$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6177c01a-062c-4ee0-a13a-c6306967b6d0.roa File: 6177c01a-062c-4ee0-a13a-c6306967b6d0.roa (raw, json) Hash identifier: LVEelAch42jMrU/YZ5zbfUZxAdXrOsDWrc2fAV71qUI= Subject key identifier: 35:FE:3F:90:B9:5F:2F:8F:AA:09:09:8F:67:71:0B:16:A1:AD:6A:11 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 38E36C559BB4CD2D94F62318F12BD8406468D28A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6177c01a-062c-4ee0-a13a-c6306967b6d0.roa Signing time: Mon 04 Aug 2025 15:11:58 +0000 ROA not before: Mon 04 Aug 2025 15:11:58 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 174.129.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:e3:6c:55:9b:b4:cd:2d:94:f6:23:18:f1:2b:d8:40:64:68:d2:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:11:58 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=f6c7e002ffa7c5fd8f6feb0dddbf92ad7fe3f37e68c10e5d2c6955d2c054f610, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:16:fd:c2:f0:6c:0e:98:3e:61:6f:3a:b8:02: 02:4d:05:40:be:97:e9:83:04:88:6d:0a:0a:28:e7: 9f:c0:f6:91:00:a1:8d:99:99:94:4f:19:ec:a6:64: 44:55:14:dd:41:96:f0:27:43:93:63:ff:ff:a7:f5: 6b:5d:f3:82:be:e7:d5:20:ab:7a:b2:ae:76:2e:4c: 81:d9:52:98:76:ef:05:2e:65:7d:96:19:7e:e7:c5: 6f:f3:3e:5d:86:82:73:5a:05:1f:61:8c:40:70:02: 6b:ca:df:ba:58:5f:bd:84:88:1d:c6:99:c3:1f:41: e0:82:ca:a0:e9:23:02:d4:da:27:1d:1a:bf:34:e5: b7:d9:7b:ac:1d:cb:24:1e:02:58:ea:2f:2a:8d:82: cc:d3:91:22:3e:55:25:20:02:9b:06:8b:6b:55:7a: dd:b5:a9:73:25:3f:25:ed:b0:0f:ca:97:d9:16:89: 5a:0e:ee:37:99:09:0d:c3:e8:d8:17:52:1f:a9:ce: c7:2b:8e:ae:66:e9:f5:17:9d:77:5c:84:78:72:1f: 77:12:19:f5:fe:ff:f7:55:cf:9c:8c:5a:5d:23:cc: 52:3e:14:cb:8c:aa:dd:e9:5b:2f:ba:7f:59:48:6c: 90:8f:a8:1e:65:97:48:f5:7e:24:f8:7d:92:d2:9c: 46:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:FE:3F:90:B9:5F:2F:8F:AA:09:09:8F:67:71:0B:16:A1:AD:6A:11 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6177c01a-062c-4ee0-a13a-c6306967b6d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 174.129.0.0/16 Signature Algorithm: sha256WithRSAEncryption 63:9f:0f:6a:c8:8b:b8:f8:38:53:87:cc:2c:a9:71:eb:f4:29: 56:68:be:08:38:d6:0b:f7:d2:f0:44:a3:57:2d:f4:47:c1:d1: e1:ed:89:a3:dc:07:70:e0:4e:67:36:37:c0:b1:90:04:ff:e6: 9c:b0:38:1c:39:e6:53:34:99:6d:c0:50:0e:57:08:20:99:0c: 03:64:a5:a7:86:f0:30:3c:0e:a0:70:0e:9b:97:11:93:40:c6: 11:61:7f:91:04:ca:55:ce:f9:e5:f3:67:33:8f:4d:de:1b:4c: 16:d9:f3:6f:b5:35:a1:02:15:48:bd:5e:67:17:f3:6a:ea:7e: a5:49:da:f6:86:72:d4:81:50:95:0c:7f:35:4a:d4:66:b5:77: 67:d0:c3:75:71:5e:6c:6d:aa:6c:6f:5a:88:ee:ec:83:7e:d3: 08:ae:e8:44:20:a1:96:09:0f:08:e4:25:22:76:54:1e:e4:82: 0d:6a:72:39:15:f8:1c:23:f1:fc:0c:3c:3c:3c:92:e6:9a:55: 1d:78:1d:fb:91:2f:87:46:e8:44:c1:5b:36:d5:19:04:64:d5: 57:ea:54:97:31:1f:eb:1e:97:66:e8:b0:cb:44:4e:4a:00:89: 7c:53:8e:02:be:ca:c0:00:5b:92:e9:c5:c1:13:a6:0d:23:b5: 0b:a3:3c:42 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOONsVZu0zS2U9iMY8SvYQGRo0oowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTUxMTU4WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNmM3ZTAwMmZmYTdjNWZkOGY2ZmViMGRkZGJmOTJhZDdm ZTNmMzdlNjhjMTBlNWQyYzY5NTVkMmMwNTRmNjEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRFv3C8GwOmD5hbzq4AgJNBUC+l+mDBIhtCgoo55/A9pEA oY2ZmZRPGeymZERVFN1BlvAnQ5Nj//+n9Wtd84K+59Ugq3qyrnYuTIHZUph27wUu ZX2WGX7nxW/zPl2GgnNaBR9hjEBwAmvK37pYX72EiB3GmcMfQeCCyqDpIwLU2icd Gr805bfZe6wdyyQeAljqLyqNgszTkSI+VSUgApsGi2tVet21qXMlPyXtsA/Kl9kW iVoO7jeZCQ3D6NgXUh+pzscrjq5m6fUXnXdchHhyH3cSGfX+//dVz5yMWl0jzFI+ FMuMqt3pWy+6f1lIbJCPqB5ll0j1fiT4fZLSnEbRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNf4/kLlfL4+qCQmPZ3ELFqGtahEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxNzdjMDFhLTA2MmMtNGVlMC1hMTNhLWM2MzA2OTY3YjZkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCugTANBgkqhkiG9w0BAQsFAAOCAQEAY58PasiLuPg4U4fMLKlx6/QpVmi+ CDjWC/fS8ESjVy30R8HR4e2Jo9wHcOBOZzY3wLGQBP/mnLA4HDnmUzSZbcBQDlcI IJkMA2Slp4bwMDwOoHAOm5cRk0DGEWF/kQTKVc755fNnM49N3htMFtnzb7U1oQIV SL1eZxfzaup+pUna9oZy1IFQlQx/NUrUZrV3Z9DDdXFebG2qbG9aiO7sg37TCK7o RCChlgkPCOQlInZUHuSCDWpyORX4HCPx/Aw8PDyS5ppVHXgd+5Evh0boRMFbNtUZ BGTVV+pUlzEf6x6XZuiwy0ROSgCJfFOOAr7KwABbkunFwROmDSO1C6M8Qg== -----END CERTIFICATE-----Generated at Tue Aug 5 17:22:59 2025 by rpki-client