$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2efb9bd0-475f-417d-8e72-8a50428e9da8.roa File: 2efb9bd0-475f-417d-8e72-8a50428e9da8.roa (raw, json) Hash identifier: mcCXQ3WYa9hXr52vUB1V2KM/eLAezNmBPM9NLEpUj/A= Subject key identifier: 4B:4D:59:C1:44:56:77:2C:06:2C:DC:6A:6D:C1:4F:71:28:C5:06:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F0ABCB2F2B835173639ED1E7F8CB81717B00F57 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2efb9bd0-475f-417d-8e72-8a50428e9da8.roa Signing time: Mon 07 Jul 2025 16:01:18 +0000 ROA not before: Mon 07 Jul 2025 16:01:18 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.179.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:0a:bc:b2:f2:b8:35:17:36:39:ed:1e:7f:8c:b8:17:17:b0:0f:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 16:01:18 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=65ace98afa3e61510715c4edc5673d19674da405cdd5e3fcc32d616b3f2b90c9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:12:d3:2f:ae:ce:2f:bc:aa:0f:15:81:44:dd: 7b:4b:92:ca:57:65:09:14:25:b6:c8:69:2b:ea:00: 21:b3:35:ac:c6:be:65:b1:34:07:40:4a:8a:3e:7d: 2e:de:82:fa:fc:43:c0:ce:61:4b:21:4d:f5:6e:44: 71:3b:91:fd:bc:f7:24:32:a6:04:bc:8d:8b:da:b0: f0:74:62:39:61:36:85:84:69:07:3a:f3:51:77:e4: 5b:eb:45:48:0d:c0:f7:c0:8b:5f:15:e8:b1:bc:f5: 14:f8:16:56:a2:41:43:36:0d:aa:c2:cf:09:87:38: 0a:f2:56:00:29:58:fb:8c:a8:66:f3:21:c6:d6:65: cb:af:90:95:1c:eb:55:56:6a:6e:eb:7a:7d:a8:f7: ff:b0:b2:42:60:a6:65:dc:44:97:8f:ed:ce:b1:6b: 99:b6:1d:a4:d6:83:8a:f7:ac:70:07:a5:5a:f9:5d: 3f:7d:bf:39:58:1c:12:a6:44:49:d3:71:42:4f:2e: 1f:57:18:8a:5e:65:75:fb:92:b1:3a:97:0d:31:9a: ae:69:55:50:9d:b5:28:2b:c9:7f:e9:6a:02:14:aa: 20:c5:64:ff:06:c9:9e:81:3f:3d:20:4b:d4:78:93: 9a:ab:5e:8e:c7:dd:fb:2f:a8:24:4c:d3:65:39:9a: ff:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:4D:59:C1:44:56:77:2C:06:2C:DC:6A:6D:C1:4F:71:28:C5:06:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2efb9bd0-475f-417d-8e72-8a50428e9da8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.179.52.0/22 Signature Algorithm: sha256WithRSAEncryption 03:2a:1c:44:4d:c7:a2:f5:ab:7c:bf:d7:70:8b:64:48:39:0d: 75:12:d1:89:a5:1b:11:e6:4e:ac:64:0f:2f:b9:c4:75:80:51: f5:7b:35:f4:a9:1b:55:c7:96:56:07:0b:a0:65:26:a1:2c:69: 40:26:f9:3e:52:8a:11:d7:57:a9:69:04:b0:1f:86:f2:1c:1d: 02:06:85:46:75:12:ab:78:05:f5:1e:ff:28:e7:f6:bc:11:87: 59:10:c6:60:15:d5:12:a2:66:2b:83:bd:92:ae:89:b2:52:3c: b1:fe:c7:77:8d:67:0b:5a:a5:b3:d4:0b:bf:24:eb:c1:a6:fc: 62:cc:67:75:8a:16:d7:0f:68:13:ca:af:51:8f:24:30:af:ef: 50:c1:2f:8a:bb:ee:93:20:4b:5f:33:5d:5f:51:35:3f:52:5d: 3b:71:15:07:46:0e:47:14:eb:ae:cd:88:42:5b:32:d4:fa:2b: 04:83:be:43:0f:56:4c:57:60:ea:e4:a3:48:2c:23:85:06:83: 56:d5:83:a0:1a:10:9b:84:fd:6e:b9:22:8b:ce:bb:bf:75:77: ee:6e:17:77:2b:8b:6a:49:18:77:30:22:81:00:7c:b8:a2:61: 84:92:e7:b1:74:31:8d:29:3c:d1:7f:ce:f9:a1:6f:d2:20:b2: fa:9f:dd:09 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDwq8svK4NRc2Oe0ef4y4FxewD1cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTYwMTE4WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NWFjZTk4YWZhM2U2MTUxMDcxNWM0ZWRjNTY3M2QxOTY3 NGRhNDA1Y2RkNWUzZmNjMzJkNjE2YjNmMmI5MGM5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsEtMvrs4vvKoPFYFE3XtLkspXZQkUJbbIaSvqACGzNazG vmWxNAdASoo+fS7egvr8Q8DOYUshTfVuRHE7kf289yQypgS8jYvasPB0YjlhNoWE aQc681F35FvrRUgNwPfAi18V6LG89RT4FlaiQUM2DarCzwmHOAryVgApWPuMqGbz IcbWZcuvkJUc61VWam7ren2o9/+wskJgpmXcRJeP7c6xa5m2HaTWg4r3rHAHpVr5 XT99vzlYHBKmREnTcUJPLh9XGIpeZXX7krE6lw0xmq5pVVCdtSgryX/pagIUqiDF ZP8GyZ6BPz0gS9R4k5qrXo7H3fsvqCRM02U5mv8rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUS01ZwURWdywGLNxqbcFPcSjFBnEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJlZmI5YmQwLTQ3NWYtNDE3ZC04ZTcyLThhNTA0MjhlOWRhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBszQwDQYJKoZIhvcNAQELBQADggEBAAMqHERNx6L1q3y/13CLZEg5DXUS 0YmlGxHmTqxkDy+5xHWAUfV7NfSpG1XHllYHC6BlJqEsaUAm+T5SihHXV6lpBLAf hvIcHQIGhUZ1Eqt4BfUe/yjn9rwRh1kQxmAV1RKiZiuDvZKuibJSPLH+x3eNZwta pbPUC78k68Gm/GLMZ3WKFtcPaBPKr1GPJDCv71DBL4q77pMgS18zXV9RNT9SXTtx FQdGDkcU667NiEJbMtT6KwSDvkMPVkxXYOrko0gsI4UGg1bVg6AaEJuE/W65IovO u791d+5uF3cri2pJGHcwIoEAfLiiYYSS57F0MY0pPNF/zvmhb9Igsvqf3Qk= -----END CERTIFICATE-----Generated at Tue Jul 22 06:16:42 2025 by rpki-client