$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ccd92a7-a0b2-40f5-ab45-81f0e171f362.roa File: 9ccd92a7-a0b2-40f5-ab45-81f0e171f362.roa (raw, json) Hash identifier: de7N5yCscEkU4V4pGXlzW9EIyMbv7hTEgHb0UMs+S9w= Subject key identifier: 84:FC:6A:18:4E:FE:61:8E:EE:B7:72:FC:65:03:A3:CE:A6:70:04:8C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D3C5848C2E83429F8299B65E42F2823F1B44FE3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ccd92a7-a0b2-40f5-ab45-81f0e171f362.roa Signing time: Sat 26 Jul 2025 00:10:18 +0000 ROA not before: Sat 26 Jul 2025 00:10:18 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 66.133.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:3c:58:48:c2:e8:34:29:f8:29:9b:65:e4:2f:28:23:f1:b4:4f:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 26 00:10:18 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=a9bf41dc4d9ef54c249772c26feb6635ed79395621e488bd304f04f71d9d92c5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:bb:e1:52:93:36:8e:2e:6d:13:41:dc:b5:7a: c8:ee:d0:3e:54:5c:3d:36:50:09:1e:29:78:7f:3d: ed:6d:bf:49:48:83:75:22:25:05:ed:d5:23:11:10: fb:e3:36:6e:2f:ca:87:d3:f1:48:ac:f8:a7:c7:51: 34:7a:b6:73:7f:58:43:19:84:83:0d:ca:2c:0c:87: 13:25:4f:1c:ef:f0:71:cc:c2:5c:63:9e:07:a0:62: 32:76:00:a4:90:30:4f:72:3a:d2:b0:03:7f:d0:6d: ad:e2:db:f3:40:80:c4:45:8a:5d:0f:78:22:be:bd: 91:b3:86:89:01:00:89:fd:ab:ed:e9:a3:78:13:36: af:b3:04:d1:20:57:f5:3c:23:10:e0:8c:06:2d:9c: a3:7e:69:45:a5:ba:76:71:e7:e1:bf:cb:da:3a:73: 48:70:9a:64:af:1e:1e:88:db:2d:b3:39:ac:dc:1e: de:e9:00:00:a0:4d:cf:10:d1:d7:ef:9b:52:f4:b2: 88:62:61:09:05:df:ad:88:ef:29:fb:68:03:60:cc: 92:c5:42:97:12:5f:09:f0:a9:e0:4f:ca:24:75:9a: 31:40:14:aa:75:cc:50:91:41:9f:27:39:ee:47:74: e8:ef:83:a3:32:84:be:e9:f8:dd:24:7b:4a:06:91: 90:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:FC:6A:18:4E:FE:61:8E:EE:B7:72:FC:65:03:A3:CE:A6:70:04:8C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ccd92a7-a0b2-40f5-ab45-81f0e171f362.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.133.192.0/18 Signature Algorithm: sha256WithRSAEncryption 26:bc:0c:94:b1:b1:ab:45:89:d3:06:ee:7a:03:d9:91:67:e6: be:fc:0d:02:61:f6:c7:37:cd:ff:9e:e6:ca:02:db:b4:a6:a2: 63:f0:83:eb:9f:2d:e4:63:77:9a:94:07:7b:2a:71:73:48:62: c2:f4:40:ed:ae:4e:91:5f:d9:0c:91:1a:77:7d:2f:1e:f2:c9: 68:0a:a2:23:20:89:57:f8:25:55:19:6d:8b:04:83:0c:2c:af: a6:24:7f:51:ae:f1:a2:fc:72:ec:48:46:d9:15:ed:16:59:35: 04:29:15:ff:14:c9:b3:da:62:f1:92:98:35:f3:00:c6:23:a3: 5f:13:d7:9e:e8:27:ef:f6:cc:03:27:b4:e5:67:e8:2f:d7:05: 27:05:71:c5:ec:db:41:20:74:54:b1:4e:24:f4:d5:2e:ae:1e: 6f:c6:47:20:a6:63:3f:81:99:a0:01:60:19:b3:b4:d1:a6:d2: c0:7e:0f:87:13:da:68:39:ba:a7:0f:dd:e1:42:c3:43:84:aa: 4f:dd:e6:c8:fb:7a:aa:5b:1a:e6:dd:c6:e6:c0:b0:5d:26:d1: a6:be:c4:1b:45:be:fb:fb:8c:7a:1a:21:5a:af:85:93:05:80: b8:c5:ea:51:5f:9d:7f:19:5c:fe:87:c9:13:ac:9a:4c:ed:0d: 4b:e0:b4:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXTxYSMLoNCn4KZtl5C8oI/G0T+MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI2MDAxMDE4WhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhOWJmNDFkYzRkOWVmNTRjMjQ5NzcyYzI2ZmViNjYzNWVk NzkzOTU2MjFlNDg4YmQzMDRmMDRmNzFkOWQ5MmM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsu+FSkzaOLm0TQdy1esju0D5UXD02UAkeKXh/Pe1tv0lI g3UiJQXt1SMREPvjNm4vyofT8Uis+KfHUTR6tnN/WEMZhIMNyiwMhxMlTxzv8HHM wlxjngegYjJ2AKSQME9yOtKwA3/Qba3i2/NAgMRFil0PeCK+vZGzhokBAIn9q+3p o3gTNq+zBNEgV/U8IxDgjAYtnKN+aUWlunZx5+G/y9o6c0hwmmSvHh6I2y2zOazc Ht7pAACgTc8Q0dfvm1L0sohiYQkF362I7yn7aANgzJLFQpcSXwnwqeBPyiR1mjFA FKp1zFCRQZ8nOe5HdOjvg6MyhL7p+N0ke0oGkZCHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhPxqGE7+YY7ut3L8ZQOjzqZwBIwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzljY2Q5MmE3LWEwYjItNDBmNS1hYjQ1LTgxZjBlMTcxZjM2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZChcAwDQYJKoZIhvcNAQELBQADggEBACa8DJSxsatFidMG7noD2ZFn5r78 DQJh9sc3zf+e5soC27SmomPwg+ufLeRjd5qUB3sqcXNIYsL0QO2uTpFf2QyRGnd9 Lx7yyWgKoiMgiVf4JVUZbYsEgwwsr6Ykf1Gu8aL8cuxIRtkV7RZZNQQpFf8UybPa YvGSmDXzAMYjo18T157oJ+/2zAMntOVn6C/XBScFccXs20EgdFSxTiT01S6uHm/G RyCmYz+BmaABYBmztNGm0sB+D4cT2mg5uqcP3eFCw0OEqk/d5sj7eqpbGubdxubA sF0m0aa+xBtFvvv7jHoaIVqvhZMFgLjF6lFfnX8ZXP6HyROsmkztDUvgtM8= -----END CERTIFICATE-----Generated at Tue Aug 5 23:01:59 2025 by rpki-client