$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0301e067-da19-4fd1-bbbc-72ecabcde612.roa File: 0301e067-da19-4fd1-bbbc-72ecabcde612.roa (raw, json) Hash identifier: J7B8BZacX82DolyOpU2EXjfb+Je7QI92VCQAVuq2210= Subject key identifier: 41:AA:4B:B6:A9:A1:9B:9B:F2:A4:3B:D0:92:8B:44:A6:51:DA:3A:BE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 052F106B3303B7C155E8CF008DDA8F6EEDC8273F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0301e067-da19-4fd1-bbbc-72ecabcde612.roa Signing time: Mon 07 Jul 2025 16:11:24 +0000 ROA not before: Mon 07 Jul 2025 16:11:24 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 192.43.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:2f:10:6b:33:03:b7:c1:55:e8:cf:00:8d:da:8f:6e:ed:c8:27:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 16:11:24 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=1fe868a9f0840e8427284b3f5790397a7a550035165efd3ce8c85b41178568f5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:47:b3:20:80:04:85:45:92:5f:5c:a3:b8:b9: 84:07:bc:b7:d1:8c:53:51:8a:69:df:4b:03:c5:ad: fc:83:c1:c7:cf:60:30:85:f9:2a:14:26:fc:2d:ef: 62:dc:c7:11:f2:f0:02:b5:e1:29:f1:ee:12:bf:30: f5:6d:d0:8e:d8:84:c3:92:7d:7c:4d:96:52:31:6a: 92:29:1f:60:fb:dc:26:e2:ef:38:86:fe:02:5c:c8: f9:c8:eb:2f:ac:ad:5c:5f:e1:bc:89:3a:ba:46:fe: 83:8e:f2:01:cd:df:f0:f9:02:d6:d6:60:2b:98:95: a2:79:bd:08:50:6d:1a:de:1c:12:7d:7a:82:ff:09: c1:2d:93:d2:e5:f3:3d:03:62:cd:e2:07:87:e2:b2: e1:ea:16:df:96:08:65:c8:ee:54:b3:ea:51:07:5f: 88:9f:f1:fe:ce:47:0c:09:4f:24:31:fd:30:82:7c: 79:08:82:81:98:8c:35:5a:e5:81:74:76:1b:12:ed: 35:d0:bc:dd:99:05:75:a5:f8:df:9e:77:ab:d7:7a: e7:a9:b8:20:9b:54:79:cb:a0:81:72:f8:48:14:7f: e5:41:01:53:38:09:20:7a:17:9f:e3:1d:91:0f:c0: 1f:c9:1a:c6:52:1b:28:53:7b:15:bb:24:47:5a:89: 98:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:AA:4B:B6:A9:A1:9B:9B:F2:A4:3B:D0:92:8B:44:A6:51:DA:3A:BE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0301e067-da19-4fd1-bbbc-72ecabcde612.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.43.184.0/24 Signature Algorithm: sha256WithRSAEncryption a9:46:b5:15:9d:73:f1:f3:b8:35:4c:c2:df:49:c7:dd:95:e0: ec:69:90:4e:a8:36:cf:04:98:66:47:73:3e:74:e8:3f:d3:0e: 93:b6:94:56:ed:6c:f6:3b:a6:bb:79:c7:bc:74:5e:c3:44:e6: 43:61:f7:f4:46:e4:cb:8d:e5:39:87:fb:8e:33:e3:34:08:41: 44:2e:48:34:50:c7:2c:cf:d3:a0:8f:99:bd:72:7e:91:d3:a0: 1f:98:d6:d9:32:a0:9b:fb:76:4a:8b:a5:ae:9a:c3:78:e4:9b: 14:b7:05:4c:98:3f:eb:3d:0d:1f:6f:5c:7b:85:f1:a9:fb:b6: a4:a3:e1:4f:12:5f:c2:f1:44:da:fe:2e:58:10:d8:76:97:7d: fb:6e:23:bd:18:a9:b1:f3:6e:f7:04:9b:39:82:37:1e:17:55: 87:f0:f3:4a:9f:92:29:ca:80:1a:b3:74:14:e3:dc:1e:9f:cc: da:76:b3:9e:4d:e6:24:e0:99:ed:1a:03:8e:ba:4c:32:85:3e: a2:e8:8a:f0:50:0b:6e:8c:88:54:68:f7:4f:b1:55:7f:89:a1: c6:b8:06:68:da:4e:05:4d:37:52:cb:fa:f2:c6:90:4a:a7:a9: a8:d4:43:61:23:f1:33:1d:b7:9b:f1:81:b6:0c:b7:02:9e:5b: 24:38:05:4e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBS8QazMDt8FV6M8AjdqPbu3IJz8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTYxMTI0WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZmU4NjhhOWYwODQwZTg0MjcyODRiM2Y1NzkwMzk3YTdh NTUwMDM1MTY1ZWZkM2NlOGM4NWI0MTE3ODU2OGY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYR7MggASFRZJfXKO4uYQHvLfRjFNRimnfSwPFrfyDwcfP YDCF+SoUJvwt72LcxxHy8AK14Snx7hK/MPVt0I7YhMOSfXxNllIxapIpH2D73Cbi 7ziG/gJcyPnI6y+srVxf4byJOrpG/oOO8gHN3/D5AtbWYCuYlaJ5vQhQbRreHBJ9 eoL/CcEtk9Ll8z0DYs3iB4fisuHqFt+WCGXI7lSz6lEHX4if8f7ORwwJTyQx/TCC fHkIgoGYjDVa5YF0dhsS7TXQvN2ZBXWl+N+ed6vXeuepuCCbVHnLoIFy+EgUf+VB AVM4CSB6F5/jHZEPwB/JGsZSGyhTexW7JEdaiZjNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQapLtqmhm5vypDvQkotEplHaOr4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzMDFlMDY3LWRhMTktNGZkMS1iYmJjLTcyZWNhYmNkZTYxMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAK7gwDQYJKoZIhvcNAQELBQADggEBAKlGtRWdc/HzuDVMwt9Jx92V4Oxp kE6oNs8EmGZHcz506D/TDpO2lFbtbPY7prt5x7x0XsNE5kNh9/RG5MuN5TmH+44z 4zQIQUQuSDRQxyzP06CPmb1yfpHToB+Y1tkyoJv7dkqLpa6aw3jkmxS3BUyYP+s9 DR9vXHuF8an7tqSj4U8SX8LxRNr+LlgQ2HaXfftuI70YqbHzbvcEmzmCNx4XVYfw 80qfkinKgBqzdBTj3B6fzNp2s55N5iTgme0aA466TDKFPqLoivBQC26MiFRo90+x VX+Joca4BmjaTgVNN1LL+vLGkEqnqajUQ2Ej8TMdt5vxgbYMtwKeWyQ4BU4= -----END CERTIFICATE-----Generated at Tue Jul 22 05:12:54 2025 by rpki-client