$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f324e7ee-d7f9-4f11-8a0d-e4bf6c04b89b.roa File: f324e7ee-d7f9-4f11-8a0d-e4bf6c04b89b.roa (raw, json) Hash identifier: g0gVnGKKFKUrvkLWCyJREMuTu3nMRXYI8qCIQPn2HBA= Subject key identifier: 11:AB:92:DB:23:E8:E6:32:04:A9:19:A1:5E:D7:C6:EE:50:08:02:35 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 79B3F3FCF3FE3D58F91507BBD54C8F864700FC9A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f324e7ee-d7f9-4f11-8a0d-e4bf6c04b89b.roa Signing time: Fri 18 Jul 2025 00:52:12 +0000 ROA not before: Fri 18 Jul 2025 00:52:12 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:b3:f3:fc:f3:fe:3d:58:f9:15:07:bb:d5:4c:8f:86:47:00:fc:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:52:12 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=74b6961b09bc6f3af1e5b0d336d9c32ce8388458a99926ff73e65d1fcaf217cf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:43:57:12:a5:8b:ef:92:ef:22:16:07:e7:68: 45:8f:72:0d:91:d2:4d:cb:b5:dd:df:96:f8:50:82: e8:fd:f2:0b:21:f5:88:f3:c4:b5:8a:ee:ac:1e:19: d8:a7:de:d9:68:df:05:02:47:cc:05:b2:12:87:b4: f0:5a:3d:05:d7:6c:86:c0:dc:a0:39:ff:11:9f:9c: aa:63:ff:67:87:6d:4f:89:53:76:74:90:16:87:9f: db:22:a6:26:36:94:b9:85:9e:54:6f:47:d0:c7:db: 5d:a8:a3:f2:eb:b4:5f:66:b9:f4:12:3f:3f:74:fe: 77:b4:95:38:7f:e5:4a:8b:7d:2f:00:b8:5c:a4:3c: e7:60:d2:ce:79:33:ac:fb:c4:f2:d1:21:eb:e5:b6: 3a:5f:e0:2a:90:ab:d1:da:be:58:8c:b9:04:fe:f7: 38:0b:3b:67:46:fd:fb:55:3b:aa:d3:de:43:be:83: d4:97:83:c0:6e:a3:e3:a3:d3:83:0b:86:25:b2:2e: e8:71:68:a7:86:50:38:63:a5:61:16:42:94:ae:b5: 5c:51:6b:a5:d3:71:54:60:23:c7:14:e4:0d:b7:82: c2:f6:c6:28:ca:bb:63:2e:00:e8:45:7e:3d:df:d8: 0b:c3:7c:74:e9:11:90:1a:69:15:e6:49:df:79:1b: b7:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:AB:92:DB:23:E8:E6:32:04:A9:19:A1:5E:D7:C6:EE:50:08:02:35 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f324e7ee-d7f9-4f11-8a0d-e4bf6c04b89b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.104.0/22 Signature Algorithm: sha256WithRSAEncryption 42:a4:bb:0c:f7:c4:b1:0a:8d:76:d5:60:39:e0:14:39:51:71: d0:9d:fe:e0:eb:27:a7:a4:09:a4:d7:2a:8c:fa:d8:29:fa:e9: 21:95:f3:76:de:07:3f:82:2a:1a:17:51:d9:d7:70:79:e0:2c: 4f:72:6f:48:08:65:17:77:62:5f:30:77:46:cb:c7:65:fc:62: 84:2b:6d:2a:4b:43:b1:20:99:90:2e:ed:38:1c:7b:e8:3e:93: 85:3a:33:3d:b6:d1:3c:89:db:61:d8:5e:7a:97:b6:c5:a7:47: e6:ed:bc:7c:92:60:81:a2:5d:d0:d7:11:61:75:fc:03:74:17: 87:6c:f5:ee:37:e8:6b:22:f6:f6:85:15:7c:b4:68:96:e0:41: 5c:65:b1:14:e2:42:c4:67:bb:97:c1:56:00:f0:90:ca:6b:85: 77:56:97:4a:f2:51:88:6e:0b:53:bf:89:0b:19:26:18:f6:15: 6d:19:0a:cf:e2:c4:ef:67:73:8c:1d:36:26:8d:97:a1:c6:53: 59:bb:6e:8c:54:ee:7c:b8:47:a9:2d:ef:91:bc:c1:ac:ea:69: 45:58:08:f9:b7:fd:fe:ac:93:32:7c:31:14:02:3a:a9:f7:bf: 64:da:ca:26:f4:51:68:e4:d6:55:3e:58:ca:6d:f7:0f:87:52: 16:c9:c7:cf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUebPz/PP+PVj5FQe71UyPhkcA/JowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDA1MjEyWhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NGI2OTYxYjA5YmM2ZjNhZjFlNWIwZDMzNmQ5YzMyY2U4 Mzg4NDU4YTk5OTI2ZmY3M2U2NWQxZmNhZjIxN2NmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjQ1cSpYvvku8iFgfnaEWPcg2R0k3Ltd3flvhQguj98gsh 9YjzxLWK7qweGdin3tlo3wUCR8wFshKHtPBaPQXXbIbA3KA5/xGfnKpj/2eHbU+J U3Z0kBaHn9sipiY2lLmFnlRvR9DH212oo/LrtF9mufQSPz90/ne0lTh/5UqLfS8A uFykPOdg0s55M6z7xPLRIevltjpf4CqQq9HavliMuQT+9zgLO2dG/ftVO6rT3kO+ g9SXg8Buo+Oj04MLhiWyLuhxaKeGUDhjpWEWQpSutVxRa6XTcVRgI8cU5A23gsL2 xijKu2MuAOhFfj3f2AvDfHTpEZAaaRXmSd95G7dLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEauS2yPo5jIEqRmhXtfG7lAIAjUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YzMjRlN2VlLWQ3ZjktNGYxMS04YTBkLWU0YmY2YzA0Yjg5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgAGgwDQYJKoZIhvcNAQELBQADggEBAEKkuwz3xLEKjXbVYDngFDlRcdCd /uDrJ6ekCaTXKoz62Cn66SGV83beBz+CKhoXUdnXcHngLE9yb0gIZRd3Yl8wd0bL x2X8YoQrbSpLQ7EgmZAu7Tgce+g+k4U6Mz220TyJ22HYXnqXtsWnR+btvHySYIGi XdDXEWF1/AN0F4ds9e436Gsi9vaFFXy0aJbgQVxlsRTiQsRnu5fBVgDwkMprhXdW l0ryUYhuC1O/iQsZJhj2FW0ZCs/ixO9nc4wdNiaNl6HGU1m7boxU7ny4R6kt75G8 wazqaUVYCPm3/f6skzJ8MRQCOqn3v2Tayib0UWjk1lU+WMpt9w+HUhbJx88= -----END CERTIFICATE-----Generated at Mon Aug 4 22:18:54 2025 by rpki-client