$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa File: 5238a6c5-a106-4b94-9f46-2c619db863c6.roa (raw, json) Hash identifier: tpiTzyJxbFT1aiZM6e5288E4IrVUxldSJRYSW27yDlA= Subject key identifier: F7:2F:65:DB:D0:10:68:CD:9B:56:00:0B:63:EE:4B:65:FD:FA:01:93 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6070195114F8DC087A5E3F4B3EB5A953D57715EE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa Signing time: Mon 04 Aug 2025 15:41:06 +0000 ROA not before: Mon 04 Aug 2025 15:41:06 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.150.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:70:19:51:14:f8:dc:08:7a:5e:3f:4b:3e:b5:a9:53:d5:77:15:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:41:06 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=49c0362ad3ffdd497851b1d2aa74757f7c92439c35088a6376c04ac60cdfd6c9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:69:2b:98:ae:fd:e3:d4:98:e4:b6:da:3c:b1: df:2a:09:55:fe:a3:72:f2:8c:21:73:ae:7f:5d:e3: 15:c1:c0:97:9b:ac:57:64:ee:80:b0:04:ee:99:f1: 47:de:19:fe:78:c7:d6:c4:17:02:7e:a9:04:54:17: 72:60:7b:ad:a1:4e:42:cf:65:a0:5f:ed:8a:08:7a: 32:18:eb:19:c0:ad:bb:a5:ea:80:20:52:30:de:aa: 4e:ee:67:bf:df:6e:48:96:a5:22:d5:3e:b6:8f:28: 6a:e3:94:4d:ea:ad:41:76:47:88:99:e3:a0:00:dd: 1e:4a:94:07:87:ff:82:59:0b:7f:35:33:08:a5:24: c9:4b:13:0d:67:f9:52:94:f1:ab:bd:29:e3:ec:dc: 3f:29:16:81:bc:7a:a5:34:05:b6:4f:9e:06:69:b7: 6d:fd:23:fb:ab:94:76:a9:3b:2d:12:dd:27:9c:a3: d0:ed:d5:4c:b5:b9:3c:ac:51:08:11:45:4c:8f:20: b5:0e:bc:c1:5f:92:19:45:11:cc:5c:f7:06:34:4a: f4:18:28:03:5b:74:fe:93:64:ca:8e:71:29:6b:0e: 8a:15:d9:6d:d9:e3:3f:41:e0:cd:cd:fa:0a:4c:09: 66:61:a0:da:d8:bd:e9:e5:61:2c:9e:35:42:8b:94: 41:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:2F:65:DB:D0:10:68:CD:9B:56:00:0B:63:EE:4B:65:FD:FA:01:93 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.150.192.0/19 Signature Algorithm: sha256WithRSAEncryption d9:59:f5:65:95:c0:43:01:79:6f:45:13:72:6d:24:72:ce:f8: 20:58:f4:f1:92:08:f9:8d:e4:63:ef:8b:88:2c:3e:4b:42:81: d4:0d:69:ac:1c:da:ab:ae:e5:04:b0:b0:e5:f5:e4:28:d9:9b: 02:e2:14:e6:25:a2:32:9f:0a:d0:33:d2:d5:0b:e9:e8:11:53: 06:62:d6:2b:e6:f0:b0:5d:e5:86:92:0b:45:a0:d6:50:bf:ce: 64:16:7f:76:6c:95:2e:5b:9c:b9:90:39:92:b6:28:fe:50:f7: ea:e4:97:72:3f:6e:bd:19:c4:4d:b1:65:6d:1d:a8:d8:6f:f6: a2:43:aa:18:2f:22:b3:b9:a5:f5:72:1d:75:3a:c0:b7:26:97: 54:1a:9d:a7:7a:8e:15:4b:ed:02:94:f4:9c:bf:b1:8f:57:e1: 99:c2:4e:67:1f:5d:2e:e5:df:94:0c:af:fd:54:4a:69:6a:32: da:be:6e:58:1d:f2:c5:34:5e:4f:6c:f9:2a:2a:26:8e:2f:bc: 5f:91:18:e6:b6:09:0c:3f:29:4b:2d:1c:79:3e:45:a1:f1:53: 1a:9b:4f:4f:ab:20:39:5c:aa:20:30:07:84:ac:8a:05:49:67: 55:d5:d7:62:ab:50:37:97:54:16:d0:f3:cc:9a:f7:bf:f2:f0: e1:ea:f9:a9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYHAZURT43Ah6Xj9LPrWpU9V3Fe4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTU0MTA2WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OWMwMzYyYWQzZmZkZDQ5Nzg1MWIxZDJhYTc0NzU3Zjdj OTI0MzljMzUwODhhNjM3NmMwNGFjNjBjZGZkNmM5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBaSuYrv3j1Jjktto8sd8qCVX+o3LyjCFzrn9d4xXBwJeb rFdk7oCwBO6Z8UfeGf54x9bEFwJ+qQRUF3Jge62hTkLPZaBf7YoIejIY6xnArbul 6oAgUjDeqk7uZ7/fbkiWpSLVPraPKGrjlE3qrUF2R4iZ46AA3R5KlAeH/4JZC381 MwilJMlLEw1n+VKU8au9KePs3D8pFoG8eqU0BbZPngZpt239I/urlHapOy0S3Sec o9Dt1Uy1uTysUQgRRUyPILUOvMFfkhlFEcxc9wY0SvQYKANbdP6TZMqOcSlrDooV 2W3Z4z9B4M3N+gpMCWZhoNrYvenlYSyeNUKLlEEbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9y9l29AQaM2bVgALY+5LZf36AZMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyMzhhNmM1LWExMDYtNGI5NC05ZjQ2LTJjNjE5ZGI4NjNjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVrlsAwDQYJKoZIhvcNAQELBQADggEBANlZ9WWVwEMBeW9FE3JtJHLO+CBY 9PGSCPmN5GPvi4gsPktCgdQNaawc2quu5QSwsOX15CjZmwLiFOYlojKfCtAz0tUL 6egRUwZi1ivm8LBd5YaSC0Wg1lC/zmQWf3ZslS5bnLmQOZK2KP5Q9+rkl3I/br0Z xE2xZW0dqNhv9qJDqhgvIrO5pfVyHXU6wLcml1Qanad6jhVL7QKU9Jy/sY9X4ZnC TmcfXS7l35QMr/1USmlqMtq+blgd8sU0Xk9s+SoqJo4vvF+RGOa2CQw/KUstHHk+ RaHxUxqbT0+rIDlcqiAwB4SsigVJZ1XV12KrUDeXVBbQ88ya97/y8OHq+ak= -----END CERTIFICATE-----Generated at Fri Aug 8 19:37:42 2025 by rpki-client