$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b59b775-668d-4eff-a5fc-13102f0cb266.roa File: 5b59b775-668d-4eff-a5fc-13102f0cb266.roa (raw, json) Hash identifier: bZ8Ap4sUb3jl5iCRnMBNNYX5xwOkY5f701xPhoc5K3w= Subject key identifier: C9:9E:79:AA:8A:53:48:E5:2B:AD:66:DD:F9:79:8A:70:BC:C0:6A:E6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 09CE4D1AC62F902553DE617201F4C87F02525DA9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b59b775-668d-4eff-a5fc-13102f0cb266.roa Signing time: Sat 19 Jul 2025 00:01:09 +0000 ROA not before: Sat 19 Jul 2025 00:01:09 +0000 ROA not after: Sat 23 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.132.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:ce:4d:1a:c6:2f:90:25:53:de:61:72:01:f4:c8:7f:02:52:5d:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 19 00:01:09 2025 GMT Not After : Aug 23 23:59:59 2025 GMT Subject: serialNumber=a1b16bb2cd5b6cae6243a3f305af95e9e6baa7bfc3a56bb5873fa89659970fb2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:12:11:cb:e3:68:c3:65:55:b5:be:34:1c:b4: 11:ac:93:0c:7c:44:88:49:2e:7e:07:79:b3:d6:d5: 82:cf:b4:81:72:7f:7c:d9:c6:0d:75:22:43:44:8a: b1:b9:19:1e:80:9b:1c:84:af:f9:35:09:8c:ee:75: 46:30:cb:63:f4:14:e5:64:de:34:ce:d9:47:f0:0a: 6b:34:58:0b:76:5c:71:84:65:51:c2:3a:2c:6f:15: 00:8e:cc:7d:dc:d8:99:55:d0:e8:47:63:67:95:2f: fe:71:9f:b6:b0:f5:a3:51:0c:05:fe:af:fd:12:93: 03:0b:38:e3:f2:ce:d2:53:2b:b7:68:9f:67:32:c1: 64:86:df:1f:1f:e9:a3:ec:2f:91:d5:38:fb:28:97: 2c:cd:ac:53:b1:44:a2:76:7a:dc:19:e6:a1:94:58: 1d:16:6d:8b:6e:b5:37:05:ae:62:0b:6f:c3:e4:5c: be:49:5b:db:b8:76:ed:7b:72:37:fc:05:0b:79:7e: ad:85:fc:b2:74:0a:bc:06:43:dc:00:f5:e6:7b:94: ae:66:cc:be:69:38:fa:38:2a:6f:d5:39:13:80:9c: 2f:cf:c2:e2:97:df:0b:c2:73:77:80:a0:e4:af:b1: 2c:8e:b2:cb:7a:3d:b0:19:af:05:f9:3a:37:5a:de: a8:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:9E:79:AA:8A:53:48:E5:2B:AD:66:DD:F9:79:8A:70:BC:C0:6A:E6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5b59b775-668d-4eff-a5fc-13102f0cb266.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.132.0.0/16 Signature Algorithm: sha256WithRSAEncryption d8:99:75:67:87:81:2d:26:46:64:7e:d3:a1:9c:b0:47:27:01: b3:ec:15:4c:92:e9:3a:2a:01:f6:e2:81:db:66:ff:60:93:82: c1:b1:72:cb:e2:99:39:12:9f:bc:c5:a9:57:46:68:1e:85:0a: 83:29:7e:48:fc:e8:43:48:0a:e2:4d:54:13:ac:a8:7a:ac:ca: ec:b3:a1:25:55:ec:0c:dd:e2:2b:e4:e4:c2:1d:29:e7:30:4a: 7b:d1:7c:72:5a:9c:39:90:9e:a9:af:e1:d8:d4:95:c8:93:25: 1b:7f:af:ba:1c:c0:16:28:ef:82:94:d1:82:f7:ab:fd:3e:3c: 1d:88:27:f7:86:e7:e8:b2:06:ba:5c:42:78:52:1f:29:d6:6b: 4d:98:61:f5:a0:19:80:eb:d7:cf:54:de:70:ad:c8:04:fa:6a: 92:49:c2:e8:20:55:2e:87:88:01:e8:51:fc:0c:bd:70:f6:42: 96:8c:e2:59:f3:85:9b:92:93:69:80:ed:4e:23:00:73:a7:fd: a1:d8:c9:05:28:5a:d8:ec:76:57:1e:59:81:c3:8a:9d:4f:ab: 7f:a9:8a:ed:b2:83:f1:8e:53:bb:00:b2:e7:8b:ef:8a:2c:80: 75:23:3f:4b:7b:cb:3f:8e:ef:60:a2:6d:23:6d:a9:b6:e2:0a: 15:6a:77:d0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCc5NGsYvkCVT3mFyAfTIfwJSXakwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE5MDAwMTA5WhcNMjUwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMWIxNmJiMmNkNWI2Y2FlNjI0M2EzZjMwNWFmOTVlOWU2 YmFhN2JmYzNhNTZiYjU4NzNmYTg5NjU5OTcwZmIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaEhHL42jDZVW1vjQctBGskwx8RIhJLn4HebPW1YLPtIFy f3zZxg11IkNEirG5GR6AmxyEr/k1CYzudUYwy2P0FOVk3jTO2UfwCms0WAt2XHGE ZVHCOixvFQCOzH3c2JlV0OhHY2eVL/5xn7aw9aNRDAX+r/0SkwMLOOPyztJTK7do n2cywWSG3x8f6aPsL5HVOPsolyzNrFOxRKJ2etwZ5qGUWB0WbYtutTcFrmILb8Pk XL5JW9u4du17cjf8BQt5fq2F/LJ0CrwGQ9wA9eZ7lK5mzL5pOPo4Km/VOROAnC/P wuKX3wvCc3eAoOSvsSyOsst6PbAZrwX5Ojda3qj1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyZ55qopTSOUrrWbd+XmKcLzAauYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzViNTliNzc1LTY2OGQtNGVmZi1hNWZjLTEzMTAyZjBjYjI2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDGhDANBgkqhkiG9w0BAQsFAAOCAQEA2Jl1Z4eBLSZGZH7ToZywRycBs+wV TJLpOioB9uKB22b/YJOCwbFyy+KZORKfvMWpV0ZoHoUKgyl+SPzoQ0gK4k1UE6yo eqzK7LOhJVXsDN3iK+Tkwh0p5zBKe9F8clqcOZCeqa/h2NSVyJMlG3+vuhzAFijv gpTRgver/T48HYgn94bn6LIGulxCeFIfKdZrTZhh9aAZgOvXz1TecK3IBPpqkknC 6CBVLoeIAehR/Ay9cPZCloziWfOFm5KTaYDtTiMAc6f9odjJBSha2Ox2Vx5ZgcOK nU+rf6mK7bKD8Y5TuwCy54vviiyAdSM/S3vLP47vYKJtI22ptuIKFWp30A== -----END CERTIFICATE-----Generated at Tue Jul 22 04:30:43 2025 by rpki-client