$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a8a26b0-9d95-43e0-86c3-97f47e8b6e2d.roa File: 7a8a26b0-9d95-43e0-86c3-97f47e8b6e2d.roa (raw, json) Hash identifier: cA7vbVpZLg3DVfQVNySCpY/6pGMf/giJpoTGF8aJ8CU= Subject key identifier: D9:B2:A8:44:9A:C0:DB:68:3F:D7:DA:BF:3D:B1:73:B5:5B:E9:D5:9F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D8543DEB37D2A2E676DD1073A2997C7BA1691F6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a8a26b0-9d95-43e0-86c3-97f47e8b6e2d.roa Signing time: Tue 08 Jul 2025 00:10:20 +0000 ROA not before: Tue 08 Jul 2025 00:10:20 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.22.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:85:43:de:b3:7d:2a:2e:67:6d:d1:07:3a:29:97:c7:ba:16:91:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 00:10:20 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=37b6c9087ae3a9b5903df6d8b51c78c53d5b66d1f42dce262de5ae8362761f63, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:54:b3:7b:78:61:5c:03:fe:c1:9e:d7:40:e5: 94:d9:89:2f:48:47:e6:3a:7f:7b:92:6b:dc:bd:89: db:a5:cd:9e:2b:ad:0d:70:76:dc:55:27:1f:a1:73: a0:04:89:d1:01:d2:42:e3:12:32:b6:1f:c2:91:62: da:13:0d:44:98:10:d0:6d:c1:9e:7e:06:85:cf:40: f1:a1:8f:53:29:c2:da:81:bb:f7:d0:8b:db:27:44: da:41:24:9d:7a:10:28:5c:f8:08:ff:1d:27:25:7a: f4:22:8c:f7:52:5b:c5:f0:a3:95:06:f8:2f:14:81: dd:c9:ff:1d:2b:21:cf:78:b6:55:41:ac:5f:30:e8: ef:1e:5b:a6:bb:e4:4d:5d:61:27:e8:4c:8c:7e:59: 18:47:cb:39:29:66:7f:1e:d9:42:28:3a:b7:da:6e: 2d:9d:e4:1b:a7:88:a5:0f:60:fa:cc:3f:8f:1c:68: d9:55:3a:78:11:19:59:57:42:0f:bd:57:99:85:c0: 24:f1:3f:18:89:8c:e6:1e:88:5c:ca:cd:c3:00:21: 63:d9:c9:c7:c3:0e:0e:56:f7:dc:8b:d1:8b:d3:ab: 80:1e:8b:07:dc:37:a4:3f:74:3a:44:94:e5:dc:7b: 3f:96:8c:c2:9d:7c:79:6f:19:ab:3b:0d:70:ad:77: ff:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B2:A8:44:9A:C0:DB:68:3F:D7:DA:BF:3D:B1:73:B5:5B:E9:D5:9F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a8a26b0-9d95-43e0-86c3-97f47e8b6e2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.22.156.0/23 Signature Algorithm: sha256WithRSAEncryption 72:e2:65:2f:42:bc:6f:29:ff:31:28:d1:91:60:cb:8c:e5:1b: 41:57:b7:02:22:95:16:97:b1:93:56:33:ab:3d:81:f2:88:e3: e3:f5:8c:7d:e1:d3:4d:24:e7:c3:e6:13:07:29:dd:71:ba:73: df:99:6b:8f:9f:de:9c:2b:eb:48:e7:61:be:b0:c0:e6:0b:b2: 59:d1:bd:1c:8b:1f:b8:d2:4d:4d:93:47:ed:12:bf:f8:78:13: 13:de:46:f2:01:e5:e8:20:d4:cf:02:53:90:64:e6:05:c2:bc: 9a:3d:2b:5a:0e:c3:2d:c2:90:30:04:af:fc:15:33:fd:8d:2c: 0e:55:69:64:48:36:fa:4c:f2:8a:72:f6:18:24:c0:9e:91:3c: 96:6e:3c:e4:e7:6c:54:15:90:f4:ed:f9:a4:d9:0b:5f:ae:f3: 84:c0:94:24:dd:a7:40:1f:5e:71:4c:67:ec:da:81:ad:c9:de: e0:e2:56:fb:18:d9:cc:c8:39:ce:94:77:7b:04:c6:fd:de:80: c7:68:97:fc:35:25:95:05:9e:ef:19:fc:3a:02:62:6e:5e:e4: c3:6a:67:7c:02:fa:48:be:21:a3:6d:08:28:e2:1d:a2:ee:78: 69:82:f5:66:14:04:6d:39:c6:4d:1c:ef:5a:bb:2d:62:41:32: cf:19:29:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXYVD3rN9Ki5nbdEHOimXx7oWkfYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MDAxMDIwWhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzN2I2YzkwODdhZTNhOWI1OTAzZGY2ZDhiNTFjNzhjNTNk NWI2NmQxZjQyZGNlMjYyZGU1YWU4MzYyNzYxZjYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhVLN7eGFcA/7BntdA5ZTZiS9IR+Y6f3uSa9y9idulzZ4r rQ1wdtxVJx+hc6AEidEB0kLjEjK2H8KRYtoTDUSYENBtwZ5+BoXPQPGhj1MpwtqB u/fQi9snRNpBJJ16EChc+Aj/HSclevQijPdSW8Xwo5UG+C8Ugd3J/x0rIc94tlVB rF8w6O8eW6a75E1dYSfoTIx+WRhHyzkpZn8e2UIoOrfabi2d5BuniKUPYPrMP48c aNlVOngRGVlXQg+9V5mFwCTxPxiJjOYeiFzKzcMAIWPZycfDDg5W99yL0YvTq4Ae iwfcN6Q/dDpElOXcez+WjMKdfHlvGas7DXCtd/81AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2bKoRJrA22g/19q/PbFztVvp1Z8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdhOGEyNmIwLTlkOTUtNDNlMC04NmMzLTk3ZjQ3ZThiNmUyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFrFpwwDQYJKoZIhvcNAQELBQADggEBAHLiZS9CvG8p/zEo0ZFgy4zlG0FX twIilRaXsZNWM6s9gfKI4+P1jH3h000k58PmEwcp3XG6c9+Za4+f3pwr60jnYb6w wOYLslnRvRyLH7jSTU2TR+0Sv/h4ExPeRvIB5egg1M8CU5Bk5gXCvJo9K1oOwy3C kDAEr/wVM/2NLA5VaWRINvpM8opy9hgkwJ6RPJZuPOTnbFQVkPTt+aTZC1+u84TA lCTdp0AfXnFMZ+zaga3J3uDiVvsY2czIOc6Ud3sExv3egMdol/w1JZUFnu8Z/DoC Ym5e5MNqZ3wC+ki+IaNtCCjiHaLueGmC9WYUBG05xk0c71q7LWJBMs8ZKW0= -----END CERTIFICATE-----Generated at Mon Jul 21 23:24:07 2025 by rpki-client