$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b589bcc-8e5f-42b0-84e6-f5be0dcf4137.roa File: 5b589bcc-8e5f-42b0-84e6-f5be0dcf4137.roa (raw, json) Hash identifier: //KnUOCmTVved2dteksUuAfDDWTJHyrLzRkIXU/dAEM= Subject key identifier: D5:0F:B1:42:54:73:10:65:50:00:F0:BB:7B:37:A3:F1:BC:03:A3:42 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5A2557CE48828C33B870967065B6ED9FC87BDD03 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b589bcc-8e5f-42b0-84e6-f5be0dcf4137.roa Signing time: Tue 22 Jul 2025 00:30:32 +0000 ROA not before: Tue 22 Jul 2025 00:30:32 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 44.216.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:25:57:ce:48:82:8c:33:b8:70:96:70:65:b6:ed:9f:c8:7b:dd:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 00:30:32 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=5141dbc817f46ae62f348c91b8faf90d632c90852609a5593702797f9f9ef5ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3e:73:99:cc:da:4f:e2:ac:e8:2f:ce:35:b1: e8:61:3f:66:da:95:86:0d:26:fc:12:c5:4a:4c:be: 98:ed:18:f6:5b:c4:9d:32:0c:6b:38:3e:ff:d4:17: 1f:32:76:be:48:b1:d9:b5:0f:c5:3f:dc:87:af:cb: 4b:35:65:99:d3:b0:4e:3a:3f:ea:2f:36:5e:99:ca: 19:4e:1d:c9:de:89:0a:49:c9:97:7e:96:18:d9:21: a8:51:3c:df:53:e7:e4:10:26:2b:43:2e:14:11:54: ad:e6:9a:8d:e2:77:7f:be:bb:ac:c0:90:2f:1a:97: f5:9f:78:78:4c:7b:09:f6:84:b8:3d:e3:18:de:50: a1:85:c7:6c:10:5c:39:ad:49:c5:20:1d:fc:89:cb: 1f:35:53:f8:d1:2e:b7:40:75:3f:c3:97:49:34:fe: cc:cc:13:48:f1:d3:69:0f:be:52:7a:3e:5e:df:d1: 9f:ab:96:11:95:12:8f:f3:f7:4f:6a:3d:32:a4:1f: 32:2a:57:72:09:db:ff:40:a0:5d:13:1c:39:a6:d6: 2d:e2:54:04:f8:08:43:3b:80:36:94:e9:91:5e:15: 72:ab:7d:85:b6:df:95:35:6a:ad:22:c1:34:39:52: 2b:c8:39:bc:d4:60:d8:03:79:f0:b9:c6:34:d7:a1: 47:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:0F:B1:42:54:73:10:65:50:00:F0:BB:7B:37:A3:F1:BC:03:A3:42 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b589bcc-8e5f-42b0-84e6-f5be0dcf4137.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.216.184.0/22 Signature Algorithm: sha256WithRSAEncryption 45:7a:e8:cd:db:a1:d7:60:fa:c2:8e:e3:09:4f:3c:f7:f1:8a: 25:09:b4:89:de:5e:3b:94:5c:a8:05:a3:9f:88:53:85:1a:9c: 49:7c:7c:1c:91:41:bf:8c:42:15:74:93:6e:42:b0:06:15:cb: 30:1e:48:2f:c2:c3:9b:0a:18:bf:00:81:aa:38:f4:11:86:2d: c7:bc:22:05:01:38:26:fc:31:5a:9d:21:a1:db:cc:56:69:94: 2b:e9:c0:64:47:9d:0f:81:ad:9e:db:d3:cb:e1:0a:40:c9:83: 82:9d:6d:c3:d0:6d:90:13:19:d1:ca:b2:a3:64:ff:0a:32:cb: 04:9d:d5:98:b2:e5:66:51:0a:ce:7f:de:4a:3b:5e:28:b9:69: ff:70:f6:c0:9a:41:2e:36:f6:b2:37:ce:20:f1:69:03:e2:e0: a2:a7:d7:55:fc:94:f4:28:a6:52:fd:a3:24:0a:c7:ee:b6:85: b1:83:e9:c8:96:92:9e:ee:50:13:b3:23:55:6d:61:fb:f2:00: 60:db:84:c1:73:76:24:d3:2e:76:65:d9:eb:93:7f:42:90:06: 38:d6:8e:29:67:f2:d4:23:34:77:10:88:2e:25:81:ca:7f:0b: 49:36:82:01:95:41:22:6b:56:5b:61:e9:28:a9:02:d2:c2:8b: 1a:10:38:3f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWiVXzkiCjDO4cJZwZbbtn8h73QMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMDAzMDMyWhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTQxZGJjODE3ZjQ2YWU2MmYzNDhjOTFiOGZhZjkwZDYz MmM5MDg1MjYwOWE1NTkzNzAyNzk3ZjlmOWVmNWNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+PnOZzNpP4qzoL841sehhP2balYYNJvwSxUpMvpjtGPZb xJ0yDGs4Pv/UFx8ydr5Isdm1D8U/3Ievy0s1ZZnTsE46P+ovNl6ZyhlOHcneiQpJ yZd+lhjZIahRPN9T5+QQJitDLhQRVK3mmo3id3++u6zAkC8al/WfeHhMewn2hLg9 4xjeUKGFx2wQXDmtScUgHfyJyx81U/jRLrdAdT/Dl0k0/szME0jx02kPvlJ6Pl7f 0Z+rlhGVEo/z909qPTKkHzIqV3IJ2/9AoF0THDmm1i3iVAT4CEM7gDaU6ZFeFXKr fYW235U1aq0iwTQ5UivIObzUYNgDefC5xjTXoUeHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1Q+xQlRzEGVQAPC7ezej8bwDo0IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzViNTg5YmNjLThlNWYtNDJiMC04NGU2LWY1YmUwZGNmNDEzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIs2LgwDQYJKoZIhvcNAQELBQADggEBAEV66M3boddg+sKO4wlPPPfxiiUJ tIneXjuUXKgFo5+IU4UanEl8fByRQb+MQhV0k25CsAYVyzAeSC/Cw5sKGL8Agao4 9BGGLce8IgUBOCb8MVqdIaHbzFZplCvpwGRHnQ+BrZ7b08vhCkDJg4KdbcPQbZAT GdHKsqNk/woyywSd1Ziy5WZRCs5/3ko7Xii5af9w9sCaQS429rI3ziDxaQPi4KKn 11X8lPQoplL9oyQKx+62hbGD6ciWkp7uUBOzI1VtYfvyAGDbhMFzdiTTLnZl2euT f0KQBjjWjiln8tQjNHcQiC4lgcp/C0k2ggGVQSJrVlth6SipAtLCixoQOD8= -----END CERTIFICATE-----Generated at Wed Aug 6 05:23:37 2025 by rpki-client