$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da94c098-b098-48ba-b22f-f15736f15d14.roa File: da94c098-b098-48ba-b22f-f15736f15d14.roa (raw, json) Hash identifier: bxL/YTO03Jdn4IXVkrtmQAW5VxnlVnEmVoo/O3fiXcg= Subject key identifier: 40:BD:78:15:23:8F:1C:5B:8D:CA:D7:3D:00:31:A3:84:F3:B3:51:FD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 720B8AFD6D9A0E0237D471729BAC520C953AEBA7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da94c098-b098-48ba-b22f-f15736f15d14.roa Signing time: Sat 02 Aug 2025 00:20:13 +0000 ROA not before: Sat 02 Aug 2025 00:20:13 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.100.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:0b:8a:fd:6d:9a:0e:02:37:d4:71:72:9b:ac:52:0c:95:3a:eb:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:20:13 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=5863b0031e05ab3d54d7e6d7c29004076d76cb2a39ace1d0df2e4f9a31c971d3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f1:db:75:62:0f:72:87:4f:dc:33:3a:95:e8: 0e:38:87:57:75:f3:12:3f:1e:b4:9e:d0:2c:4c:93: 47:2a:25:7f:4c:d4:89:20:b6:7f:49:24:f0:cf:2a: 97:b6:28:39:86:a9:12:9c:e4:e9:45:29:0a:b0:27: 98:31:03:95:bb:e0:d3:fa:16:9a:76:9d:8f:08:10: c7:1a:f7:9e:f6:05:ab:5b:c3:74:ca:b9:2c:6a:b8: 31:ec:72:32:1a:0d:9d:6a:9f:2d:22:9d:69:b8:1b: 98:7a:03:22:32:eb:4d:18:e1:ec:98:2f:10:b6:e2: b8:a7:b4:69:4c:d2:65:5a:2d:b5:f6:3e:57:fd:98: 70:5b:0f:5c:94:46:be:88:36:15:20:8f:03:e5:02: eb:08:e2:20:5e:1a:06:7b:ac:46:5e:3a:f1:7c:20: f4:cf:98:a2:0b:53:70:66:4d:8a:28:09:29:b7:e9: 78:07:ac:bd:c7:1b:75:82:37:c2:d2:29:2e:14:4a: ca:40:38:0b:e6:c4:93:ec:17:f3:bd:f7:1e:4a:a0: 56:1e:63:02:70:3c:be:57:0d:23:49:d7:9b:e6:55: 5f:73:68:02:26:e9:2f:a3:23:f0:c8:85:41:7f:f1: 12:d0:53:f4:dc:0c:4a:2d:1b:6d:f8:4c:27:53:5d: d3:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:BD:78:15:23:8F:1C:5B:8D:CA:D7:3D:00:31:A3:84:F3:B3:51:FD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da94c098-b098-48ba-b22f-f15736f15d14.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.100.0/22 Signature Algorithm: sha256WithRSAEncryption 27:b6:8e:f2:97:5e:2c:9c:22:cc:ce:e4:5b:b9:8a:90:72:3d: b9:c7:59:82:9b:89:23:c1:51:b9:a6:8e:0b:6f:84:8a:d6:0a: 8d:73:92:81:20:5d:b6:7c:fd:15:be:5a:42:37:b5:51:53:25: 2d:eb:5c:13:b9:40:e3:b1:c8:79:bf:d9:27:c4:b4:48:e6:17: 81:27:f9:40:c5:7a:a9:1b:c4:59:3d:03:b0:ad:ac:77:31:bc: 89:a7:07:55:1a:ba:02:54:1f:da:c2:8d:64:67:e4:4a:c9:ed: f3:80:48:e7:11:68:d8:e6:08:46:8f:85:12:79:02:05:c1:8c: d0:4d:a2:34:3b:9f:21:03:07:1f:11:e6:94:e5:04:6a:59:79: 3b:84:b8:8e:11:28:74:1a:ad:d2:ab:4d:52:8d:78:85:60:88: ee:aa:dc:53:b2:13:6a:f7:a3:ee:81:96:fa:8a:40:83:e9:e8: 55:bf:9f:3c:5e:81:24:89:04:15:7a:4b:49:c6:36:3f:7c:d8: ef:41:80:55:b9:2d:f6:bf:46:18:11:7c:4d:aa:2e:a2:20:0e: d9:55:42:24:10:32:ea:8e:91:9d:19:78:b5:89:f5:fc:6e:d7: fa:1c:63:9d:cd:c1:ea:af:b7:9b:5f:fb:28:07:24:7a:57:d2: e8:42:0d:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcguK/W2aDgI31HFym6xSDJU666cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDAyMDEzWhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODYzYjAwMzFlMDVhYjNkNTRkN2U2ZDdjMjkwMDQwNzZk NzZjYjJhMzlhY2UxZDBkZjJlNGY5YTMxYzk3MWQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDi8dt1Yg9yh0/cMzqV6A44h1d18xI/HrSe0CxMk0cqJX9M 1Ikgtn9JJPDPKpe2KDmGqRKc5OlFKQqwJ5gxA5W74NP6Fpp2nY8IEMca9572Batb w3TKuSxquDHscjIaDZ1qny0inWm4G5h6AyIy600Y4eyYLxC24rintGlM0mVaLbX2 Plf9mHBbD1yURr6INhUgjwPlAusI4iBeGgZ7rEZeOvF8IPTPmKILU3BmTYooCSm3 6XgHrL3HG3WCN8LSKS4USspAOAvmxJPsF/O99x5KoFYeYwJwPL5XDSNJ15vmVV9z aAIm6S+jI/DIhUF/8RLQU/TcDEotG234TCdTXdMFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQL14FSOPHFuNytc9ADGjhPOzUf0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhOTRjMDk4LWIwOTgtNDhiYS1iMjJmLWYxNTczNmYxNWQxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBsmQwDQYJKoZIhvcNAQELBQADggEBACe2jvKXXiycIszO5Fu5ipByPbnH WYKbiSPBUbmmjgtvhIrWCo1zkoEgXbZ8/RW+WkI3tVFTJS3rXBO5QOOxyHm/2SfE tEjmF4En+UDFeqkbxFk9A7CtrHcxvImnB1UaugJUH9rCjWRn5ErJ7fOASOcRaNjm CEaPhRJ5AgXBjNBNojQ7nyEDBx8R5pTlBGpZeTuEuI4RKHQardKrTVKNeIVgiO6q 3FOyE2r3o+6BlvqKQIPp6FW/nzxegSSJBBV6S0nGNj982O9BgFW5Lfa/RhgRfE2q LqIgDtlVQiQQMuqOkZ0ZeLWJ9fxu1/ocY53Nweqvt5tf+ygHJHpX0uhCDdw= -----END CERTIFICATE-----Generated at Wed Aug 6 04:15:13 2025 by rpki-client