$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b077c7f9-666e-471a-9d7f-878e8767a601.roa File: b077c7f9-666e-471a-9d7f-878e8767a601.roa (raw, json) Hash identifier: FitczcMBNS3lB0WAXmRRpr7hhVXtEVuEPyhvlK45tBs= Subject key identifier: B4:E7:75:85:5D:D6:E5:D6:75:9B:BD:41:7B:DC:73:C8:88:23:B9:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D447081144F3F7B3E94BADA5B1B9E99C32C9830 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b077c7f9-666e-471a-9d7f-878e8767a601.roa Signing time: Tue 08 Jul 2025 15:00:16 +0000 ROA not before: Tue 08 Jul 2025 15:00:16 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.20.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:44:70:81:14:4f:3f:7b:3e:94:ba:da:5b:1b:9e:99:c3:2c:98:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 15:00:16 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=36ef9529f5271bafd4230b1fa5d5f8874920736f02ce7681ac5bee94a15881ab, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2d:e7:eb:13:31:de:a4:57:4c:e3:e9:a5:67: c1:f2:73:83:b3:86:b0:69:ec:66:83:df:a8:c0:54: cf:c9:40:34:6b:83:ba:9e:71:ac:e1:f6:22:ea:61: ec:d3:dd:95:71:30:06:08:80:7d:c8:7a:bd:fa:47: a7:d5:73:92:b1:40:d9:d6:33:dc:51:bf:20:5f:fd: 26:3e:f9:3a:92:ba:e3:54:f1:9f:3d:e0:73:8b:f0: 9d:17:0e:94:90:22:55:e2:12:a6:52:8f:87:c1:48: 29:a5:d8:29:01:e1:6d:18:ec:67:22:1d:02:4b:97: 66:fe:8d:67:00:fb:ec:43:06:d9:f4:f3:54:e3:1a: 4b:a6:c4:fd:9a:0f:d8:5f:1f:eb:60:46:1b:68:89: 5d:68:3b:13:07:30:98:33:d5:e8:94:14:73:17:d3: 2c:ab:23:af:61:cf:29:23:b9:64:57:4a:ad:bd:45: 5d:0d:6d:63:d2:71:7e:41:a8:f1:5b:66:d3:e2:d2: 2e:32:51:14:61:a9:0e:ea:16:22:a0:c5:2a:2c:b4: b1:d2:40:66:ae:2f:ac:4d:1c:a6:c4:63:39:95:94: e1:7e:32:eb:7c:d4:51:92:1b:0a:47:7e:55:9c:ba: ac:22:42:b6:c2:8a:75:1e:12:01:7e:79:d6:32:42: 76:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:E7:75:85:5D:D6:E5:D6:75:9B:BD:41:7B:DC:73:C8:88:23:B9:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b077c7f9-666e-471a-9d7f-878e8767a601.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption a5:ea:9b:57:05:93:91:f5:d4:68:ad:27:5d:0a:c9:f5:63:fc: f9:c2:cd:36:98:39:cf:f9:7d:94:5a:45:b2:a7:b0:ca:d9:8f: ec:0e:18:10:e2:ab:20:09:34:6e:e9:ef:fd:55:3b:2f:ce:2f: ce:1d:08:75:fb:eb:57:3d:08:3f:20:11:56:ed:8b:ff:05:1f: 65:70:59:bc:b9:4e:2c:3b:34:ec:3d:12:02:d3:5c:70:fb:b9: 22:9e:b3:f5:ce:99:ce:66:4d:c9:cb:6f:f8:df:03:e3:e0:47: 04:e9:d5:41:dd:e4:b4:55:eb:0e:76:57:63:2c:b1:58:df:06: dd:d6:54:95:01:1d:f6:e9:f3:0e:da:16:a7:f6:e5:b2:59:5c: cc:ae:13:70:c6:55:86:0b:bc:28:ff:61:a8:7a:0c:78:40:3b: 77:d0:8c:71:d7:ec:73:ad:78:46:97:20:f4:79:95:27:6c:d9: 27:af:d0:6d:89:61:9e:e5:10:fa:d5:a3:f7:83:ca:24:29:8f: 58:5a:e6:a8:4a:24:14:a8:b7:67:5e:af:85:81:5f:05:71:81: cc:ee:a4:3b:77:12:ac:50:6c:e5:c8:b7:24:e4:22:f2:26:40: c4:18:55:5f:ef:c1:6c:84:59:0c:ea:f6:d0:bb:20:67:0f:a6: f3:95:3a:d8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTURwgRRPP3s+lLraWxuemcMsmDAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTUwMDE2WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmVmOTUyOWY1MjcxYmFmZDQyMzBiMWZhNWQ1Zjg4NzQ5 MjA3MzZmMDJjZTc2ODFhYzViZWU5NGExNTg4MWFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHLefrEzHepFdM4+mlZ8Hyc4OzhrBp7GaD36jAVM/JQDRr g7qecazh9iLqYezT3ZVxMAYIgH3Ier36R6fVc5KxQNnWM9xRvyBf/SY++TqSuuNU 8Z894HOL8J0XDpSQIlXiEqZSj4fBSCml2CkB4W0Y7GciHQJLl2b+jWcA++xDBtn0 81TjGkumxP2aD9hfH+tgRhtoiV1oOxMHMJgz1eiUFHMX0yyrI69hzykjuWRXSq29 RV0NbWPScX5BqPFbZtPi0i4yURRhqQ7qFiKgxSostLHSQGauL6xNHKbEYzmVlOF+ Mut81FGSGwpHflWcuqwiQrbCinUeEgF+edYyQnZ/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtOd1hV3W5dZ1m71Be9xzyIgjudowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IwNzdjN2Y5LTY2NmUtNDcxYS05ZDdmLTg3OGU4NzY3YTYwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBrFDANBgkqhkiG9w0BAQsFAAOCAQEApeqbVwWTkfXUaK0nXQrJ9WP8+cLN Npg5z/l9lFpFsqewytmP7A4YEOKrIAk0bunv/VU7L84vzh0IdfvrVz0IPyARVu2L /wUfZXBZvLlOLDs07D0SAtNccPu5Ip6z9c6ZzmZNyctv+N8D4+BHBOnVQd3ktFXr DnZXYyyxWN8G3dZUlQEd9unzDtoWp/blsllczK4TcMZVhgu8KP9hqHoMeEA7d9CM cdfsc614Rpcg9HmVJ2zZJ6/QbYlhnuUQ+tWj94PKJCmPWFrmqEokFKi3Z16vhYFf BXGBzO6kO3cSrFBs5ci3JOQi8iZAxBhVX+/BbIRZDOr20LsgZw+m85U62A== -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:19 2025 by rpki-client