$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf0c1deb-beae-436c-b486-1229da733efa.roa File: cf0c1deb-beae-436c-b486-1229da733efa.roa (raw, json) Hash identifier: /vr8LOBn/FUa+YJLLd/3HMySHslz0AeDBlp5i0SJWKk= Subject key identifier: 81:9F:CA:94:9F:FB:47:28:2E:B4:0D:EF:12:30:24:F8:CE:8C:6C:1C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B9D4EF4A3DB51BE5BF0AA02781E29F53CCD95E3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf0c1deb-beae-436c-b486-1229da733efa.roa Signing time: Mon 04 Aug 2025 16:02:05 +0000 ROA not before: Mon 04 Aug 2025 16:02:05 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.22.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:9d:4e:f4:a3:db:51:be:5b:f0:aa:02:78:1e:29:f5:3c:cd:95:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:02:05 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=da1e52ec91cb5e4086d97dc720208812e9248a50f568c854eaf4c87f81251791, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d2:81:5a:01:be:ca:7a:73:d6:75:00:71:4f: 9c:0d:26:4c:6d:02:b6:eb:1e:de:00:cd:49:78:51: a7:21:bf:2f:3c:60:3f:4b:e4:60:d8:67:bb:89:5f: f6:83:6a:2d:8f:a6:d8:81:9c:87:47:e5:c6:5b:6e: 73:dd:8f:54:f9:b6:42:2d:eb:0b:7b:32:9a:d2:ca: 57:4e:f0:67:9b:81:31:c4:21:95:c4:cf:d1:96:8a: 4c:e1:4d:87:f4:92:ae:3b:4a:8e:b0:61:c4:56:1f: ce:a8:5d:1a:12:87:5f:98:bd:82:ad:4e:8b:c1:1b: e6:e1:71:12:54:4a:3d:9f:0f:42:7f:b6:46:f4:46: 2d:d8:6a:aa:52:fc:70:01:e0:d7:75:a5:79:b4:33: f6:e7:89:73:ed:ad:5f:21:f1:e6:76:18:0f:ae:3a: b1:11:70:f4:97:c0:60:9e:28:0e:ed:03:6d:3d:56: 9b:9d:76:e2:96:a6:c2:72:fa:97:e1:c3:b1:52:d2: 36:31:cd:ab:d2:b1:6c:9a:47:6c:79:99:e6:fe:ba: eb:6a:6c:57:b0:5b:9f:54:6e:29:e8:72:c6:59:47: a2:fc:d7:69:0c:c5:03:f8:96:3c:66:35:64:63:23: 32:5c:7f:43:0b:a0:7b:a4:39:73:bd:03:fc:a7:96: bd:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:9F:CA:94:9F:FB:47:28:2E:B4:0D:EF:12:30:24:F8:CE:8C:6C:1C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf0c1deb-beae-436c-b486-1229da733efa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.22.128.0/17 Signature Algorithm: sha256WithRSAEncryption ad:6c:0c:fa:06:d6:b9:c5:78:5b:6c:16:35:e5:80:73:aa:c9: 06:4e:c1:6a:ae:45:62:a5:7c:03:00:9c:99:c7:9e:72:bc:ae: ee:9f:bf:8c:19:3d:03:5b:62:d8:9a:f8:f1:d6:f4:b2:58:8e: 1b:17:c0:1e:31:81:1c:95:8d:b2:bb:3c:4f:ba:47:5d:02:0f: a1:fd:67:6a:57:3f:78:49:bb:c4:11:e9:23:8b:d3:55:99:cb: d1:5b:36:95:3b:70:cc:e3:ed:b6:1b:da:7e:52:3f:e8:31:30: 4b:57:2f:09:fa:5c:8f:a0:d8:55:7b:ce:75:f3:66:78:6d:a8: 6d:e0:01:22:fb:d7:cb:cb:13:a8:14:9f:13:c4:3c:a8:eb:ef: 1d:a3:db:33:5e:2e:56:48:09:04:18:b4:f7:01:cf:3b:33:d9: 1f:f4:b5:33:44:30:c6:d8:1e:0e:71:58:7f:7a:1b:da:b7:e7: 97:54:f3:04:bf:5a:70:2a:e2:74:c9:e7:2c:a6:ad:a3:f9:4d: 41:16:2b:3f:40:b8:71:4a:6c:cb:8b:6a:79:c0:80:81:42:7a: 1c:66:2c:a8:8f:24:99:0d:55:6c:d2:74:34:4e:83:44:e6:1a: 9b:11:b6:48:3f:32:7d:91:7c:1d:bb:67:67:6c:23:b0:80:c2: 3d:56:19:be -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW51O9KPbUb5b8KoCeB4p9TzNleMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTYwMjA1WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTFlNTJlYzkxY2I1ZTQwODZkOTdkYzcyMDIwODgxMmU5 MjQ4YTUwZjU2OGM4NTRlYWY0Yzg3ZjgxMjUxNzkxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCX0oFaAb7KenPWdQBxT5wNJkxtArbrHt4AzUl4Uachvy88 YD9L5GDYZ7uJX/aDai2PptiBnIdH5cZbbnPdj1T5tkIt6wt7MprSyldO8GebgTHE IZXEz9GWikzhTYf0kq47So6wYcRWH86oXRoSh1+YvYKtTovBG+bhcRJUSj2fD0J/ tkb0Ri3YaqpS/HAB4Nd1pXm0M/bniXPtrV8h8eZ2GA+uOrERcPSXwGCeKA7tA209 VpudduKWpsJy+pfhw7FS0jYxzavSsWyaR2x5meb+uutqbFewW59UbinocsZZR6L8 12kMxQP4ljxmNWRjIzJcf0MLoHukOXO9A/ynlr1ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgZ/KlJ/7RygutA3vEjAk+M6MbBwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmMGMxZGViLWJlYWUtNDM2Yy1iNDg2LTEyMjlkYTczM2VmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcXFoAwDQYJKoZIhvcNAQELBQADggEBAK1sDPoG1rnFeFtsFjXlgHOqyQZO wWquRWKlfAMAnJnHnnK8ru6fv4wZPQNbYtia+PHW9LJYjhsXwB4xgRyVjbK7PE+6 R10CD6H9Z2pXP3hJu8QR6SOL01WZy9FbNpU7cMzj7bYb2n5SP+gxMEtXLwn6XI+g 2FV7znXzZnhtqG3gASL718vLE6gUnxPEPKjr7x2j2zNeLlZICQQYtPcBzzsz2R/0 tTNEMMbYHg5xWH96G9q355dU8wS/WnAq4nTJ5yymraP5TUEWKz9AuHFKbMuLannA gIFCehxmLKiPJJkNVWzSdDROg0TmGpsRtkg/Mn2RfB27Z2dsI7CAwj1WGb4= -----END CERTIFICATE-----Generated at Sat Aug 9 01:08:45 2025 by rpki-client