/+8J/Syugb+PyPPSkVWS7wptW2l0qZ9 xeU+j/mF6Sn1sKSmVGZum5dHBLr4tJf05WmBlIOY9bGYf1YBEQx6Fir/tao//a+9 q2xXk6Tfm48mqQkwrWbo1Ppc9JqXH/iF4zRIgXXBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmFDWQc0ZPlrcXygCIJIZHhbC5OMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ3NDc5Y2MzLWMzY2EtNDQyZS05YmVmLTFlNTNhOWI4NzkxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGi+u4wDQYJKoZIhvcNAQELBQADggEBAK38S3aznn3LRqWtS7GI3g7xQWnf HW3jzzqkvD4EL/C5VoW76dk3GY0isrYlHVKaAfR81t9+0D/pCA3laT3y5OAi9KF1 tJKNoI1mhRwo4ItBcaAQRCt5SO16Sjyb/CDZEwqdkijvHTZ/UcndzIExtcO9FHmJ 5d3va4eUx6xmr1H2U9s1uGx0hy6r6B51mn+abFohRYTXYivO9cbl6CAEZFuXzrWm M6Cb8l0lYSHHPCvDJwjpa68/et1RoGTB9VZSPoIhbz005wvWenxvPCSVGH1zT2jJ lBttbAhJeiGx8rfmb+Yua7RByrCxCAondvRFfLeVSvmhuOso4IW+SLh0lTQ= -----END CERTIFICATE-----Generated at Fri Aug 8 20:48:54 2025 by rpki-client