$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa File: 54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa (raw, json) Hash identifier: qeOMmA1UWjLgO0b3ci1IM3e5ETLwJH4+yM0z+z1kZGM= Subject key identifier: 47:76:9C:DF:A2:3A:2F:EF:E0:89:D8:9A:16:63:B7:9E:B6:A5:87:D1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49A01C2B5E3176147C58B59DE030A613671FDF1C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa Signing time: Tue 15 Jul 2025 00:00:37 +0000 ROA not before: Tue 15 Jul 2025 00:00:37 +0000 ROA not after: Tue 19 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 138.52.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:a0:1c:2b:5e:31:76:14:7c:58:b5:9d:e0:30:a6:13:67:1f:df:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 15 00:00:37 2025 GMT Not After : Aug 19 23:59:59 2025 GMT Subject: serialNumber=0acb2897a43d6e46397b4d03136cce24386f4901052665eaefd02e6254749a8e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ec:04:34:62:4a:f4:ca:28:d6:ac:02:57:74: 49:41:96:4e:7f:5b:33:11:2a:6f:aa:b3:42:1a:1f: 57:1d:e1:5c:e9:98:4e:22:22:a5:a4:ff:6f:23:44: c1:16:2d:af:e2:97:85:8c:5b:be:5a:aa:db:e0:63: d6:18:a4:f8:58:e1:b1:83:bf:db:48:f6:2a:95:dc: 31:5b:62:26:e3:c2:c4:47:0c:20:ad:3b:50:d1:91: b9:f8:74:e2:69:67:35:6a:f7:4e:84:f6:c7:ec:d2: e8:df:2f:79:15:c8:85:36:4c:4c:6c:28:a9:3b:a9: b5:01:7c:7b:68:2f:50:1a:cd:24:02:2e:0a:f2:56: 9b:84:8c:c7:e3:52:ff:fc:1a:3d:03:6a:d2:fc:8d: 2e:df:78:1b:74:48:77:68:ea:d5:23:6e:0f:03:f9: 13:40:e3:c1:cf:98:28:65:33:22:95:c8:2a:85:df: 11:b2:64:7b:26:53:40:ef:89:c2:ef:7d:74:31:00: 56:cd:c4:86:ca:58:b4:50:c0:0a:85:43:90:4a:b1: 71:fd:5a:9c:57:72:44:7f:af:5c:fc:2c:53:f3:1e: db:be:e3:83:fc:4c:a1:53:dd:57:1d:fc:23:e0:bb: 40:95:48:57:9a:40:95:19:61:33:3a:97:be:9d:63: 64:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:76:9C:DF:A2:3A:2F:EF:E0:89:D8:9A:16:63:B7:9E:B6:A5:87:D1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f4f5bc-30c7-4d20-a9b4-b39626f30e78.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.52.0.0/16 Signature Algorithm: sha256WithRSAEncryption 77:76:f5:80:12:68:5a:aa:7f:f2:dc:2c:db:9b:47:b6:fd:f5: 57:a9:dc:ed:a5:ed:43:1a:03:b1:aa:db:be:5d:96:84:f3:a6: d2:03:08:aa:5c:2a:0e:f6:bd:37:d3:5b:14:e3:74:ce:b4:35: ee:35:63:62:5b:5a:2b:c7:74:37:08:65:05:97:d7:91:7a:38: 3e:c0:d9:58:48:5f:e1:f2:d4:c7:5c:46:55:b1:f0:a6:65:0e: cc:e6:e9:0c:f0:19:e8:b0:da:68:63:7a:4d:12:e1:ac:4c:23: 01:4f:d7:0d:d3:c0:30:5c:f1:f7:c0:b5:56:62:00:0f:d8:34: 7f:94:90:b0:76:5b:31:6c:a8:d4:df:a6:ee:35:b9:a0:17:ac: bb:32:89:81:52:75:12:e0:c8:14:28:93:72:28:e9:0c:15:f2: 37:27:7f:4f:73:5e:02:e4:9a:c7:2d:32:50:c3:ee:de:01:42: 56:e7:d9:c2:d0:7f:65:30:8f:1f:94:0d:f9:64:e9:80:ee:41: 5a:9e:60:e1:d3:0f:53:97:0e:83:c3:13:c9:da:44:35:95:ac: 25:f8:99:ca:00:3e:3c:06:3f:b3:96:9a:be:09:52:9a:05:f8: af:d4:49:bf:ba:5e:44:b0:d1:e1:53:2c:52:05:55:9b:06:02: f1:eb:45:c3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSaAcK14xdhR8WLWd4DCmE2cf3xwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE1MDAwMDM3WhcNMjUwODE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYWNiMjg5N2E0M2Q2ZTQ2Mzk3YjRkMDMxMzZjY2UyNDM4 NmY0OTAxMDUyNjY1ZWFlZmQwMmU2MjU0NzQ5YThlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk7AQ0Ykr0yijWrAJXdElBlk5/WzMRKm+qs0IaH1cd4Vzp mE4iIqWk/28jRMEWLa/il4WMW75aqtvgY9YYpPhY4bGDv9tI9iqV3DFbYibjwsRH DCCtO1DRkbn4dOJpZzVq906E9sfs0ujfL3kVyIU2TExsKKk7qbUBfHtoL1AazSQC LgryVpuEjMfjUv/8Gj0DatL8jS7feBt0SHdo6tUjbg8D+RNA48HPmChlMyKVyCqF 3xGyZHsmU0DvicLvfXQxAFbNxIbKWLRQwAqFQ5BKsXH9WpxXckR/r1z8LFPzHtu+ 44P8TKFT3Vcd/CPgu0CVSFeaQJUZYTM6l76dY2RXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUR3ac36I6L+/gidiaFmO3nralh9EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0ZjRmNWJjLTMwYzctNGQyMC1hOWI0LWIzOTYyNmYzMGU3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCKNDANBgkqhkiG9w0BAQsFAAOCAQEAd3b1gBJoWqp/8tws25tHtv31V6nc 7aXtQxoDsarbvl2WhPOm0gMIqlwqDva9N9NbFON0zrQ17jVjYltaK8d0NwhlBZfX kXo4PsDZWEhf4fLUx1xGVbHwpmUOzObpDPAZ6LDaaGN6TRLhrEwjAU/XDdPAMFzx 98C1VmIAD9g0f5SQsHZbMWyo1N+m7jW5oBesuzKJgVJ1EuDIFCiTcijpDBXyNyd/ T3NeAuSaxy0yUMPu3gFCVufZwtB/ZTCPH5QN+WTpgO5BWp5g4dMPU5cOg8MTydpE NZWsJfiZygA+PAY/s5aavglSmgX4r9RJv7peRLDR4VMsUgVVmwYC8etFww== -----END CERTIFICATE-----Generated at Tue Jul 22 04:30:28 2025 by rpki-client