$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79d30b28-58e8-4af5-82fd-ecde44d38fb0.roa File: 79d30b28-58e8-4af5-82fd-ecde44d38fb0.roa (raw, json) Hash identifier: 7+1BBgu3zl0lJ4Ni5XQJv6QusTLAteV/3uZ6Y5EocL0= Subject key identifier: 4C:5E:3A:43:2A:CF:6B:86:5A:0A:3A:A1:AB:18:4A:EB:DC:8B:26:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 630E4F91BB4EBA693F2AF0EEEC0C66BAA76A3A54 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79d30b28-58e8-4af5-82fd-ecde44d38fb0.roa Signing time: Mon 07 Jul 2025 16:11:25 +0000 ROA not before: Mon 07 Jul 2025 16:11:25 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 21664 IP address blocks: 192.43.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:0e:4f:91:bb:4e:ba:69:3f:2a:f0:ee:ec:0c:66:ba:a7:6a:3a:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 16:11:25 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=40152c10ddb0d4e389a9abee4253d58a9dc84c611b7c9ca6ad95e2482382722e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:9c:36:c8:31:8d:2e:aa:84:41:cb:02:3c:92: 3f:ba:14:ed:17:bd:1a:98:4e:ad:85:b5:71:97:f1: bb:10:5f:cd:7d:1b:11:16:00:b5:dd:91:cd:fb:41: 00:4f:91:e0:4b:e4:ff:bb:51:dd:2e:aa:0a:12:c3: 51:28:6c:b0:25:c9:a7:f8:26:d6:f7:fb:ee:ec:70: bd:48:2a:41:58:38:ef:54:87:7f:12:c0:26:02:75: 5b:b1:bd:e5:5f:37:5c:14:b3:f8:da:1f:87:7c:9c: f8:50:09:7d:a2:7d:ec:8e:51:c9:a2:68:27:59:2c: 85:bb:19:56:40:ad:c2:27:d5:92:80:aa:1d:b2:b5: 89:be:f5:9b:d1:b9:ad:13:a9:b7:13:10:e2:f9:e6: 98:51:0d:1e:57:58:ac:21:8d:e0:07:73:e4:87:ce: 7f:8f:7a:b0:cf:88:d4:e6:4f:0a:11:88:df:71:14: 65:a2:72:27:68:a2:83:5c:20:d2:db:5e:49:75:28: b2:c0:c3:54:1d:5b:7f:78:2a:6d:50:67:9c:f2:8b: 60:7e:80:9f:5c:fb:7b:ce:37:cd:9c:8a:3c:41:82: 70:03:4c:3f:48:a5:21:d1:ce:d2:68:a9:7d:2d:4f: ae:9b:80:9c:0a:89:46:30:b3:bb:48:1c:70:44:51: 98:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:5E:3A:43:2A:CF:6B:86:5A:0A:3A:A1:AB:18:4A:EB:DC:8B:26:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79d30b28-58e8-4af5-82fd-ecde44d38fb0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.43.184.0/24 Signature Algorithm: sha256WithRSAEncryption 32:1c:fa:e3:6e:58:fe:d3:1b:fe:67:79:ea:8a:9c:6e:22:21: fe:bb:a1:2e:ba:8c:88:7e:1f:6f:54:ff:22:b8:2f:48:9c:d8: 5f:53:4a:36:25:6e:3d:5c:f8:5b:11:40:87:15:9c:e3:56:e0: a8:50:2f:78:7a:df:15:46:d5:2d:e4:1c:33:e2:09:e0:dc:b2: b3:3a:ba:b9:bf:0d:36:ee:ab:5b:22:f3:ec:ff:a2:a4:df:41: 95:6c:ba:e4:56:81:91:9c:58:98:9e:6d:ab:e4:8b:c9:fe:4a: de:04:88:a8:b2:35:7d:f4:e5:2e:6a:d1:ab:d0:f2:4d:34:af: 98:45:5c:7a:54:01:d0:29:ac:08:4f:f7:57:1d:07:9d:64:3a: a0:14:81:d5:96:4f:f3:ba:36:45:2c:b9:be:ad:01:39:c2:fe: 17:9b:97:63:46:7f:75:5a:11:8b:d4:c6:49:be:df:2e:79:c0: c2:a8:e3:a1:c0:e9:1d:b8:43:c1:19:53:83:f8:b2:3a:03:ed: 47:46:5c:f5:b3:5c:c0:f7:64:88:e5:0e:6a:5c:21:9f:83:d5: 97:36:ac:90:d0:f4:46:9f:0f:fd:e8:4a:a9:6f:d8:38:2b:53: 5f:f3:da:32:2e:72:0d:d1:c7:e7:ef:ec:69:4b:55:07:f2:92: e1:94:d1:44 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYw5PkbtOumk/KvDu7AxmuqdqOlQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTYxMTI1WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDE1MmMxMGRkYjBkNGUzODlhOWFiZWU0MjUzZDU4YTlk Yzg0YzYxMWI3YzljYTZhZDk1ZTI0ODIzODI3MjJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7nDbIMY0uqoRBywI8kj+6FO0XvRqYTq2FtXGX8bsQX819 GxEWALXdkc37QQBPkeBL5P+7Ud0uqgoSw1EobLAlyaf4Jtb3++7scL1IKkFYOO9U h38SwCYCdVuxveVfN1wUs/jaH4d8nPhQCX2ifeyOUcmiaCdZLIW7GVZArcIn1ZKA qh2ytYm+9ZvRua0TqbcTEOL55phRDR5XWKwhjeAHc+SHzn+PerDPiNTmTwoRiN9x FGWicidoooNcINLbXkl1KLLAw1QdW394Km1QZ5zyi2B+gJ9c+3vON82cijxBgnAD TD9IpSHRztJoqX0tT66bgJwKiUYws7tIHHBEUZjDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTF46QyrPa4ZaCjqhqxhK69yLJhAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc5ZDMwYjI4LTU4ZTgtNGFmNS04MmZkLWVjZGU0NGQzOGZiMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAK7gwDQYJKoZIhvcNAQELBQADggEBADIc+uNuWP7TG/5neeqKnG4iIf67 oS66jIh+H29U/yK4L0ic2F9TSjYlbj1c+FsRQIcVnONW4KhQL3h63xVG1S3kHDPi CeDcsrM6urm/DTbuq1si8+z/oqTfQZVsuuRWgZGcWJiebavki8n+St4EiKiyNX30 5S5q0avQ8k00r5hFXHpUAdAprAhP91cdB51kOqAUgdWWT/O6NkUsub6tATnC/heb l2NGf3VaEYvUxkm+3y55wMKo46HA6R24Q8EZU4P4sjoD7UdGXPWzXMD3ZIjlDmpc IZ+D1Zc2rJDQ9EafD/3oSqlv2DgrU1/z2jIucg3Rx+fv7GlLVQfykuGU0UQ= -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:44 2025 by rpki-client