$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c90bc2f-3486-456a-9d24-2194e5e63b08.roa File: 1c90bc2f-3486-456a-9d24-2194e5e63b08.roa (raw, json) Hash identifier: Q0yzXGfU5fp6Sxt+Qq/QzEXTdvmi7MiSm5eFjJfN6Po= Subject key identifier: 21:7F:08:86:E7:C6:06:D2:EB:20:E2:43:A0:B2:7A:02:C7:3E:45:AE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7452BB24E233AFCF4D4779EC535BCD4897A22576 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c90bc2f-3486-456a-9d24-2194e5e63b08.roa Signing time: Fri 18 Jul 2025 00:00:13 +0000 ROA not before: Fri 18 Jul 2025 00:00:13 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 165.81.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:52:bb:24:e2:33:af:cf:4d:47:79:ec:53:5b:cd:48:97:a2:25:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:00:13 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=9df176f5d9cd6f82e5386c5cb6125500ff866f50febe4a32ee2655f0bea1f931, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:24:85:c1:d7:60:57:61:bc:f8:7c:27:da:2a: f5:f0:0d:12:50:50:3b:6c:81:93:a2:b0:20:9f:b7: 48:d8:65:84:b9:dd:25:4e:a1:56:f0:fa:5e:78:7c: 53:25:e3:c5:6a:c9:2f:d0:18:f9:2d:01:5a:b0:d3: 55:ce:a8:6d:c9:e0:f9:a3:70:e0:68:c0:45:84:86: fb:7f:13:ae:2c:f5:83:37:96:28:92:ce:20:78:ec: 0e:d3:df:df:5b:07:ab:9d:79:a2:70:7d:8d:f7:aa: e8:c8:ff:a6:e2:20:9d:d1:20:7d:20:bd:15:0e:46: 00:c9:71:c3:3d:78:e7:1e:7a:58:5f:ef:c3:21:09: cf:c6:1d:02:f4:03:a2:bb:a0:8f:d0:ae:d7:63:20: a3:94:60:49:e2:e7:bb:53:41:59:f8:29:ed:1f:9e: 54:c3:a3:fc:83:b6:10:45:aa:63:47:16:09:7e:6b: 75:80:7f:80:52:30:a1:10:6c:87:e6:e5:4d:99:c3: f8:8d:c5:8a:7a:1c:54:8a:91:65:23:a6:6b:53:ee: ea:c6:0c:cf:e4:08:64:4d:48:64:47:a2:41:52:dc: f4:92:c1:1e:83:8d:ee:83:21:8c:08:25:ea:56:5f: 0b:e2:9c:ab:8d:ee:26:ed:52:0b:73:7c:66:1b:34: 71:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:7F:08:86:E7:C6:06:D2:EB:20:E2:43:A0:B2:7A:02:C7:3E:45:AE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c90bc2f-3486-456a-9d24-2194e5e63b08.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.81.0.0/16 Signature Algorithm: sha256WithRSAEncryption 40:ea:66:cc:19:19:91:a9:da:a1:7c:d0:d6:54:70:b2:77:cd: ac:b9:48:9d:dc:b1:95:f0:34:2c:30:35:f1:a2:d2:0f:cb:6a: d9:47:f4:de:26:3e:f7:2e:cf:2c:8e:22:8e:1b:5a:bf:ec:44: 26:91:14:3d:50:8d:6d:47:cf:a0:f7:d9:80:9b:5f:97:0a:c7: 8e:ae:ab:6a:1a:7c:73:ab:21:db:70:39:a5:ac:64:5a:18:02: 0f:67:f7:d0:59:e1:8b:3e:11:b2:0c:43:44:25:07:25:1f:7a: 8a:fa:c2:16:5d:3f:45:e0:00:a2:8c:e7:7a:35:0c:c0:1b:52: 82:c0:22:28:a0:01:79:67:3d:b6:95:d9:5d:30:dc:70:43:b5: a0:1f:b3:ea:83:c1:07:d2:93:c4:d4:44:c2:8f:20:e1:1e:f8: f4:32:59:05:da:e4:3f:35:7f:1b:c2:a6:32:b1:5c:bf:a3:00: 8e:35:50:0b:aa:9c:f4:98:3e:f7:6e:ea:32:f5:20:14:e9:4a: c2:ba:c3:02:00:8b:31:56:5f:4e:72:72:8d:f8:bd:27:c6:5a: ad:98:06:f5:b0:07:64:28:48:65:10:7e:d5:55:7e:ab:bf:de: c5:4d:fa:f8:0b:51:f5:83:d1:7f:7c:64:a3:0f:cb:82:eb:20: 44:99:e0:00 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdFK7JOIzr89NR3nsU1vNSJeiJXYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDAwMDEzWhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZGYxNzZmNWQ5Y2Q2ZjgyZTUzODZjNWNiNjEyNTUwMGZm ODY2ZjUwZmViZTRhMzJlZTI2NTVmMGJlYTFmOTMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzJIXB12BXYbz4fCfaKvXwDRJQUDtsgZOisCCft0jYZYS5 3SVOoVbw+l54fFMl48VqyS/QGPktAVqw01XOqG3J4PmjcOBowEWEhvt/E64s9YM3 liiSziB47A7T399bB6udeaJwfY33qujI/6biIJ3RIH0gvRUORgDJccM9eOceelhf 78MhCc/GHQL0A6K7oI/QrtdjIKOUYEni57tTQVn4Ke0fnlTDo/yDthBFqmNHFgl+ a3WAf4BSMKEQbIfm5U2Zw/iNxYp6HFSKkWUjpmtT7urGDM/kCGRNSGRHokFS3PSS wR6Dje6DIYwIJepWXwvinKuN7ibtUgtzfGYbNHHvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIX8IhufGBtLrIOJDoLJ6Asc+Ra4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjOTBiYzJmLTM0ODYtNDU2YS05ZDI0LTIxOTRlNWU2M2IwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwClUTANBgkqhkiG9w0BAQsFAAOCAQEAQOpmzBkZkanaoXzQ1lRwsnfNrLlI ndyxlfA0LDA18aLSD8tq2Uf03iY+9y7PLI4ijhtav+xEJpEUPVCNbUfPoPfZgJtf lwrHjq6rahp8c6sh23A5paxkWhgCD2f30Fnhiz4RsgxDRCUHJR96ivrCFl0/ReAA ooznejUMwBtSgsAiKKABeWc9tpXZXTDccEO1oB+z6oPBB9KTxNREwo8g4R749DJZ BdrkPzV/G8KmMrFcv6MAjjVQC6qc9Jg+927qMvUgFOlKwrrDAgCLMVZfTnJyjfi9 J8ZarZgG9bAHZChIZRB+1VV+q7/exU36+AtR9YPRf3xkow/LgusgRJngAA== -----END CERTIFICATE-----Generated at Tue Jul 22 04:30:30 2025 by rpki-client