$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/497f0d59-c7e7-4604-a259-3494824b7cae.roa File: 497f0d59-c7e7-4604-a259-3494824b7cae.roa (raw, json) Hash identifier: 519OKXli8O9az8WmrwKRV6a2HNfYYOHTUZ3DdXR8u1I= Subject key identifier: 0E:2A:14:CF:A2:01:24:63:37:E9:DA:FA:B1:76:49:6A:85:B5:21:4B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CDEC7FA7661916082640946ACF7BDD775A09A3D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/497f0d59-c7e7-4604-a259-3494824b7cae.roa Signing time: Tue 08 Jul 2025 00:41:58 +0000 ROA not before: Tue 08 Jul 2025 00:41:58 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.193.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:de:c7:fa:76:61:91:60:82:64:09:46:ac:f7:bd:d7:75:a0:9a:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 00:41:58 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=23ee59006f71e896f8f187ca62052f3e26279c5739e6fdee439504842e6d590a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:31:cf:ad:f5:4d:d1:da:7d:f2:f7:6b:8c:43: 30:d1:70:19:17:6f:38:8a:40:50:cd:17:ed:03:6d: b7:b8:0a:1c:e3:53:8e:19:70:3c:74:92:b5:17:7a: 07:b8:c7:46:9b:85:6b:5c:9e:fe:87:18:82:77:54: 4d:71:3b:a0:62:e4:43:d7:2a:50:67:6b:1e:ea:cd: 47:ed:81:ee:13:a3:01:2d:7c:d3:7d:3b:4c:6f:71: 72:dc:b6:be:ee:23:21:2b:70:8d:6e:7c:a8:3f:0c: 9a:f7:98:fa:34:48:e0:b7:3c:df:21:c8:9e:99:12: 6a:9b:b6:6f:0d:98:9a:c8:f8:bd:d8:c4:f1:03:b7: 4f:21:a3:70:06:04:5c:78:8f:91:bd:36:7f:62:19: df:6b:0e:9e:76:f7:21:03:cd:57:3d:45:fc:20:06: 04:3a:7b:8b:70:d0:96:62:1a:a1:ee:3a:a9:42:cb: 81:9f:fb:db:8b:e1:a7:07:d9:08:20:c4:23:06:67: 07:f6:9d:ca:07:91:ca:db:28:ae:6a:cb:79:c5:db: f0:1b:bd:f6:f8:b4:e7:a2:4b:45:e2:4b:1e:ec:94: 9f:d2:f7:d0:de:b5:1f:5e:ee:53:cb:32:e4:d3:91: a9:25:e1:a9:19:83:60:99:c5:97:89:eb:6e:a9:e6: 1c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:2A:14:CF:A2:01:24:63:37:E9:DA:FA:B1:76:49:6A:85:B5:21:4B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/497f0d59-c7e7-4604-a259-3494824b7cae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.193.0.0/16 Signature Algorithm: sha256WithRSAEncryption b0:d5:fc:0c:14:c9:54:f9:73:37:ae:26:ef:e3:b3:b5:b9:a1: 81:5c:77:62:73:73:da:bc:ed:a0:1a:f5:57:58:e2:df:a6:84: ce:73:d2:9f:59:ed:72:fb:04:84:c9:fe:1e:29:1f:5a:3b:e2: b2:4d:59:d8:00:1c:1f:cb:94:88:6a:66:02:ed:b3:0b:db:3e: 8b:86:63:71:2c:2c:01:25:d9:30:30:ae:2d:3b:04:0a:bb:80: 32:9c:46:2e:13:ea:d4:c8:2c:24:be:f4:e1:28:14:17:46:55: f3:6b:0c:c3:a0:93:01:50:dc:2b:d1:00:ae:c9:17:e1:2f:d0: e6:97:22:ee:99:af:6c:24:84:5b:ac:a3:13:8c:db:e5:19:ce: 46:ce:e4:ab:59:e7:77:7c:bc:5d:63:6b:28:6f:3e:24:3d:6e: 81:69:54:09:6c:03:9b:6e:9a:a8:20:e6:ad:44:e1:9f:ea:5b: 7e:6f:7f:2d:fa:2c:53:6b:db:70:ae:71:0b:40:c5:28:f6:cd: 63:93:2f:d7:24:75:8c:14:5e:f1:2d:d2:c7:91:45:fd:11:92: f2:dd:f2:a1:91:20:9a:14:f0:45:6d:52:78:32:ec:b4:dc:f9: 46:9e:47:db:9e:d9:58:b2:e8:e9:89:46:28:67:3d:3c:75:e8: ca:39:82:93 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbN7H+nZhkWCCZAlGrPe913Wgmj0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MDA0MTU4WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyM2VlNTkwMDZmNzFlODk2ZjhmMTg3Y2E2MjA1MmYzZTI2 Mjc5YzU3MzllNmZkZWU0Mzk1MDQ4NDJlNmQ1OTBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRMc+t9U3R2n3y92uMQzDRcBkXbziKQFDNF+0Dbbe4Chzj U44ZcDx0krUXege4x0abhWtcnv6HGIJ3VE1xO6Bi5EPXKlBnax7qzUftge4TowEt fNN9O0xvcXLctr7uIyErcI1ufKg/DJr3mPo0SOC3PN8hyJ6ZEmqbtm8NmJrI+L3Y xPEDt08ho3AGBFx4j5G9Nn9iGd9rDp529yEDzVc9RfwgBgQ6e4tw0JZiGqHuOqlC y4Gf+9uL4acH2QggxCMGZwf2ncoHkcrbKK5qy3nF2/Abvfb4tOeiS0XiSx7slJ/S 99DetR9e7lPLMuTTkakl4akZg2CZxZeJ626p5hyFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDioUz6IBJGM36dr6sXZJaoW1IUswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ5N2YwZDU5LWM3ZTctNDYwNC1hMjU5LTM0OTQ4MjRiN2NhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwChwTANBgkqhkiG9w0BAQsFAAOCAQEAsNX8DBTJVPlzN64m7+OztbmhgVx3 YnNz2rztoBr1V1ji36aEznPSn1ntcvsEhMn+HikfWjvisk1Z2AAcH8uUiGpmAu2z C9s+i4ZjcSwsASXZMDCuLTsECruAMpxGLhPq1MgsJL704SgUF0ZV82sMw6CTAVDc K9EArskX4S/Q5pci7pmvbCSEW6yjE4zb5RnORs7kq1nnd3y8XWNrKG8+JD1ugWlU CWwDm26aqCDmrUThn+pbfm9/LfosU2vbcK5xC0DFKPbNY5Mv1yR1jBRe8S3Sx5FF /RGS8t3yoZEgmhTwRW1SeDLstNz5Rp5H257ZWLLo6YlGKGc9PHXoyjmCkw== -----END CERTIFICATE-----Generated at Mon Jul 21 18:14:23 2025 by rpki-client