$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d972978-417c-4273-8923-d994ac6116e2.roa File: 5d972978-417c-4273-8923-d994ac6116e2.roa (raw, json) Hash identifier: Z23FRXZIEts+9JUJMCQFfpopKhMd2xWilB9nQx4+JrA= Subject key identifier: 8E:7B:60:E2:4A:50:B5:44:F3:AA:F7:A7:3D:69:2E:B4:CF:FA:7D:A1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 71572BAE2D2BD9A954CE51D6E275FD17E5C48955 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d972978-417c-4273-8923-d994ac6116e2.roa Signing time: Tue 05 Aug 2025 00:00:19 +0000 ROA not before: Tue 05 Aug 2025 00:00:19 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 155.197.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:57:2b:ae:2d:2b:d9:a9:54:ce:51:d6:e2:75:fd:17:e5:c4:89:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:00:19 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=8b4cd0c29224383749e0c7b67806f654a8f7495a1cac145d31ec88b910578743, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b9:d9:f1:4e:e4:18:1a:72:14:c8:16:85:d9: de:1b:e5:90:d4:27:30:e1:5a:8d:60:fa:8c:bb:c7: 31:3f:9f:e7:ea:85:f2:09:7e:16:88:d9:a6:83:bf: a2:5e:b9:40:b3:44:c8:f4:a6:f5:63:16:a8:ee:10: 44:dd:ec:c6:a6:c7:4c:25:e4:66:21:b3:c5:72:39: 64:e3:26:a5:e3:34:29:b9:f8:a8:0b:f3:bf:e2:f6: 6c:d7:46:79:88:1b:d8:c8:3b:d9:88:fc:25:dc:63: ca:29:c0:0a:b0:2f:31:96:12:e5:f1:4e:49:51:59: fd:af:74:de:3b:c9:a5:5e:65:87:32:65:c7:78:79: 29:6e:ca:07:1c:6e:ff:75:3e:d6:d5:5e:e5:48:5d: 4f:2c:78:b0:41:0b:f6:14:b1:a1:26:20:a2:99:25: 9b:c9:e4:11:0d:44:61:e7:3e:e1:2c:e9:82:d6:08: f0:c6:b7:51:4c:df:7a:30:81:3c:97:f0:b5:37:d0: 95:59:dc:59:da:dd:7c:0e:eb:ae:fd:25:d1:a7:a6: 54:4d:63:6c:96:95:32:3a:ec:e6:f9:35:ea:f7:bf: 7e:b7:98:1b:d5:2b:eb:f7:31:1f:df:94:c4:64:24: 99:11:41:f2:a1:e6:6d:e9:0f:94:a6:96:56:e4:c6: 60:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:7B:60:E2:4A:50:B5:44:F3:AA:F7:A7:3D:69:2E:B4:CF:FA:7D:A1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d972978-417c-4273-8923-d994ac6116e2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.197.0.0/16 Signature Algorithm: sha256WithRSAEncryption 31:99:20:1e:b2:73:11:2d:30:6e:41:83:c9:34:75:6e:fc:f8: b1:0b:76:89:b7:1d:66:1a:fc:58:88:98:61:d8:cd:9b:a5:f0: 26:26:bc:06:d3:9a:71:7a:ea:3d:cf:ba:40:3a:03:55:61:4c: a1:8f:5f:5c:d0:d2:2b:b9:05:41:c7:27:0b:07:83:97:f0:29: af:56:37:b9:65:df:63:ea:12:15:d0:66:f5:28:ec:0a:6d:63: ee:64:ab:27:f5:0d:2f:64:c0:dd:5a:31:b5:33:46:a2:a6:88: ef:ca:3e:ca:8b:ef:c1:c8:0d:cf:3b:e9:32:cd:68:1c:a8:b1: a0:90:6a:a4:a4:1b:a9:07:47:c6:ae:b0:74:6d:fb:e8:c4:9e: 27:e2:b2:50:62:4d:1a:8b:07:df:56:b6:df:d2:d2:e1:f4:19: 57:ba:4e:c2:87:cc:1f:92:79:1d:af:aa:6e:4e:fd:a7:15:53: 5c:a4:dd:8b:63:a1:d8:ce:8f:7e:3f:d6:3b:03:b1:2a:bf:be: fe:b6:51:78:1c:1e:e9:3a:aa:3a:4e:5c:3b:33:98:24:37:08: c7:eb:1d:de:82:8f:09:d1:2b:89:ef:e4:96:da:30:59:07:f6: 26:8e:63:f0:71:0d:4b:3a:37:9a:99:83:c9:20:57:f5:28:f7: a9:e4:5b:18 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcVcrri0r2alUzlHW4nX9F+XEiVUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDAwMDE5WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YjRjZDBjMjkyMjQzODM3NDllMGM3YjY3ODA2ZjY1NGE4 Zjc0OTVhMWNhYzE0NWQzMWVjODhiOTEwNTc4NzQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUudnxTuQYGnIUyBaF2d4b5ZDUJzDhWo1g+oy7xzE/n+fq hfIJfhaI2aaDv6JeuUCzRMj0pvVjFqjuEETd7Mamx0wl5GYhs8VyOWTjJqXjNCm5 +KgL87/i9mzXRnmIG9jIO9mI/CXcY8opwAqwLzGWEuXxTklRWf2vdN47yaVeZYcy Zcd4eSluygccbv91PtbVXuVIXU8seLBBC/YUsaEmIKKZJZvJ5BENRGHnPuEs6YLW CPDGt1FM33owgTyX8LU30JVZ3Fna3XwO6679JdGnplRNY2yWlTI67Ob5Ner3v363 mBvVK+v3MR/flMRkJJkRQfKh5m3pD5SmllbkxmCFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjntg4kpQtUTzqvenPWkutM/6faEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVkOTcyOTc4LTQxN2MtNDI3My04OTIzLWQ5OTRhYzYxMTZlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCbxTANBgkqhkiG9w0BAQsFAAOCAQEAMZkgHrJzES0wbkGDyTR1bvz4sQt2 ibcdZhr8WIiYYdjNm6XwJia8BtOacXrqPc+6QDoDVWFMoY9fXNDSK7kFQccnCweD l/Apr1Y3uWXfY+oSFdBm9SjsCm1j7mSrJ/UNL2TA3VoxtTNGoqaI78o+yovvwcgN zzvpMs1oHKixoJBqpKQbqQdHxq6wdG376MSeJ+KyUGJNGosH31a239LS4fQZV7pO wofMH5J5Ha+qbk79pxVTXKTdi2Oh2M6Pfj/WOwOxKr++/rZReBwe6TqqOk5cOzOY JDcIx+sd3oKPCdErie/kltowWQf2Jo5j8HENSzo3mpmDySBX9Sj3qeRbGA== -----END CERTIFICATE-----Generated at Sat Aug 9 05:39:36 2025 by rpki-client