$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/603d26d7-c121-42e1-817f-ef0a806e3d69.roa File: 603d26d7-c121-42e1-817f-ef0a806e3d69.roa (raw, json) Hash identifier: 7lB3f0nKxvO+lUeKMQhkp1Ye5q3nU0AHZcXHFnoDzXA= Subject key identifier: E8:0E:DF:52:94:CA:3D:39:DA:73:9A:71:AB:DA:B5:0D:57:C4:FE:87 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56F7CB1FD75011061DCD9090D19173604F3CBF95 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/603d26d7-c121-42e1-817f-ef0a806e3d69.roa Signing time: Sat 02 Aug 2025 00:50:28 +0000 ROA not before: Sat 02 Aug 2025 00:50:28 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 185.212.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:f7:cb:1f:d7:50:11:06:1d:cd:90:90:d1:91:73:60:4f:3c:bf:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:50:28 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=aa1c8cdbaabc2c2b3af1311465d3b8e59da46881f07fb7677b47e2df15fe176f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:7b:56:b9:34:d5:0a:0d:df:79:39:93:98:c6: 08:14:b7:bc:d5:b8:e0:cd:83:9b:20:f0:f8:47:97: 07:e3:38:fe:af:93:53:9d:74:90:cf:49:d8:1b:92: 46:5e:fd:20:44:7c:5e:13:dc:29:4e:0c:73:6c:e8: f9:27:cd:e4:38:56:13:65:84:b0:79:e5:06:d4:da: 2f:a4:c8:d4:1a:eb:73:1d:be:2e:c7:22:4d:6e:e8: f3:d2:2e:73:99:40:e5:bb:af:f1:90:08:dd:3e:e7: 3a:d1:05:86:d9:ce:ea:91:ff:0e:a2:30:9a:50:0a: 02:55:a4:b6:63:90:8d:98:6d:5c:00:75:ef:1e:30: bf:c4:ca:fd:ef:65:bb:b2:41:8d:fd:24:7c:e5:29: d8:44:dd:2d:68:60:f8:7a:6e:31:c7:16:9b:c2:b6: ea:0f:47:69:7f:8a:bc:fe:34:3f:98:15:b9:f7:39: 08:75:f4:f7:b8:e0:4d:29:e8:1d:00:cc:7d:b4:07: e1:a3:b3:85:f6:ea:c1:ed:70:e6:87:02:13:ff:3e: 7a:a4:f6:d5:2b:39:b9:87:68:47:b4:9c:57:e1:fe: b6:60:bd:ee:d6:d5:8c:f2:8d:41:8b:16:51:01:d2: c7:c7:56:2c:98:8b:c9:8d:e0:ef:00:a2:ee:d1:f9: 70:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:0E:DF:52:94:CA:3D:39:DA:73:9A:71:AB:DA:B5:0D:57:C4:FE:87 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/603d26d7-c121-42e1-817f-ef0a806e3d69.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.212.200.0/22 Signature Algorithm: sha256WithRSAEncryption 02:6b:77:6e:07:b9:e8:53:6e:d2:3b:80:04:6a:06:4e:b8:3b: 03:33:54:b5:9b:90:3e:b7:4e:c2:68:46:7d:c6:22:b4:73:da: b1:33:db:3b:ef:ce:1c:ee:7c:60:9a:eb:cf:e4:ab:1f:27:c6: dd:27:40:75:3a:0e:01:45:11:89:03:a4:e3:9d:0c:ee:a9:ce: c3:76:41:6b:56:72:12:55:eb:db:10:7b:9c:75:d9:83:f0:38: 75:31:04:43:53:30:47:ed:2d:a8:38:27:46:11:5a:35:74:1f: 34:90:b2:eb:fb:fb:da:5b:cf:28:a9:ab:d5:de:8e:5c:7d:c4: fb:96:1f:9d:00:30:fa:29:24:d0:fb:57:98:a3:39:64:c7:7f: 2f:25:3f:1b:91:e4:60:74:b1:73:04:0d:18:5d:53:65:90:94: 12:c4:a5:50:2c:9b:0f:fe:25:81:df:9c:77:72:4c:bf:98:f4: 42:74:80:5a:29:f1:3d:bd:48:4c:84:b5:f0:44:e1:f7:3f:37: 92:02:89:08:96:87:b0:95:53:f0:dd:d9:8e:a0:8c:76:f7:01: ed:58:a6:e0:40:58:f4:2e:5f:eb:84:1a:12:56:e2:fa:e6:7e: 20:aa:92:5b:0b:97:9d:5c:9e:e7:1a:a3:0b:d7:c9:50:c3:3d: 45:52:4a:52 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVvfLH9dQEQYdzZCQ0ZFzYE88v5UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDA1MDI4WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTFjOGNkYmFhYmMyYzJiM2FmMTMxMTQ2NWQzYjhlNTlk YTQ2ODgxZjA3ZmI3Njc3YjQ3ZTJkZjE1ZmUxNzZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCae1a5NNUKDd95OZOYxggUt7zVuODNg5sg8PhHlwfjOP6v k1OddJDPSdgbkkZe/SBEfF4T3ClODHNs6PknzeQ4VhNlhLB55QbU2i+kyNQa63Md vi7HIk1u6PPSLnOZQOW7r/GQCN0+5zrRBYbZzuqR/w6iMJpQCgJVpLZjkI2YbVwA de8eML/Eyv3vZbuyQY39JHzlKdhE3S1oYPh6bjHHFpvCtuoPR2l/irz+ND+YFbn3 OQh19Pe44E0p6B0AzH20B+Gjs4X26sHtcOaHAhP/Pnqk9tUrObmHaEe0nFfh/rZg ve7W1YzyjUGLFlEB0sfHViyYi8mN4O8Aou7R+XDhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6A7fUpTKPTnac5pxq9q1DVfE/ocwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYwM2QyNmQ3LWMxMjEtNDJlMS04MTdmLWVmMGE4MDZlM2Q2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAK51MgwDQYJKoZIhvcNAQELBQADggEBAAJrd24HuehTbtI7gARqBk64OwMz VLWbkD63TsJoRn3GIrRz2rEz2zvvzhzufGCa68/kqx8nxt0nQHU6DgFFEYkDpOOd DO6pzsN2QWtWchJV69sQe5x12YPwOHUxBENTMEftLag4J0YRWjV0HzSQsuv7+9pb zyipq9Xejlx9xPuWH50AMPopJND7V5ijOWTHfy8lPxuR5GB0sXMEDRhdU2WQlBLE pVAsmw/+JYHfnHdyTL+Y9EJ0gFop8T29SEyEtfBE4fc/N5ICiQiWh7CVU/Dd2Y6g jHb3Ae1YpuBAWPQuX+uEGhJW4vrmfiCqklsLl51cnucaowvXyVDDPUVSSlI= -----END CERTIFICATE-----Generated at Wed Aug 6 09:40:09 2025 by rpki-client