$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4bf070f-56bb-49f0-b05e-fa1524276572.roa File: f4bf070f-56bb-49f0-b05e-fa1524276572.roa (raw, json) Hash identifier: C4by52qv8K5FtGjGk/JkFpElLJrBLA6hvfSeQ+s1m2A= Subject key identifier: 57:D7:1A:AE:8A:57:D0:6E:49:07:A2:3D:F4:F7:2F:DD:81:04:CA:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 12121724164DEB773A22729568B72299FD2BD51B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4bf070f-56bb-49f0-b05e-fa1524276572.roa Signing time: Tue 05 Aug 2025 00:50:16 +0000 ROA not before: Tue 05 Aug 2025 00:50:16 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 75.2.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:12:17:24:16:4d:eb:77:3a:22:72:95:68:b7:22:99:fd:2b:d5:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:50:16 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=f5bd7e3b56362b54b1dcf9cba98b98e3f2ad15154d3bf4ab65e9249de108268f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cf:1e:b2:46:8d:0d:33:a8:5c:ea:95:fd:22: 2c:1a:c4:ad:73:4a:1c:68:1e:bd:75:3d:41:48:d5: 7e:a9:18:ff:eb:4b:a5:47:d3:db:53:5c:78:7b:dd: cc:f4:74:88:2f:3e:61:5b:93:50:e2:76:98:8f:a5: 09:32:d0:c0:df:6c:28:72:18:f5:f8:2a:ad:6c:0d: 7b:34:3d:e1:32:82:4d:84:99:5e:9c:db:f7:8e:c9: ec:96:2b:0c:f0:82:4a:87:e3:bd:d0:ca:18:30:de: a0:b7:38:3a:f9:b3:8c:15:66:ed:f7:df:32:da:72: 4b:3a:8d:28:fa:d7:a5:08:0d:a0:a2:23:60:2c:4e: cc:e2:96:1d:9a:63:da:df:36:7a:fe:5d:b2:39:df: 6f:0e:e7:88:20:b4:ce:74:cd:6a:5a:83:07:2d:ec: e7:e7:26:92:3f:08:e1:9a:09:9b:88:75:1c:f2:53: 48:39:93:25:36:78:f6:00:2a:28:d1:89:a2:42:59: db:c1:26:1e:de:16:05:75:00:5d:71:a5:44:a3:83: 19:b4:40:89:d8:6f:c6:bf:c8:8d:a8:79:65:36:cc: 47:51:f6:80:7b:a9:37:2f:b2:6c:6a:76:fb:3f:30: 5f:f1:a1:cb:e7:b3:9b:0a:6c:a1:d9:86:db:35:4e: 09:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:D7:1A:AE:8A:57:D0:6E:49:07:A2:3D:F4:F7:2F:DD:81:04:CA:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4bf070f-56bb-49f0-b05e-fa1524276572.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.2.160.0/19 Signature Algorithm: sha256WithRSAEncryption ae:99:86:e2:74:a0:b1:d7:cc:8b:e7:63:3c:9b:cf:20:2f:53: cb:94:7d:87:54:20:32:f3:74:fb:ae:89:39:1f:c1:78:64:ea: 57:34:f3:9d:91:16:b0:b7:88:0a:fe:c0:5c:9b:93:c4:39:fd: 7f:65:8e:bd:41:ab:b4:24:74:14:9f:be:b2:c5:46:12:94:b4: f0:e0:c8:56:fe:4a:f9:d9:59:14:af:09:c3:3d:5f:e9:46:96: fa:81:2f:3a:35:30:6c:bb:c3:c3:75:c7:65:bf:ef:cf:e7:e1: 71:ab:45:47:67:3c:1c:db:e9:3d:8a:3c:0d:18:66:38:ba:99: 67:59:f3:c8:65:e5:66:75:4d:7e:57:b5:30:c3:50:c7:c5:ab: d2:4d:3a:80:d5:bc:66:9d:5c:ab:a4:89:b7:5a:25:52:3c:ee: c3:d4:4f:7a:d1:7e:47:97:81:12:2a:3e:fc:53:76:68:38:89: 2e:06:de:01:f7:a4:f6:18:01:07:3b:f1:68:cc:ac:e7:1e:ea: 18:3a:b9:5d:cc:0f:b5:67:cd:77:13:cf:6b:71:47:c3:d7:41: 44:5e:d0:67:71:06:70:a8:66:fb:75:6a:24:44:af:4f:dc:c4: 06:6d:02:b7:1d:2a:83:ac:40:94:93:60:06:b7:c6:f1:62:27: d1:ef:e5:4f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEhIXJBZN63c6InKVaLcimf0r1RswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDA1MDE2WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNWJkN2UzYjU2MzYyYjU0YjFkY2Y5Y2JhOThiOThlM2Yy YWQxNTE1NGQzYmY0YWI2NWU5MjQ5ZGUxMDgyNjhmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvzx6yRo0NM6hc6pX9IiwaxK1zShxoHr11PUFI1X6pGP/r S6VH09tTXHh73cz0dIgvPmFbk1DidpiPpQky0MDfbChyGPX4Kq1sDXs0PeEygk2E mV6c2/eOyeyWKwzwgkqH473Qyhgw3qC3ODr5s4wVZu333zLacks6jSj616UIDaCi I2AsTszilh2aY9rfNnr+XbI5328O54ggtM50zWpagwct7OfnJpI/COGaCZuIdRzy U0g5kyU2ePYAKijRiaJCWdvBJh7eFgV1AF1xpUSjgxm0QInYb8a/yI2oeWU2zEdR 9oB7qTcvsmxqdvs/MF/xocvns5sKbKHZhts1TglHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUV9caropX0G5JB6I99Pcv3YEEysYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y0YmYwNzBmLTU2YmItNDlmMC1iMDVlLWZhMTUyNDI3NjU3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVLAqAwDQYJKoZIhvcNAQELBQADggEBAK6ZhuJ0oLHXzIvnYzybzyAvU8uU fYdUIDLzdPuuiTkfwXhk6lc0852RFrC3iAr+wFybk8Q5/X9ljr1Bq7QkdBSfvrLF RhKUtPDgyFb+SvnZWRSvCcM9X+lGlvqBLzo1MGy7w8N1x2W/78/n4XGrRUdnPBzb 6T2KPA0YZji6mWdZ88hl5WZ1TX5XtTDDUMfFq9JNOoDVvGadXKukibdaJVI87sPU T3rRfkeXgRIqPvxTdmg4iS4G3gH3pPYYAQc78WjMrOce6hg6uV3MD7VnzXcTz2tx R8PXQURe0GdxBnCoZvt1aiREr0/cxAZtArcdKoOsQJSTYAa3xvFiJ9Hv5U8= -----END CERTIFICATE-----Generated at Sat Aug 9 01:12:11 2025 by rpki-client