$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfd5c5b2-690e-40ea-b59a-87fc663904a6.roa File: bfd5c5b2-690e-40ea-b59a-87fc663904a6.roa (raw, json) Hash identifier: OPoxoOt6MlXWS7kIZHtPuYb+KtCqFY/vSwBsAO4+KTg= Subject key identifier: EF:3B:11:EC:A8:9A:C8:61:E9:68:16:07:EF:B1:9F:E9:1C:9C:A4:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1BC0367F92432364889916AD2A75D11ED7958DB3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfd5c5b2-690e-40ea-b59a-87fc663904a6.roa Signing time: Sat 26 Jul 2025 00:20:24 +0000 ROA not before: Sat 26 Jul 2025 00:20:24 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 95.40.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:c0:36:7f:92:43:23:64:88:99:16:ad:2a:75:d1:1e:d7:95:8d:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 26 00:20:24 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=b6424abab0870ac35b836629bbfa7693c30066b8ae2306e8a9c383f7c4a06193, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b2:eb:40:c4:f0:b7:17:38:d8:0c:56:4d:0c: 33:b0:25:98:f2:ca:68:96:94:50:a3:c3:8a:fe:4a: ce:6e:5d:c0:02:6c:fe:7f:bd:4d:ca:1f:25:f3:bb: 64:6b:94:da:4e:79:d1:fd:55:7f:5f:31:9b:4f:b4: 3e:f9:ab:1b:e5:b3:7f:61:c2:7a:10:49:d8:ae:70: cf:05:3b:36:54:38:3f:34:40:8c:99:d2:8b:56:bd: cf:34:c6:73:73:61:fd:a5:ea:c6:e6:d8:81:40:02: b1:61:33:af:3c:a0:95:dd:52:2c:5a:0e:25:fe:2e: 3c:e6:20:72:70:d0:18:92:82:b6:c6:5d:78:01:14: 57:cb:c3:51:a7:3f:09:72:70:33:f4:56:92:d4:ce: 55:68:f4:2d:ce:06:17:d3:9a:08:dd:ec:e5:e0:7f: 80:7c:b0:88:87:7e:7f:e4:5e:66:13:31:cb:a3:10: ce:7c:c6:cc:73:7b:63:d9:95:25:9d:fd:7a:2c:e8: 73:cf:67:95:9d:78:6a:70:3c:a3:bf:d8:f8:bd:9b: a0:b2:a1:a6:ca:58:67:81:b1:70:af:5b:e5:d6:22: b7:24:3e:e7:43:51:43:22:d8:03:55:f7:14:04:d6: b0:99:1c:c9:3e:47:ed:58:e0:15:42:32:25:52:0a: 5f:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:3B:11:EC:A8:9A:C8:61:E9:68:16:07:EF:B1:9F:E9:1C:9C:A4:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfd5c5b2-690e-40ea-b59a-87fc663904a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.40.0.0/15 Signature Algorithm: sha256WithRSAEncryption 7b:f3:19:e7:77:fd:f5:5e:17:3d:40:1f:30:13:ed:3b:85:62: 64:e1:a6:e8:64:d5:31:9b:a4:8f:60:b5:46:a7:fb:57:d9:77: d4:7a:c2:fa:7e:69:4f:d8:36:72:b0:8c:0f:01:2d:cf:48:6f: 2d:b4:84:78:e1:9d:4f:8a:69:23:05:e5:b7:2c:13:ec:7d:bd: 2c:03:26:22:90:a0:6a:bf:bd:c0:1d:ff:ea:6c:53:39:64:18: a7:ee:b1:b2:d6:27:e2:55:46:16:7b:cc:f4:f8:ed:4c:46:5c: 43:25:59:96:62:74:a5:01:13:de:2b:28:71:21:74:df:6b:ab: 8c:42:c0:df:7a:c7:26:21:0c:33:3a:8c:83:c3:3b:ee:78:39: 09:ba:cf:98:f4:d8:40:e9:14:ee:9e:1c:47:b4:c8:3b:3e:19: fc:36:69:71:cf:b6:1f:50:33:8d:e2:6e:89:2d:82:29:c9:85: 2d:d5:12:a0:eb:d9:24:52:73:e2:69:3b:bb:bc:c8:bb:84:8a: d6:3e:24:88:43:af:64:8f:b8:bd:8a:04:ae:d1:ca:dd:62:c3: e0:9a:18:86:c7:d2:2f:f6:33:d0:82:99:1c:57:93:5a:61:55: 75:2f:e0:28:ac:af:3e:30:d2:02:e0:2a:e5:d4:08:2c:90:5d: ee:24:9f:86 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUG8A2f5JDI2SImRatKnXRHteVjbMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI2MDAyMDI0WhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjQyNGFiYWIwODcwYWMzNWI4MzY2MjliYmZhNzY5M2Mz MDA2NmI4YWUyMzA2ZThhOWMzODNmN2M0YTA2MTkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCsutAxPC3FzjYDFZNDDOwJZjyymiWlFCjw4r+Ss5uXcAC bP5/vU3KHyXzu2RrlNpOedH9VX9fMZtPtD75qxvls39hwnoQSdiucM8FOzZUOD80 QIyZ0otWvc80xnNzYf2l6sbm2IFAArFhM688oJXdUixaDiX+LjzmIHJw0BiSgrbG XXgBFFfLw1GnPwlycDP0VpLUzlVo9C3OBhfTmgjd7OXgf4B8sIiHfn/kXmYTMcuj EM58xsxze2PZlSWd/Xos6HPPZ5WdeGpwPKO/2Pi9m6CyoabKWGeBsXCvW+XWIrck PudDUUMi2ANV9xQE1rCZHMk+R+1Y4BVCMiVSCl99AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU7zsR7KiayGHpaBYH77Gf6RycpMAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmZDVjNWIyLTY5MGUtNDBlYS1iNTlhLTg3ZmM2NjM5MDRhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFfKDANBgkqhkiG9w0BAQsFAAOCAQEAe/MZ53f99V4XPUAfMBPtO4ViZOGm 6GTVMZukj2C1Rqf7V9l31HrC+n5pT9g2crCMDwEtz0hvLbSEeOGdT4ppIwXltywT 7H29LAMmIpCgar+9wB3/6mxTOWQYp+6xstYn4lVGFnvM9PjtTEZcQyVZlmJ0pQET 3isocSF032urjELA33rHJiEMMzqMg8M77ng5CbrPmPTYQOkU7p4cR7TIOz4Z/DZp cc+2H1AzjeJuiS2CKcmFLdUSoOvZJFJz4mk7u7zIu4SK1j4kiEOvZI+4vYoErtHK 3WLD4JoYhsfSL/Yz0IKZHFeTWmFVdS/gKKyvPjDSAuAq5dQILJBd7iSfhg== -----END CERTIFICATE-----Generated at Wed Aug 6 12:41:28 2025 by rpki-client