$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d56adf4-4a08-4b7f-b25d-a277cef945a5.roa File: 4d56adf4-4a08-4b7f-b25d-a277cef945a5.roa (raw, json) Hash identifier: jlsw/5NGCb7VrFnkot/nfa3w8dimQmT9PIOhDQ/QO7Q= Subject key identifier: 41:07:96:BF:4D:5A:A0:F5:0A:1A:B2:34:94:6E:82:F0:FB:D8:38:A1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2C5FA8FBEBE040E67AEEBDC6DF4DAC53EF43B65E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d56adf4-4a08-4b7f-b25d-a277cef945a5.roa Signing time: Tue 08 Jul 2025 15:31:47 +0000 ROA not before: Tue 08 Jul 2025 15:31:47 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.21.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:5f:a8:fb:eb:e0:40:e6:7a:ee:bd:c6:df:4d:ac:53:ef:43:b6:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 15:31:47 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=d7e15ef5341d5b3f4b9a03673daec68c8db8de18a5cfce764580d785c64c52ba, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:06:43:cd:0d:23:c5:59:65:9c:11:b0:27:3e: 49:75:c9:36:81:8a:b5:94:25:07:cc:e5:58:76:a9: 9a:f8:cd:2a:79:f6:85:a1:d1:80:d5:5a:2c:fb:6f: 09:69:be:bc:ed:d8:7c:22:2a:39:db:48:f1:45:30: 03:e1:54:1f:d2:c9:10:5f:c8:d1:fc:21:fc:3d:60: 03:c6:37:69:6e:10:59:8e:94:90:7c:80:cb:7d:88: cf:2c:91:54:f1:53:db:ba:8a:58:e5:4f:e7:56:76: 90:1d:96:5c:05:e5:76:1d:be:c1:f6:23:cd:1c:bc: 23:8f:22:7d:1d:0c:62:2c:78:36:40:7e:74:8a:a5: dd:34:47:07:53:0a:38:df:06:f3:1e:0a:ce:7a:11: 72:46:ca:aa:b3:a5:e7:58:4e:5f:61:a3:52:7b:d7: c9:c8:cf:f9:4b:7e:d3:3e:99:05:c9:55:b2:8c:e6: 6d:1f:76:72:50:e7:93:d5:8c:7e:fa:5a:8f:7c:63: 71:dc:1f:f6:39:a5:2d:8e:d3:93:df:8a:af:4f:94: 13:1f:72:00:19:f9:38:61:5d:9f:49:b4:52:3e:a5: 88:30:be:67:43:37:9c:9c:d1:ce:79:e9:39:20:3d: 62:8b:1d:5b:a3:c9:2e:c5:e8:89:b3:a4:33:46:b1: 4b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:07:96:BF:4D:5A:A0:F5:0A:1A:B2:34:94:6E:82:F0:FB:D8:38:A1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d56adf4-4a08-4b7f-b25d-a277cef945a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.64.0/18 Signature Algorithm: sha256WithRSAEncryption 14:6c:15:d5:25:44:9b:e4:54:0e:78:ab:30:09:ef:8a:c4:8c: 43:a0:25:df:e9:dd:3c:f3:f2:4b:a9:3c:d4:42:58:b8:c9:23: 89:58:d6:7e:5a:34:09:8c:38:da:b6:f1:e8:4f:2a:3e:a4:47: d4:e3:b8:78:af:c4:ca:4b:29:4a:f3:7f:6a:59:d1:78:3a:d3: d0:e8:9b:9f:00:85:83:64:58:df:9c:0a:c3:2b:fb:d3:65:80: fb:41:a4:59:16:e6:47:ba:77:22:4f:a3:85:68:11:c6:cf:05: e2:fb:92:21:d0:63:5f:e3:39:bc:29:f4:64:2e:a0:b7:82:96: a5:2b:44:3f:b7:ec:c6:05:aa:54:e3:91:45:60:3e:42:a2:7e: 3e:d1:d3:c2:0d:31:fe:ae:8f:8c:a9:e4:38:ce:b2:ee:42:8d: 94:ff:d4:26:4f:88:2c:83:f8:c7:41:48:55:0d:17:ee:87:8a: f8:00:02:51:24:c1:3f:36:0c:3a:05:fc:02:04:8a:6d:44:9e: 78:ba:45:2d:d7:ef:c2:21:94:ef:c1:2f:43:d5:d0:89:aa:b3: af:43:8c:0d:32:ed:a5:1f:69:28:02:d6:51:75:69:7d:d4:2a: fd:a6:f7:38:67:7e:a3:85:76:8d:09:3e:0b:9a:34:e9:cc:e4: 58:60:07:7e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULF+o++vgQOZ67r3G302sU+9Dtl4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTUzMTQ3WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkN2UxNWVmNTM0MWQ1YjNmNGI5YTAzNjczZGFlYzY4Yzhk YjhkZTE4YTVjZmNlNzY0NTgwZDc4NWM2NGM1MmJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsBkPNDSPFWWWcEbAnPkl1yTaBirWUJQfM5Vh2qZr4zSp5 9oWh0YDVWiz7bwlpvrzt2HwiKjnbSPFFMAPhVB/SyRBfyNH8Ifw9YAPGN2luEFmO lJB8gMt9iM8skVTxU9u6iljlT+dWdpAdllwF5XYdvsH2I80cvCOPIn0dDGIseDZA fnSKpd00RwdTCjjfBvMeCs56EXJGyqqzpedYTl9ho1J718nIz/lLftM+mQXJVbKM 5m0fdnJQ55PVjH76Wo98Y3HcH/Y5pS2O05Pfiq9PlBMfcgAZ+ThhXZ9JtFI+pYgw vmdDN5yc0c556TkgPWKLHVujyS7F6ImzpDNGsUt1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQQeWv01aoPUKGrI0lG6C8PvYOKEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRkNTZhZGY0LTRhMDgtNGI3Zi1iMjVkLWEyNzdjZWY5NDVhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZrFUAwDQYJKoZIhvcNAQELBQADggEBABRsFdUlRJvkVA54qzAJ74rEjEOg Jd/p3Tzz8kupPNRCWLjJI4lY1n5aNAmMONq28ehPKj6kR9TjuHivxMpLKUrzf2pZ 0Xg609Dom58AhYNkWN+cCsMr+9NlgPtBpFkW5ke6dyJPo4VoEcbPBeL7kiHQY1/j Obwp9GQuoLeClqUrRD+37MYFqlTjkUVgPkKifj7R08INMf6uj4yp5DjOsu5CjZT/ 1CZPiCyD+MdBSFUNF+6HivgAAlEkwT82DDoF/AIEim1Enni6RS3X78IhlO/BL0PV 0Imqs69DjA0y7aUfaSgC1lF1aX3UKv2m9zhnfqOFdo0JPguaNOnM5FhgB34= -----END CERTIFICATE-----Generated at Mon Jul 21 18:04:45 2025 by rpki-client