$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/942b7589-0ee2-4f4b-b8b4-f938452b1983.roa File: 942b7589-0ee2-4f4b-b8b4-f938452b1983.roa (raw, json) Hash identifier: 2/07LMezsMV6vProH5bBNLQ7PSxGp3XjBM/m1zyp2+0= Subject key identifier: 11:3F:22:77:0A:13:DA:D3:49:30:04:E0:94:FD:4D:29:E4:9D:A1:09 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E7EF4632A5E0B23DCEA3E39CECB61C2B0EC5417 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/942b7589-0ee2-4f4b-b8b4-f938452b1983.roa Signing time: Tue 08 Jul 2025 00:20:25 +0000 ROA not before: Tue 08 Jul 2025 00:20:25 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 108.136.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:7e:f4:63:2a:5e:0b:23:dc:ea:3e:39:ce:cb:61:c2:b0:ec:54:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 00:20:25 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=7df4009776e56143e34a7baa467ce63cf3d6fddb92569e482b9c43936a8342d2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7c:ee:dd:36:3d:ff:1b:da:0e:60:c0:bd:eb: 4a:4c:8b:0d:bd:fb:80:ed:ad:01:6f:6e:d2:8e:9e: f2:fe:96:df:43:50:e0:f3:ce:8c:a6:27:fb:0f:ea: 40:bd:72:24:81:54:44:ec:e4:66:6f:b5:60:22:08: 77:10:70:66:7b:42:97:df:f1:89:37:07:5b:d4:99: b9:1c:2a:53:41:70:98:97:fe:bb:a6:77:55:bd:10: 05:30:90:db:f2:c9:62:39:1f:be:e0:11:b0:f3:aa: c4:cd:33:8c:a3:84:a7:ca:69:11:b3:72:b2:3e:de: 98:a8:49:01:67:f6:ab:e2:6a:36:cf:1c:5b:2a:66: 0f:9a:6f:14:7d:9b:db:bc:17:bb:f2:94:af:11:22: 1f:41:49:ef:71:33:e1:85:df:d5:a7:a1:a1:f3:78: c2:14:78:ed:ac:8a:be:b1:56:74:e0:a5:8f:b0:b3: d5:0a:ff:9b:6c:ac:9c:2e:35:d7:5d:72:0b:ef:32: 1c:f4:a5:83:00:89:20:87:31:f9:7c:90:40:f8:7e: 22:4c:cd:31:ef:75:ea:81:3d:5a:e1:d6:ad:a3:70: c2:c9:95:c4:a7:35:77:41:b8:70:54:d2:58:2c:48: c5:77:69:fd:23:63:5e:01:76:ac:69:9e:85:dd:d6: 2d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:3F:22:77:0A:13:DA:D3:49:30:04:E0:94:FD:4D:29:E4:9D:A1:09 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/942b7589-0ee2-4f4b-b8b4-f938452b1983.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.136.128.0/17 Signature Algorithm: sha256WithRSAEncryption 77:24:70:f1:9d:75:9e:d1:d2:32:d6:80:a9:74:34:90:19:c0: eb:01:9d:c4:fe:b2:6f:c2:b2:e1:cf:b4:76:b4:d6:18:cc:a9: a4:72:15:f3:18:ca:86:21:95:a1:cc:09:40:c5:64:f1:b7:4b: c5:56:55:39:d9:35:2e:0e:30:21:cb:61:50:f5:5a:6d:40:db: 07:d1:bf:04:ab:d5:36:06:d5:5e:86:0d:bd:7f:8b:e6:00:6a: be:96:d0:f0:22:c1:25:88:c1:d4:2c:09:20:e4:01:88:49:91: 3b:f4:8e:c0:fd:aa:08:c1:c1:57:91:6f:a0:35:6c:1f:f4:ae: 6b:77:df:8a:52:b8:10:e4:a9:b4:3b:1a:e4:56:e0:3b:ce:cd: 5c:98:45:e5:fd:8f:48:c6:ac:1e:33:9a:65:90:c2:55:04:39: f1:44:36:68:7c:7e:22:50:d4:fa:6b:08:9e:4c:67:19:0a:bd: 3e:8d:c3:cd:52:5d:28:39:40:2a:5b:a5:69:90:1f:c0:48:9f: de:53:37:c1:11:3f:eb:96:bb:cd:13:4b:46:3d:e1:98:10:fd: b0:f5:b1:14:a7:dd:2b:15:f4:b2:c2:c8:61:c6:2d:55:0e:98: 3d:a2:5a:99:f9:65:e8:e8:b3:3c:71:dc:87:d0:94:28:24:63: bb:a3:e9:e0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTn70YypeCyPc6j45zsthwrDsVBcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MDAyMDI1WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZGY0MDA5Nzc2ZTU2MTQzZTM0YTdiYWE0NjdjZTYzY2Yz ZDZmZGRiOTI1NjllNDgyYjljNDM5MzZhODM0MmQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHfO7dNj3/G9oOYMC960pMiw29+4DtrQFvbtKOnvL+lt9D UODzzoymJ/sP6kC9ciSBVETs5GZvtWAiCHcQcGZ7Qpff8Yk3B1vUmbkcKlNBcJiX /rumd1W9EAUwkNvyyWI5H77gEbDzqsTNM4yjhKfKaRGzcrI+3pioSQFn9qviajbP HFsqZg+abxR9m9u8F7vylK8RIh9BSe9xM+GF39WnoaHzeMIUeO2sir6xVnTgpY+w s9UK/5tsrJwuNdddcgvvMhz0pYMAiSCHMfl8kED4fiJMzTHvdeqBPVrh1q2jcMLJ lcSnNXdBuHBU0lgsSMV3af0jY14BdqxpnoXd1i0LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUET8idwoT2tNJMATglP1NKeSdoQkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0MmI3NTg5LTBlZTItNGY0Yi1iOGI0LWY5Mzg0NTJiMTk4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdsiIAwDQYJKoZIhvcNAQELBQADggEBAHckcPGddZ7R0jLWgKl0NJAZwOsB ncT+sm/CsuHPtHa01hjMqaRyFfMYyoYhlaHMCUDFZPG3S8VWVTnZNS4OMCHLYVD1 Wm1A2wfRvwSr1TYG1V6GDb1/i+YAar6W0PAiwSWIwdQsCSDkAYhJkTv0jsD9qgjB wVeRb6A1bB/0rmt334pSuBDkqbQ7GuRW4DvOzVyYReX9j0jGrB4zmmWQwlUEOfFE Nmh8fiJQ1PprCJ5MZxkKvT6Nw81SXSg5QCpbpWmQH8BIn95TN8ERP+uWu80TS0Y9 4ZgQ/bD1sRSn3SsV9LLCyGHGLVUOmD2iWpn5Zejoszxx3IfQlCgkY7uj6eA= -----END CERTIFICATE-----Generated at Mon Jul 21 18:14:21 2025 by rpki-client