$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a168d90-2841-493c-9062-7688b3e332a6.roa File: 6a168d90-2841-493c-9062-7688b3e332a6.roa (raw, json) Hash identifier: PZrd3bNZSa819XSKh1Rg7+Z3SY8++eHqKVCthkASflA= Subject key identifier: B6:B7:61:B6:87:58:11:23:97:79:9E:6D:EC:3C:80:2F:53:1D:F6:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E49E8FF0CE949D08BCDCECBCAEEF10D0AA31B3B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a168d90-2841-493c-9062-7688b3e332a6.roa Signing time: Sat 02 Aug 2025 00:10:33 +0000 ROA not before: Sat 02 Aug 2025 00:10:33 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.21.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:49:e8:ff:0c:e9:49:d0:8b:cd:ce:cb:ca:ee:f1:0d:0a:a3:1b:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:10:33 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=ef7921c045d9bff2ab1c9eafdf7e667dc5b9ba2027237c927d61e4ae08601bd6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:57:92:b0:72:a1:9a:9b:2e:26:43:27:17:a1: 2b:fa:d7:11:2c:ab:60:05:3b:04:42:60:5a:10:b6: ea:7e:ff:90:b2:cf:a6:81:e1:22:13:b4:3d:d9:79: 6c:3b:8c:7c:29:2f:b0:aa:31:63:b7:67:ef:c6:99: cb:c8:3a:e6:26:a1:bd:ae:11:73:24:34:58:57:8f: 2c:68:35:5f:28:8e:ed:da:d2:75:a7:20:af:40:14: a9:92:00:d4:f3:2c:29:3e:ad:36:62:86:0e:2b:97: 0a:45:2a:60:8a:33:2f:1d:31:a1:ad:e9:77:37:6a: d7:6d:57:43:82:7e:bd:5f:b6:76:43:e0:b4:bf:1c: 7e:90:b0:f5:40:83:0e:6b:5c:8a:89:de:b0:eb:17: 8e:ed:7a:e8:2d:60:12:0e:f2:38:5b:e6:6c:0a:b6: a0:e2:57:18:93:81:45:9e:cb:dd:73:bf:49:39:90: 84:4b:b5:65:07:fb:b8:3a:56:25:b3:da:75:59:aa: 08:16:30:fb:52:a2:f9:4e:92:83:59:0b:e5:01:ba: 1d:7e:0e:66:a4:2d:e6:fd:df:7b:d7:1b:b3:c1:e5: 0f:45:86:dc:6e:93:6e:e5:e9:ea:50:20:b9:d5:1e: 5a:df:38:85:52:3b:56:5f:37:9a:2a:41:fc:b0:51: 12:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:B7:61:B6:87:58:11:23:97:79:9E:6D:EC:3C:80:2F:53:1D:F6:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a168d90-2841-493c-9062-7688b3e332a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.80.0/21 Signature Algorithm: sha256WithRSAEncryption 32:14:34:06:08:20:df:b8:56:3f:7b:18:fa:9d:df:95:83:bc: 20:70:54:8a:50:80:49:8f:b6:30:78:43:79:fc:53:fa:16:a8: 83:b4:42:5e:27:00:83:d6:2d:37:f1:7b:d0:4c:9c:0e:78:85: 01:83:85:2d:13:82:6d:c6:b5:1a:75:8f:34:0f:2d:1a:20:5e: 2c:6a:aa:04:19:b3:3d:e0:5a:de:88:29:f4:b3:ae:a0:12:74: 80:b6:7b:44:ad:c7:21:4f:f2:98:4c:5c:85:5f:e7:8c:98:78: 46:2f:32:78:78:92:7c:23:3f:11:18:fe:3a:75:d3:27:8b:13: a9:80:a4:2b:2c:17:f6:30:44:5c:b4:14:16:e3:eb:80:d2:de: d9:af:fb:51:ad:12:92:f0:c3:16:8c:46:5d:84:e6:f4:bc:6c: d8:08:e9:f8:2b:4c:46:56:06:03:3b:30:ee:e2:bb:71:a0:d1: df:db:01:d9:c2:38:a0:0d:43:b4:19:4b:25:6c:1d:7c:21:ca: 5e:a9:f4:3b:25:75:df:b3:fd:ca:38:d6:4b:20:67:ab:dd:76: 58:e0:a6:0f:76:a7:8a:6c:b0:c2:0b:94:24:b0:fb:fe:14:89: 24:14:c6:69:05:de:b0:9e:f7:2c:99:a6:1e:33:4b:f0:e8:76: d0:73:03:5d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULkno/wzpSdCLzc7Lyu7xDQqjGzswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDAxMDMzWhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjc5MjFjMDQ1ZDliZmYyYWIxYzllYWZkZjdlNjY3ZGM1 YjliYTIwMjcyMzdjOTI3ZDYxZTRhZTA4NjAxYmQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzV5KwcqGamy4mQycXoSv61xEsq2AFOwRCYFoQtup+/5Cy z6aB4SITtD3ZeWw7jHwpL7CqMWO3Z+/GmcvIOuYmob2uEXMkNFhXjyxoNV8oju3a 0nWnIK9AFKmSANTzLCk+rTZihg4rlwpFKmCKMy8dMaGt6Xc3atdtV0OCfr1ftnZD 4LS/HH6QsPVAgw5rXIqJ3rDrF47teugtYBIO8jhb5mwKtqDiVxiTgUWey91zv0k5 kIRLtWUH+7g6ViWz2nVZqggWMPtSovlOkoNZC+UBuh1+DmakLeb933vXG7PB5Q9F htxuk27l6epQILnVHlrfOIVSO1ZfN5oqQfywURIRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtrdhtodYESOXeZ5t7DyAL1Md9hYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhMTY4ZDkwLTI4NDEtNDkzYy05MDYyLTc2ODhiM2UzMzJhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANrFVAwDQYJKoZIhvcNAQELBQADggEBADIUNAYIIN+4Vj97GPqd35WDvCBw VIpQgEmPtjB4Q3n8U/oWqIO0Ql4nAIPWLTfxe9BMnA54hQGDhS0Tgm3GtRp1jzQP LRogXixqqgQZsz3gWt6IKfSzrqASdIC2e0StxyFP8phMXIVf54yYeEYvMnh4knwj PxEY/jp10yeLE6mApCssF/YwRFy0FBbj64DS3tmv+1GtEpLwwxaMRl2E5vS8bNgI 6fgrTEZWBgM7MO7iu3Gg0d/bAdnCOKANQ7QZSyVsHXwhyl6p9Dsldd+z/co41ksg Z6vddljgpg92p4pssMILlCSw+/4UiSQUxmkF3rCe9yyZph4zS/DodtBzA10= -----END CERTIFICATE-----Generated at Sat Aug 9 03:01:28 2025 by rpki-client