$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/44b2496f-270e-4583-8750-8d879994d57d.roa File: 44b2496f-270e-4583-8750-8d879994d57d.roa (raw, json) Hash identifier: Z11GdjWFdqhaE/935Yrt1jKBiOXvZX9M/e4OS05cP3o= Subject key identifier: EF:B7:27:C5:EA:70:9E:F7:8F:7C:35:43:7A:CA:C0:8D:BE:B9:6E:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B0887E2405628AA05CDAD181798A432607BFD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/44b2496f-270e-4583-8750-8d879994d57d.roa Signing time: Fri 18 Jul 2025 00:40:51 +0000 ROA not before: Fri 18 Jul 2025 00:40:51 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 72.41.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:08:87:e2:40:56:28:aa:05:cd:ad:18:17:98:a4:32:60:7b:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:40:51 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=8112af38cbe87bf2a59aec5c5f55df67eeb5001900b2979b342dc1bff936cb04, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7c:23:bf:80:ac:a2:71:fc:1c:be:83:4b:dc: b1:7d:07:7d:51:7a:1d:bb:6c:e6:02:4e:10:b6:d3: 0b:b0:ca:7b:96:d1:57:d2:51:7c:79:92:88:b3:a4: c5:b5:79:4c:94:10:08:fb:9a:a6:a8:91:ef:13:74: 59:87:d9:45:a9:c4:02:3d:c4:fa:3d:18:33:cc:84: 3a:da:55:75:ef:ab:6f:69:4a:57:5e:3d:55:6f:90: 73:89:d7:5d:25:ad:c8:80:b0:ec:0b:ed:7c:eb:74: 42:a0:ab:09:8a:3b:df:8b:b7:41:88:c5:42:df:f5: 6c:5e:50:c3:1e:61:57:4e:16:95:66:83:af:3b:4e: 76:f4:ab:2b:38:c9:ab:f7:75:9f:ab:12:36:a3:77: 3d:22:78:82:e1:68:43:09:cd:cb:8f:b4:da:04:10: 37:23:b7:2b:a0:7c:64:3f:13:82:eb:75:0b:35:1b: 52:1c:3c:05:0f:fb:31:83:24:5e:0b:d8:0f:00:ad: 55:14:95:43:a2:89:66:08:61:67:0c:c8:8b:8f:c6: 93:de:ff:f5:89:f6:f5:05:1a:00:db:1d:b3:52:53: 4c:b5:57:b9:7e:d3:89:a1:c3:d3:0e:cc:4c:23:ff: 65:e4:95:be:c7:30:b5:80:d7:d4:37:27:ca:41:f0: 58:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:B7:27:C5:EA:70:9E:F7:8F:7C:35:43:7A:CA:C0:8D:BE:B9:6E:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/44b2496f-270e-4583-8750-8d879994d57d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.41.0.0/20 Signature Algorithm: sha256WithRSAEncryption b2:97:1a:ec:86:a2:f3:e0:c9:3e:0c:1f:23:8f:08:01:34:74: 74:7b:27:44:5b:b0:0c:0e:2c:ce:67:64:05:e9:d6:f5:a6:94: a0:a6:0e:8c:84:19:ca:02:a3:20:5a:cb:61:c2:b7:d6:97:54: f8:eb:ef:de:16:34:67:0f:3f:bb:e0:03:4b:dd:d3:26:11:77: fd:6a:a4:bc:5a:d8:4b:ac:f6:e1:e6:7d:a5:0c:7c:ee:6f:a0: 00:b3:5e:55:cb:df:fc:ea:1b:72:5e:4f:70:03:6f:b7:4e:07: d6:a4:00:49:53:b8:c1:a5:8e:a9:4c:4c:88:c1:af:aa:35:45: fb:2a:29:27:c9:4a:d0:e0:3c:2e:44:31:4f:d6:76:6a:0b:54: 45:e4:8a:c7:46:9f:95:5e:fb:e2:92:07:a2:d2:11:36:85:e5: 5e:91:cb:b8:eb:cf:5a:27:68:7e:73:34:bd:a4:3b:35:ab:7e: 47:0f:7b:57:bf:55:f5:9e:6a:56:5c:1a:32:5f:f6:64:ef:54: 44:d6:fe:a9:77:e0:bd:a6:5c:d8:a2:99:75:dc:c7:ec:fc:96: 66:e5:1a:0f:84:6f:f7:38:27:ac:a1:69:a1:54:76:45:5a:1b: 56:25:b2:51:a7:22:82:75:77:e1:a7:c0:d8:d3:1d:4d:67:ba: e3:78:f2:3d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITawiH4kBWKKoFza0YF5ikMmB7/TANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA3MTgwMDQwNTFaFw0yNTA4MjIyMzU5NTla MHoxSTBHBgNVBAUTQDgxMTJhZjM4Y2JlODdiZjJhNTlhZWM1YzVmNTVkZjY3ZWVi NTAwMTkwMGIyOTc5YjM0MmRjMWJmZjkzNmNiMDQxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKt8I7+ArKJx/By+g0vcsX0HfVF6Hbts5gJOELbTC7DKe5bR V9JRfHmSiLOkxbV5TJQQCPuapqiR7xN0WYfZRanEAj3E+j0YM8yEOtpVde+rb2lK V149VW+Qc4nXXSWtyICw7AvtfOt0QqCrCYo734u3QYjFQt/1bF5Qwx5hV04WlWaD rztOdvSrKzjJq/d1n6sSNqN3PSJ4guFoQwnNy4+02gQQNyO3K6B8ZD8Tgut1CzUb Uhw8BQ/7MYMkXgvYDwCtVRSVQ6KJZghhZwzIi4/Gk97/9Yn29QUaANsds1JTTLVX uX7TiaHD0w7MTCP/ZeSVvscwtYDX1DcnykHwWP8CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBTvtyfF6nCe9498NUN6ysCNvrludjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvNDRiMjQ5NmYtMjcwZS00NTgzLTg3NTAtOGQ4Nzk5OTRkNTdkLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBEgpADANBgkqhkiG9w0BAQsFAAOCAQEAspca7Iai8+DJPgwfI48IATR0dHsn RFuwDA4szmdkBenW9aaUoKYOjIQZygKjIFrLYcK31pdU+Ovv3hY0Zw8/u+ADS93T JhF3/WqkvFrYS6z24eZ9pQx87m+gALNeVcvf/Oobcl5PcANvt04H1qQASVO4waWO qUxMiMGvqjVF+yopJ8lK0OA8LkQxT9Z2agtUReSKx0aflV774pIHotIRNoXlXpHL uOvPWidofnM0vaQ7Nat+Rw97V79V9Z5qVlwaMl/2ZO9URNb+qXfgvaZc2KKZddzH 7PyWZuUaD4Rv9zgnrKFpoVR2RVobViWyUacignV34afA2NMdTWe643jyPQ== -----END CERTIFICATE-----Generated at Tue Jul 22 05:12:58 2025 by rpki-client