$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/63cb1e87-639b-487c-bdb6-3408ff537e1d.roa File: 63cb1e87-639b-487c-bdb6-3408ff537e1d.roa (raw, json) Hash identifier: eJ2geUi5jJ1auayXQ7/yUf+Z6iJw8jwCXX5LTw+Zm0I= Subject key identifier: C0:02:CB:E6:7B:DE:08:48:BF:F5:42:3A:A5:68:87:C5:E2:96:9F:F2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 07961CB6CE4ADCE967CD4AEFDBD9EC0CB33804D3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/63cb1e87-639b-487c-bdb6-3408ff537e1d.roa Signing time: Tue 05 Aug 2025 00:01:24 +0000 ROA not before: Tue 05 Aug 2025 00:01:24 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 148.94.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:96:1c:b6:ce:4a:dc:e9:67:cd:4a:ef:db:d9:ec:0c:b3:38:04:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:01:24 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=2036f4823973e6fa392c62ffce77e5530a874bbe1179eb12f5d9145440c2df51, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:d5:a4:4e:36:22:4e:51:02:fe:86:1d:eb:17: 73:c2:47:d6:97:11:ea:6e:22:0f:a7:b1:b1:36:c1: 96:5f:f2:06:c7:1b:14:1d:0d:dd:e7:da:13:9b:b4: db:4b:3a:63:5e:6c:2e:78:cd:82:c0:d4:78:54:03: a4:3e:98:71:a2:53:cd:78:89:1f:bf:25:ad:d2:0d: 56:59:c0:e6:e5:11:ac:8e:24:4d:ef:73:4e:f8:17: 39:bd:bd:89:c7:dd:89:31:89:52:21:88:fb:f9:aa: e8:b1:2d:dc:37:0c:c6:bb:14:b0:83:72:8c:b6:4b: 03:84:51:23:ff:70:b8:92:c0:64:22:36:7f:f8:00: b3:24:a6:48:df:d4:d7:d9:b4:05:e6:77:ae:40:4a: e4:79:de:a9:93:a1:95:ce:c2:4f:aa:89:f6:7a:49: 87:ca:39:39:e9:27:16:be:bd:7c:50:1a:35:c1:d4: 2f:7f:2c:b4:77:57:e5:74:21:9f:05:1d:43:b2:40: 17:c9:93:c6:6c:bf:ab:bd:98:47:b3:ef:b9:b8:e2: e3:fa:99:8a:44:09:70:ec:da:74:f8:f3:08:e0:40: 6e:f2:c5:6e:73:bd:51:f0:a8:a3:64:82:e9:0a:11: a6:79:8d:6c:c1:b5:cb:98:cf:0b:30:69:56:03:59: 9d:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:02:CB:E6:7B:DE:08:48:BF:F5:42:3A:A5:68:87:C5:E2:96:9F:F2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/63cb1e87-639b-487c-bdb6-3408ff537e1d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 148.94.0.0/16 Signature Algorithm: sha256WithRSAEncryption cd:53:b1:9b:b8:7c:26:9d:89:e1:7e:fb:8a:d6:c0:b0:f2:61: 8e:2d:82:d7:ed:c3:13:e9:da:ef:8f:18:da:dd:2b:26:24:5c: ac:69:36:1e:b7:a2:0c:db:00:17:10:6d:14:57:bc:69:ea:1d: 99:1a:00:ec:87:5f:72:e0:c8:4a:d0:65:0f:cd:5e:05:dd:3a: 0f:37:4f:16:dc:ce:60:f1:49:5e:c2:c8:32:e7:32:cc:53:c5: 50:44:99:62:e2:ae:cf:3e:de:c2:c8:b8:da:8b:3e:0a:25:fd: 16:52:eb:15:37:52:5d:a8:fb:d4:c9:63:f5:22:0c:70:e8:e5: f6:db:dc:f7:f9:6e:9f:f7:29:d3:97:1d:0a:98:b3:b9:4d:27: c1:00:2e:66:bf:73:63:f9:41:2c:3c:46:07:42:3b:8e:d5:37: dd:7a:c1:29:d8:aa:5b:b1:9d:a5:eb:d3:3a:7b:5b:da:77:05: 25:28:1c:78:20:38:bc:88:d6:49:56:5e:11:8a:96:a5:c4:70: ac:88:50:4b:00:2d:83:42:ea:2c:21:af:76:2c:40:76:5a:1f: 08:fa:9a:98:0c:95:43:68:41:1b:08:b7:5c:3f:43:bb:ab:06: bd:73:bc:40:ce:31:11:69:65:27:eb:5a:ff:d2:76:35:bd:65: 14:45:8d:a8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUB5Ycts5K3OlnzUrv29nsDLM4BNMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDAwMTI0WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDM2ZjQ4MjM5NzNlNmZhMzkyYzYyZmZjZTc3ZTU1MzBh ODc0YmJlMTE3OWViMTJmNWQ5MTQ1NDQwYzJkZjUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCO1aRONiJOUQL+hh3rF3PCR9aXEepuIg+nsbE2wZZf8gbH GxQdDd3n2hObtNtLOmNebC54zYLA1HhUA6Q+mHGiU814iR+/Ja3SDVZZwOblEayO JE3vc074Fzm9vYnH3YkxiVIhiPv5quixLdw3DMa7FLCDcoy2SwOEUSP/cLiSwGQi Nn/4ALMkpkjf1NfZtAXmd65ASuR53qmToZXOwk+qifZ6SYfKOTnpJxa+vXxQGjXB 1C9/LLR3V+V0IZ8FHUOyQBfJk8Zsv6u9mEez77m44uP6mYpECXDs2nT48wjgQG7y xW5zvVHwqKNkgukKEaZ5jWzBtcuYzwswaVYDWZ3RAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwALL5nveCEi/9UI6pWiHxeKWn/IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYzY2IxZTg3LTYzOWItNDg3Yy1iZGI2LTM0MDhmZjUzN2UxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCUXjANBgkqhkiG9w0BAQsFAAOCAQEAzVOxm7h8Jp2J4X77itbAsPJhji2C 1+3DE+na748Y2t0rJiRcrGk2HreiDNsAFxBtFFe8aeodmRoA7IdfcuDIStBlD81e Bd06DzdPFtzOYPFJXsLIMucyzFPFUESZYuKuzz7ewsi42os+CiX9FlLrFTdSXaj7 1Mlj9SIMcOjl9tvc9/lun/cp05cdCpizuU0nwQAuZr9zY/lBLDxGB0I7jtU33XrB KdiqW7GdpevTOntb2ncFJSgceCA4vIjWSVZeEYqWpcRwrIhQSwAtg0LqLCGvdixA dlofCPqamAyVQ2hBGwi3XD9Du6sGvXO8QM4xEWllJ+ta/9J2Nb1lFEWNqA== -----END CERTIFICATE-----Generated at Fri Aug 8 19:22:34 2025 by rpki-client