$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ffea096-134e-4a4c-ab88-d5d21b886b3f.roa File: 5ffea096-134e-4a4c-ab88-d5d21b886b3f.roa (raw, json) Hash identifier: UPAlAj+ZtCLlhFuruhMTKJ+CgIVb39rzPhQjZsS8vYo= Subject key identifier: 40:B6:26:CA:7A:1C:B4:47:E7:D8:69:1D:0B:CE:A2:65:5D:74:E9:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 26DF67409AD9F9627D1AB6263EB51D9DC498F11A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ffea096-134e-4a4c-ab88-d5d21b886b3f.roa Signing time: Tue 08 Jul 2025 16:01:18 +0000 ROA not before: Tue 08 Jul 2025 16:01:18 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.178.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:df:67:40:9a:d9:f9:62:7d:1a:b6:26:3e:b5:1d:9d:c4:98:f1:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 16:01:18 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=3dc845942ddba7628dd8362a948de07e50bf3f00d7537e34a1853fd219a44d41, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:08:d2:4a:1a:32:a7:b1:09:85:3d:3e:39:f9: d7:49:a3:74:60:a5:72:84:e1:c0:40:dd:9d:a1:8f: b5:45:cf:23:4b:ee:ec:57:e9:77:e8:af:21:4e:60: d4:26:38:6a:2c:7d:63:28:bd:10:07:b1:cd:6b:7f: c0:e0:d5:18:b4:e1:40:c2:c7:f3:e6:a4:4d:06:c7: e9:d2:e9:56:b1:23:b9:9d:d4:39:24:be:ed:1f:db: d6:a6:a5:76:3c:6e:90:ba:6a:5f:b5:48:6c:9e:15: c6:87:77:0a:07:6c:07:fe:22:3d:15:0d:be:e0:0e: ec:9a:45:7c:61:dd:e5:3f:db:c2:93:95:cd:9c:00: 40:13:76:e4:44:4f:24:a4:43:6c:44:d0:d5:1e:5c: 0c:8f:ed:aa:74:1b:ca:7b:a3:82:a6:fe:e0:e5:5b: 08:83:bd:c7:cb:21:b7:e2:eb:61:fd:1c:35:2b:e6: 92:67:31:68:e7:21:ab:8d:5c:8e:78:8b:a7:4a:9d: 21:a3:a3:4e:10:fa:dc:6d:2c:fd:68:c3:ee:aa:96: 1c:5c:bd:c3:10:3e:d0:35:ee:77:50:a5:7a:e8:0a: 6a:df:0d:5b:54:ed:66:c1:72:37:17:8a:8c:07:2e: fc:49:92:05:e4:3e:6a:ab:ef:ce:81:72:7f:e4:33: 70:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B6:26:CA:7A:1C:B4:47:E7:D8:69:1D:0B:CE:A2:65:5D:74:E9:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ffea096-134e-4a4c-ab88-d5d21b886b3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.178.0.0/18 Signature Algorithm: sha256WithRSAEncryption 3d:fd:05:d8:87:e7:75:02:fb:ec:9a:c8:94:1e:2e:94:68:dd: d1:2c:a6:f2:c4:f8:c2:d4:69:58:f5:fd:91:8f:96:9c:05:0f: e0:57:d9:2c:9a:15:b5:6d:a4:8d:ac:82:63:23:0c:ab:84:cf: 67:59:d8:c5:ba:74:a9:3e:f0:c9:b1:43:a4:ff:99:7b:4b:a0: df:0b:8e:76:23:cc:6e:3d:c8:ad:25:52:aa:55:30:6e:80:61: 21:26:29:05:65:15:fc:a7:86:f0:6e:ff:31:8f:29:fd:07:d2: a0:c4:d4:a1:21:74:74:5b:0e:1f:3a:c3:cf:51:94:2e:54:67: 2f:a5:9d:1b:61:7b:5c:70:37:e7:09:51:53:44:66:09:93:fc: 20:f8:c6:63:d7:7e:cb:70:e9:a0:ce:e0:4f:f7:23:e5:24:79: ec:85:7f:0a:a9:e3:1d:48:76:83:c1:76:c8:49:30:36:9a:4a: d3:0a:f6:a9:d3:3a:18:38:a1:02:9b:27:6c:25:bd:21:c5:77: cc:45:e6:e6:1f:6a:1d:36:ae:26:09:29:77:30:25:79:32:d5: ef:f7:79:75:10:84:04:dc:82:4d:67:78:08:6f:46:47:87:53: 18:c7:3d:3f:fe:a9:51:c5:bf:f3:6e:c3:29:ce:ce:ca:20:ed: 8f:e9:96:c9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJt9nQJrZ+WJ9GrYmPrUdncSY8RowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTYwMTE4WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZGM4NDU5NDJkZGJhNzYyOGRkODM2MmE5NDhkZTA3ZTUw YmYzZjAwZDc1MzdlMzRhMTg1M2ZkMjE5YTQ0ZDQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWCNJKGjKnsQmFPT45+ddJo3RgpXKE4cBA3Z2hj7VFzyNL 7uxX6XforyFOYNQmOGosfWMovRAHsc1rf8Dg1Ri04UDCx/PmpE0Gx+nS6VaxI7md 1Dkkvu0f29ampXY8bpC6al+1SGyeFcaHdwoHbAf+Ij0VDb7gDuyaRXxh3eU/28KT lc2cAEATduRETySkQ2xE0NUeXAyP7ap0G8p7o4Km/uDlWwiDvcfLIbfi62H9HDUr 5pJnMWjnIauNXI54i6dKnSGjo04Q+txtLP1ow+6qlhxcvcMQPtA17ndQpXroCmrf DVtU7WbBcjcXiowHLvxJkgXkPmqr786Bcn/kM3BHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQLYmynoctEfn2GkdC86iZV106dcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVmZmVhMDk2LTEzNGUtNGE0Yy1hYjg4LWQ1ZDIxYjg4NmIzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAahsgAwDQYJKoZIhvcNAQELBQADggEBAD39BdiH53UC++yayJQeLpRo3dEs pvLE+MLUaVj1/ZGPlpwFD+BX2SyaFbVtpI2sgmMjDKuEz2dZ2MW6dKk+8MmxQ6T/ mXtLoN8LjnYjzG49yK0lUqpVMG6AYSEmKQVlFfynhvBu/zGPKf0H0qDE1KEhdHRb Dh86w89RlC5UZy+lnRthe1xwN+cJUVNEZgmT/CD4xmPXfstw6aDO4E/3I+UkeeyF fwqp4x1IdoPBdshJMDaaStMK9qnTOhg4oQKbJ2wlvSHFd8xF5uYfah02riYJKXcw JXky1e/3eXUQhATcgk1neAhvRkeHUxjHPT/+qVHFv/NuwynOzsog7Y/plsk= -----END CERTIFICATE-----Generated at Mon Jul 21 18:15:15 2025 by rpki-client