$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acee793e-e4d8-4c60-8711-8877a8378aa0.roa File: acee793e-e4d8-4c60-8711-8877a8378aa0.roa (raw, json) Hash identifier: a3Oiu3KbgS1EUqezgQK4IgUXzFSN3kX3kvTMDS0ft4Y= Subject key identifier: 17:6E:2F:F1:74:2A:7E:A0:79:09:EE:32:B9:EE:B5:BE:10:96:6F:83 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6165F884015703A8038E88A462A09A2D8967A610 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acee793e-e4d8-4c60-8711-8877a8378aa0.roa Signing time: Tue 22 Jul 2025 00:30:23 +0000 ROA not before: Tue 22 Jul 2025 00:30:23 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 44.216.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:65:f8:84:01:57:03:a8:03:8e:88:a4:62:a0:9a:2d:89:67:a6:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 00:30:23 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=ffd4cf3eac399e35eb8cf1b11d097ebaa3e108e20fe9ce9ac24cbe33d9bfb313, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:7e:37:dc:2d:9b:28:9a:9f:6f:27:83:1b:ee: 4e:b2:17:a2:54:1c:7b:6f:89:f3:0d:0e:0a:69:a4: 58:58:ae:5a:62:f1:f4:97:78:bf:9d:fe:8c:a6:37: e7:f7:0a:0b:3d:a6:ee:31:68:dd:2d:7f:9b:48:ba: da:e4:26:1b:1e:85:14:9f:8f:d8:33:69:4a:56:fe: ba:2d:03:8e:6c:1a:c7:7f:ba:4e:b4:63:27:5d:74: 72:88:da:f9:6c:8e:f8:41:fe:e2:02:15:06:0f:21: ef:56:9b:3a:0c:83:91:f0:81:ec:79:79:41:72:93: 29:8e:1f:6a:5e:a0:4d:8c:87:71:8f:fe:0d:a7:e8: a0:38:dc:ca:4d:86:84:c9:21:67:18:6c:05:e8:ac: b8:0c:51:f6:18:19:b6:45:3b:62:f0:05:fb:bb:7e: 9e:b5:68:e3:42:77:e4:ea:43:70:66:1c:b8:e1:f2: 83:fe:b6:71:05:fc:cf:ce:c1:18:34:fa:da:c6:75: 8f:0b:75:25:59:d9:7e:2c:b2:a6:ec:a8:9a:38:4c: 6c:39:c8:10:fe:12:21:f8:17:8e:88:20:45:2f:9e: be:35:5f:a4:55:e0:95:61:5d:65:fb:7a:62:75:63: db:79:48:a4:f6:d6:07:72:9d:25:1a:0d:8c:76:7f: 92:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:6E:2F:F1:74:2A:7E:A0:79:09:EE:32:B9:EE:B5:BE:10:96:6F:83 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acee793e-e4d8-4c60-8711-8877a8378aa0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.216.188.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:aa:db:ae:7b:e4:23:59:c0:87:74:d4:b0:77:57:ea:99:66: fa:d8:b1:1b:2a:1f:9e:58:bc:d3:53:d8:14:cc:87:a3:72:8e: 16:c4:bb:90:8a:83:62:aa:1e:96:43:b7:db:82:69:d3:09:76: 48:21:e3:88:5e:35:80:2d:d8:3b:96:52:3f:20:ca:71:5e:3a: 3d:c9:18:7c:a1:f1:98:e3:75:11:4b:dd:9d:07:97:c7:c5:50: 6b:58:9a:9e:93:1d:49:cb:03:87:39:a6:6c:db:3e:46:c9:33: 1e:bd:95:fc:ab:a2:32:14:c1:aa:0d:18:ce:7d:66:46:dd:9d: 21:51:ec:75:1b:e0:d7:ac:f3:8a:88:e8:50:bd:60:8d:ba:0b: 6c:ce:c5:f6:a3:80:cc:b2:ed:95:7a:7a:64:85:c5:12:d0:2e: 60:34:55:22:10:07:48:8d:8f:26:71:74:f2:f6:c3:91:86:74: 47:20:bf:37:55:06:1c:4d:23:fe:55:08:a6:d4:88:4f:80:96: 3b:d3:2e:c2:24:ff:c3:c1:ee:54:96:13:dc:1b:4a:cc:d3:63: 17:32:59:e9:e8:aa:d0:74:7c:cc:e6:88:27:fd:d9:15:71:c2: f2:04:48:6c:6a:a4:2d:25:ff:5b:be:c3:5e:7a:59:8c:02:86: 57:40:51:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYWX4hAFXA6gDjoikYqCaLYlnphAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMDAzMDIzWhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZmQ0Y2YzZWFjMzk5ZTM1ZWI4Y2YxYjExZDA5N2ViYWEz ZTEwOGUyMGZlOWNlOWFjMjRjYmUzM2Q5YmZiMzEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXfjfcLZsomp9vJ4Mb7k6yF6JUHHtvifMNDgpppFhYrlpi 8fSXeL+d/oymN+f3Cgs9pu4xaN0tf5tIutrkJhsehRSfj9gzaUpW/rotA45sGsd/ uk60YydddHKI2vlsjvhB/uICFQYPIe9WmzoMg5Hwgex5eUFykymOH2peoE2Mh3GP /g2n6KA43MpNhoTJIWcYbAXorLgMUfYYGbZFO2LwBfu7fp61aONCd+TqQ3BmHLjh 8oP+tnEF/M/OwRg0+trGdY8LdSVZ2X4ssqbsqJo4TGw5yBD+EiH4F46IIEUvnr41 X6RV4JVhXWX7emJ1Y9t5SKT21gdynSUaDYx2f5LxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUF24v8XQqfqB5Ce4yue61vhCWb4MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjZWU3OTNlLWU0ZDgtNGM2MC04NzExLTg4NzdhODM3OGFhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIs2LwwDQYJKoZIhvcNAQELBQADggEBAJ+q26575CNZwId01LB3V+qZZvrY sRsqH55YvNNT2BTMh6NyjhbEu5CKg2KqHpZDt9uCadMJdkgh44heNYAt2DuWUj8g ynFeOj3JGHyh8ZjjdRFL3Z0Hl8fFUGtYmp6THUnLA4c5pmzbPkbJMx69lfyrojIU waoNGM59ZkbdnSFR7HUb4Nes84qI6FC9YI26C2zOxfajgMyy7ZV6emSFxRLQLmA0 VSIQB0iNjyZxdPL2w5GGdEcgvzdVBhxNI/5VCKbUiE+AljvTLsIk/8PB7lSWE9wb SszTYxcyWenoqtB0fMzmiCf92RVxwvIESGxqpC0l/1u+w156WYwChldAUdw= -----END CERTIFICATE-----Generated at Wed Aug 6 07:56:30 2025 by rpki-client