$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be0b4385-e6e3-4b26-93ea-7be9fbf3734e.roa File: be0b4385-e6e3-4b26-93ea-7be9fbf3734e.roa (raw, json) Hash identifier: 3kMHK1kwLSyBDXLSmxMQ7f9LR+pv6Vi5GSsoUQf+Ik8= Subject key identifier: 12:D6:AD:35:77:8B:E6:3E:55:A4:F0:93:DA:E3:B7:EC:AA:DF:43:14 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 16AF619C73F9C4DFD27B1A7F56BF333FBF79CF2B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be0b4385-e6e3-4b26-93ea-7be9fbf3734e.roa Signing time: Tue 15 Jul 2025 00:00:40 +0000 ROA not before: Tue 15 Jul 2025 00:00:40 +0000 ROA not after: Tue 19 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 142.4.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:af:61:9c:73:f9:c4:df:d2:7b:1a:7f:56:bf:33:3f:bf:79:cf:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 15 00:00:40 2025 GMT Not After : Aug 19 23:59:59 2025 GMT Subject: serialNumber=2c50611f04be66ae2069e348aae3497f88d8c1ef82cba278f05762c79d03eb23, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:dc:b9:5e:77:a9:d4:34:f8:72:49:08:ff:d6: 29:85:2c:6e:30:c4:dc:12:37:55:d3:40:9e:f7:bc: c4:21:bf:87:0f:c7:99:07:cc:8b:a5:ba:d6:ea:36: d9:4a:2e:9a:aa:98:15:ec:1a:12:4f:80:60:e9:53: 6b:8a:c6:f7:ce:70:a5:b5:7c:eb:c8:02:02:6a:20: c7:d1:0d:46:bb:f5:17:31:54:e5:9f:a1:aa:a7:5e: ed:c3:c8:b5:01:bb:e8:35:99:f3:66:fb:f2:41:51: 54:d1:40:33:b1:e6:a6:a0:b1:7e:7a:ca:c5:53:94: 01:0e:07:ad:01:3b:38:27:51:89:0a:0b:15:53:c7: f9:25:76:10:c1:90:48:23:79:b9:04:6e:57:46:4f: 6e:05:ed:71:cd:91:00:5d:5b:62:c0:31:b9:b7:ec: e8:ba:55:d4:54:5b:1d:1e:00:1d:5d:3f:ba:50:22: 24:1a:81:6c:ae:93:21:ce:10:c5:58:49:de:e4:06: df:03:98:27:32:d3:c8:d5:85:3b:b6:31:0a:74:c4: 57:23:63:15:54:ed:01:3d:08:e3:e6:0b:88:08:c4: 98:64:08:45:7e:49:b5:50:3f:63:dd:6d:e4:b8:16: 94:be:6b:b4:8f:1d:f7:36:94:f7:5f:97:28:2b:dc: 5f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:D6:AD:35:77:8B:E6:3E:55:A4:F0:93:DA:E3:B7:EC:AA:DF:43:14 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be0b4385-e6e3-4b26-93ea-7be9fbf3734e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 142.4.178.0/24 Signature Algorithm: sha256WithRSAEncryption 64:82:6c:60:75:c2:a2:05:81:17:3a:69:e4:e6:4e:af:50:9c: 35:e8:aa:79:f5:8a:b1:65:f6:47:17:92:58:a9:4d:95:2b:af: 16:4a:b9:f9:f6:e1:1c:41:e0:7b:c9:56:7d:bc:14:8c:9a:ec: b6:4c:c4:4a:b3:73:ae:e1:62:70:bb:ad:d5:98:3d:d3:a4:1f: 5a:cc:d6:4a:45:42:6a:7a:67:d1:6d:69:a4:43:89:ed:6d:df: 08:c5:b4:ee:cb:71:6d:a0:d1:22:e8:7f:2e:ba:7a:e8:38:9a: 27:6e:01:d6:0d:df:b7:1b:d6:db:d8:25:4b:0a:c9:b3:db:80: 8c:14:6e:22:f1:b3:ab:bf:95:5b:ac:eb:d3:10:17:1a:82:36: 34:84:17:5f:d7:da:b0:b1:54:f7:2f:61:a9:8f:e6:05:15:03: 70:a2:b1:63:52:20:15:fd:1f:5a:5a:0c:35:39:be:cf:a7:20: 5d:a8:1f:69:c2:34:41:25:86:3e:3e:d3:27:5b:3c:8e:14:4e: a8:a1:99:54:5d:f7:17:54:18:64:44:c2:19:c1:2a:51:27:76: 55:fd:48:0e:58:ff:a9:02:00:4d:4a:a3:12:4d:e1:49:bb:6e: 7a:e8:a7:80:61:de:12:d9:0c:11:3b:c2:2f:47:2f:9f:35:2d: 55:df:b5:8a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFq9hnHP5xN/Sexp/Vr8zP795zyswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE1MDAwMDQwWhcNMjUwODE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzUwNjExZjA0YmU2NmFlMjA2OWUzNDhhYWUzNDk3Zjg4 ZDhjMWVmODJjYmEyNzhmMDU3NjJjNzlkMDNlYjIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw3Lled6nUNPhySQj/1imFLG4wxNwSN1XTQJ73vMQhv4cP x5kHzIulutbqNtlKLpqqmBXsGhJPgGDpU2uKxvfOcKW1fOvIAgJqIMfRDUa79Rcx VOWfoaqnXu3DyLUBu+g1mfNm+/JBUVTRQDOx5qagsX56ysVTlAEOB60BOzgnUYkK CxVTx/kldhDBkEgjebkEbldGT24F7XHNkQBdW2LAMbm37Oi6VdRUWx0eAB1dP7pQ IiQagWyukyHOEMVYSd7kBt8DmCcy08jVhTu2MQp0xFcjYxVU7QE9COPmC4gIxJhk CEV+SbVQP2PdbeS4FpS+a7SPHfc2lPdflygr3F+nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEtatNXeL5j5VpPCT2uO37KrfQxQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JlMGI0Mzg1LWU2ZTMtNGIyNi05M2VhLTdiZTlmYmYzNzM0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACOBLIwDQYJKoZIhvcNAQELBQADggEBAGSCbGB1wqIFgRc6aeTmTq9QnDXo qnn1irFl9kcXklipTZUrrxZKufn24RxB4HvJVn28FIya7LZMxEqzc67hYnC7rdWY PdOkH1rM1kpFQmp6Z9FtaaRDie1t3wjFtO7LcW2g0SLofy66eug4miduAdYN37cb 1tvYJUsKybPbgIwUbiLxs6u/lVus69MQFxqCNjSEF1/X2rCxVPcvYamP5gUVA3Ci sWNSIBX9H1paDDU5vs+nIF2oH2nCNEElhj4+0ydbPI4UTqihmVRd9xdUGGREwhnB KlEndlX9SA5Y/6kCAE1KoxJN4Um7bnrop4Bh3hLZDBE7wi9HL581LVXftYo= -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:19 2025 by rpki-client