$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa346539-ccae-457c-905d-9a4a3ea91dd1.roa File: aa346539-ccae-457c-905d-9a4a3ea91dd1.roa (raw, json) Hash identifier: TCK3y/TB/pOG8UVksaetAWkKS7fDaSULIMESKPB/xmw= Subject key identifier: B1:8F:00:DA:95:48:40:7C:DF:A3:9D:0F:2F:50:11:CE:BC:EF:64:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CEB76132463FB8C05C31010D071BAB31C226B2F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa346539-ccae-457c-905d-9a4a3ea91dd1.roa Signing time: Wed 23 Jul 2025 00:22:09 +0000 ROA not before: Wed 23 Jul 2025 00:22:09 +0000 ROA not after: Wed 27 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.72.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:eb:76:13:24:63:fb:8c:05:c3:10:10:d0:71:ba:b3:1c:22:6b:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 23 00:22:09 2025 GMT Not After : Aug 27 23:59:59 2025 GMT Subject: serialNumber=d864e2cefc12c3c0b146f1298f12c4b784097d82c01a4135af6427aad230b726, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:26:27:66:37:fa:b4:89:f9:c5:04:cd:3e:40: 98:90:ab:1a:32:3f:2b:41:6c:11:45:88:29:41:ee: bf:9d:63:10:8c:5a:66:0b:ca:49:4b:25:35:1c:1e: 3f:7b:d9:b2:0e:03:e7:04:68:25:5a:b8:13:d0:36: 85:fe:c6:ed:09:93:6c:77:07:6a:4b:71:47:13:ab: e3:39:9d:fd:ad:df:92:7c:89:00:71:a5:8f:4b:3e: 40:b3:0a:28:0f:e7:2e:2f:2e:ef:ac:95:89:33:e5: 1e:a6:45:0c:e0:ae:e2:b7:02:7a:d9:24:d5:76:d9: bd:eb:a4:0c:8e:c4:2d:96:0b:ac:2a:6c:18:f6:9f: 73:13:6b:30:b4:e1:80:7e:db:cd:18:6b:1f:ca:17: c0:4d:43:a8:88:42:07:2f:5b:fc:1a:7e:19:f7:8c: 3d:82:3e:79:a1:cf:02:15:6c:e6:aa:d2:d2:ee:79: 9a:ae:27:26:7e:cc:fc:54:27:9c:a3:7a:cc:c4:1f: df:43:bd:48:4e:98:37:a4:e7:20:ac:21:e0:aa:c1: b9:22:20:e9:08:2c:b1:6d:6c:de:a5:00:51:77:0f: f3:c9:83:64:94:ed:69:31:9c:2a:76:60:d9:3c:7f: df:9f:7f:9c:a7:36:fe:d2:f4:29:24:38:66:88:ff: 75:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:8F:00:DA:95:48:40:7C:DF:A3:9D:0F:2F:50:11:CE:BC:EF:64:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa346539-ccae-457c-905d-9a4a3ea91dd1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.0.0/15 Signature Algorithm: sha256WithRSAEncryption ce:ab:3f:87:a5:03:59:b5:c3:26:22:cb:20:f6:4a:5e:07:d0: 60:fd:25:cf:59:ca:2f:e9:51:a4:23:00:67:20:a2:33:43:8a: a8:ad:23:4d:22:d2:33:0d:52:4a:4d:3d:2b:d7:9a:3f:f6:a8: 19:f9:02:0f:ad:a9:60:e5:20:e8:7c:26:12:04:89:04:55:87: d5:77:29:61:b9:39:08:fd:4d:d0:23:42:ef:f3:cf:a7:28:e5: 54:62:94:27:7e:bd:b2:43:b3:d5:d9:c2:bb:8b:48:00:48:15: 36:3b:15:c0:ee:5e:fb:90:49:ce:9b:e6:ee:96:28:12:1f:c1: 43:31:62:4e:af:52:6a:65:67:ff:a0:2e:73:3f:2e:a9:9e:93: a8:08:e6:37:9d:a1:79:0e:59:2a:ba:3c:df:3d:b4:5d:72:48: 84:99:75:ba:5a:43:0b:59:09:0c:eb:4f:74:91:56:dc:23:57: 5a:9d:3c:87:e9:90:0b:aa:ab:de:18:bc:89:fb:19:69:4a:e0: a7:eb:eb:00:1c:68:40:c1:44:4f:1f:5a:d2:91:17:cd:4a:9c: 41:b6:54:f7:7c:ad:c1:e7:ed:a9:2c:24:a0:3b:9a:c8:5a:83: b0:2d:88:27:13:ee:f2:b5:fe:f2:9c:e6:9f:de:44:40:a6:49: 2a:6c:29:73 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbOt2EyRj+4wFwxAQ0HG6sxwiay8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIzMDAyMjA5WhcNMjUwODI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkODY0ZTJjZWZjMTJjM2MwYjE0NmYxMjk4ZjEyYzRiNzg0 MDk3ZDgyYzAxYTQxMzVhZjY0MjdhYWQyMzBiNzI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpJidmN/q0ifnFBM0+QJiQqxoyPytBbBFFiClB7r+dYxCM WmYLyklLJTUcHj972bIOA+cEaCVauBPQNoX+xu0Jk2x3B2pLcUcTq+M5nf2t35J8 iQBxpY9LPkCzCigP5y4vLu+slYkz5R6mRQzgruK3AnrZJNV22b3rpAyOxC2WC6wq bBj2n3MTazC04YB+280Yax/KF8BNQ6iIQgcvW/wafhn3jD2CPnmhzwIVbOaq0tLu eZquJyZ+zPxUJ5yjeszEH99DvUhOmDek5yCsIeCqwbkiIOkILLFtbN6lAFF3D/PJ g2SU7WkxnCp2YNk8f9+ff5ynNv7S9CkkOGaI/3VZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUsY8A2pVIQHzfo50PL1ARzrzvZJIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FhMzQ2NTM5LWNjYWUtNDU3Yy05MDVkLTlhNGEzZWE5MWRkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwG4SDANBgkqhkiG9w0BAQsFAAOCAQEAzqs/h6UDWbXDJiLLIPZKXgfQYP0l z1nKL+lRpCMAZyCiM0OKqK0jTSLSMw1SSk09K9eaP/aoGfkCD62pYOUg6HwmEgSJ BFWH1XcpYbk5CP1N0CNC7/PPpyjlVGKUJ369skOz1dnCu4tIAEgVNjsVwO5e+5BJ zpvm7pYoEh/BQzFiTq9SamVn/6Aucz8uqZ6TqAjmN52heQ5ZKro83z20XXJIhJl1 ulpDC1kJDOtPdJFW3CNXWp08h+mQC6qr3hi8ifsZaUrgp+vrABxoQMFETx9a0pEX zUqcQbZU93ytweftqSwkoDuayFqDsC2IJxPu8rX+8pzmn95EQKZJKmwpcw== -----END CERTIFICATE-----Generated at Wed Aug 6 09:29:45 2025 by rpki-client