$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f730b889-bcb1-4f8b-8454-416b86668fa0.roa File: f730b889-bcb1-4f8b-8454-416b86668fa0.roa (raw, json) Hash identifier: QtxIOLUN/Gdh9/aUKimrP6fA6qTF8+nFB7vCpfY90Xo= Subject key identifier: FB:F3:FA:66:80:8A:B2:13:F3:C8:61:6A:CB:E6:1D:12:0E:11:E2:59 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5A5FF8DCF2FC524DAEB869919AE61A3C551D99F3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f730b889-bcb1-4f8b-8454-416b86668fa0.roa Signing time: Sat 02 Aug 2025 00:50:54 +0000 ROA not before: Sat 02 Aug 2025 00:50:54 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:5f:f8:dc:f2:fc:52:4d:ae:b8:69:91:9a:e6:1a:3c:55:1d:99:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:50:54 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=364eb6d7a74a4894320fec712ac27add88fea3a69ebf8aa74714fd419ad7d31e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7e:ef:ed:a3:6e:87:8b:1d:08:da:07:a2:bc: ab:01:a9:a5:9d:3c:6e:5e:2e:76:eb:91:66:97:fb: 5d:dd:45:9a:bd:77:25:87:44:cc:8b:0a:f8:c6:ea: b4:09:67:a4:a8:61:b6:b4:5c:82:83:f8:27:9a:66: bc:87:44:ab:75:d1:d9:41:0d:2b:25:82:24:95:7b: d1:10:89:3c:df:68:72:ed:89:7f:08:cf:6f:6e:fa: 27:03:f1:31:6a:99:f6:d5:50:03:da:c4:b8:f7:38: 23:df:1c:01:0c:16:8a:ad:db:a7:6a:8e:26:49:b4: 26:04:28:be:ad:4c:02:3b:c5:27:3e:c4:27:27:20: 1f:44:fe:fd:48:a0:05:80:4d:ed:3d:14:c2:12:a6: 7c:7b:03:0f:2e:ff:7c:f0:60:ff:b5:54:ff:ed:f3: d5:5e:3d:fe:d1:67:93:eb:41:e4:5e:32:30:7b:76: 83:7d:30:da:01:9b:dd:10:e1:83:47:39:26:04:a4: 6e:37:e8:64:a2:a5:61:1b:20:09:7a:75:2b:d4:d8: f5:e4:79:50:8d:7e:5f:2d:e0:99:df:7e:f6:38:48: fb:45:b0:8c:c0:b3:98:91:66:e1:24:24:e6:f9:a0: e3:41:5f:96:ea:98:90:e1:5f:5e:b5:29:63:0a:2c: 99:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:F3:FA:66:80:8A:B2:13:F3:C8:61:6A:CB:E6:1D:12:0E:11:E2:59 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f730b889-bcb1-4f8b-8454-416b86668fa0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.104.0/21 Signature Algorithm: sha256WithRSAEncryption 38:4f:48:98:3c:40:83:c6:0b:45:20:07:3c:d7:e8:45:0e:64: 31:78:14:44:81:b4:97:bf:be:87:51:9b:e2:eb:a7:42:1a:fc: 7b:9e:db:ba:b8:4b:6f:dd:da:0d:55:39:b7:6d:55:7f:f8:0e: 28:18:0b:2f:b5:c7:1d:37:15:22:6b:1e:df:49:23:d4:f4:04: d3:27:1a:ca:e9:a6:a7:f9:32:ce:0b:74:0b:79:f9:31:01:00: 20:61:92:a7:65:de:ec:52:3e:51:aa:c6:52:fc:14:7b:51:92: 1f:81:8c:79:87:eb:90:06:a1:12:3b:14:d9:3e:01:77:3d:09: 93:1d:59:7b:26:cf:ca:db:f9:77:62:f6:eb:ac:ae:77:c7:2d: 16:33:d7:28:e7:5f:3d:d3:4f:a2:ab:1a:e5:40:4d:cf:3f:77: 48:da:04:8b:2f:85:e0:d2:2c:af:a2:ef:a1:4e:6c:6c:2f:81: e3:c8:ae:a6:f2:49:c7:58:a1:83:60:64:dc:78:ae:b5:45:49: 50:3f:36:c2:dd:8a:82:cf:46:dc:e5:ca:57:8d:cd:88:4e:e1: db:53:5f:1e:82:5b:77:d8:1d:02:9e:00:e2:2d:cd:26:a3:5e: 15:4a:ff:6e:87:e2:fb:8b:56:80:2f:72:6a:3a:1a:75:e4:5e: fe:0d:14:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWl/43PL8Uk2uuGmRmuYaPFUdmfMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDA1MDU0WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNjRlYjZkN2E3NGE0ODk0MzIwZmVjNzEyYWMyN2FkZDg4 ZmVhM2E2OWViZjhhYTc0NzE0ZmQ0MTlhZDdkMzFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0fu/to26Hix0I2geivKsBqaWdPG5eLnbrkWaX+13dRZq9 dyWHRMyLCvjG6rQJZ6SoYba0XIKD+CeaZryHRKt10dlBDSslgiSVe9EQiTzfaHLt iX8Iz29u+icD8TFqmfbVUAPaxLj3OCPfHAEMFoqt26dqjiZJtCYEKL6tTAI7xSc+ xCcnIB9E/v1IoAWATe09FMISpnx7Aw8u/3zwYP+1VP/t89VePf7RZ5PrQeReMjB7 doN9MNoBm90Q4YNHOSYEpG436GSipWEbIAl6dSvU2PXkeVCNfl8t4JnffvY4SPtF sIzAs5iRZuEkJOb5oONBX5bqmJDhX161KWMKLJnDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+/P6ZoCKshPzyGFqy+YdEg4R4lkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y3MzBiODg5LWJjYjEtNGY4Yi04NDU0LTQxNmI4NjY2OGZhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBsmgwDQYJKoZIhvcNAQELBQADggEBADhPSJg8QIPGC0UgBzzX6EUOZDF4 FESBtJe/vodRm+Lrp0Ia/Hue27q4S2/d2g1VObdtVX/4DigYCy+1xx03FSJrHt9J I9T0BNMnGsrppqf5Ms4LdAt5+TEBACBhkqdl3uxSPlGqxlL8FHtRkh+BjHmH65AG oRI7FNk+AXc9CZMdWXsmz8rb+Xdi9uusrnfHLRYz1yjnXz3TT6KrGuVATc8/d0ja BIsvheDSLK+i76FObGwvgePIrqbyScdYoYNgZNx4rrVFSVA/NsLdioLPRtzlyleN zYhO4dtTXx6CW3fYHQKeAOItzSajXhVK/26H4vuLVoAvcmo6GnXkXv4NFCo= -----END CERTIFICATE-----Generated at Thu Aug 7 02:03:56 2025 by rpki-client