$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/82d7dbf7-e4ac-4069-b055-f84a863c4316.roa File: 82d7dbf7-e4ac-4069-b055-f84a863c4316.roa (raw, json) Hash identifier: vfuKBM3rB2eoAGBzZHjHRGUW1lGL0j94lcb+dE9Cszk= Subject key identifier: AF:15:BA:19:82:25:14:43:86:87:2F:9F:5B:87:8F:11:D2:F1:9A:FC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2AF9B61A31F1A265F0F7657A90D29522CEE550BD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/82d7dbf7-e4ac-4069-b055-f84a863c4316.roa Signing time: Fri 18 Jul 2025 00:40:27 +0000 ROA not before: Fri 18 Jul 2025 00:40:27 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.41.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:f9:b6:1a:31:f1:a2:65:f0:f7:65:7a:90:d2:95:22:ce:e5:50:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:40:27 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=7923fc673c242a4f976cc19521ea2e377071a857ec3b779e8178b93c642d1660, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d4:45:3f:29:f8:cb:53:58:15:15:65:49:eb: 31:a2:78:a0:b2:ac:14:4f:c1:2c:89:31:bc:fe:fe: 44:90:d9:a8:58:da:fe:ad:c1:ea:fa:88:19:7d:d0: b8:f6:06:04:8c:16:c6:c9:85:c4:f4:c7:e7:14:ae: 00:97:71:73:cc:1c:c8:42:fc:3d:c4:a0:b3:6b:7e: ee:4b:53:ca:92:28:b5:6e:d7:55:4a:75:75:3a:43: 6c:c0:00:30:c9:de:60:0d:54:5c:eb:f3:bf:70:3a: 8e:32:d8:4d:58:41:00:db:df:d7:9e:69:ca:67:c0: fb:44:55:89:84:b6:66:59:e5:f5:37:d1:16:a2:95: 9f:d1:92:3c:8b:43:4a:11:df:89:f9:01:08:a2:2d: 1f:01:99:f6:c1:c7:62:ec:e4:8b:4c:9b:01:4e:a7: b8:98:36:4a:20:8d:6f:5a:f0:a2:f1:76:7c:d1:0d: 89:f4:6e:6c:94:7c:a3:88:a7:97:23:bf:94:5e:78: 44:62:c6:9f:21:81:7a:ea:21:84:95:c3:6f:55:00: 8a:66:5a:25:43:a2:d9:eb:2f:a9:51:f7:f5:d9:6a: 8f:2b:e6:f7:73:59:80:bc:13:b8:4b:ff:33:2d:da: c3:89:85:8c:63:73:8c:02:7e:ae:62:64:73:8a:38: 25:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:15:BA:19:82:25:14:43:86:87:2F:9F:5B:87:8F:11:D2:F1:9A:FC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/82d7dbf7-e4ac-4069-b055-f84a863c4316.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.41.0.0/18 Signature Algorithm: sha256WithRSAEncryption bd:be:f6:f2:3b:a7:b5:ad:e0:21:ab:ec:4c:56:ee:b8:37:66: e1:6f:77:ae:c2:fa:ff:24:5a:be:ed:ca:17:41:ce:f4:dc:cc: a2:98:0d:46:ef:f5:0a:71:b4:c3:68:c9:78:80:ea:26:b0:51: 93:de:6d:48:fd:f4:3e:7d:e3:99:01:b3:7d:96:75:e1:9a:0b: c9:fb:68:b8:c5:d7:01:83:0d:63:5c:32:88:2d:b5:11:23:13: e8:8f:84:b7:7e:29:1f:09:ff:cc:57:6f:f2:0c:7f:e4:7e:10: 19:f0:f4:a2:7c:33:ca:19:4e:f7:f5:24:70:d9:5c:34:17:d9: cc:ba:11:1f:2c:a9:cf:6f:ab:d8:46:8c:6c:57:75:13:7d:ff: 32:c3:6d:f3:f8:54:f0:dd:c9:4d:57:47:52:71:4e:e8:b7:48: 2d:d7:d9:d2:d3:69:26:97:e1:b9:41:4e:f7:9f:d8:1e:87:41: 00:95:1a:66:a9:ff:cc:e5:a8:b2:b0:d6:d6:c3:d4:f7:2d:b6: 2e:14:96:22:86:1b:c2:a9:98:76:f8:f3:01:23:21:bc:56:b1: 5a:84:c3:59:2b:fc:58:e3:1a:b2:43:12:9d:f6:66:f1:96:38: 2f:2d:d4:ae:96:65:d3:03:9a:be:fc:4f:d4:0b:2d:55:c0:90: 85:eb:f4:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKvm2GjHxomXw92V6kNKVIs7lUL0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDA0MDI3WhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTIzZmM2NzNjMjQyYTRmOTc2Y2MxOTUyMWVhMmUzNzcw NzFhODU3ZWMzYjc3OWU4MTc4YjkzYzY0MmQxNjYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDL1EU/KfjLU1gVFWVJ6zGieKCyrBRPwSyJMbz+/kSQ2ahY 2v6twer6iBl90Lj2BgSMFsbJhcT0x+cUrgCXcXPMHMhC/D3EoLNrfu5LU8qSKLVu 11VKdXU6Q2zAADDJ3mANVFzr879wOo4y2E1YQQDb39eeacpnwPtEVYmEtmZZ5fU3 0RailZ/RkjyLQ0oR34n5AQiiLR8BmfbBx2Ls5ItMmwFOp7iYNkogjW9a8KLxdnzR DYn0bmyUfKOIp5cjv5ReeERixp8hgXrqIYSVw29VAIpmWiVDotnrL6lR9/XZao8r 5vdzWYC8E7hL/zMt2sOJhYxjc4wCfq5iZHOKOCX9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrxW6GYIlFEOGhy+fW4ePEdLxmvwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgyZDdkYmY3LWU0YWMtNDA2OS1iMDU1LWY4NGE4NjNjNDMxNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZAKQAwDQYJKoZIhvcNAQELBQADggEBAL2+9vI7p7Wt4CGr7ExW7rg3ZuFv d67C+v8kWr7tyhdBzvTczKKYDUbv9QpxtMNoyXiA6iawUZPebUj99D5945kBs32W deGaC8n7aLjF1wGDDWNcMogttREjE+iPhLd+KR8J/8xXb/IMf+R+EBnw9KJ8M8oZ Tvf1JHDZXDQX2cy6ER8sqc9vq9hGjGxXdRN9/zLDbfP4VPDdyU1XR1JxTui3SC3X 2dLTaSaX4blBTvef2B6HQQCVGmap/8zlqLKw1tbD1Pctti4UliKGG8KpmHb48wEj IbxWsVqEw1kr/FjjGrJDEp32ZvGWOC8t1K6WZdMDmr78T9QLLVXAkIXr9KU= -----END CERTIFICATE-----Generated at Mon Jul 21 18:14:30 2025 by rpki-client