$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfeccc68-b535-451a-9cc7-983817c87adf.roa File: dfeccc68-b535-451a-9cc7-983817c87adf.roa (raw, json) Hash identifier: e+Rol1Keg6m8wzdkYdwAhhbsSuSkV+5jUTQ0Mac8q6I= Subject key identifier: DC:86:48:AA:BF:60:40:07:69:32:75:78:D2:E2:7D:5F:C8:B0:44:FA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 762DD3CA51DD40A3065C89366E01FA67B1F665D6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfeccc68-b535-451a-9cc7-983817c87adf.roa Signing time: Mon 04 Aug 2025 17:31:45 +0000 ROA not before: Mon 04 Aug 2025 17:31:45 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.174.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:2d:d3:ca:51:dd:40:a3:06:5c:89:36:6e:01:fa:67:b1:f6:65:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 17:31:45 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=d992f992e0d47127064692699309d076eac62e45cdc0c2becb121bdab6a0092d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3d:6f:96:a2:af:b0:62:8a:c4:83:22:f0:ce: 92:db:af:0a:79:27:1f:e1:1f:de:12:20:d2:77:7c: f3:ce:44:0e:09:55:7e:6f:6a:7f:93:67:02:d6:eb: 68:3f:43:92:8f:72:dd:16:79:e5:b7:1e:4a:aa:2c: f0:55:06:2a:5e:3d:f1:21:26:a1:77:10:04:3f:f6: 23:c7:f1:53:47:0f:69:83:3e:f9:2b:f7:f4:86:f4: b2:27:a9:ef:7f:b6:3e:50:dd:65:77:39:90:23:ca: 52:8b:e3:03:7d:ba:e8:62:b7:f0:e4:cc:e0:cc:f1: 5c:c3:77:e3:b0:b8:00:4c:fc:63:6e:e4:91:a4:86: 28:8e:72:04:0c:84:ec:52:36:ed:08:e9:3f:83:3a: 3a:3c:0a:f2:05:09:96:d1:dd:4c:98:f2:50:26:1e: fd:b2:e3:79:af:3d:90:0f:27:5e:f4:e0:25:18:0a: b8:37:b0:67:e6:48:71:16:62:78:ba:08:d1:7b:e8: 9d:96:46:9a:7b:69:b1:0d:9f:06:bc:4f:55:da:ac: ec:16:6e:45:8e:67:9c:56:d1:1b:fd:95:6e:5d:da: 57:8c:ab:81:9e:0c:4d:83:eb:4c:68:4c:da:11:c2: b5:67:bc:5b:b1:b6:c8:bd:f9:1a:8a:58:5e:3e:c6: 14:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:86:48:AA:BF:60:40:07:69:32:75:78:D2:E2:7D:5F:C8:B0:44:FA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfeccc68-b535-451a-9cc7-983817c87adf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.174.0.0/15 Signature Algorithm: sha256WithRSAEncryption 0a:ac:d0:4a:65:6d:be:9f:6d:7b:51:9c:c2:ae:86:ea:f8:63: 18:de:a0:91:bc:f0:53:9f:7d:97:f1:4d:25:de:a7:5c:ac:d1: 8f:d5:5f:d5:a1:78:b3:6f:07:64:e7:6a:36:fe:24:10:dc:b8: 9e:eb:47:e4:43:f8:bc:a5:cd:c9:38:62:f7:46:a5:55:7d:0a: fd:72:5d:f7:49:b8:dc:1b:2d:f0:0c:7a:5d:5b:0e:57:73:3d: 16:61:28:72:b0:ee:5f:ce:73:3d:26:bb:b9:ee:d6:b7:c0:db: 51:6f:b0:b1:a3:ff:20:55:ae:86:eb:70:2b:26:2e:a2:b3:83: 19:54:c2:f5:35:ec:83:ab:f3:3e:d7:c8:c1:e5:5f:44:ac:61: dd:80:f9:2e:11:4b:02:4c:70:2f:c3:54:48:94:02:2a:8a:30: 17:15:8e:f6:66:cc:9f:9f:7e:6c:7f:e7:60:9f:40:58:b2:88: 43:a8:e0:57:fc:1c:b2:a0:64:74:d2:04:c7:27:7d:34:8a:9d: 6a:cf:b0:34:2e:70:78:00:0f:fa:4d:52:7d:3a:80:9a:1b:36: 55:52:32:0d:d8:cd:04:94:60:1f:a3:41:1d:f4:52:1f:35:d7: c0:58:fc:5d:76:17:c5:5d:43:e7:c2:b9:80:0a:ee:5a:4b:cf: 06:e4:74:2f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdi3TylHdQKMGXIk2bgH6Z7H2ZdYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTczMTQ1WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOTkyZjk5MmUwZDQ3MTI3MDY0NjkyNjk5MzA5ZDA3NmVh YzYyZTQ1Y2RjMGMyYmVjYjEyMWJkYWI2YTAwOTJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtPW+Woq+wYorEgyLwzpLbrwp5Jx/hH94SINJ3fPPORA4J VX5van+TZwLW62g/Q5KPct0WeeW3HkqqLPBVBipePfEhJqF3EAQ/9iPH8VNHD2mD Pvkr9/SG9LInqe9/tj5Q3WV3OZAjylKL4wN9uuhit/DkzODM8VzDd+OwuABM/GNu 5JGkhiiOcgQMhOxSNu0I6T+DOjo8CvIFCZbR3UyY8lAmHv2y43mvPZAPJ1704CUY Crg3sGfmSHEWYni6CNF76J2WRpp7abENnwa8T1XarOwWbkWOZ5xW0Rv9lW5d2leM q4GeDE2D60xoTNoRwrVnvFuxtsi9+RqKWF4+xhSLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3IZIqr9gQAdpMnV40uJ9X8iwRPowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RmZWNjYzY4LWI1MzUtNDUxYS05Y2M3LTk4MzgxN2M4N2FkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEorjANBgkqhkiG9w0BAQsFAAOCAQEACqzQSmVtvp9te1Gcwq6G6vhjGN6g kbzwU599l/FNJd6nXKzRj9Vf1aF4s28HZOdqNv4kENy4nutH5EP4vKXNyThi90al VX0K/XJd90m43Bst8Ax6XVsOV3M9FmEocrDuX85zPSa7ue7Wt8DbUW+wsaP/IFWu hutwKyYuorODGVTC9TXsg6vzPtfIweVfRKxh3YD5LhFLAkxwL8NUSJQCKoowFxWO 9mbMn59+bH/nYJ9AWLKIQ6jgV/wcsqBkdNIExyd9NIqdas+wNC5weAAP+k1SfTqA mhs2VVIyDdjNBJRgH6NBHfRSHzXXwFj8XXYXxV1D58K5gAruWkvPBuR0Lw== -----END CERTIFICATE-----Generated at Sat Aug 9 01:18:28 2025 by rpki-client