$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c9c5c08-7b7e-4bf3-815e-35f9962ced9e.roa File: 2c9c5c08-7b7e-4bf3-815e-35f9962ced9e.roa (raw, json) Hash identifier: AN21S4yAK+5Ci7F7M7VA6ywkyTj/+o2d/TTwUqKbYCo= Subject key identifier: 84:98:91:F4:64:C3:EE:CC:3D:83:83:69:3C:E7:AE:6E:45:8A:AE:8C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2F9E4E83533CD649BC0054783B5FFEE6E569839C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c9c5c08-7b7e-4bf3-815e-35f9962ced9e.roa Signing time: Sat 12 Jul 2025 00:40:16 +0000 ROA not before: Sat 12 Jul 2025 00:40:16 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 95.69.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:9e:4e:83:53:3c:d6:49:bc:00:54:78:3b:5f:fe:e6:e5:69:83:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 12 00:40:16 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=069b7a867594fd212c9bcaef42ef0599478d3c1c7e586541e5e7bc32c6b52bb1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:43:97:15:60:73:f6:00:77:45:a6:5c:43:b7: 1b:79:10:0f:c3:dc:82:98:4d:25:a2:9c:bb:21:a8: a2:a8:73:52:21:59:ef:67:5e:16:e6:a1:e0:31:f7: cd:b4:38:c2:c5:51:6a:2d:7b:56:86:6c:1c:2c:9a: 53:e2:e3:14:f0:80:ae:ac:49:dd:8a:d5:4b:02:18: 03:9c:cd:6a:ff:11:38:97:8e:43:c1:2d:42:23:d5: 08:af:2c:7e:3c:f1:95:91:3e:29:92:f1:18:46:41: 53:4b:90:93:ab:11:81:95:73:7f:63:79:ec:cd:c3: 81:63:39:e5:a5:fd:69:bf:f0:8d:8c:b8:54:ff:7e: 65:26:0b:28:44:2b:84:75:00:8a:60:6a:5f:17:4f: 17:d6:10:b3:2a:92:1a:68:5b:39:de:e5:84:21:c4: c1:a8:d6:9f:95:f8:93:aa:77:d6:71:73:e5:c9:ce: 70:fa:74:5b:ec:fa:40:f2:3d:dd:31:79:2a:b5:d7: 3a:63:40:c0:a7:5a:8d:03:25:67:76:b9:da:1e:6f: 96:91:3b:f2:ad:ca:97:54:a9:0a:8c:60:dc:39:f2: c2:c3:c2:16:69:8a:54:e7:e6:1e:7b:76:86:4c:a1: 36:b0:25:e7:a0:e7:0f:04:fb:01:38:1c:66:52:1d: 68:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:98:91:F4:64:C3:EE:CC:3D:83:83:69:3C:E7:AE:6E:45:8A:AE:8C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c9c5c08-7b7e-4bf3-815e-35f9962ced9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.69.128.0/17 Signature Algorithm: sha256WithRSAEncryption 07:45:e9:6d:77:ab:8a:b8:4e:07:11:01:94:a9:3b:24:85:8c: bd:44:06:ae:8c:5e:73:04:92:cb:30:9c:3d:90:ab:43:55:0e: 8f:08:8d:6d:43:86:c4:04:c9:3d:5b:f9:4a:26:17:95:c0:08: 6c:2f:76:55:78:fa:63:a9:df:cb:a4:1d:c4:90:26:64:c8:f8: e9:31:51:a2:58:6b:50:a1:fb:46:df:8a:b6:10:75:4f:8c:7e: 22:80:3d:ac:5c:92:52:11:61:7a:7f:2b:34:3c:dc:e1:e5:1c: 9f:f7:a3:42:da:ae:d2:1f:67:88:0e:e9:26:5e:d8:2d:ab:bf: bf:38:ed:9f:75:ec:c1:6c:8b:50:43:ee:88:f3:ce:51:50:b3: f5:86:84:d1:5b:3f:06:d4:d7:6d:6c:7d:65:13:0d:e9:27:36: 3b:a3:ff:07:55:63:02:a2:84:ea:48:08:56:0f:5b:7f:e9:06: 20:f8:ef:27:1f:ee:f8:1e:13:fa:a2:f1:8e:44:a2:17:0b:5e: f1:c7:3c:05:5e:c6:dd:69:b6:c6:72:34:8d:9b:07:3d:f1:57: 67:4a:93:a8:93:a1:08:ea:88:06:c1:40:9c:a3:3e:16:64:64: d8:87:a0:d4:38:17:79:0c:bd:9f:57:03:0e:52:08:4b:19:74: 4b:2c:b9:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL55Og1M81km8AFR4O1/+5uVpg5wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzEyMDA0MDE2WhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjliN2E4Njc1OTRmZDIxMmM5YmNhZWY0MmVmMDU5OTQ3 OGQzYzFjN2U1ODY1NDFlNWU3YmMzMmM2YjUyYmIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIQ5cVYHP2AHdFplxDtxt5EA/D3IKYTSWinLshqKKoc1Ih We9nXhbmoeAx9820OMLFUWote1aGbBwsmlPi4xTwgK6sSd2K1UsCGAOczWr/ETiX jkPBLUIj1QivLH488ZWRPimS8RhGQVNLkJOrEYGVc39jeezNw4FjOeWl/Wm/8I2M uFT/fmUmCyhEK4R1AIpgal8XTxfWELMqkhpoWzne5YQhxMGo1p+V+JOqd9Zxc+XJ znD6dFvs+kDyPd0xeSq11zpjQMCnWo0DJWd2udoeb5aRO/KtypdUqQqMYNw58sLD whZpilTn5h57doZMoTawJeeg5w8E+wE4HGZSHWgDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhJiR9GTD7sw9g4NpPOeubkWKrowwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJjOWM1YzA4LTdiN2UtNGJmMy04MTVlLTM1Zjk5NjJjZWQ5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdfRYAwDQYJKoZIhvcNAQELBQADggEBAAdF6W13q4q4TgcRAZSpOySFjL1E Bq6MXnMEksswnD2Qq0NVDo8IjW1DhsQEyT1b+UomF5XACGwvdlV4+mOp38ukHcSQ JmTI+OkxUaJYa1Ch+0bfirYQdU+MfiKAPaxcklIRYXp/KzQ83OHlHJ/3o0LartIf Z4gO6SZe2C2rv7847Z917MFsi1BD7ojzzlFQs/WGhNFbPwbU121sfWUTDeknNjuj /wdVYwKihOpICFYPW3/pBiD47ycf7vgeE/qi8Y5EohcLXvHHPAVext1ptsZyNI2b Bz3xV2dKk6iToQjqiAbBQJyjPhZkZNiHoNQ4F3kMvZ9XAw5SCEsZdEssudA= -----END CERTIFICATE-----Generated at Mon Jul 21 23:24:42 2025 by rpki-client