$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7a166f1-f6b0-46bb-9a51-7cd66b150b0b.roa File: a7a166f1-f6b0-46bb-9a51-7cd66b150b0b.roa (raw, json) Hash identifier: fjBbQqQpUtnO7MF7zykzbVLVV4wZfqbT0ALii1vITZk= Subject key identifier: B0:B8:6C:8D:28:7A:E7:33:50:7B:55:AE:6B:94:16:EB:2D:C4:89:3D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FC5F61CDDEAB92179E8524E2C1A01BE3AA9E5C0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7a166f1-f6b0-46bb-9a51-7cd66b150b0b.roa Signing time: Mon 07 Jul 2025 16:11:21 +0000 ROA not before: Mon 07 Jul 2025 16:11:21 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 169.155.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:c5:f6:1c:dd:ea:b9:21:79:e8:52:4e:2c:1a:01:be:3a:a9:e5:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 16:11:21 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=e6797a5363d2e2d52c7cd76f6d408993e8035a880b41acba3a7a7650bc7e2c9c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:5d:8a:05:4a:57:da:db:55:eb:c6:a8:68:95: 88:de:62:3c:ab:5a:a1:bb:47:c4:b0:8c:87:20:84: 2a:5f:76:e6:ba:bc:41:ee:71:a5:1c:d6:02:0e:01: 4c:f6:c1:3e:7a:ee:23:ea:df:98:38:eb:89:7c:08: 6f:12:11:c9:a7:c2:e0:e4:ec:7b:06:e1:9b:a5:c3: 8d:11:26:80:30:bd:1f:f0:dd:16:a3:fc:12:3e:72: 7e:d6:14:8c:d7:6a:cc:fc:b7:60:25:bc:5b:4b:49: 08:18:94:1f:33:43:5e:ed:25:46:b7:db:2f:86:0a: a3:cd:9a:76:c3:50:fe:68:4c:80:1c:d0:e8:e4:96: 63:a4:c0:fd:4e:27:ad:58:cf:0d:f2:d4:cc:ce:99: f8:ee:dd:d8:f5:50:84:83:25:96:b5:52:f8:76:63: 6c:7a:aa:76:c0:aa:0f:4a:39:7b:a4:2e:3d:56:91: 74:6a:70:57:7c:b9:b2:93:33:83:49:b1:c6:48:62: 1d:d5:b2:47:c9:b6:3c:bc:2d:ed:2b:08:7c:0f:a1: e2:03:33:77:99:b2:23:e3:71:3f:62:0d:31:f3:c9: 12:6e:ad:66:a5:54:6b:be:cc:80:d1:33:34:2a:6c: 27:2b:41:75:ab:86:01:e5:48:44:70:e1:8f:64:d2: 12:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:B8:6C:8D:28:7A:E7:33:50:7B:55:AE:6B:94:16:EB:2D:C4:89:3D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7a166f1-f6b0-46bb-9a51-7cd66b150b0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 169.155.88.0/21 Signature Algorithm: sha256WithRSAEncryption 7a:35:a6:62:b6:bd:ef:24:d1:60:aa:9e:03:f0:72:4e:a3:d5: 03:b3:79:31:54:29:fb:29:51:c6:d5:90:d3:7f:98:a3:f6:45: 72:d6:a4:ea:fe:07:b8:56:c0:8f:97:9a:10:8f:ac:7d:bf:d8: e2:0e:66:6d:d9:1e:4d:46:60:7a:1b:22:6e:6a:78:c0:56:fa: 41:bd:12:1a:58:34:91:cc:f6:b2:9d:bf:fe:30:21:83:b6:a9: e7:f5:a4:6c:23:65:b8:c4:0b:63:4c:39:9f:d1:98:f4:3b:37: ec:57:1b:73:16:a0:b8:29:4a:57:cf:d1:8e:29:d3:7b:10:74: 30:04:4f:ed:e9:a7:73:81:fa:63:7a:99:19:df:e2:6c:db:05: 3a:56:59:93:97:7c:dd:43:d1:b2:3a:92:95:0e:ee:08:9b:fb: b8:4c:39:38:65:70:db:37:2d:ea:50:83:64:80:31:6e:df:2b: a9:2d:45:63:17:b0:31:12:d2:64:47:63:85:57:f5:c7:97:b9: e9:b6:c4:67:ad:d4:6d:08:cc:ea:64:16:b0:84:e1:d6:15:87: ee:f0:20:0d:95:6e:e1:1c:3d:f6:21:fe:a9:7b:20:3c:e4:23: 45:cd:8d:c1:fb:70:cf:74:ea:70:c1:0e:a9:a5:0c:44:c1:75: 90:16:09:03 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD8X2HN3quSF56FJOLBoBvjqp5cAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTYxMTIxWhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNjc5N2E1MzYzZDJlMmQ1MmM3Y2Q3NmY2ZDQwODk5M2U4 MDM1YTg4MGI0MWFjYmEzYTdhNzY1MGJjN2UyYzljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJXYoFSlfa21XrxqholYjeYjyrWqG7R8SwjIcghCpfdua6 vEHucaUc1gIOAUz2wT567iPq35g464l8CG8SEcmnwuDk7HsG4Zulw40RJoAwvR/w 3Raj/BI+cn7WFIzXasz8t2AlvFtLSQgYlB8zQ17tJUa32y+GCqPNmnbDUP5oTIAc 0OjklmOkwP1OJ61Yzw3y1MzOmfju3dj1UISDJZa1Uvh2Y2x6qnbAqg9KOXukLj1W kXRqcFd8ubKTM4NJscZIYh3VskfJtjy8Le0rCHwPoeIDM3eZsiPjcT9iDTHzyRJu rWalVGu+zIDRMzQqbCcrQXWrhgHlSERw4Y9k0hLlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsLhsjSh65zNQe1Wua5QW6y3EiT0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3YTE2NmYxLWY2YjAtNDZiYi05YTUxLTdjZDY2YjE1MGIwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOpm1gwDQYJKoZIhvcNAQELBQADggEBAHo1pmK2ve8k0WCqngPwck6j1QOz eTFUKfspUcbVkNN/mKP2RXLWpOr+B7hWwI+XmhCPrH2/2OIOZm3ZHk1GYHobIm5q eMBW+kG9EhpYNJHM9rKdv/4wIYO2qef1pGwjZbjEC2NMOZ/RmPQ7N+xXG3MWoLgp SlfP0Y4p03sQdDAET+3pp3OB+mN6mRnf4mzbBTpWWZOXfN1D0bI6kpUO7gib+7hM OThlcNs3LepQg2SAMW7fK6ktRWMXsDES0mRHY4VX9ceXuem2xGet1G0IzOpkFrCE 4dYVh+7wIA2VbuEcPfYh/ql7IDzkI0XNjcH7cM906nDBDqmlDETBdZAWCQM= -----END CERTIFICATE-----Generated at Tue Jul 22 05:09:26 2025 by rpki-client