$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/646c43c0-5fb0-40e1-9466-05bdc0cdc3f1.roa File: 646c43c0-5fb0-40e1-9466-05bdc0cdc3f1.roa (raw, json) Hash identifier: lE97vdU/+6tzPkiWkxqCM7lerlw8N1UDrDTFdfYRNFQ= Subject key identifier: B1:B5:42:02:5A:0E:10:B7:FC:B0:59:CB:66:EE:B5:8A:B8:A9:EB:8E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0DB155DA01B64B213AB6C2B0CCFE5F7DC6BA55BE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/646c43c0-5fb0-40e1-9466-05bdc0cdc3f1.roa Signing time: Sat 02 Aug 2025 00:50:25 +0000 ROA not before: Sat 02 Aug 2025 00:50:25 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 174.129.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:b1:55:da:01:b6:4b:21:3a:b6:c2:b0:cc:fe:5f:7d:c6:ba:55:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:50:25 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=3137f23468c946b03aa9a8c2a07d652b81e4b565e290f983bcba220691ad78bb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:88:02:cb:3a:4e:66:13:56:ca:fe:ba:e1:36: bb:e1:5d:7e:a2:8f:44:50:12:1c:40:bc:4b:ae:d1: a8:16:89:58:51:d5:84:05:a8:38:2b:31:f4:9e:53: 0f:df:37:af:4b:2c:26:ca:c1:52:fc:3d:51:db:92: 5d:49:ed:f5:66:3c:f6:44:72:40:f5:48:2c:e3:d5: 33:40:bd:71:1a:a4:85:32:2b:2c:08:53:8c:f5:dd: 7d:b2:c2:96:47:95:0b:a1:98:97:f0:d1:44:18:30: f3:7a:fd:64:e0:f8:8a:33:1f:07:70:d6:f9:84:36: db:c6:c2:fa:49:1e:4b:ca:93:8e:dc:69:6b:5c:1a: 53:5f:95:7b:8f:c2:99:6c:2d:c1:40:f6:86:ca:d1: e4:a9:71:0b:4d:40:1c:85:cc:32:88:96:e9:75:4d: f6:66:10:c4:7a:06:30:2d:1d:b5:c0:0f:30:11:47: c0:0c:24:06:c5:71:92:5e:b9:97:1f:ea:9e:5e:19: d1:db:38:ba:0a:5a:4a:09:78:5e:ff:1f:3e:ac:32: 01:78:50:8f:b6:df:72:38:d9:d7:8b:1e:7f:21:1a: 9f:07:62:ca:4a:17:13:26:c6:50:c7:fd:df:68:e9: 43:10:cf:7e:14:e2:af:70:31:a9:29:cd:2d:10:7d: 3e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:B5:42:02:5A:0E:10:B7:FC:B0:59:CB:66:EE:B5:8A:B8:A9:EB:8E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/646c43c0-5fb0-40e1-9466-05bdc0cdc3f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 174.129.192.0/18 Signature Algorithm: sha256WithRSAEncryption 45:d2:1a:29:23:32:57:45:eb:de:dd:2b:d1:8c:be:c4:1a:e9: 75:77:4e:39:47:eb:5d:7d:a4:57:36:7e:13:44:1f:59:ce:e1: 88:c1:6a:ae:7a:07:51:ec:ff:0a:99:f0:4d:ff:36:6a:b3:54: 01:11:3e:5f:cf:76:f0:53:ae:a8:ad:9a:42:71:06:16:62:c4: 94:c4:fc:78:92:ba:c4:ae:92:b4:5d:22:37:18:15:36:75:a4: 9a:a9:f7:b6:8f:51:60:d1:60:6a:86:d2:35:ab:75:ad:94:3f: a3:e7:16:8d:e8:c3:2c:6e:47:f7:5d:cd:f8:49:1b:cb:52:6c: 6d:28:a3:97:e1:0f:1d:fc:a0:9e:c6:21:00:89:52:24:da:a6: 7e:e0:32:95:b0:8c:50:8f:ab:59:b5:93:a8:66:62:7e:d8:85: c1:bf:55:aa:5c:74:e4:fe:19:09:06:19:98:a2:09:57:b2:b1: 00:bc:64:ed:13:ba:2a:48:8b:07:28:c4:6f:09:2f:9c:ae:c4: ff:71:d9:1f:07:26:3a:e7:37:ad:5c:c9:28:34:f8:0d:92:cc: f8:44:67:1f:69:60:51:ba:11:85:72:3d:9c:9b:a6:63:77:c8: 7f:67:86:80:aa:a5:e7:d4:43:3a:e6:ac:f6:cb:72:98:8c:8c: b7:6d:e9:13 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDbFV2gG2SyE6tsKwzP5ffca6Vb4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDA1MDI1WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMTM3ZjIzNDY4Yzk0NmIwM2FhOWE4YzJhMDdkNjUyYjgx ZTRiNTY1ZTI5MGY5ODNiY2JhMjIwNjkxYWQ3OGJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7iALLOk5mE1bK/rrhNrvhXX6ij0RQEhxAvEuu0agWiVhR 1YQFqDgrMfSeUw/fN69LLCbKwVL8PVHbkl1J7fVmPPZEckD1SCzj1TNAvXEapIUy KywIU4z13X2ywpZHlQuhmJfw0UQYMPN6/WTg+IozHwdw1vmENtvGwvpJHkvKk47c aWtcGlNflXuPwplsLcFA9obK0eSpcQtNQByFzDKIlul1TfZmEMR6BjAtHbXADzAR R8AMJAbFcZJeuZcf6p5eGdHbOLoKWkoJeF7/Hz6sMgF4UI+233I42deLHn8hGp8H YspKFxMmxlDH/d9o6UMQz34U4q9wMakpzS0QfT6ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsbVCAloOELf8sFnLZu61irip644wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY0NmM0M2MwLTVmYjAtNDBlMS05NDY2LTA1YmRjMGNkYzNmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaugcAwDQYJKoZIhvcNAQELBQADggEBAEXSGikjMldF697dK9GMvsQa6XV3 TjlH6119pFc2fhNEH1nO4YjBaq56B1Hs/wqZ8E3/NmqzVAERPl/PdvBTrqitmkJx BhZixJTE/HiSusSukrRdIjcYFTZ1pJqp97aPUWDRYGqG0jWrda2UP6PnFo3owyxu R/ddzfhJG8tSbG0oo5fhDx38oJ7GIQCJUiTapn7gMpWwjFCPq1m1k6hmYn7YhcG/ VapcdOT+GQkGGZiiCVeysQC8ZO0TuipIiwcoxG8JL5yuxP9x2R8HJjrnN61cySg0 +A2SzPhEZx9pYFG6EYVyPZybpmN3yH9nhoCqpefUQzrmrPbLcpiMjLdt6RM= -----END CERTIFICATE-----Generated at Sat Aug 9 02:54:15 2025 by rpki-client