$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d4de716-6e60-47a1-bd6f-dd1df49f06c5.roa File: 4d4de716-6e60-47a1-bd6f-dd1df49f06c5.roa (raw, json) Hash identifier: +5rMQxwqhfprwqN2Pyu5z6xJykAx0yaSchCj9W7W4X8= Subject key identifier: F0:F5:96:F5:FE:D8:E0:05:58:BD:2B:02:F3:B7:8D:D5:B1:CE:8D:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 33D4034E7887F7918A2E6487BECE926845A1BD2E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d4de716-6e60-47a1-bd6f-dd1df49f06c5.roa Signing time: Sat 02 Aug 2025 00:21:00 +0000 ROA not before: Sat 02 Aug 2025 00:21:00 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.20.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:d4:03:4e:78:87:f7:91:8a:2e:64:87:be:ce:92:68:45:a1:bd:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:21:00 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=c25452a9d7874a097bbcdf0ead789ad5b33ddb896094f5ae20118210c1870de7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:84:b6:6c:94:18:1d:38:a2:7e:1b:4c:9e:da: 29:14:07:b2:2d:91:2c:73:82:59:aa:07:63:96:80: 7d:11:88:49:a7:65:b6:2a:53:80:99:1c:73:28:10: 11:15:b4:07:34:df:4f:de:62:39:f6:bd:d6:d8:8f: 94:79:4e:bc:cf:b5:0f:a2:c9:2f:37:95:77:54:8f: 17:98:95:3f:2a:0c:87:de:87:f9:51:a9:5f:4d:0a: 2a:bf:bd:ab:93:f8:36:b4:08:46:eb:c7:ed:6f:13: 0f:62:c9:1b:8e:9f:81:70:f9:13:f3:74:ea:80:7a: fd:c0:2b:49:f0:85:a8:08:26:4b:09:01:96:14:ec: b3:0c:68:46:1c:ef:df:4e:20:6d:af:27:1f:8f:0c: c9:95:10:a1:e1:ea:63:48:53:44:42:3e:2e:17:25: f1:71:88:30:dc:f6:f3:67:92:e8:e5:b4:54:f8:8d: 6a:07:42:7b:fd:9d:38:c3:9f:a7:97:3f:a0:67:34: e9:3e:d0:d0:95:84:10:bd:2d:db:4b:81:89:35:f5: ea:9e:bf:5a:e4:63:f2:6d:34:bf:0a:6c:ff:a5:ca: e1:11:fd:96:3e:37:86:24:ae:8f:5b:c7:40:95:22: 4e:15:71:d2:a5:e2:94:9f:fd:d3:f0:6b:20:3e:e8: c7:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F5:96:F5:FE:D8:E0:05:58:BD:2B:02:F3:B7:8D:D5:B1:CE:8D:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d4de716-6e60-47a1-bd6f-dd1df49f06c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.192.0/18 Signature Algorithm: sha256WithRSAEncryption c5:72:6a:87:9c:f1:a7:cb:f1:a8:53:94:62:9b:7c:7e:e7:40: f5:d6:b1:18:f9:58:90:8d:c4:6f:2c:33:56:cc:a0:0e:17:6e: 16:b7:12:91:59:0d:0c:19:1e:70:f1:d3:0a:35:36:6f:3e:98: a2:c2:4f:1d:97:7b:bd:42:c2:0c:55:43:4a:e6:f3:fd:d0:5d: 7b:5c:9b:74:60:f3:1e:bb:ce:66:cf:03:50:c1:8d:7f:18:f5: 64:ac:d3:42:8a:a8:5d:7f:16:3f:6b:38:2e:9f:78:c7:19:e9: cc:a0:21:4c:cd:94:e2:51:91:29:ef:6c:a5:f6:f1:d6:c4:ae: 65:72:37:de:9f:bc:ba:4d:bd:29:ad:a6:34:d7:da:fc:86:2f: 1c:85:1c:81:e3:69:7a:bb:d1:75:d3:4b:df:7a:43:8a:14:0f: f2:31:8e:db:fa:6d:1b:84:92:15:c2:8b:81:5d:6e:76:53:9b: e3:81:ef:03:5b:b3:c7:d8:9f:7d:e7:2a:7d:33:7b:74:23:a3: 20:92:cc:77:5e:70:45:7b:df:e6:7a:85:57:11:1f:64:89:84: 90:bd:70:fe:29:7c:80:19:26:98:f8:78:0b:3e:0f:f1:3d:b0: b0:93:e2:34:03:e7:06:1b:a2:55:bc:de:cb:00:a0:fd:92:9e: f1:44:8d:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM9QDTniH95GKLmSHvs6SaEWhvS4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDAyMTAwWhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjU0NTJhOWQ3ODc0YTA5N2JiY2RmMGVhZDc4OWFkNWIz M2RkYjg5NjA5NGY1YWUyMDExODIxMGMxODcwZGU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRhLZslBgdOKJ+G0ye2ikUB7ItkSxzglmqB2OWgH0RiEmn ZbYqU4CZHHMoEBEVtAc030/eYjn2vdbYj5R5TrzPtQ+iyS83lXdUjxeYlT8qDIfe h/lRqV9NCiq/vauT+Da0CEbrx+1vEw9iyRuOn4Fw+RPzdOqAev3AK0nwhagIJksJ AZYU7LMMaEYc799OIG2vJx+PDMmVEKHh6mNIU0RCPi4XJfFxiDDc9vNnkujltFT4 jWoHQnv9nTjDn6eXP6BnNOk+0NCVhBC9LdtLgYk19eqev1rkY/JtNL8KbP+lyuER /ZY+N4Ykro9bx0CVIk4VcdKl4pSf/dPwayA+6McNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8PWW9f7Y4AVYvSsC87eN1bHOjU8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRkNGRlNzE2LTZlNjAtNDdhMS1iZDZmLWRkMWRmNDlmMDZjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZrFMAwDQYJKoZIhvcNAQELBQADggEBAMVyaoec8afL8ahTlGKbfH7nQPXW sRj5WJCNxG8sM1bMoA4Xbha3EpFZDQwZHnDx0wo1Nm8+mKLCTx2Xe71CwgxVQ0rm 8/3QXXtcm3Rg8x67zmbPA1DBjX8Y9WSs00KKqF1/Fj9rOC6feMcZ6cygIUzNlOJR kSnvbKX28dbErmVyN96fvLpNvSmtpjTX2vyGLxyFHIHjaXq70XXTS996Q4oUD/Ix jtv6bRuEkhXCi4FdbnZTm+OB7wNbs8fYn33nKn0ze3QjoyCSzHdecEV73+Z6hVcR H2SJhJC9cP4pfIAZJpj4eAs+D/E9sLCT4jQD5wYbolW83ssAoP2SnvFEjXc= -----END CERTIFICATE-----Generated at Mon Aug 4 22:23:13 2025 by rpki-client