$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38bc1d9a-dc0a-4557-8f0c-45df0c392516.roa File: 38bc1d9a-dc0a-4557-8f0c-45df0c392516.roa (raw, json) Hash identifier: PdTkxW7aX+AK7ktC2UtvbQ2aqrIb9XdIT7/HZm1/ioo= Subject key identifier: 61:01:8A:DC:4C:2B:10:82:2C:B4:D1:2E:42:E5:1F:2F:2D:9D:71:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2BC1B31CA675C27CFF9509E1F1BBEDFDB5412C2F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38bc1d9a-dc0a-4557-8f0c-45df0c392516.roa Signing time: Fri 11 Jul 2025 00:50:27 +0000 ROA not before: Fri 11 Jul 2025 00:50:27 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 86.112.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:c1:b3:1c:a6:75:c2:7c:ff:95:09:e1:f1:bb:ed:fd:b5:41:2c:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 00:50:27 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=9dace7335fcc1dec9a1db59b1c282cbb8a022b0a930db50a7aafc48225f1a97f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ce:ce:2c:13:d1:16:ab:83:3b:24:f1:cf:87: a0:01:71:88:8e:b6:72:54:a3:d8:71:85:3f:87:e0: ab:47:fe:ed:4d:bc:b5:11:da:68:80:58:ed:57:65: f4:ce:55:4f:62:ae:7c:00:64:10:03:ca:87:34:c3: 06:0b:a8:3c:eb:4a:52:31:e8:83:ae:f9:47:60:2f: df:57:48:91:e2:14:d0:df:b0:d8:38:18:ee:a2:a7: e6:b1:1c:b5:5c:8e:61:d4:51:85:fc:51:ff:07:d1: 84:19:9b:58:a8:7f:49:38:51:b1:7f:e1:5f:c2:32: 0d:b7:3d:08:37:94:b2:1e:cc:68:06:b8:a5:e3:87: 3b:9c:2d:54:38:66:65:5d:a4:a1:73:4a:d6:f4:10: 51:12:05:15:9d:f9:4a:85:0c:40:a3:c7:56:4c:0c: ec:c6:28:5f:59:71:26:c1:37:c8:c0:67:dd:55:0d: 74:c2:39:39:19:0a:13:6a:b8:57:28:96:f8:99:21: ba:a3:d1:13:24:6b:f2:f1:81:af:79:fa:d1:77:42: 97:16:40:ce:95:d6:30:40:78:12:56:8e:32:e2:c2: 17:93:1d:a8:13:11:90:b2:46:83:54:7c:ee:4b:ed: 5a:db:e7:d3:ec:5e:ad:63:8e:d4:18:a5:0a:52:9f: a3:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:01:8A:DC:4C:2B:10:82:2C:B4:D1:2E:42:E5:1F:2F:2D:9D:71:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38bc1d9a-dc0a-4557-8f0c-45df0c392516.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.112.0.0/15 Signature Algorithm: sha256WithRSAEncryption 60:18:a7:cc:e6:e3:81:b5:10:d8:84:f6:0d:29:8a:62:e2:77: bb:91:2f:18:9a:ac:36:f8:5c:44:53:e6:b4:c1:43:e0:4a:61: f8:5e:60:63:67:41:35:c1:f2:34:d1:67:6a:dc:99:3e:80:64: 88:51:18:a3:02:17:84:4a:ab:22:b6:c6:7f:cc:a7:58:b8:dc: 90:ce:6a:c8:27:6f:e1:e1:33:92:d5:6f:fd:7e:d1:f8:8d:93: f9:95:48:3d:e0:30:4e:c7:2c:d6:5c:99:7f:1b:44:85:7c:22: cf:a0:7b:db:5f:44:a5:66:d1:de:1f:3b:dc:31:0c:47:a8:9d: 5b:14:c3:38:fe:ed:a4:be:94:4d:d2:71:f1:e8:b5:57:dc:09: d6:c0:95:cd:9a:41:6c:52:03:41:ad:3d:65:08:f4:ce:9f:a4: 03:d8:23:0f:d4:59:9a:80:28:ca:6a:3c:cc:91:65:3f:e2:d8: 94:00:1d:6f:75:67:b6:46:19:55:74:3c:23:e5:ce:8b:a2:aa: 2e:e2:7e:a2:ab:c2:ab:cd:11:f9:8c:ac:c7:f8:f7:da:ce:b3: 4e:ea:d5:e0:72:80:53:f0:b8:37:db:b0:3e:07:57:61:30:62: 4a:4d:18:e7:f8:f5:a4:48:9c:33:11:16:9f:dc:f8:59:86:c4: a8:39:83:61 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUK8GzHKZ1wnz/lQnh8bvt/bVBLC8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMDA1MDI3WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZGFjZTczMzVmY2MxZGVjOWExZGI1OWIxYzI4MmNiYjhh MDIyYjBhOTMwZGI1MGE3YWFmYzQ4MjI1ZjFhOTdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfzs4sE9EWq4M7JPHPh6ABcYiOtnJUo9hxhT+H4KtH/u1N vLUR2miAWO1XZfTOVU9irnwAZBADyoc0wwYLqDzrSlIx6IOu+UdgL99XSJHiFNDf sNg4GO6ip+axHLVcjmHUUYX8Uf8H0YQZm1iof0k4UbF/4V/CMg23PQg3lLIezGgG uKXjhzucLVQ4ZmVdpKFzStb0EFESBRWd+UqFDECjx1ZMDOzGKF9ZcSbBN8jAZ91V DXTCOTkZChNquFcolviZIbqj0RMka/Lxga95+tF3QpcWQM6V1jBAeBJWjjLiwheT HagTEZCyRoNUfO5L7Vrb59PsXq1jjtQYpQpSn6PFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYQGK3EwrEIIstNEuQuUfLy2dcSQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4YmMxZDlhLWRjMGEtNDU1Ny04ZjBjLTQ1ZGYwYzM5MjUxNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFWcDANBgkqhkiG9w0BAQsFAAOCAQEAYBinzObjgbUQ2IT2DSmKYuJ3u5Ev GJqsNvhcRFPmtMFD4Eph+F5gY2dBNcHyNNFnatyZPoBkiFEYowIXhEqrIrbGf8yn WLjckM5qyCdv4eEzktVv/X7R+I2T+ZVIPeAwTscs1lyZfxtEhXwiz6B7219EpWbR 3h873DEMR6idWxTDOP7tpL6UTdJx8ei1V9wJ1sCVzZpBbFIDQa09ZQj0zp+kA9gj D9RZmoAoymo8zJFlP+LYlAAdb3VntkYZVXQ8I+XOi6KqLuJ+oqvCq80R+Yysx/j3 2s6zTurV4HKAU/C4N9uwPgdXYTBiSk0Y5/j1pEicMxEWn9z4WYbEqDmDYQ== -----END CERTIFICATE-----Generated at Mon Jul 21 18:34:05 2025 by rpki-client