$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11d86d5e-caf4-46bd-b962-a2c43ad0f565.roa File: 11d86d5e-caf4-46bd-b962-a2c43ad0f565.roa (raw, json) Hash identifier: DEfqCXPx/AmKTG4++5SKzz4t+rGlOsxc4Ja9CLFoqso= Subject key identifier: FD:D1:8A:EB:3D:60:84:F7:60:61:7A:7D:92:1C:B5:B5:AC:F4:50:8D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 416998304102A200C81E2F13EA7844412589D418 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11d86d5e-caf4-46bd-b962-a2c43ad0f565.roa Signing time: Wed 16 Jul 2025 00:00:17 +0000 ROA not before: Wed 16 Jul 2025 00:00:17 +0000 ROA not after: Wed 20 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 141.230.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:69:98:30:41:02:a2:00:c8:1e:2f:13:ea:78:44:41:25:89:d4:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 16 00:00:17 2025 GMT Not After : Aug 20 23:59:59 2025 GMT Subject: serialNumber=d5e51801d4a5530d91f009563836852de6c18f5dec4538d9f3c066dcfafc5d67, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f5:8b:d2:fc:55:97:93:58:d1:2d:11:40:16: b2:ee:29:7b:5b:1b:34:82:9b:14:0f:1b:c6:5e:2a: 77:98:27:c8:ad:62:c5:8a:02:24:90:32:08:75:da: 4c:06:a8:c8:6a:55:78:ab:6d:af:81:43:ae:66:9e: ca:19:22:f3:c4:59:ca:3b:40:2d:14:11:a8:f3:d3: 44:71:4a:df:e3:7b:a8:a8:14:83:02:61:03:d3:ea: 04:ae:20:f7:a2:7c:07:6b:58:e0:3e:e6:71:fa:46: 7c:03:5f:53:fc:fa:13:ca:47:ac:51:83:59:dc:ba: c6:e7:67:7f:34:2c:91:57:d8:b2:03:6b:07:fd:dc: c0:18:aa:0a:ab:40:e2:c9:84:0e:f7:30:6c:69:ff: d0:0c:a6:12:97:8f:9e:1b:f0:be:5d:6c:57:23:8f: 09:ce:fa:58:24:c9:73:94:d3:8b:e3:0b:a8:e8:bb: c3:08:65:81:6f:92:09:91:d2:90:60:d1:98:47:ed: aa:d8:65:91:a9:a1:42:7a:3e:01:bb:ca:e4:c7:ba: 51:8e:be:28:fa:fd:e8:8c:c3:54:df:37:03:a3:44: 23:41:b9:07:13:93:79:43:c9:dd:de:fe:14:a0:34: 2e:68:76:1b:db:96:09:1e:11:d5:54:e5:21:ba:c6: dd:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:D1:8A:EB:3D:60:84:F7:60:61:7A:7D:92:1C:B5:B5:AC:F4:50:8D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11d86d5e-caf4-46bd-b962-a2c43ad0f565.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.230.0.0/16 Signature Algorithm: sha256WithRSAEncryption b1:94:76:d5:ce:0c:ec:c7:74:07:88:ce:fb:ff:f4:ae:32:68: ed:37:75:c5:1c:07:8d:69:de:25:df:d5:40:e3:ae:21:a2:eb: 82:43:6d:47:f4:33:34:60:ec:cf:d3:94:36:4f:b5:73:93:0b: 8c:05:8b:d2:75:8b:6e:6a:82:68:9e:6a:b0:e2:3f:44:ed:d7: 90:14:bb:38:38:db:81:bd:67:df:3b:f1:73:9c:1e:b5:72:59: 82:89:41:e3:cb:d2:c1:c6:01:f8:0a:74:78:7e:96:80:76:1e: 27:c7:3d:4d:e4:33:08:26:a4:16:e0:76:2c:fa:ff:f2:35:d8: 2c:d8:1e:a8:89:6e:ab:db:39:4c:5b:4f:d7:9f:58:96:d1:69: 01:85:88:ca:14:8e:a7:33:a1:21:b0:f6:55:23:a2:9f:b2:3d: 04:10:13:06:fd:0b:ac:d1:e6:30:3e:10:e4:3f:1d:64:e1:75: b7:bb:c8:3c:ce:40:29:a1:17:18:29:fd:99:38:97:16:17:2b: 5d:4a:9a:85:41:5c:76:9a:6e:e4:6d:45:77:19:a6:dd:ba:16: 8f:4a:4b:83:2f:de:73:71:8a:3c:f2:26:51:be:6a:26:6a:db: a6:49:81:54:8e:47:84:92:9a:e5:cb:88:b8:50:79:fc:06:b7: db:a2:7b:c2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQWmYMEECogDIHi8T6nhEQSWJ1BgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE2MDAwMDE3WhcNMjUwODIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNWU1MTgwMWQ0YTU1MzBkOTFmMDA5NTYzODM2ODUyZGU2 YzE4ZjVkZWM0NTM4ZDlmM2MwNjZkY2ZhZmM1ZDY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB9YvS/FWXk1jRLRFAFrLuKXtbGzSCmxQPG8ZeKneYJ8it YsWKAiSQMgh12kwGqMhqVXirba+BQ65mnsoZIvPEWco7QC0UEajz00RxSt/je6io FIMCYQPT6gSuIPeifAdrWOA+5nH6RnwDX1P8+hPKR6xRg1ncusbnZ380LJFX2LID awf93MAYqgqrQOLJhA73MGxp/9AMphKXj54b8L5dbFcjjwnO+lgkyXOU04vjC6jo u8MIZYFvkgmR0pBg0ZhH7arYZZGpoUJ6PgG7yuTHulGOvij6/eiMw1TfNwOjRCNB uQcTk3lDyd3e/hSgNC5odhvblgkeEdVU5SG6xt1tAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/dGK6z1ghPdgYXp9khy1taz0UI0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzExZDg2ZDVlLWNhZjQtNDZiZC1iOTYyLWEyYzQzYWQwZjU2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCN5jANBgkqhkiG9w0BAQsFAAOCAQEAsZR21c4M7Md0B4jO+//0rjJo7Td1 xRwHjWneJd/VQOOuIaLrgkNtR/QzNGDsz9OUNk+1c5MLjAWL0nWLbmqCaJ5qsOI/ RO3XkBS7ODjbgb1n3zvxc5wetXJZgolB48vSwcYB+Ap0eH6WgHYeJ8c9TeQzCCak FuB2LPr/8jXYLNgeqIluq9s5TFtP159YltFpAYWIyhSOpzOhIbD2VSOin7I9BBAT Bv0LrNHmMD4Q5D8dZOF1t7vIPM5AKaEXGCn9mTiXFhcrXUqahUFcdppu5G1Fdxmm 3boWj0pLgy/ec3GKPPImUb5qJmrbpkmBVI5HhJKa5cuIuFB5/Aa326J7wg== -----END CERTIFICATE-----Generated at Mon Jul 21 18:10:15 2025 by rpki-client