$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91d0db83-f7cb-4ba4-8999-90629aaf96d6.roa File: 91d0db83-f7cb-4ba4-8999-90629aaf96d6.roa (raw, json) Hash identifier: Z8haUB2Xn/L4WGYRPl29bZawV04RHrDL4RmlIrp3w8w= Subject key identifier: 73:0E:B5:7D:AC:C6:36:F9:EB:DF:32:2D:93:08:8B:7A:19:12:D4:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D26A595B31723E7A7B7599396EFDE2858089B73 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91d0db83-f7cb-4ba4-8999-90629aaf96d6.roa Signing time: Mon 07 Jul 2025 16:22:02 +0000 ROA not before: Mon 07 Jul 2025 16:22:02 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 156.153.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:26:a5:95:b3:17:23:e7:a7:b7:59:93:96:ef:de:28:58:08:9b:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 16:22:02 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=6bd18fd5f8868a473f831e2f0acfdac64e06a4dd94c83be1907e4ac3f997867c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:a9:e9:1e:29:28:ea:01:1e:4d:54:56:57:db: 36:47:f3:30:19:90:2d:25:17:00:27:99:f2:5a:c4: 29:d4:03:34:46:b9:bf:97:d1:62:8d:8e:7a:48:ac: e0:b2:12:f6:71:ae:24:b5:32:93:d8:23:88:b3:37: fd:f0:34:84:3a:fb:15:89:37:e0:cc:fb:d7:c5:44: 54:0f:38:63:42:5f:cc:64:f3:64:b9:ae:f9:4c:f5: c1:f2:89:3e:85:67:b8:6c:3e:40:cc:f0:b6:72:f8: fa:2b:b9:ee:2f:e4:7e:ef:16:60:60:8f:9a:cd:e4: 2a:57:13:eb:13:cd:73:73:73:bc:4b:7c:cc:ea:2f: f6:3c:9c:96:8f:55:71:15:a2:33:17:d2:8c:ca:e7: 0a:9f:89:b2:4b:1c:72:73:a8:8a:a8:0f:43:1c:df: 8d:0e:8d:90:cb:d6:30:20:c5:43:4c:e8:84:60:3a: 3e:65:28:23:ad:de:f8:ad:db:93:cb:c1:6b:f8:52: 89:77:f0:c7:91:a3:72:79:27:48:bd:f9:b2:fa:67: f8:48:ee:49:83:43:94:f6:4a:f1:e5:3c:f4:18:8a: b5:a3:b8:85:b3:9b:b6:07:3d:52:91:e8:d8:90:f3: 90:1a:3d:42:50:f2:70:11:33:ed:dd:de:40:4a:b1: 47:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:0E:B5:7D:AC:C6:36:F9:EB:DF:32:2D:93:08:8B:7A:19:12:D4:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91d0db83-f7cb-4ba4-8999-90629aaf96d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.153.0.0/16 Signature Algorithm: sha256WithRSAEncryption 29:6c:eb:4e:7f:05:7c:a0:8e:76:c9:db:65:72:1b:a3:76:45: 82:89:a9:9b:ae:c1:81:d6:75:7f:b6:ac:58:31:a4:af:e8:d3: f9:1d:8c:20:a4:5b:5f:2b:cc:6d:81:06:f0:78:d3:6d:39:e5: 0c:07:c9:f2:7f:9e:cd:33:b2:53:7d:b6:1a:78:4a:a2:74:84: f5:b1:41:05:f8:9a:c4:dc:c0:6e:99:ee:30:71:9e:f3:8f:16: bf:ab:c6:74:23:2f:e5:97:96:a6:6e:9a:ae:bf:e3:ba:2a:6d: 0e:f5:23:88:db:7a:b5:83:da:15:dc:7d:d9:e8:49:a6:6a:47: d9:65:e2:c2:74:82:63:ff:cb:6e:9e:e5:92:8a:e6:27:7b:fa: 59:7d:76:39:82:3c:b5:f4:d0:d7:05:1c:e5:04:2c:30:d6:52: c9:16:08:0d:a8:17:6e:b0:2f:80:2a:77:12:3c:e3:fc:22:60: 11:4d:ac:12:69:22:94:aa:ff:8a:1d:0d:ee:8c:0d:9d:b0:33: 28:45:d8:7c:c3:10:9f:c8:a1:aa:ad:3f:fb:d4:a3:f8:4b:88: 83:98:97:b6:85:82:c4:89:55:ea:5a:cf:b0:94:5a:56:a7:56: 5d:ee:06:02:0f:14:4e:38:bc:4a:de:1a:fa:14:23:b8:8d:ab: 6e:9f:d3:0f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXSallbMXI+ent1mTlu/eKFgIm3MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTYyMjAyWhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YmQxOGZkNWY4ODY4YTQ3M2Y4MzFlMmYwYWNmZGFjNjRl MDZhNGRkOTRjODNiZTE5MDdlNGFjM2Y5OTc4NjdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNqekeKSjqAR5NVFZX2zZH8zAZkC0lFwAnmfJaxCnUAzRG ub+X0WKNjnpIrOCyEvZxriS1MpPYI4izN/3wNIQ6+xWJN+DM+9fFRFQPOGNCX8xk 82S5rvlM9cHyiT6FZ7hsPkDM8LZy+Porue4v5H7vFmBgj5rN5CpXE+sTzXNzc7xL fMzqL/Y8nJaPVXEVojMX0ozK5wqfibJLHHJzqIqoD0Mc340OjZDL1jAgxUNM6IRg Oj5lKCOt3vit25PLwWv4Uol38MeRo3J5J0i9+bL6Z/hI7kmDQ5T2SvHlPPQYirWj uIWzm7YHPVKR6NiQ85AaPUJQ8nARM+3d3kBKsUctAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcw61fazGNvnr3zItkwiLehkS1LYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkxZDBkYjgzLWY3Y2ItNGJhNC04OTk5LTkwNjI5YWFmOTZkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCcmTANBgkqhkiG9w0BAQsFAAOCAQEAKWzrTn8FfKCOdsnbZXIbo3ZFgomp m67BgdZ1f7asWDGkr+jT+R2MIKRbXyvMbYEG8HjTbTnlDAfJ8n+ezTOyU322GnhK onSE9bFBBfiaxNzAbpnuMHGe848Wv6vGdCMv5ZeWpm6arr/juiptDvUjiNt6tYPa Fdx92ehJpmpH2WXiwnSCY//Lbp7lkormJ3v6WX12OYI8tfTQ1wUc5QQsMNZSyRYI DagXbrAvgCp3Ejzj/CJgEU2sEmkilKr/ih0N7owNnbAzKEXYfMMQn8ihqq0/+9Sj +EuIg5iXtoWCxIlV6lrPsJRaVqdWXe4GAg8UTji8St4a+hQjuI2rbp/TDw== -----END CERTIFICATE-----Generated at Tue Jul 22 05:09:55 2025 by rpki-client