$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b47cdbbc-0606-4824-b468-103bd1f5711b.roa File: b47cdbbc-0606-4824-b468-103bd1f5711b.roa (raw, json) Hash identifier: BRtk7av2BxFDMqDH24Lybsij4UCdyFMqnLv/3XavIBg= Subject key identifier: 4C:3D:E0:B3:5C:60:1F:8B:5C:2B:BE:FB:44:70:02:66:4E:90:98:56 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 510FCD38CB536F820FD0DBC7D232E4375C605A86 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b47cdbbc-0606-4824-b468-103bd1f5711b.roa Signing time: Tue 05 Aug 2025 00:41:28 +0000 ROA not before: Tue 05 Aug 2025 00:41:28 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:0f:cd:38:cb:53:6f:82:0f:d0:db:c7:d2:32:e4:37:5c:60:5a:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:41:28 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=a88c1f8336416173840fd1a232c360955dfa887bda80206d8f2ebaa6cd3a95ea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:eb:b5:6b:bd:b5:bc:fb:f2:7a:bc:71:5d:1e: 07:4b:24:db:3a:d2:14:5b:82:3b:26:7e:8f:65:83: 31:89:d0:c9:ea:76:6d:a6:5a:ce:19:74:05:ff:45: 95:ed:c9:64:f5:01:fc:a2:1f:03:8f:f1:c4:0d:68: 76:42:88:2a:43:87:ab:9a:5e:49:4e:57:ea:e0:e9: 0a:1a:60:b0:13:e6:5f:ec:35:8c:b6:e8:a3:91:d6: 24:8a:fa:16:e4:ff:4d:32:79:b5:cc:0b:aa:b0:09: 58:81:10:1e:ca:38:3b:8d:1d:11:46:df:a0:0b:ad: 09:14:60:fb:d9:0d:23:93:fb:4a:89:e1:e6:eb:ec: 29:29:55:1c:39:7d:20:90:d3:bc:9f:8a:76:c5:87: 35:b5:cb:a8:24:d1:ad:0d:56:dc:37:61:fe:b2:83: c9:9f:ed:14:ea:9e:86:45:6d:b1:c1:ca:90:c0:ac: 8f:5a:57:b8:77:07:1d:db:55:50:3a:0d:cd:e8:0e: 47:a9:14:e3:48:97:e6:10:c1:b5:dc:8c:55:2c:44: 51:56:58:10:39:f1:d9:f3:30:b8:52:e1:3b:7a:6f: c2:7d:f0:1d:d6:fa:8b:8b:c2:97:0d:3a:0d:f5:55: 06:e1:47:20:82:d3:84:2f:40:7c:99:72:c5:9f:96: 33:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:3D:E0:B3:5C:60:1F:8B:5C:2B:BE:FB:44:70:02:66:4E:90:98:56 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b47cdbbc-0606-4824-b468-103bd1f5711b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.199.0/24 Signature Algorithm: sha256WithRSAEncryption b6:31:62:11:6b:94:5e:7d:33:6b:a9:7d:f6:e0:6c:ac:47:92: bc:8b:69:fd:cf:58:59:21:32:98:87:63:6d:72:42:ec:97:89: d6:84:ed:66:c7:63:43:12:e3:5b:4c:56:b7:9f:0b:09:64:4c: 98:d0:99:93:ff:72:7f:51:bb:01:6d:84:a9:30:be:dd:4f:45: 9c:f6:af:bf:f6:ac:a6:8c:bb:a5:bb:3a:40:71:08:30:51:cd: be:a0:12:f7:3b:dd:e6:4e:67:44:94:e2:cc:26:24:83:31:c7: 71:2e:82:9d:6e:7f:1d:c8:2d:f4:f2:34:e1:d4:ce:aa:96:c5: 5e:a9:cb:25:c8:a2:e9:2b:fd:3a:27:5e:91:0e:5e:8d:af:a8: ed:3a:33:d2:2d:77:b6:dd:68:c5:41:55:20:dc:00:29:cb:9c: dd:f1:8f:97:68:42:cb:9b:82:69:d4:4e:41:cc:2e:2d:73:e2: 95:3f:55:35:bc:36:e0:e1:74:be:54:46:f8:cf:c3:73:c1:fb: 4d:35:3c:a0:f3:09:47:df:bc:a8:fc:a3:ad:f7:e6:7b:06:28: cc:31:ea:75:84:cd:a5:11:14:23:ae:38:6d:12:de:7d:f2:6e: b2:b1:f5:49:c1:0b:12:99:74:fd:21:75:fb:4a:9e:63:d9:b7: 45:d4:87:11 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUQ/NOMtTb4IP0NvH0jLkN1xgWoYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDA0MTI4WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhODhjMWY4MzM2NDE2MTczODQwZmQxYTIzMmMzNjA5NTVk ZmE4ODdiZGE4MDIwNmQ4ZjJlYmFhNmNkM2E5NWVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDy67VrvbW8+/J6vHFdHgdLJNs60hRbgjsmfo9lgzGJ0Mnq dm2mWs4ZdAX/RZXtyWT1AfyiHwOP8cQNaHZCiCpDh6uaXklOV+rg6QoaYLAT5l/s NYy26KOR1iSK+hbk/00yebXMC6qwCViBEB7KODuNHRFG36ALrQkUYPvZDSOT+0qJ 4ebr7CkpVRw5fSCQ07yfinbFhzW1y6gk0a0NVtw3Yf6yg8mf7RTqnoZFbbHBypDA rI9aV7h3Bx3bVVA6Dc3oDkepFONIl+YQwbXcjFUsRFFWWBA58dnzMLhS4Tt6b8J9 8B3W+ouLwpcNOg31VQbhRyCC04QvQHyZcsWfljPBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTD3gs1xgH4tcK777RHACZk6QmFYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I0N2NkYmJjLTA2MDYtNDgyNC1iNDY4LTEwM2JkMWY1NzExYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFAMcwDQYJKoZIhvcNAQELBQADggEBALYxYhFrlF59M2upffbgbKxHkryL af3PWFkhMpiHY21yQuyXidaE7WbHY0MS41tMVrefCwlkTJjQmZP/cn9RuwFthKkw vt1PRZz2r7/2rKaMu6W7OkBxCDBRzb6gEvc73eZOZ0SU4swmJIMxx3Eugp1ufx3I LfTyNOHUzqqWxV6pyyXIoukr/TonXpEOXo2vqO06M9Itd7bdaMVBVSDcACnLnN3x j5doQsubgmnUTkHMLi1z4pU/VTW8NuDhdL5URvjPw3PB+001PKDzCUffvKj8o633 5nsGKMwx6nWEzaURFCOuOG0S3n3ybrKx9UnBCxKZdP0hdftKnmPZt0XUhxE= -----END CERTIFICATE-----Generated at Sat Aug 9 02:47:46 2025 by rpki-client