$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6994578-2d48-4426-8ebb-7657049c78ef.roa File: a6994578-2d48-4426-8ebb-7657049c78ef.roa (raw, json) Hash identifier: eKgvnQZDfBq6QbAL+6IZ7LvW7nXBECK8m/2Sl4MNlYw= Subject key identifier: 03:0B:05:78:B7:31:7E:7C:04:22:32:21:30:E7:03:4E:FD:05:27:C3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 764F5221CEDC91A2075425F163944EDCED66D4AD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6994578-2d48-4426-8ebb-7657049c78ef.roa Signing time: Mon 28 Jul 2025 15:40:13 +0000 ROA not before: Mon 28 Jul 2025 15:40:13 +0000 ROA not after: Mon 01 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:4f:52:21:ce:dc:91:a2:07:54:25:f1:63:94:4e:dc:ed:66:d4:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 28 15:40:13 2025 GMT Not After : Sep 1 23:59:59 2025 GMT Subject: serialNumber=c4506daadc037b33c019fb7f09658b1f22fc1f4796fc449c6ef7c0441cbe7987, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:60:8d:e1:39:70:8f:f8:d7:86:54:83:fa:f5: a5:cb:81:e7:f6:9e:ee:78:71:05:9a:fb:0e:a7:ab: fd:a3:63:d8:09:a8:cf:f1:94:64:a4:dd:34:42:13: 43:1d:28:0d:df:d1:29:8c:08:c8:18:e1:19:ca:17: ca:31:ee:85:1d:2f:ac:f2:dc:22:36:6e:fc:61:0c: dd:92:c4:81:03:26:1b:9e:66:f8:10:4b:e8:38:22: 06:d0:ef:30:bb:20:52:29:04:63:bb:3b:77:f8:6a: 5d:2c:60:1a:03:75:1c:04:a2:bb:98:b2:36:24:56: d1:7e:fe:35:76:28:2d:00:f9:0c:81:6b:3b:10:e9: b5:5f:f2:7e:63:39:d0:81:54:cc:dd:d1:66:9d:71: a5:b0:15:cd:e2:18:06:9a:9a:ef:87:f2:92:d3:59: 2a:67:70:1c:00:10:66:06:b4:8d:72:c4:cf:a9:14: df:90:ce:6f:b9:62:7f:a7:12:c8:47:e0:61:78:bb: ec:f2:97:53:c5:f7:f8:01:6f:99:32:17:3c:f6:37: 68:42:f9:8b:e9:f5:94:df:36:52:b6:98:85:46:c4: 74:b7:7c:0e:cf:24:06:5d:20:be:d6:f6:78:a2:36: 07:92:f2:68:35:9c:84:01:54:d4:95:47:68:1e:57: a0:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:0B:05:78:B7:31:7E:7C:04:22:32:21:30:E7:03:4E:FD:05:27:C3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6994578-2d48-4426-8ebb-7657049c78ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.172.0/23 Signature Algorithm: sha256WithRSAEncryption 80:70:b1:3c:a9:ce:dc:cf:46:d5:0a:78:0b:8a:12:9b:fc:f7: c1:cf:e4:a1:18:99:44:0f:5f:da:43:1e:f9:70:4a:83:ca:9e: 57:ed:83:45:e0:11:54:77:c7:74:84:b5:60:e8:d0:e7:24:9a: 8e:9c:3f:e9:4f:ea:0c:75:41:b7:c8:70:85:11:32:6a:c4:5e: 08:a2:15:24:0e:6b:4c:60:bf:30:43:7c:07:72:1c:ab:bd:d6: 6e:0f:c1:e0:05:8b:d5:bc:a4:23:93:67:61:57:a8:c3:2e:7d: 1f:24:f8:5e:77:64:55:b3:41:a2:41:cd:9a:c9:29:b8:8d:90: 3f:3f:e4:7d:cc:32:ef:b4:6c:cc:39:96:59:e2:7d:fe:bc:70: 1e:d2:09:ae:01:e0:2a:1a:24:73:3d:d1:c8:86:8b:35:1d:58: 6a:6f:7c:06:61:70:4b:cb:97:5b:45:d6:c4:3a:73:2d:6e:bc: e0:fd:2c:fa:07:77:c3:aa:a6:31:ae:c6:3c:03:a5:ca:62:a5: 02:47:a4:c5:fd:eb:f0:e4:3a:d9:a1:aa:ac:52:db:0b:83:e8: e4:ad:81:c8:56:5d:84:a4:a0:e2:13:a0:3c:19:45:f6:fd:53: c4:a8:bb:cf:2a:0b:a8:c9:fa:e7:59:73:61:2d:57:46:5e:4c: 33:da:ad:33 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdk9SIc7ckaIHVCXxY5RO3O1m1K0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI4MTU0MDEzWhcNMjUwOTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDUwNmRhYWRjMDM3YjMzYzAxOWZiN2YwOTY1OGIxZjIy ZmMxZjQ3OTZmYzQ0OWM2ZWY3YzA0NDFjYmU3OTg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMYI3hOXCP+NeGVIP69aXLgef2nu54cQWa+w6nq/2jY9gJ qM/xlGSk3TRCE0MdKA3f0SmMCMgY4RnKF8ox7oUdL6zy3CI2bvxhDN2SxIEDJhue ZvgQS+g4IgbQ7zC7IFIpBGO7O3f4al0sYBoDdRwEoruYsjYkVtF+/jV2KC0A+QyB azsQ6bVf8n5jOdCBVMzd0WadcaWwFc3iGAaamu+H8pLTWSpncBwAEGYGtI1yxM+p FN+Qzm+5Yn+nEshH4GF4u+zyl1PF9/gBb5kyFzz2N2hC+Yvp9ZTfNlK2mIVGxHS3 fA7PJAZdIL7W9niiNgeS8mg1nIQBVNSVR2geV6AvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAwsFeLcxfnwEIjIhMOcDTv0FJ8MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E2OTk0NTc4LTJkNDgtNDQyNi04ZWJiLTc2NTcwNDljNzhlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFAKwwDQYJKoZIhvcNAQELBQADggEBAIBwsTypztzPRtUKeAuKEpv898HP 5KEYmUQPX9pDHvlwSoPKnlftg0XgEVR3x3SEtWDo0Ockmo6cP+lP6gx1QbfIcIUR MmrEXgiiFSQOa0xgvzBDfAdyHKu91m4PweAFi9W8pCOTZ2FXqMMufR8k+F53ZFWz QaJBzZrJKbiNkD8/5H3MMu+0bMw5llniff68cB7SCa4B4CoaJHM90ciGizUdWGpv fAZhcEvLl1tF1sQ6cy1uvOD9LPoHd8OqpjGuxjwDpcpipQJHpMX96/DkOtmhqqxS 2wuD6OStgchWXYSkoOIToDwZRfb9U8Sou88qC6jJ+udZc2EtV0ZeTDParTM= -----END CERTIFICATE-----Generated at Thu Aug 7 05:06:29 2025 by rpki-client