$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b816526-e2a1-4137-8d6a-34a37b0ba6c8.roa File: 6b816526-e2a1-4137-8d6a-34a37b0ba6c8.roa (raw, json) Hash identifier: 3ABsTm7IeQo4wH9dQQtqmlXiOcCPVqsHqKJjKDW1o3g= Subject key identifier: EC:66:9E:62:5C:EE:F3:C7:A5:09:94:B0:27:1C:84:F3:9A:BD:DF:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 45896437F441FACCCDA16D64186148645515562D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b816526-e2a1-4137-8d6a-34a37b0ba6c8.roa Signing time: Sat 12 Jul 2025 00:11:02 +0000 ROA not before: Sat 12 Jul 2025 00:11:02 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 165.70.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:89:64:37:f4:41:fa:cc:cd:a1:6d:64:18:61:48:64:55:15:56:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 12 00:11:02 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=4fb15c4cbc841684e0318667518e9121ccbf0cef5025a3cda0f2dbb86c0468af, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f7:95:b1:7c:55:41:52:38:c6:8c:1c:27:b0: 45:24:af:44:12:19:2d:40:62:f5:4d:51:3d:60:7a: f0:fe:72:3e:b9:61:d9:5e:04:14:43:b9:06:5e:82: a5:e5:c6:53:14:91:b2:34:f0:10:2b:78:ff:be:7a: f8:27:71:53:64:df:59:99:15:4b:7e:71:0e:de:67: 3d:f6:6e:28:1e:ec:4a:a4:30:10:9a:d1:d1:03:ee: db:c1:84:f8:c3:e6:04:f4:a1:c6:9b:1c:07:fb:10: b2:07:62:01:38:f1:da:57:51:22:52:94:ed:cc:fb: ef:ed:d6:2b:5c:26:11:73:62:6b:d6:93:4b:ec:28: 23:da:39:08:91:29:3f:d1:f9:c5:da:dc:0e:0e:4c: e7:b1:e4:c6:6d:76:c9:b1:50:d5:e7:20:c7:80:d9: ee:5d:08:00:c8:83:d0:ed:9b:dc:b3:53:a7:09:54: 13:4c:87:9c:af:f0:05:d8:fb:37:2a:69:d6:1e:f2: 28:f8:56:7c:eb:95:c7:4e:a8:a7:08:0f:07:fb:f6: 76:fe:41:9d:0a:c4:a1:49:9a:43:2d:92:6d:db:f9: 11:7b:3c:c5:92:23:4f:40:32:da:3e:5d:f1:e4:f3: 11:ba:a2:11:aa:e2:f8:ef:f7:08:c9:5b:06:6c:93: f9:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:66:9E:62:5C:EE:F3:C7:A5:09:94:B0:27:1C:84:F3:9A:BD:DF:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b816526-e2a1-4137-8d6a-34a37b0ba6c8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.70.0.0/16 Signature Algorithm: sha256WithRSAEncryption d8:22:12:3a:e4:a5:bc:27:3c:56:64:29:ac:c6:86:dc:e0:a3: c7:5f:c5:54:c1:33:1b:52:8a:15:98:98:d9:f5:bb:8c:33:9e: 26:85:bf:e5:33:87:ca:74:9c:e0:e5:02:47:05:0a:6e:fd:f4: 5b:28:0c:67:ac:0a:30:21:c5:c2:a8:89:4a:79:6d:05:f5:a2: f0:8e:31:4a:3a:73:46:1d:ad:17:5a:95:84:cd:2d:8f:95:95: e7:4b:53:72:f2:48:a7:7a:a3:eb:70:d6:f8:0c:c2:e5:2c:b4: 93:43:ac:fa:52:d6:99:0f:10:77:6d:60:4b:bf:81:51:1a:b9: 9d:b0:8c:d3:af:1d:71:9a:5c:f3:08:fc:ad:dc:8a:ce:bc:65: 1d:2c:f1:ae:b4:0c:bd:ae:27:8e:3c:a9:fe:e5:63:00:c9:18: 08:25:80:99:a2:9a:f7:3f:8a:8b:5c:cc:5e:d8:71:84:fa:48: 8d:63:cc:30:2b:fb:e1:67:10:de:62:87:93:71:e1:ee:81:4f: 32:17:4b:26:5d:6f:1c:69:b5:d0:91:9e:6f:3a:82:c7:60:5a: 5e:d8:4e:e4:a0:6f:0b:88:d9:dc:82:cd:b4:39:7b:a7:ec:29: ef:7c:88:5b:48:ec:61:51:0f:a8:53:96:76:2e:c6:3e:7f:32: 33:e7:45:a0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURYlkN/RB+szNoW1kGGFIZFUVVi0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzEyMDAxMTAyWhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZmIxNWM0Y2JjODQxNjg0ZTAzMTg2Njc1MThlOTEyMWNj YmYwY2VmNTAyNWEzY2RhMGYyZGJiODZjMDQ2OGFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC695WxfFVBUjjGjBwnsEUkr0QSGS1AYvVNUT1gevD+cj65 YdleBBRDuQZegqXlxlMUkbI08BAreP++evgncVNk31mZFUt+cQ7eZz32bige7Eqk MBCa0dED7tvBhPjD5gT0ocabHAf7ELIHYgE48dpXUSJSlO3M++/t1itcJhFzYmvW k0vsKCPaOQiRKT/R+cXa3A4OTOex5MZtdsmxUNXnIMeA2e5dCADIg9Dtm9yzU6cJ VBNMh5yv8AXY+zcqadYe8ij4VnzrlcdOqKcIDwf79nb+QZ0KxKFJmkMtkm3b+RF7 PMWSI09AMto+XfHk8xG6ohGq4vjv9wjJWwZsk/klAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU7GaeYlzu88elCZSwJxyE85q938YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZiODE2NTI2LWUyYTEtNDEzNy04ZDZhLTM0YTM3YjBiYTZjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwClRjANBgkqhkiG9w0BAQsFAAOCAQEA2CISOuSlvCc8VmQprMaG3OCjx1/F VMEzG1KKFZiY2fW7jDOeJoW/5TOHynSc4OUCRwUKbv30WygMZ6wKMCHFwqiJSnlt BfWi8I4xSjpzRh2tF1qVhM0tj5WV50tTcvJIp3qj63DW+AzC5Sy0k0Os+lLWmQ8Q d21gS7+BURq5nbCM068dcZpc8wj8rdyKzrxlHSzxrrQMva4njjyp/uVjAMkYCCWA maKa9z+Ki1zMXthxhPpIjWPMMCv74WcQ3mKHk3Hh7oFPMhdLJl1vHGm10JGebzqC x2BaXthO5KBvC4jZ3ILNtDl7p+wp73yIW0jsYVEPqFOWdi7GPn8yM+dFoA== -----END CERTIFICATE-----Generated at Tue Jul 22 04:39:52 2025 by rpki-client