$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92cf84d-536c-4213-86c8-c97fdb4209dc.roa File: d92cf84d-536c-4213-86c8-c97fdb4209dc.roa (raw, json) Hash identifier: 3NI9acVwcbLz/oLS0li3f8WzwSiZ23ILTWQcSxniVz0= Subject key identifier: 13:DE:8E:11:77:87:B7:FB:03:97:23:33:A3:73:5A:F8:D5:8E:56:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 276C941CCD8D2F0334AC86B3998C5E398F0EEEA1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92cf84d-536c-4213-86c8-c97fdb4209dc.roa Signing time: Mon 04 Aug 2025 17:31:57 +0000 ROA not before: Mon 04 Aug 2025 17:31:57 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.194.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:6c:94:1c:cd:8d:2f:03:34:ac:86:b3:99:8c:5e:39:8f:0e:ee:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 17:31:57 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=c0fdd0df02e9bd366596c2be02f6cbe52795e849137ca00b7babd7855523192e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:65:24:c2:bf:39:65:d2:ff:91:b7:68:eb:35: f5:fb:63:e8:7d:df:1c:4e:19:f1:95:40:9d:5d:ab: 76:e0:2d:c9:85:1b:1c:5f:78:d0:be:ce:d3:78:a1: a3:98:76:c9:1d:f0:2f:1a:b2:58:11:58:e5:3b:c0: 93:ff:28:a0:2e:17:e3:bb:91:9a:55:35:6b:83:cc: 55:39:8f:17:70:a5:4c:ac:ca:e4:fc:09:7b:2c:70: f1:c7:92:3c:29:e8:6c:ba:74:09:6c:a1:89:2b:36: be:2e:29:be:a9:7b:bb:c9:31:a0:bf:d8:c1:fe:b8: 3e:85:f9:f5:c7:9d:4a:00:6e:4b:76:25:89:d0:97: 72:0e:8b:85:fb:80:bc:bb:81:06:f6:8b:02:c0:ec: 19:f3:fe:60:a3:da:7e:72:20:95:7d:fa:ef:82:1e: ad:e4:03:7f:ae:98:90:c6:61:74:86:13:de:43:05: 70:fb:49:80:8d:62:1b:90:2a:af:eb:a8:fa:ac:9c: ea:b6:c5:61:06:a9:42:cc:46:d5:31:7d:08:55:6b: 94:a5:39:8d:78:aa:03:b0:9e:77:43:1f:b7:01:71: 7e:aa:ea:e6:68:ca:86:82:26:19:95:29:60:58:7e: 53:4b:fb:ff:4d:93:36:ce:a7:53:6a:5a:b6:61:3b: 70:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:DE:8E:11:77:87:B7:FB:03:97:23:33:A3:73:5A:F8:D5:8E:56:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92cf84d-536c-4213-86c8-c97fdb4209dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.194.0.0/16 Signature Algorithm: sha256WithRSAEncryption 82:af:b1:f2:dd:f6:17:f0:9d:34:3e:56:75:0d:21:37:cd:57: b6:f6:34:b1:8a:2b:e9:94:89:db:db:59:83:bb:57:71:aa:ad: e4:2c:58:69:29:da:eb:89:6c:10:b6:e0:88:8a:6f:66:02:8e: ba:51:f5:b1:3b:16:de:40:d8:eb:a1:bf:1d:16:b0:13:a1:9b: ff:30:89:ae:09:b0:ed:00:f2:4b:6d:3f:56:ec:ac:39:ca:c0: 17:1c:fc:90:1a:ec:2e:85:57:68:b0:f1:a8:25:20:b5:f9:10: 61:85:84:41:2a:52:21:49:9d:4c:b1:92:5a:56:04:ea:35:d2: c9:08:1c:dd:e8:7b:df:1f:0c:20:ab:f6:5e:55:25:f7:7f:ff: af:d1:22:87:22:7a:be:ff:fd:81:d0:01:41:40:92:46:50:1b: a2:e9:b7:dc:01:15:f4:b0:e2:dd:29:9d:6c:40:78:bb:c6:8e: 62:ee:81:f0:61:8d:56:83:7a:ab:a9:de:f4:6f:95:86:4e:ce: ee:90:2a:6e:95:97:85:52:25:8e:59:f9:ce:8f:54:98:c4:1c: f6:f2:4f:85:36:d0:67:83:02:77:31:56:97:07:12:13:76:fb: 12:24:56:66:43:e6:08:30:16:89:f0:86:2b:3e:22:e8:37:16: a6:d8:72:94 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJ2yUHM2NLwM0rIazmYxeOY8O7qEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTczMTU3WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMGZkZDBkZjAyZTliZDM2NjU5NmMyYmUwMmY2Y2JlNTI3 OTVlODQ5MTM3Y2EwMGI3YmFiZDc4NTU1MjMxOTJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+ZSTCvzll0v+Rt2jrNfX7Y+h93xxOGfGVQJ1dq3bgLcmF GxxfeNC+ztN4oaOYdskd8C8aslgRWOU7wJP/KKAuF+O7kZpVNWuDzFU5jxdwpUys yuT8CXsscPHHkjwp6Gy6dAlsoYkrNr4uKb6pe7vJMaC/2MH+uD6F+fXHnUoAbkt2 JYnQl3IOi4X7gLy7gQb2iwLA7Bnz/mCj2n5yIJV9+u+CHq3kA3+umJDGYXSGE95D BXD7SYCNYhuQKq/rqPqsnOq2xWEGqULMRtUxfQhVa5SlOY14qgOwnndDH7cBcX6q 6uZoyoaCJhmVKWBYflNL+/9NkzbOp1NqWrZhO3AHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUE96OEXeHt/sDlyMzo3Na+NWOVrAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5MmNmODRkLTUzNmMtNDIxMy04NmM4LWM5N2ZkYjQyMDlkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAowjANBgkqhkiG9w0BAQsFAAOCAQEAgq+x8t32F/CdND5WdQ0hN81XtvY0 sYor6ZSJ29tZg7tXcaqt5CxYaSna64lsELbgiIpvZgKOulH1sTsW3kDY66G/HRaw E6Gb/zCJrgmw7QDyS20/VuysOcrAFxz8kBrsLoVXaLDxqCUgtfkQYYWEQSpSIUmd TLGSWlYE6jXSyQgc3eh73x8MIKv2XlUl93//r9EihyJ6vv/9gdABQUCSRlAboum3 3AEV9LDi3SmdbEB4u8aOYu6B8GGNVoN6q6ne9G+Vhk7O7pAqbpWXhVIljln5zo9U mMQc9vJPhTbQZ4MCdzFWlwcSE3b7EiRWZkPmCDAWifCGKz4i6DcWpthylA== -----END CERTIFICATE-----Generated at Tue Aug 5 17:18:09 2025 by rpki-client