$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92cf84d-536c-4213-86c8-c97fdb4209dc.roa File: d92cf84d-536c-4213-86c8-c97fdb4209dc.roa (raw, json) Hash identifier: 641VK1apnFtl5PIHYIJH6WYVY0CEzr6N16b2UG2SfPw= Subject key identifier: 46:AB:A2:D5:90:D5:D7:A3:9C:6D:63:F8:08:82:20:F6:BC:54:A6:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5995242624CB0E2B2912FE5E3E7DD2A00FD617E1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92cf84d-536c-4213-86c8-c97fdb4209dc.roa Signing time: Wed 09 Jul 2025 00:42:21 +0000 ROA not before: Wed 09 Jul 2025 00:42:21 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.194.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:95:24:26:24:cb:0e:2b:29:12:fe:5e:3e:7d:d2:a0:0f:d6:17:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:42:21 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=555bed56aaf7a9a0410086f2f5a57341014bca3b2e3f039b974d22a36f1ce88d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:d2:77:c8:01:f6:db:96:59:84:da:1b:0b:10: 58:1e:c2:0c:04:93:e8:0c:bc:c3:0c:21:76:cf:62: 28:d9:8d:79:53:e7:3a:88:29:68:90:c8:22:70:37: 65:b2:3a:e9:50:ba:38:b1:40:45:80:17:e7:2a:fb: aa:a4:8f:aa:af:5a:be:61:2e:2a:8b:12:a5:03:cf: b9:d2:44:05:93:d3:1e:b2:d8:32:7d:05:cc:94:55: 35:f9:f0:38:90:1b:66:77:75:ab:45:f9:f4:e9:c9: 87:9d:a9:86:a7:bc:9d:80:d4:cb:b5:32:9d:04:ff: cb:a6:28:e4:b5:40:e2:3f:c5:bf:8c:4d:03:2a:e3: 3e:f9:a0:16:7a:0f:02:89:ca:9d:cf:f2:51:39:5e: 5b:a4:f5:1f:c2:3b:00:b4:0d:06:2a:f4:b8:9b:f8: 78:a7:bb:87:72:f9:5f:66:b2:49:25:40:46:6d:8a: db:7e:b7:3d:31:11:82:92:3c:25:45:80:4a:47:f2: 82:a8:99:34:35:09:43:27:0e:4b:07:b3:a6:d9:f8: 92:df:e5:ad:9a:ca:dc:af:c6:11:c1:64:70:f8:03: db:10:bc:ff:59:56:f3:d7:20:76:f0:51:73:b7:be: 7d:14:d2:26:a4:6c:56:a3:ee:ab:8c:d6:d3:3e:8e: 84:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:AB:A2:D5:90:D5:D7:A3:9C:6D:63:F8:08:82:20:F6:BC:54:A6:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d92cf84d-536c-4213-86c8-c97fdb4209dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.194.0.0/16 Signature Algorithm: sha256WithRSAEncryption 40:e4:17:b2:97:92:50:cc:06:68:ab:b6:64:5b:98:1a:eb:54: 03:6a:f2:a0:b2:8b:ac:8c:ff:9d:d4:26:30:81:06:97:2f:81: 89:3c:80:79:ea:aa:bc:7d:e9:df:26:5c:e6:d9:dc:82:f1:9e: ea:08:34:88:5d:14:08:8b:18:27:6c:c5:f8:95:a6:48:49:f1: 72:9c:c5:64:13:8a:3e:a7:54:d1:8c:17:4f:fd:67:f7:58:3e: fa:36:84:fe:ae:01:35:1f:b7:45:58:64:97:ac:77:f3:e1:f8: ad:e0:a8:b6:e0:c1:ff:ee:d6:79:04:d5:c3:e3:90:9a:38:7a: b3:96:df:0d:d4:cd:6c:00:61:92:c8:5a:52:72:32:c7:9c:01: 3a:92:e7:9e:25:cb:db:66:aa:cc:e6:0e:85:71:d8:43:24:31: b1:40:12:e5:4a:66:d1:2c:d0:33:38:e0:fc:85:5a:8b:85:c8: bd:d9:71:31:37:73:b4:02:04:24:50:96:e7:09:e0:a1:1d:5a: 67:44:16:73:e2:71:f1:bc:c7:2c:75:dc:ef:33:13:19:9f:a3: c2:42:46:50:72:28:c3:76:29:21:83:48:77:cc:de:db:57:fa: ef:36:17:d6:8b:26:49:97:07:74:2a:f8:fe:09:44:01:22:37: 08:57:83:e5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWZUkJiTLDispEv5ePn3SoA/WF+EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDA0MjIxWhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTViZWQ1NmFhZjdhOWEwNDEwMDg2ZjJmNWE1NzM0MTAx NGJjYTNiMmUzZjAzOWI5NzRkMjJhMzZmMWNlODhkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk0nfIAfbbllmE2hsLEFgewgwEk+gMvMMMIXbPYijZjXlT 5zqIKWiQyCJwN2WyOulQujixQEWAF+cq+6qkj6qvWr5hLiqLEqUDz7nSRAWT0x6y 2DJ9BcyUVTX58DiQG2Z3datF+fTpyYedqYanvJ2A1Mu1Mp0E/8umKOS1QOI/xb+M TQMq4z75oBZ6DwKJyp3P8lE5Xluk9R/COwC0DQYq9Lib+Hinu4dy+V9mskklQEZt itt+tz0xEYKSPCVFgEpH8oKomTQ1CUMnDksHs6bZ+JLf5a2aytyvxhHBZHD4A9sQ vP9ZVvPXIHbwUXO3vn0U0iakbFaj7quM1tM+joRDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURqui1ZDV16OcbWP4CIIg9rxUplIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5MmNmODRkLTUzNmMtNDIxMy04NmM4LWM5N2ZkYjQyMDlkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAowjANBgkqhkiG9w0BAQsFAAOCAQEAQOQXspeSUMwGaKu2ZFuYGutUA2ry oLKLrIz/ndQmMIEGly+BiTyAeeqqvH3p3yZc5tncgvGe6gg0iF0UCIsYJ2zF+JWm SEnxcpzFZBOKPqdU0YwXT/1n91g++jaE/q4BNR+3RVhkl6x38+H4reCotuDB/+7W eQTVw+OQmjh6s5bfDdTNbABhkshaUnIyx5wBOpLnniXL22aqzOYOhXHYQyQxsUAS 5Upm0SzQMzjg/IVai4XIvdlxMTdztAIEJFCW5wngoR1aZ0QWc+Jx8bzHLHXc7zMT GZ+jwkJGUHIow3YpIYNId8ze21f67zYX1osmSZcHdCr4/glEASI3CFeD5Q== -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:26 2025 by rpki-client