$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc6ddae6-c083-44d5-b58d-6cc438cf4d59.roa File: bc6ddae6-c083-44d5-b58d-6cc438cf4d59.roa (raw, json) Hash identifier: jyXCf/4JGn+SxtU9sh9ZjOAw0NYLwYOshbytM1l9U8g= Subject key identifier: 97:95:51:06:CA:49:F5:6D:89:AF:26:7C:AD:FA:0C:D4:77:83:83:BF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4749EBDA17DBB0F83456DAD5B776BC50AD8A6E88 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc6ddae6-c083-44d5-b58d-6cc438cf4d59.roa Signing time: Sat 02 Aug 2025 00:11:09 +0000 ROA not before: Sat 02 Aug 2025 00:11:09 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.22.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:49:eb:da:17:db:b0:f8:34:56:da:d5:b7:76:bc:50:ad:8a:6e:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:11:09 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=e7de9a585cf375d0767341113fb8ccaf2e3cc9a86d0d964941c65c99305ccc92, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b5:b9:77:95:03:99:b2:3a:3e:88:28:20:c5: b2:05:b4:4d:f5:02:5f:e7:be:da:ee:43:05:0c:81: 09:9e:ce:09:b4:c7:50:1a:59:90:81:03:63:43:10: f6:78:66:f3:54:13:81:05:72:18:1f:d6:33:58:3f: 53:64:1a:a9:4e:a0:8d:90:13:b4:f1:44:b8:45:45: 3a:5e:76:a8:47:11:a9:29:c3:10:32:62:29:1a:3a: 02:fa:89:f2:8f:14:6a:88:76:2d:43:b2:3d:68:3a: 2a:4a:13:4e:c2:b3:e6:a6:39:77:6c:32:1c:80:ab: b9:8b:06:e0:1b:0d:52:d5:10:1c:e6:9b:2c:82:02: 7c:a3:71:0d:6d:6f:68:06:76:58:e0:eb:46:1a:e6: 7e:62:77:9b:4d:b5:63:58:93:0e:97:6f:4c:b4:78: 2c:dd:e8:9b:54:b8:27:b9:02:76:f5:24:a1:c9:dc: 80:3f:66:98:b9:1e:b1:28:1b:fb:df:1d:83:38:23: 7c:6d:ae:01:49:1e:17:ef:97:df:52:01:1d:6a:48: 75:76:c2:f6:8c:25:ea:6f:79:91:d1:da:d1:7d:20: 99:37:a7:e2:2d:89:7e:ce:f0:d3:d0:a8:60:49:d9: 29:08:8e:56:8b:e8:40:05:f2:cb:fd:03:c5:bd:02: 59:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:95:51:06:CA:49:F5:6D:89:AF:26:7C:AD:FA:0C:D4:77:83:83:BF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc6ddae6-c083-44d5-b58d-6cc438cf4d59.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.22.156.0/23 Signature Algorithm: sha256WithRSAEncryption d1:39:e7:d4:f0:a7:f1:cd:cb:76:1a:37:02:28:b0:c9:cd:96: 7f:dd:ba:99:c7:9e:15:71:84:b3:6d:8b:2c:f0:1f:1c:08:59: 9c:aa:b2:e1:c3:13:0f:a1:1a:38:27:35:70:b9:9f:d8:ac:7e: 59:2c:dd:8b:bb:12:05:c6:67:61:34:80:b2:55:a8:4a:db:65: 7b:01:5b:53:54:36:8a:63:d1:cc:80:f0:f1:e6:51:05:84:45: 7f:3b:a4:6d:b3:16:7f:91:5e:49:d5:67:d4:84:03:ff:99:18: e4:81:b3:18:10:8d:2d:21:1e:bb:7c:7e:68:f3:43:2b:d6:3c: 65:b4:46:dc:6c:39:69:11:fa:8c:2e:f3:de:77:14:17:30:e3: d8:49:6d:e3:08:bc:67:42:4e:f2:31:0c:56:2c:2d:df:52:80: 2f:58:40:af:94:92:7d:43:9c:6c:ef:ee:ff:a0:a6:26:83:c1: 77:60:37:83:3d:fe:20:69:25:c3:53:57:b8:f7:54:0b:31:db: 6b:64:7e:8a:f6:7b:66:0b:04:19:bf:28:32:c8:12:30:63:85: 53:3b:ba:be:34:13:1f:1f:a5:ea:28:19:cf:f6:03:58:7c:6d: 4f:4c:98:69:e4:e7:ef:cb:39:8c:c5:cd:9c:eb:1a:f4:7c:39: d4:63:7f:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUR0nr2hfbsPg0VtrVt3a8UK2KbogwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDAxMTA5WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlN2RlOWE1ODVjZjM3NWQwNzY3MzQxMTEzZmI4Y2NhZjJl M2NjOWE4NmQwZDk2NDk0MWM2NWM5OTMwNWNjYzkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZtbl3lQOZsjo+iCggxbIFtE31Al/nvtruQwUMgQmezgm0 x1AaWZCBA2NDEPZ4ZvNUE4EFchgf1jNYP1NkGqlOoI2QE7TxRLhFRTpedqhHEakp wxAyYikaOgL6ifKPFGqIdi1Dsj1oOipKE07Cs+amOXdsMhyAq7mLBuAbDVLVEBzm myyCAnyjcQ1tb2gGdljg60Ya5n5id5tNtWNYkw6Xb0y0eCzd6JtUuCe5Anb1JKHJ 3IA/Zpi5HrEoG/vfHYM4I3xtrgFJHhfvl99SAR1qSHV2wvaMJepveZHR2tF9IJk3 p+ItiX7O8NPQqGBJ2SkIjlaL6EAF8sv9A8W9Aln/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUl5VRBspJ9W2JryZ8rfoM1HeDg78wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JjNmRkYWU2LWMwODMtNDRkNS1iNThkLTZjYzQzOGNmNGQ1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFrFpwwDQYJKoZIhvcNAQELBQADggEBANE559Twp/HNy3YaNwIosMnNln/d upnHnhVxhLNtiyzwHxwIWZyqsuHDEw+hGjgnNXC5n9isflks3Yu7EgXGZ2E0gLJV qErbZXsBW1NUNopj0cyA8PHmUQWERX87pG2zFn+RXknVZ9SEA/+ZGOSBsxgQjS0h Hrt8fmjzQyvWPGW0RtxsOWkR+owu8953FBcw49hJbeMIvGdCTvIxDFYsLd9SgC9Y QK+Ukn1DnGzv7v+gpiaDwXdgN4M9/iBpJcNTV7j3VAsx22tkfor2e2YLBBm/KDLI EjBjhVM7ur40Ex8fpeooGc/2A1h8bU9MmGnk5+/LOYzFzZzrGvR8OdRjf8M= -----END CERTIFICATE-----Generated at Mon Aug 4 16:11:38 2025 by rpki-client