$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4fa34c0-4d4e-41df-b548-b55e6e3aebc2.roa File: b4fa34c0-4d4e-41df-b548-b55e6e3aebc2.roa (raw, json) Hash identifier: fPN4s4t0lsKDs3TCohARSdqj1oSuSyDFu4ntpLnpuQU= Subject key identifier: 3C:25:32:A0:5C:ED:60:85:1D:DB:17:68:08:28:86:50:A8:E3:D9:8A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1BA19DFFE80741C7F745BDDC784A896774ACA751 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4fa34c0-4d4e-41df-b548-b55e6e3aebc2.roa Signing time: Fri 18 Jul 2025 00:41:02 +0000 ROA not before: Fri 18 Jul 2025 00:41:02 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:a1:9d:ff:e8:07:41:c7:f7:45:bd:dc:78:4a:89:67:74:ac:a7:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:41:02 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=b213005371c301c4cc3b4c8e68b7905ca1d345c3a3560f73435f0f037c0a80c2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:de:73:11:4c:9b:2b:3f:87:3f:9a:ef:a0:86: 1d:e6:b5:ab:a0:1e:a5:00:9e:5f:58:d3:63:24:61: 8d:07:96:ca:fb:0b:b9:0c:a0:98:14:c1:b4:23:40: bf:4f:23:85:b4:c0:30:0f:b8:0f:87:b9:0b:c9:3f: 3b:ea:3a:8f:db:3f:46:97:1f:3a:41:bd:87:49:7d: 11:d1:f6:af:01:74:cc:d9:be:54:6b:04:8c:21:5e: e7:ba:32:7d:94:b7:8c:f4:95:2e:a7:bf:ec:26:0c: 55:17:f4:0d:5c:18:c9:bb:8f:13:30:81:24:c2:01: c4:b5:fc:81:b4:de:7c:7d:d5:9d:bb:5f:22:d7:29: ee:09:ba:e3:db:66:e8:ed:1d:24:bf:fd:d5:cd:94: 9c:19:8d:76:84:8c:39:56:ca:46:60:d0:95:34:d6: 87:38:13:37:ae:d6:a9:5c:ca:59:1a:79:38:e0:92: 8a:90:aa:40:b7:ff:79:d4:76:8d:23:f8:87:05:58: aa:7e:c5:d2:7d:fd:50:4d:f4:cf:cf:20:34:e6:b9: a1:db:ab:fd:d0:75:ed:14:dc:86:5d:53:89:3f:c3: 4c:00:0c:73:e3:59:3a:b7:b3:61:0f:12:84:e5:06: 74:ed:2b:04:83:8e:f6:47:eb:93:7a:c8:2a:13:16: 15:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:25:32:A0:5C:ED:60:85:1D:DB:17:68:08:28:86:50:A8:E3:D9:8A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4fa34c0-4d4e-41df-b548-b55e6e3aebc2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.135.0/24 Signature Algorithm: sha256WithRSAEncryption b7:8e:03:20:c8:4d:9c:86:96:00:12:49:e2:0a:c0:0e:b2:93: f0:ad:72:bd:04:ca:8b:68:d3:6c:22:db:36:04:6a:ef:6a:f1: 0a:78:c1:5d:97:57:9e:e0:b1:50:61:6d:96:94:62:0c:7f:61: 0a:f9:00:41:2f:15:1e:05:7b:fb:34:9b:3f:62:2c:92:b7:de: 8e:a9:95:e9:8c:b1:1e:65:8a:d7:84:c9:91:d8:53:b8:9d:75: 10:74:27:16:67:bb:6b:cc:b6:a2:fa:01:01:6c:2f:97:4a:e3: 9a:26:4f:89:0c:85:9b:5d:93:54:cc:21:7d:78:98:0d:25:3b: 21:05:a0:c9:02:d6:11:46:bd:f7:bc:8b:5c:8b:42:15:4e:d4: d8:47:c9:c5:4d:a1:7b:ac:b0:d3:a3:5f:88:25:60:c2:d6:f3: f4:9f:12:5d:b6:78:fa:df:9b:e3:86:2a:71:4e:bb:dc:a1:6e: 9f:a8:ab:b3:f3:ee:f9:3a:07:8d:0e:4e:5c:3d:f4:ed:c4:a2: 73:04:a3:14:44:68:68:91:eb:0c:1a:c7:71:34:a7:55:48:b2: de:7f:30:02:fb:72:8e:c3:82:08:74:7d:ed:0a:d7:a6:30:92: c8:b9:27:0f:14:8c:d1:f1:6c:47:bb:a8:91:25:c4:93:9e:33: 9d:da:9f:cd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG6Gd/+gHQcf3Rb3ceEqJZ3Ssp1EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDA0MTAyWhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjEzMDA1MzcxYzMwMWM0Y2MzYjRjOGU2OGI3OTA1Y2Ex ZDM0NWMzYTM1NjBmNzM0MzVmMGYwMzdjMGE4MGMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC53nMRTJsrP4c/mu+ghh3mtaugHqUAnl9Y02MkYY0Hlsr7 C7kMoJgUwbQjQL9PI4W0wDAPuA+HuQvJPzvqOo/bP0aXHzpBvYdJfRHR9q8BdMzZ vlRrBIwhXue6Mn2Ut4z0lS6nv+wmDFUX9A1cGMm7jxMwgSTCAcS1/IG03nx91Z27 XyLXKe4JuuPbZujtHSS//dXNlJwZjXaEjDlWykZg0JU01oc4Ezeu1qlcylkaeTjg koqQqkC3/3nUdo0j+IcFWKp+xdJ9/VBN9M/PIDTmuaHbq/3Qde0U3IZdU4k/w0wA DHPjWTq3s2EPEoTlBnTtKwSDjvZH65N6yCoTFhXDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPCUyoFztYIUd2xdoCCiGUKjj2YowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I0ZmEzNGMwLTRkNGUtNDFkZi1iNTQ4LWI1NWU2ZTNhZWJjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM34cwDQYJKoZIhvcNAQELBQADggEBALeOAyDITZyGlgASSeIKwA6yk/Ct cr0Eyoto02wi2zYEau9q8Qp4wV2XV57gsVBhbZaUYgx/YQr5AEEvFR4Fe/s0mz9i LJK33o6plemMsR5liteEyZHYU7iddRB0JxZnu2vMtqL6AQFsL5dK45omT4kMhZtd k1TMIX14mA0lOyEFoMkC1hFGvfe8i1yLQhVO1NhHycVNoXussNOjX4glYMLW8/Sf El22ePrfm+OGKnFOu9yhbp+oq7Pz7vk6B40OTlw99O3EonMEoxREaGiR6wwax3E0 p1VIst5/MAL7co7Dggh0fe0K16Ywksi5Jw8UjNHxbEe7qJElxJOeM53an80= -----END CERTIFICATE-----Generated at Tue Jul 22 04:18:49 2025 by rpki-client