$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/646c43c0-5fb0-40e1-9466-05bdc0cdc3f1.roa File: 646c43c0-5fb0-40e1-9466-05bdc0cdc3f1.roa (raw, json) Hash identifier: w7TNdihqElRG8UaqqzcLC4OE3EaTKqYVN2Twx5LiK50= Subject key identifier: D1:FA:ED:D9:BB:A9:99:C1:BC:04:25:30:63:30:B8:E4:FC:B4:AA:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F1A75D75AF3B7E988BBD817DC07C436802C6183 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/646c43c0-5fb0-40e1-9466-05bdc0cdc3f1.roa Signing time: Tue 08 Jul 2025 00:41:26 +0000 ROA not before: Tue 08 Jul 2025 00:41:26 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 174.129.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 24 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:1a:75:d7:5a:f3:b7:e9:88:bb:d8:17:dc:07:c4:36:80:2c:61:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 00:41:26 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=968f192ca0522cf5a63b896683f6ab3e87d5e273a3bbbc10695820aae61c2415, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a6:9d:2c:be:9c:4f:96:11:40:fc:a4:35:01: 45:9f:3a:a4:da:17:b2:64:f1:ec:28:0e:e8:a5:79: 2c:05:22:14:d6:f2:f3:6e:5e:48:39:e6:58:ef:63: 2b:0e:bd:d7:32:5f:67:f1:18:07:2d:d2:78:86:be: 99:24:3d:47:5e:a3:40:c0:e7:fa:32:dd:1c:9d:ad: 1e:5e:0a:c7:8d:c9:9d:ab:37:f9:b8:e4:b9:ce:f4: e4:b4:81:49:5d:4b:15:b9:58:29:05:fe:3e:8e:0b: 0c:43:87:5f:13:7f:52:70:f6:62:0e:bd:15:cb:57: 6e:07:e6:2a:e1:fa:2c:22:31:92:e1:36:22:f0:5e: 4c:78:4b:46:79:28:00:6c:cd:14:49:89:d6:9e:73: 44:0b:f8:ae:41:fe:5b:68:e8:02:ca:69:62:98:31: 2c:91:86:31:f5:9f:91:54:29:c8:57:d2:9e:5d:bb: 26:1e:a3:98:1b:b1:2f:5c:27:de:da:c3:61:a2:f6: 2c:3d:ae:40:38:a9:25:34:50:e1:d4:a5:c9:7a:90: d6:67:3b:49:d4:5f:26:98:da:bb:d8:b9:a6:f5:fb: 1e:ac:ba:f4:07:ff:ec:f4:bd:e7:43:88:f8:55:c5: 1a:0a:1b:16:ca:59:9e:09:81:a1:49:28:e9:d3:90: ca:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:FA:ED:D9:BB:A9:99:C1:BC:04:25:30:63:30:B8:E4:FC:B4:AA:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/646c43c0-5fb0-40e1-9466-05bdc0cdc3f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 174.129.192.0/18 Signature Algorithm: sha256WithRSAEncryption 80:d0:e1:4e:e8:e2:7e:7f:8b:be:a9:cf:18:f2:93:0c:4a:40: ea:fd:f4:f0:e5:e5:3e:f4:a2:6d:a5:78:93:f0:5e:99:6f:e3: 9a:6b:f4:ec:eb:56:d9:ed:e9:2d:ac:e0:32:3e:56:51:d8:42: 4e:82:d6:06:2a:22:c8:e2:13:8e:22:a1:2b:e1:8a:64:04:80: ef:39:e8:02:04:f8:e3:94:ca:2b:e4:96:1e:e6:46:d9:9d:04: 01:12:ba:8e:b4:2a:f8:13:f7:96:73:38:f1:38:c0:74:cc:4c: 49:a9:2b:a6:1c:ba:9c:11:43:9c:9e:68:b8:7e:8d:de:85:0a: a0:92:2a:bf:24:b4:5f:56:8d:cd:03:45:f9:fa:c6:f4:d7:3d: cb:26:7f:e4:af:3f:48:14:03:44:75:3a:92:39:10:5d:91:5c: 83:6c:dd:93:89:cf:b0:e6:4a:e3:22:45:93:57:0d:1b:42:12: 9f:1d:1c:e5:27:0a:97:2f:ac:92:33:71:12:05:d5:9a:c0:e5: 21:79:3b:77:0d:b9:9f:ab:cc:33:df:c4:8c:32:5c:c7:f4:c2: ce:b7:34:a3:14:93:d5:b7:1a:fc:02:4a:3e:fc:3c:40:84:e1: de:90:07:5e:fa:cd:44:b5:f4:1a:76:e1:ae:f1:04:36:3c:15: ea:44:82:ea -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfxp111rzt+mIu9gX3AfENoAsYYMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MDA0MTI2WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjhmMTkyY2EwNTIyY2Y1YTYzYjg5NjY4M2Y2YWIzZTg3 ZDVlMjczYTNiYmJjMTA2OTU4MjBhYWU2MWMyNDE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvpp0svpxPlhFA/KQ1AUWfOqTaF7Jk8ewoDuileSwFIhTW 8vNuXkg55ljvYysOvdcyX2fxGAct0niGvpkkPUdeo0DA5/oy3RydrR5eCseNyZ2r N/m45LnO9OS0gUldSxW5WCkF/j6OCwxDh18Tf1Jw9mIOvRXLV24H5irh+iwiMZLh NiLwXkx4S0Z5KABszRRJidaec0QL+K5B/lto6ALKaWKYMSyRhjH1n5FUKchX0p5d uyYeo5gbsS9cJ97aw2Gi9iw9rkA4qSU0UOHUpcl6kNZnO0nUXyaY2rvYuab1+x6s uvQH/+z0vedDiPhVxRoKGxbKWZ4JgaFJKOnTkMrtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0frt2bupmcG8BCUwYzC45Py0qgIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY0NmM0M2MwLTVmYjAtNDBlMS05NDY2LTA1YmRjMGNkYzNmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaugcAwDQYJKoZIhvcNAQELBQADggEBAIDQ4U7o4n5/i76pzxjykwxKQOr9 9PDl5T70om2leJPwXplv45pr9OzrVtnt6S2s4DI+VlHYQk6C1gYqIsjiE44ioSvh imQEgO856AIE+OOUyivklh7mRtmdBAESuo60KvgT95ZzOPE4wHTMTEmpK6YcupwR Q5yeaLh+jd6FCqCSKr8ktF9Wjc0DRfn6xvTXPcsmf+SvP0gUA0R1OpI5EF2RXINs 3ZOJz7DmSuMiRZNXDRtCEp8dHOUnCpcvrJIzcRIF1ZrA5SF5O3cNuZ+rzDPfxIwy XMf0ws63NKMUk9W3GvwCSj78PECE4d6QB176zUS19Bp24a7xBDY8FepEguo= -----END CERTIFICATE-----Generated at Wed Jul 23 02:28:26 2025 by rpki-client