$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aae2d162-8718-4e30-8f4a-57332cb846c6.roa File: aae2d162-8718-4e30-8f4a-57332cb846c6.roa (raw, json) Hash identifier: xcQ+Smdw0S5KrIe8v7bJVRYgcYwGGQUi7ian2f4hTg0= Subject key identifier: 25:66:06:FC:74:74:1D:A1:12:65:F6:00:A6:E7:0F:B8:E4:55:6D:33 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E02D8F8517D9C41257E60506D3D2014F830192B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aae2d162-8718-4e30-8f4a-57332cb846c6.roa Signing time: Sat 12 Jul 2025 00:31:07 +0000 ROA not before: Sat 12 Jul 2025 00:31:07 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 45.57.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:02:d8:f8:51:7d:9c:41:25:7e:60:50:6d:3d:20:14:f8:30:19:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 12 00:31:07 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=3a5b6eee98424ccd785288094d700480daaaa724f41c52258eda9d7c0f0b3a50, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:97:68:f0:79:61:ed:14:82:64:93:40:26:21: b1:fd:bd:cc:a8:eb:31:61:7b:84:1f:76:97:f4:f3: 78:d6:33:8d:47:ba:74:a2:d2:f0:8f:f0:16:50:07: 7c:0c:d9:9c:11:28:6b:fb:9e:45:1c:b8:f8:76:42: f3:5f:ec:23:69:db:fb:23:4e:84:ad:b7:1a:93:e9: 52:2d:42:c4:e9:14:ee:a0:b4:58:01:e1:ad:d2:52: 1e:7f:bd:88:6a:1f:b7:f9:53:11:0c:ac:52:2a:f6: 99:33:7f:64:2e:49:01:7d:b5:b6:88:88:30:07:4f: 77:fd:c8:02:9d:69:d5:98:19:aa:53:3c:61:ac:e0: 1a:4c:3d:4b:3b:f0:a7:8c:b4:6d:75:fd:2f:a9:72: ac:a9:b6:7e:1d:8b:e8:bb:17:45:33:ac:c3:9b:7e: 96:8f:d3:1a:1e:7b:5c:8f:91:4f:f0:5b:de:90:c4: 8e:ee:14:8d:9d:d6:2b:76:26:a2:d1:ec:44:07:bc: bb:fb:86:1c:ae:ad:9d:e1:e1:6e:a6:e1:b2:70:dc: f9:14:7e:7c:0e:dd:ab:33:e8:52:c2:61:75:94:83: 87:6e:21:40:a6:58:e6:72:1e:77:43:9b:aa:38:3e: af:7d:97:c8:7c:80:99:21:93:21:5f:e9:f7:76:95: 40:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:66:06:FC:74:74:1D:A1:12:65:F6:00:A6:E7:0F:B8:E4:55:6D:33 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aae2d162-8718-4e30-8f4a-57332cb846c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.57.160.0/19 Signature Algorithm: sha256WithRSAEncryption 30:19:fd:f4:17:3b:1a:63:a8:4c:1e:e1:71:82:eb:fb:a9:31: a9:9e:04:87:36:fe:de:f7:4d:dd:66:94:69:8e:bb:bb:61:76: 24:b6:1f:f9:00:ac:91:00:d4:98:08:0b:a5:0a:53:fd:6f:e2: 18:f1:3f:48:24:88:36:6b:0d:2c:32:37:7c:51:63:72:0d:be: 57:c0:f7:ba:f6:d6:42:49:53:79:1d:1f:c1:a3:48:9d:35:0d: 16:ff:e7:3e:6e:22:a1:fc:d4:ce:f8:b8:76:e3:4c:f0:40:59: 5e:5d:49:94:9b:83:e5:6f:2f:1f:97:71:ff:bc:c7:d5:27:4c: f2:01:5f:df:fc:22:3a:fe:88:eb:be:44:de:fe:3b:dd:2f:58: 31:69:bc:75:3b:f7:11:73:c9:c9:66:0c:71:88:2c:ca:bb:b3: 51:50:0f:0e:cc:ec:97:2c:c0:a1:37:e6:85:2e:11:3d:88:60: fb:65:13:95:80:f2:ca:7d:61:3c:7c:7e:74:6f:8b:1d:4d:d5: ef:2a:20:17:33:d4:7d:55:04:49:6a:6e:1c:20:09:94:38:5d: 0b:64:ba:84:db:24:19:a7:ab:07:a3:a1:1b:c9:4f:5a:1e:e2: e1:bc:8b:8f:ba:da:ca:d3:c2:ba:51:ec:a4:bb:ca:60:a6:30: 89:20:04:30 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTgLY+FF9nEElfmBQbT0gFPgwGSswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzEyMDAzMTA3WhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTViNmVlZTk4NDI0Y2NkNzg1Mjg4MDk0ZDcwMDQ4MGRh YWFhNzI0ZjQxYzUyMjU4ZWRhOWQ3YzBmMGIzYTUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCll2jweWHtFIJkk0AmIbH9vcyo6zFhe4Qfdpf083jWM41H unSi0vCP8BZQB3wM2ZwRKGv7nkUcuPh2QvNf7CNp2/sjToSttxqT6VItQsTpFO6g tFgB4a3SUh5/vYhqH7f5UxEMrFIq9pkzf2QuSQF9tbaIiDAHT3f9yAKdadWYGapT PGGs4BpMPUs78KeMtG11/S+pcqyptn4di+i7F0UzrMObfpaP0xoee1yPkU/wW96Q xI7uFI2d1it2JqLR7EQHvLv7hhyurZ3h4W6m4bJw3PkUfnwO3asz6FLCYXWUg4du IUCmWOZyHndDm6o4Pq99l8h8gJkhkyFf6fd2lUDrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJWYG/HR0HaESZfYApucPuORVbTMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FhZTJkMTYyLTg3MTgtNGUzMC04ZjRhLTU3MzMyY2I4NDZjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUtOaAwDQYJKoZIhvcNAQELBQADggEBADAZ/fQXOxpjqEwe4XGC6/upMame BIc2/t73Td1mlGmOu7thdiS2H/kArJEA1JgIC6UKU/1v4hjxP0gkiDZrDSwyN3xR Y3INvlfA97r21kJJU3kdH8GjSJ01DRb/5z5uIqH81M74uHbjTPBAWV5dSZSbg+Vv Lx+Xcf+8x9UnTPIBX9/8Ijr+iOu+RN7+O90vWDFpvHU79xFzyclmDHGILMq7s1FQ Dw7M7JcswKE35oUuET2IYPtlE5WA8sp9YTx8fnRvix1N1e8qIBcz1H1VBElqbhwg CZQ4XQtkuoTbJBmnqwejoRvJT1oe4uG8i4+62srTwrpR7KS7ymCmMIkgBDA= -----END CERTIFICATE-----Generated at Tue Jul 22 05:13:09 2025 by rpki-client