$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d5403c9-5be3-4148-ac1d-50dee99c05f6.roa File: 4d5403c9-5be3-4148-ac1d-50dee99c05f6.roa (raw, json) Hash identifier: HykirgdwjFC8KH33ZTTOmY9xIqLCI+68CpL1MNv+etE= Subject key identifier: 7D:7C:F9:CB:34:7A:F2:B7:9E:D8:F8:30:A1:CA:14:14:48:76:10:4C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 62643F73634F0D95540E0621B963CDFB5C3682EB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d5403c9-5be3-4148-ac1d-50dee99c05f6.roa Signing time: Wed 06 Aug 2025 05:07:03 +0000 ROA not before: Wed 06 Aug 2025 05:07:03 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 40.167.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:64:3f:73:63:4f:0d:95:54:0e:06:21:b9:63:cd:fb:5c:36:82:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 6 05:07:03 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=a1db12a3a2ab02dc52dbe5ddad1657bdb5de4fbfcaa7f84f599a1b8c718b5338, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a8:21:2f:64:fd:5f:d2:7a:bf:e5:e3:cd:a3: 13:5f:86:c0:d7:d0:e5:63:9b:a7:61:4f:8e:94:a1: 51:93:c1:34:50:4f:2f:a3:da:59:11:27:a7:d7:dd: e5:58:76:90:f0:75:84:04:5d:91:51:21:f5:82:2b: 66:d0:f4:db:e3:41:f6:a1:e1:8c:db:52:05:f4:9d: 01:f4:8a:0d:68:8d:86:52:e2:01:95:fd:fe:2e:fc: 30:9b:92:dc:58:e8:ed:e1:05:2a:8c:c4:98:51:0e: 50:c6:16:04:cb:43:8a:d9:d0:1d:13:07:28:45:e4: 65:31:fb:9d:57:66:ea:e7:47:4e:e0:42:0a:fe:22: de:5d:2b:bd:82:b9:b4:d2:c7:4d:d8:31:c0:a6:1f: 9c:e4:b8:c6:3b:f1:91:74:ce:60:84:c4:3e:8c:64: bd:12:03:e0:11:0c:67:35:52:d4:8f:b7:13:f7:ac: ae:be:fa:86:c5:af:d6:5f:bd:e4:16:31:24:e2:2f: b7:85:5f:2c:a0:b0:34:ff:0c:46:5a:05:13:ce:8a: 90:8b:f6:10:40:f4:af:f1:bc:17:39:4d:8d:03:dc: 00:84:e5:e7:86:b0:0a:54:3d:30:5c:25:20:b6:b9: 22:31:35:78:46:ec:a4:3f:a4:b5:33:01:12:e3:d4: 7e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:7C:F9:CB:34:7A:F2:B7:9E:D8:F8:30:A1:CA:14:14:48:76:10:4C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d5403c9-5be3-4148-ac1d-50dee99c05f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.167.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4b:b2:a0:3f:ff:98:a5:12:ae:81:7c:2c:ac:8f:97:85:ab:e0: ef:d4:a0:37:ee:34:e9:f9:b7:e3:5a:f6:e0:5c:2a:67:f7:e6: 63:aa:89:11:13:a0:f8:15:77:db:29:0d:bd:c6:84:6a:33:5e: 7d:e3:09:d2:9b:40:6b:cd:86:73:74:7b:a9:80:8d:d5:74:26: 23:c2:47:66:55:a1:9f:29:c2:0b:25:37:28:8f:6a:31:99:2e: cb:4e:eb:10:c8:15:46:97:8b:23:3d:00:0e:5b:d8:da:5b:05: 7a:f1:17:82:40:65:3a:a2:ea:49:61:fa:86:56:c8:af:33:c2: 87:7b:32:f3:7d:59:38:fc:6a:d9:61:be:fc:55:c6:8b:8b:ab: 74:37:bc:7e:cb:e3:26:2d:10:28:f5:af:6c:81:da:f9:4e:f8: f6:46:7b:97:bf:46:7b:93:a8:d0:20:e6:62:70:6c:d5:0d:8c: 94:b2:3c:8c:43:8e:8f:81:2e:c0:6f:97:ab:d9:92:9f:03:61: fb:0a:5d:c6:be:dc:04:77:df:b8:37:93:68:ab:2d:c8:2c:4d: 1b:72:9b:d1:8a:55:80:91:7f:09:30:6e:78:22:38:61:9f:31: fd:b5:8d:a7:81:31:4d:5a:b2:e1:54:26:d9:47:be:35:f6:f1: 4b:db:c4:a4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYmQ/c2NPDZVUDgYhuWPN+1w2guswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA2MDUwNzAzWhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMWRiMTJhM2EyYWIwMmRjNTJkYmU1ZGRhZDE2NTdiZGI1 ZGU0ZmJmY2FhN2Y4NGY1OTlhMWI4YzcxOGI1MzM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqqCEvZP1f0nq/5ePNoxNfhsDX0OVjm6dhT46UoVGTwTRQ Ty+j2lkRJ6fX3eVYdpDwdYQEXZFRIfWCK2bQ9NvjQfah4YzbUgX0nQH0ig1ojYZS 4gGV/f4u/DCbktxY6O3hBSqMxJhRDlDGFgTLQ4rZ0B0TByhF5GUx+51XZurnR07g Qgr+It5dK72CubTSx03YMcCmH5zkuMY78ZF0zmCExD6MZL0SA+ARDGc1UtSPtxP3 rK6++obFr9ZfveQWMSTiL7eFXyygsDT/DEZaBRPOipCL9hBA9K/xvBc5TY0D3ACE 5eeGsApUPTBcJSC2uSIxNXhG7KQ/pLUzARLj1H55AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUfXz5yzR68ree2PgwocoUFEh2EEwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRkNTQwM2M5LTViZTMtNDE0OC1hYzFkLTUwZGVlOTljMDVmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAopzANBgkqhkiG9w0BAQsFAAOCAQEAS7KgP/+YpRKugXwsrI+Xhavg79Sg N+406fm341r24FwqZ/fmY6qJEROg+BV32ykNvcaEajNefeMJ0ptAa82Gc3R7qYCN 1XQmI8JHZlWhnynCCyU3KI9qMZkuy07rEMgVRpeLIz0ADlvY2lsFevEXgkBlOqLq SWH6hlbIrzPCh3sy831ZOPxq2WG+/FXGi4urdDe8fsvjJi0QKPWvbIHa+U749kZ7 l79Ge5Oo0CDmYnBs1Q2MlLI8jEOOj4EuwG+Xq9mSnwNh+wpdxr7cBHffuDeTaKst yCxNG3Kb0YpVgJF/CTBueCI4YZ8x/bWNp4ExTVqy4VQm2Ue+NfbxS9vEpA== -----END CERTIFICATE-----Generated at Sat Aug 9 01:09:50 2025 by rpki-client