$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf517b2e-8f05-4d24-bfe1-6207c312e178.roa File: bf517b2e-8f05-4d24-bfe1-6207c312e178.roa (raw, json) Hash identifier: 5cs0lKEjxTM5s8Kokz5KxIoCzM3fJK5KGNt5uyKPeWo= Subject key identifier: 4D:8C:D3:83:7E:D8:BF:4D:34:6F:9D:32:03:FE:48:FB:07:49:35:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FBA1FB9C6B3EA9FF6A9EE23AB80FE22E81CC095 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf517b2e-8f05-4d24-bfe1-6207c312e178.roa Signing time: Mon 14 Jul 2025 15:12:00 +0000 ROA not before: Mon 14 Jul 2025 15:12:00 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 57.246.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:ba:1f:b9:c6:b3:ea:9f:f6:a9:ee:23:ab:80:fe:22:e8:1c:c0:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 14 15:12:00 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=2bd3a3fada18a165acd4a2f733117d298c6769323da718d53ce42c1a6b874f03, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:a3:05:52:75:8d:7c:51:db:27:40:c2:de:b6: 94:1e:97:a5:98:f4:68:7e:08:61:2d:5d:ea:40:4d: 0a:f2:e4:46:c2:30:9a:99:41:0f:9d:a4:57:d2:ae: cb:e0:68:1d:e9:c2:1c:89:dd:f0:6e:fb:27:b4:1d: 8a:23:0d:8f:eb:dc:b8:69:63:94:c8:fa:70:a8:dc: 72:b2:df:c9:c6:46:15:ec:3b:e3:78:39:88:4b:d2: 8b:3f:2d:bf:be:ab:73:ee:98:c5:5f:0b:f0:bf:7c: 1c:65:35:23:4d:04:88:ce:72:27:4f:90:54:f3:b1: 91:15:0a:59:20:21:6e:c0:68:b4:9a:77:ab:a0:2d: f7:17:ba:a3:77:14:7c:ff:ef:12:ce:93:b5:5f:e0: db:b3:dd:55:3e:8e:43:53:dc:6a:a8:07:90:18:93: aa:63:07:4b:7b:4d:1f:c3:22:b5:e6:dd:fc:68:38: 7a:96:1e:11:e8:a9:be:49:d2:59:d4:66:23:81:13: 90:f8:ca:40:55:2c:97:7a:7b:36:e7:4f:cb:4e:e4: a2:b3:75:41:bf:93:36:45:4e:e0:3d:5e:22:fa:fe: 83:a5:97:71:87:e9:ff:99:57:16:ef:4d:b8:c3:3b: 6b:54:f8:0f:ff:19:72:2d:4a:4a:70:69:2b:97:a5: 0b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:8C:D3:83:7E:D8:BF:4D:34:6F:9D:32:03:FE:48:FB:07:49:35:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf517b2e-8f05-4d24-bfe1-6207c312e178.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.246.0.0/16 Signature Algorithm: sha256WithRSAEncryption 67:f0:b2:fb:6b:e7:70:bc:bc:e9:34:d7:1a:fa:7c:31:95:9b: 11:ad:7e:d9:e0:f1:e0:d0:e5:23:0e:e3:7a:7e:7c:3c:b4:a4: 7b:07:9f:95:33:39:d5:52:81:f8:85:92:f8:5c:db:32:ae:5a: 38:9e:bb:51:81:34:3e:e2:54:cf:69:6d:92:13:03:55:90:f5: cf:b3:1e:1a:e9:4d:ec:04:e6:69:c0:07:89:9a:f6:7f:f0:21: a3:15:99:40:e5:44:26:13:76:b0:3e:04:ea:c4:0e:b4:07:a0: a3:a6:72:c5:b6:b6:8e:f7:3e:83:c3:51:9f:29:3c:16:6b:47: 77:b4:bc:cc:73:f3:04:d1:d6:bc:7e:e9:38:71:d7:3f:c1:b6: af:f4:ec:15:92:fe:d3:66:53:69:cd:37:e7:31:37:1f:53:1e: ce:83:af:6a:39:b5:c6:7c:6d:12:6f:32:7e:a8:34:55:d3:e5: d1:0b:b6:87:05:5f:3c:bf:dc:09:25:d8:36:65:a4:ef:31:72: 07:1e:ac:3f:c1:32:89:13:37:c7:52:38:54:fd:87:02:b4:22: 09:9b:d6:2b:06:87:00:16:bf:74:ba:86:97:55:3d:99:f7:97: d4:0e:f5:a9:11:4d:10:d4:00:aa:5d:73:fc:10:98:5f:95:09: 11:d5:ee:88 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUD7ofucaz6p/2qe4jq4D+IugcwJUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE0MTUxMjAwWhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYmQzYTNmYWRhMThhMTY1YWNkNGEyZjczMzExN2QyOThj Njc2OTMyM2RhNzE4ZDUzY2U0MmMxYTZiODc0ZjAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkowVSdY18UdsnQMLetpQel6WY9Gh+CGEtXepATQry5EbC MJqZQQ+dpFfSrsvgaB3pwhyJ3fBu+ye0HYojDY/r3LhpY5TI+nCo3HKy38nGRhXs O+N4OYhL0os/Lb++q3PumMVfC/C/fBxlNSNNBIjOcidPkFTzsZEVClkgIW7AaLSa d6ugLfcXuqN3FHz/7xLOk7Vf4Nuz3VU+jkNT3GqoB5AYk6pjB0t7TR/DIrXm3fxo OHqWHhHoqb5J0lnUZiOBE5D4ykBVLJd6ezbnT8tO5KKzdUG/kzZFTuA9XiL6/oOl l3GH6f+ZVxbvTbjDO2tU+A//GXItSkpwaSuXpQtHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTYzTg37Yv000b50yA/5I+wdJNcAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmNTE3YjJlLThmMDUtNGQyNC1iZmUxLTYyMDdjMzEyZTE3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA59jANBgkqhkiG9w0BAQsFAAOCAQEAZ/Cy+2vncLy86TTXGvp8MZWbEa1+ 2eDx4NDlIw7jen58PLSkeweflTM51VKB+IWS+FzbMq5aOJ67UYE0PuJUz2ltkhMD VZD1z7MeGulN7ATmacAHiZr2f/AhoxWZQOVEJhN2sD4E6sQOtAego6Zyxba2jvc+ g8NRnyk8FmtHd7S8zHPzBNHWvH7pOHHXP8G2r/TsFZL+02ZTac035zE3H1MezoOv ajm1xnxtEm8yfqg0VdPl0Qu2hwVfPL/cCSXYNmWk7zFyBx6sP8EyiRM3x1I4VP2H ArQiCZvWKwaHABa/dLqGl1U9mfeX1A71qRFNENQAql1z/BCYX5UJEdXuiA== -----END CERTIFICATE-----Generated at Tue Jul 22 04:37:00 2025 by rpki-client