$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43e539df-4a4d-445c-bb2f-bb3a08c52cad.roa File: 43e539df-4a4d-445c-bb2f-bb3a08c52cad.roa (raw, json) Hash identifier: MLEddR+FB0fA11i3ezzlf+XhDlPyyOsX1Qv0gv+xu1I= Subject key identifier: 38:38:0B:91:01:C2:05:8C:B8:72:7D:94:09:BF:80:C6:5A:08:A8:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5CB7A040BBB325F3C74BB7B5756C9AB250BF1DC9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43e539df-4a4d-445c-bb2f-bb3a08c52cad.roa Signing time: Fri 11 Jul 2025 00:51:51 +0000 ROA not before: Fri 11 Jul 2025 00:51:51 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 72.44.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:b7:a0:40:bb:b3:25:f3:c7:4b:b7:b5:75:6c:9a:b2:50:bf:1d:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 00:51:51 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=a196615bb0b58ef836fb6fcccb7abcc9c05ca5a1e73203e1029eaee0fa7bff30, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:07:c8:75:62:75:77:78:30:ab:2d:7d:3f:ca: 48:3e:ec:01:3d:7d:69:c7:fe:cb:98:df:0a:c2:28: d4:3f:8e:0a:85:9f:23:41:54:d9:6a:2b:40:0a:01: a3:c6:e1:af:50:66:d5:83:19:c7:f2:aa:90:03:9e: d9:42:2a:14:ea:52:6e:38:28:17:e4:40:93:c0:25: bc:da:0f:54:7f:82:02:42:32:8b:de:cf:08:4d:2a: 51:31:52:89:51:0a:ee:04:19:1d:2b:90:31:e6:c5: 9c:f3:2b:dc:43:e2:30:85:71:7e:49:b6:b9:a4:7d: bf:45:77:67:2a:ae:1e:a6:1f:49:dc:77:09:ae:01: e7:76:78:a2:7f:bb:8f:1e:a3:65:e1:f7:eb:5c:91: 95:c0:92:fd:4b:45:57:96:cb:e6:76:05:6d:62:b6: 3d:27:35:6c:03:2b:72:40:d7:b8:ff:52:7f:df:eb: ff:9d:ef:e8:3b:7a:de:7e:d2:af:01:59:87:f8:49: c6:0f:34:30:9b:0e:40:da:f9:f1:7d:be:3a:bf:a3: 11:52:b4:93:c1:e8:13:e3:77:d9:ed:19:54:e6:41: 9d:ea:f3:68:8a:6c:78:f3:66:fb:90:27:72:27:d8: 39:9d:14:0d:bc:5c:34:30:da:5e:21:f2:0f:8e:1e: b6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:38:0B:91:01:C2:05:8C:B8:72:7D:94:09:BF:80:C6:5A:08:A8:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43e539df-4a4d-445c-bb2f-bb3a08c52cad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.44.32.0/19 Signature Algorithm: sha256WithRSAEncryption 05:6a:23:fe:01:4b:25:47:c5:75:99:13:e9:5d:bb:d9:ed:e9: dd:c2:cb:74:e0:0d:72:4b:ee:68:f2:23:00:1e:87:18:2c:a8: 6c:89:8d:97:c4:08:6d:05:fc:f2:1c:e3:e6:3f:1c:b6:d7:8c: 21:21:8f:e4:75:4f:cc:3a:b8:28:76:b8:9f:63:3d:d3:d4:5a: dc:3c:59:ef:64:0d:37:29:10:ae:61:21:29:a6:61:92:29:87: ad:e4:cc:5e:ce:01:8f:f9:46:e8:81:4c:3c:4e:32:c2:23:14: 22:08:82:fc:b0:19:0c:e7:7e:61:d9:6b:2f:8f:1f:dd:12:bc: 1b:8c:ab:bb:98:4f:59:4c:0e:1d:a0:a4:af:73:7a:fa:cf:5f: 1b:be:18:f8:85:a2:5d:57:ac:38:9c:8a:ca:f4:11:74:8b:20: fe:4f:a2:83:d8:20:33:d3:be:ca:de:bf:1b:4b:93:73:cb:c6: d4:14:0c:14:17:83:f3:53:34:3d:2e:5e:f7:88:f0:f8:cd:59: 62:66:6f:91:24:81:99:c9:74:b0:b2:b7:e0:fc:f1:8b:0a:3a: 45:c0:aa:b7:3b:21:8e:af:f9:7a:d0:96:c1:05:39:36:16:c1: 6d:69:9f:dc:2c:10:3a:10:3f:de:74:50:3b:58:ee:7b:14:94: 01:4e:58:1d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXLegQLuzJfPHS7e1dWyaslC/HckwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMDA1MTUxWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTk2NjE1YmIwYjU4ZWY4MzZmYjZmY2NjYjdhYmNjOWMw NWNhNWExZTczMjAzZTEwMjllYWVlMGZhN2JmZjMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxB8h1YnV3eDCrLX0/ykg+7AE9fWnH/suY3wrCKNQ/jgqF nyNBVNlqK0AKAaPG4a9QZtWDGcfyqpADntlCKhTqUm44KBfkQJPAJbzaD1R/ggJC MovezwhNKlExUolRCu4EGR0rkDHmxZzzK9xD4jCFcX5Jtrmkfb9Fd2cqrh6mH0nc dwmuAed2eKJ/u48eo2Xh9+tckZXAkv1LRVeWy+Z2BW1itj0nNWwDK3JA17j/Un/f 6/+d7+g7et5+0q8BWYf4ScYPNDCbDkDa+fF9vjq/oxFStJPB6BPjd9ntGVTmQZ3q 82iKbHjzZvuQJ3In2DmdFA28XDQw2l4h8g+OHrZ3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUODgLkQHCBYy4cn2UCb+AxloIqJIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzZTUzOWRmLTRhNGQtNDQ1Yy1iYjJmLWJiM2EwOGM1MmNhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVILCAwDQYJKoZIhvcNAQELBQADggEBAAVqI/4BSyVHxXWZE+ldu9nt6d3C y3TgDXJL7mjyIwAehxgsqGyJjZfECG0F/PIc4+Y/HLbXjCEhj+R1T8w6uCh2uJ9j PdPUWtw8We9kDTcpEK5hISmmYZIph63kzF7OAY/5RuiBTDxOMsIjFCIIgvywGQzn fmHZay+PH90SvBuMq7uYT1lMDh2gpK9zevrPXxu+GPiFol1XrDicisr0EXSLIP5P ooPYIDPTvsrevxtLk3PLxtQUDBQXg/NTND0uXveI8PjNWWJmb5EkgZnJdLCyt+D8 8YsKOkXAqrc7IY6v+XrQlsEFOTYWwW1pn9wsEDoQP950UDtY7nsUlAFOWB0= -----END CERTIFICATE-----Generated at Mon Jul 21 18:07:48 2025 by rpki-client