$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a856c7b7-80d4-4e5a-9bea-4221c845c1a2.roa File: a856c7b7-80d4-4e5a-9bea-4221c845c1a2.roa (raw, json) Hash identifier: qUwfvE9GlFulo0NoWXzpsraHvBdOB3kOcbrWiu32imU= Subject key identifier: 8A:60:8B:6E:67:94:E2:F5:0C:26:B0:99:44:2D:3C:DD:D1:62:2D:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6A2140183BF604F75A6B0DCCBB1DD6E6B37E8556 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a856c7b7-80d4-4e5a-9bea-4221c845c1a2.roa Signing time: Sat 19 Jul 2025 00:30:32 +0000 ROA not before: Sat 19 Jul 2025 00:30:32 +0000 ROA not after: Sat 23 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.172.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:21:40:18:3b:f6:04:f7:5a:6b:0d:cc:bb:1d:d6:e6:b3:7e:85:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 19 00:30:32 2025 GMT Not After : Aug 23 23:59:59 2025 GMT Subject: serialNumber=588e0d3cf7aa912da7d75c4f763da71c9f367e03a4d5bea123580836e78a9650, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:61:5e:e9:29:ce:51:ec:76:b8:43:01:70:36: 77:5a:90:5a:10:af:0f:93:35:a0:9e:46:ed:48:29: 07:6c:e1:8b:71:72:0a:b8:8e:c0:16:8d:9c:f6:95: 84:32:58:a2:ff:5e:81:9f:9a:19:a7:66:4e:b1:f6: 18:23:e0:d2:a2:69:f3:94:da:a7:8b:16:11:06:0f: 76:54:16:f0:ac:ee:45:e0:c9:96:db:81:7e:78:f1: 32:4f:c7:ea:2a:2d:22:e3:42:9c:49:80:55:53:8a: a1:96:04:67:dc:6e:da:4e:a0:96:e0:ae:b2:2f:56: 94:5e:be:e0:18:fc:07:a5:10:f5:31:85:29:75:12: 8c:b2:c1:de:9e:38:4c:91:a9:e8:c9:15:2d:10:af: 5c:85:05:46:c7:2a:98:03:26:2d:e0:eb:2d:68:29: ba:84:c4:a8:f4:86:ae:07:4b:32:65:25:e5:d0:96: e5:a6:ec:01:46:04:62:c5:4a:07:0d:b9:e8:5e:5a: 4a:a7:90:74:ec:0f:ea:5d:1c:71:2d:15:59:ab:ad: 23:fd:ec:89:97:da:43:a2:bc:77:1b:f0:2e:9e:3c: 99:bc:c7:93:15:7b:ad:c0:df:14:21:45:5b:cd:61: 16:93:0a:5c:79:bc:8a:cd:30:12:85:94:57:ea:85: 02:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:60:8B:6E:67:94:E2:F5:0C:26:B0:99:44:2D:3C:DD:D1:62:2D:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a856c7b7-80d4-4e5a-9bea-4221c845c1a2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.172.0.0/18 Signature Algorithm: sha256WithRSAEncryption 07:b4:80:dc:20:07:39:f1:84:11:90:06:60:36:c5:f8:f0:ef: eb:79:8e:9d:32:00:89:2c:83:56:bc:53:a1:a0:aa:0f:26:85: e2:a7:77:d4:3b:78:a9:90:8d:93:ac:53:8e:0a:35:5f:d4:fc: d2:8b:a1:7e:12:1e:c2:49:03:58:a5:a3:53:77:40:2b:ca:7d: ea:9c:84:31:11:2a:4f:34:38:94:1e:0d:f8:91:be:0c:c5:1c: 80:a1:19:77:ee:b1:cb:a3:1e:02:a0:03:4c:91:79:fa:26:dc: d2:3e:28:32:9a:06:ca:70:65:39:a4:44:80:c5:89:5b:38:6c: 8c:bf:93:ab:3d:e5:b4:93:30:96:23:90:de:6d:62:7e:bc:77: 27:f8:06:26:a0:12:ea:0d:43:5a:07:b8:1c:91:a6:60:02:68: 31:e7:e4:5b:25:ee:20:5b:f5:7b:04:6d:8c:8d:b3:1a:34:a6: 46:1e:33:70:68:90:2e:bc:63:9e:a7:3c:f8:7c:00:fe:6f:2e: 4f:28:e2:9a:86:f7:10:3b:01:73:e5:f9:6f:49:73:bf:09:ec: 2c:a8:34:16:74:37:cf:c8:9e:9f:3d:6b:0b:2c:0c:e2:49:e6: a6:d0:fc:22:65:bf:bb:14:0e:4b:30:cf:91:23:8f:0a:c0:cb: 0d:74:c9:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaiFAGDv2BPdaaw3Mux3W5rN+hVYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE5MDAzMDMyWhcNMjUwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODhlMGQzY2Y3YWE5MTJkYTdkNzVjNGY3NjNkYTcxYzlm MzY3ZTAzYTRkNWJlYTEyMzU4MDgzNmU3OGE5NjUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClYV7pKc5R7Ha4QwFwNndakFoQrw+TNaCeRu1IKQds4Ytx cgq4jsAWjZz2lYQyWKL/XoGfmhmnZk6x9hgj4NKiafOU2qeLFhEGD3ZUFvCs7kXg yZbbgX548TJPx+oqLSLjQpxJgFVTiqGWBGfcbtpOoJbgrrIvVpRevuAY/AelEPUx hSl1Eoyywd6eOEyRqejJFS0Qr1yFBUbHKpgDJi3g6y1oKbqExKj0hq4HSzJlJeXQ luWm7AFGBGLFSgcNueheWkqnkHTsD+pdHHEtFVmrrSP97ImX2kOivHcb8C6ePJm8 x5MVe63A3xQhRVvNYRaTClx5vIrNMBKFlFfqhQKvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUimCLbmeU4vUMJrCZRC083dFiLbgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E4NTZjN2I3LTgwZDQtNGU1YS05YmVhLTQyMjFjODQ1YzFhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZFrAAwDQYJKoZIhvcNAQELBQADggEBAAe0gNwgBznxhBGQBmA2xfjw7+t5 jp0yAIksg1a8U6Ggqg8mheKnd9Q7eKmQjZOsU44KNV/U/NKLoX4SHsJJA1ilo1N3 QCvKfeqchDERKk80OJQeDfiRvgzFHIChGXfuscujHgKgA0yRefom3NI+KDKaBspw ZTmkRIDFiVs4bIy/k6s95bSTMJYjkN5tYn68dyf4BiagEuoNQ1oHuByRpmACaDHn 5Fsl7iBb9XsEbYyNsxo0pkYeM3BokC68Y56nPPh8AP5vLk8o4pqG9xA7AXPl+W9J c78J7CyoNBZ0N8/Inp89awssDOJJ5qbQ/CJlv7sUDkswz5EjjwrAyw10ydY= -----END CERTIFICATE-----Generated at Mon Jul 21 23:23:23 2025 by rpki-client