$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6694171a-aae2-4bbb-a718-43a3f95c6dc1.roa File: 6694171a-aae2-4bbb-a718-43a3f95c6dc1.roa (raw, json) Hash identifier: hgkSIfjxTwtuO3ZhHs0+pnZ2CHsDxwS+gl58gloud4k= Subject key identifier: 57:66:92:3F:7B:02:EB:53:D5:82:4D:27:21:C3:9E:3E:A4:EE:86:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 766157D7800424E548BF06192BC98B70AF764943 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6694171a-aae2-4bbb-a718-43a3f95c6dc1.roa Signing time: Mon 04 Aug 2025 15:11:13 +0000 ROA not before: Mon 04 Aug 2025 15:11:13 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.236.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:61:57:d7:80:04:24:e5:48:bf:06:19:2b:c9:8b:70:af:76:49:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:11:13 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=2f1a90bb6cb74819cfb63345ae604f7606b1dd9ed11525cf462c7d27b99720aa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:77:f1:53:c6:04:7f:27:c9:a9:0b:23:23:07: fe:ab:1f:86:c0:e8:82:77:cc:ac:0c:de:1b:47:b2: a3:67:ba:97:db:d8:13:6b:eb:8a:a7:43:f6:e5:4b: 58:40:ac:90:1d:91:d7:45:98:2b:e5:c2:a3:b1:bc: f4:4e:3e:c6:f3:bc:d6:ca:18:c6:2c:9f:bd:6c:e1: cd:45:b3:4a:f7:f1:e5:b3:2a:35:ef:ed:69:2e:b0: 40:d2:3e:ac:e1:1e:f9:2e:71:83:34:dc:7c:ab:e8: f3:0e:4e:fb:51:1a:37:2d:41:12:0d:b7:36:0a:c4: 09:df:30:6b:cb:6d:a5:0c:c5:2d:09:25:3a:be:4a: 78:2f:5e:04:89:02:7b:64:c9:81:34:b7:3b:03:85: c7:a5:da:16:aa:6e:ae:fa:bb:e1:cb:58:2b:5f:87: 3f:98:2e:00:19:40:35:b7:b4:76:20:ae:86:2f:be: 3d:24:28:99:87:55:24:c0:09:dc:30:8c:d3:f4:8f: 82:30:01:1a:c7:c7:2e:ed:33:48:87:be:a5:8b:84: 7a:65:46:ae:3d:58:6c:45:d7:29:78:85:4e:68:24: ad:ac:75:83:ab:90:78:7e:4d:13:81:3c:e6:10:ef: e7:7e:4d:bd:0c:31:d9:a3:9a:54:67:ee:38:48:b5: e6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:66:92:3F:7B:02:EB:53:D5:82:4D:27:21:C3:9E:3E:A4:EE:86:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6694171a-aae2-4bbb-a718-43a3f95c6dc1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.144.0/20 Signature Algorithm: sha256WithRSAEncryption ba:f3:fa:5a:64:dc:87:d9:36:8f:d2:b5:fc:27:c3:5c:c6:4c: 38:74:ef:26:21:7e:fc:e9:0f:28:ba:42:c2:14:da:7f:44:49: 86:ec:52:10:34:10:c3:2f:a6:7a:d5:83:c0:72:98:da:ba:d5: 50:d3:c0:d3:b6:cb:8f:44:66:d5:fc:fe:44:9d:4f:20:dd:1e: 4f:e1:85:ff:de:33:52:e6:74:20:36:3d:44:1b:6e:47:95:7f: cc:95:90:bb:2f:ee:cd:4d:e3:9d:f9:c2:45:8f:a5:78:67:ac: 0b:a3:e1:db:06:4c:0e:43:00:18:d4:15:22:c5:6b:ae:63:fb: 54:25:3f:5d:a0:63:05:8c:8b:61:8e:09:24:68:5e:05:3d:13: 24:72:0c:94:43:33:e3:75:49:fa:cf:1f:41:0c:76:86:05:33: 56:7f:da:89:3a:30:94:9b:ec:f0:31:6c:fd:3d:26:8e:7f:9f: 70:33:77:2c:49:e1:e1:70:72:05:23:8a:b6:41:40:12:6b:bc: 2d:0d:be:a1:28:55:1f:0f:cb:ef:2f:9b:b9:26:b2:42:53:41: 4a:aa:97:5a:65:ba:de:06:6f:70:bc:a6:e3:36:9b:1f:89:c3: 9b:62:5b:9f:be:59:b3:37:5e:66:00:27:73:80:4c:c5:8a:f1: 54:14:ec:07 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdmFX14AEJOVIvwYZK8mLcK92SUMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTUxMTEzWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjFhOTBiYjZjYjc0ODE5Y2ZiNjMzNDVhZTYwNGY3NjA2 YjFkZDllZDExNTI1Y2Y0NjJjN2QyN2I5OTcyMGFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvd/FTxgR/J8mpCyMjB/6rH4bA6IJ3zKwM3htHsqNnupfb 2BNr64qnQ/blS1hArJAdkddFmCvlwqOxvPROPsbzvNbKGMYsn71s4c1Fs0r38eWz KjXv7WkusEDSPqzhHvkucYM03Hyr6PMOTvtRGjctQRINtzYKxAnfMGvLbaUMxS0J JTq+SngvXgSJAntkyYE0tzsDhcel2haqbq76u+HLWCtfhz+YLgAZQDW3tHYgroYv vj0kKJmHVSTACdwwjNP0j4IwARrHxy7tM0iHvqWLhHplRq49WGxF1yl4hU5oJK2s dYOrkHh+TROBPOYQ7+d+Tb0MMdmjmlRn7jhItebpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUV2aSP3sC61PVgk0nIcOePqTuhsYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY2OTQxNzFhLWFhZTItNGJiYi1hNzE4LTQzYTNmOTVjNmRjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATM7JAwDQYJKoZIhvcNAQELBQADggEBALrz+lpk3IfZNo/Stfwnw1zGTDh0 7yYhfvzpDyi6QsIU2n9ESYbsUhA0EMMvpnrVg8BymNq61VDTwNO2y49EZtX8/kSd TyDdHk/hhf/eM1LmdCA2PUQbbkeVf8yVkLsv7s1N4535wkWPpXhnrAuj4dsGTA5D ABjUFSLFa65j+1QlP12gYwWMi2GOCSRoXgU9EyRyDJRDM+N1SfrPH0EMdoYFM1Z/ 2ok6MJSb7PAxbP09Jo5/n3AzdyxJ4eFwcgUjirZBQBJrvC0NvqEoVR8Py+8vm7km skJTQUqql1plut4Gb3C8puM2mx+Jw5tiW5++WbM3XmYAJ3OATMWK8VQU7Ac= -----END CERTIFICATE-----Generated at Wed Aug 6 13:19:20 2025 by rpki-client