$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76aa40ec-69b9-44f1-9209-484f2d282a6a.roa File: 76aa40ec-69b9-44f1-9209-484f2d282a6a.roa (raw, json) Hash identifier: /O9Lnwa9fwWiBG1dkEBtk5YHwR4e67tRIi3FZ6bkdyg= Subject key identifier: C2:75:22:9E:CC:B9:17:A2:D6:35:1A:25:95:4B:9C:04:3F:7D:11:6F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 573DAD9BF637507EBD068024DCB66611027BD81C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76aa40ec-69b9-44f1-9209-484f2d282a6a.roa Signing time: Tue 08 Jul 2025 15:00:26 +0000 ROA not before: Tue 08 Jul 2025 15:00:26 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 157.175.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 24 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:3d:ad:9b:f6:37:50:7e:bd:06:80:24:dc:b6:66:11:02:7b:d8:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 15:00:26 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=b3659528a0bb6a38bb719f9f429ae6b5888170f65d8d7a4be67b2529ed5e8092, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:69:c2:c5:71:51:ab:1d:ef:cd:ca:42:a7:b9: 8b:f0:fc:f4:3d:09:45:ff:a2:08:34:fa:0b:98:cc: 71:82:42:af:04:70:05:2d:dc:15:0a:25:1d:ea:61: bf:c9:e9:19:b0:50:bc:59:83:b1:0c:cd:29:af:a3: 86:f9:96:ae:a7:11:88:d0:07:95:73:d0:2b:ae:21: db:dd:38:9c:7f:f5:aa:1e:20:c8:e8:ee:20:9d:88: 74:19:78:54:b5:bc:d0:ef:6d:dc:d9:8f:1e:74:42: 14:73:76:ac:70:10:48:ab:aa:fc:72:8c:68:42:b6: 5d:11:10:e4:8c:e6:b4:0f:f4:ec:75:04:e7:f0:95: d9:40:79:e1:44:f6:28:1c:25:9b:be:37:86:09:07: ac:11:7e:4c:ef:0b:d7:e0:c3:9c:c8:f7:e1:97:8e: 90:a9:d3:de:d9:bf:ed:8f:17:47:a2:88:52:b7:c0: 45:17:e4:11:15:89:3a:30:f3:01:2c:3c:70:a7:eb: 01:0c:df:fc:03:76:42:68:4a:a2:9f:a0:91:b8:96: 4d:96:57:5e:30:c1:87:5c:19:15:11:9b:f3:c7:77: 60:7d:99:76:f3:8d:8f:2b:20:f3:2e:8a:c8:8c:2a: 09:95:e0:31:6c:3f:24:3c:d9:e2:72:02:05:19:cb: c2:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:75:22:9E:CC:B9:17:A2:D6:35:1A:25:95:4B:9C:04:3F:7D:11:6F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76aa40ec-69b9-44f1-9209-484f2d282a6a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.175.128.0/17 Signature Algorithm: sha256WithRSAEncryption d4:13:0c:a5:e4:24:e5:de:5e:e4:b7:ef:c9:29:5a:c1:22:84: 22:7b:5e:83:66:9b:f3:c0:5b:42:de:1f:91:ec:71:c8:c3:11: 1e:b1:f4:25:7c:9b:99:a5:43:00:8d:e3:92:b8:da:e0:78:28: 68:95:55:2a:6c:8f:9c:66:a5:33:b3:8e:68:e2:ee:77:fa:fd: d7:4d:34:35:65:61:1d:43:f0:31:f6:92:92:7a:c1:66:23:72: 75:67:94:5f:83:6c:fd:50:bc:18:49:e7:ee:4f:b4:2d:87:49: 60:a9:16:f8:15:71:0a:2a:cc:26:dd:4b:6f:f1:68:89:9f:ae: 47:0c:c2:ad:7b:21:11:66:58:ee:13:6c:c5:0b:92:3b:b3:30: de:32:d9:68:06:33:ba:48:a1:4e:f2:78:30:64:81:fe:3b:ec: 05:78:4c:b9:30:6f:da:34:e3:05:31:eb:2a:5d:14:2a:cd:5b: 59:2f:5c:87:1d:8f:cf:7c:1b:a7:be:70:63:9f:b1:0c:0a:37: af:64:10:cc:40:30:cf:09:62:62:c4:c1:9a:94:bd:2d:17:28: 4d:e0:e1:5d:fe:fb:20:e6:f5:50:01:a4:1c:d0:10:ee:b5:c8: 08:fd:f4:b9:1c:c2:bd:d1:6f:2b:66:97:95:23:c5:c5:c5:d9: 63:c8:4e:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVz2tm/Y3UH69BoAk3LZmEQJ72BwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTUwMDI2WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzY1OTUyOGEwYmI2YTM4YmI3MTlmOWY0MjlhZTZiNTg4 ODE3MGY2NWQ4ZDdhNGJlNjdiMjUyOWVkNWU4MDkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYacLFcVGrHe/NykKnuYvw/PQ9CUX/ogg0+guYzHGCQq8E cAUt3BUKJR3qYb/J6RmwULxZg7EMzSmvo4b5lq6nEYjQB5Vz0CuuIdvdOJx/9aoe IMjo7iCdiHQZeFS1vNDvbdzZjx50QhRzdqxwEEirqvxyjGhCtl0REOSM5rQP9Ox1 BOfwldlAeeFE9igcJZu+N4YJB6wRfkzvC9fgw5zI9+GXjpCp097Zv+2PF0eiiFK3 wEUX5BEViTow8wEsPHCn6wEM3/wDdkJoSqKfoJG4lk2WV14wwYdcGRURm/PHd2B9 mXbzjY8rIPMuisiMKgmV4DFsPyQ82eJyAgUZy8KVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwnUinsy5F6LWNRollUucBD99EW8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc2YWE0MGVjLTY5YjktNDRmMS05MjA5LTQ4NGYyZDI4MmE2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAedr4AwDQYJKoZIhvcNAQELBQADggEBANQTDKXkJOXeXuS378kpWsEihCJ7 XoNmm/PAW0LeH5HsccjDER6x9CV8m5mlQwCN45K42uB4KGiVVSpsj5xmpTOzjmji 7nf6/ddNNDVlYR1D8DH2kpJ6wWYjcnVnlF+DbP1QvBhJ5+5PtC2HSWCpFvgVcQoq zCbdS2/xaImfrkcMwq17IRFmWO4TbMULkjuzMN4y2WgGM7pIoU7yeDBkgf477AV4 TLkwb9o04wUx6ypdFCrNW1kvXIcdj898G6e+cGOfsQwKN69kEMxAMM8JYmLEwZqU vS0XKE3g4V3++yDm9VABpBzQEO61yAj99Lkcwr3Rbytml5UjxcXF2WPITio= -----END CERTIFICATE-----Generated at Wed Jul 23 02:28:33 2025 by rpki-client