$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef7c7fbd-7e17-4e28-91a6-c01f8f23e2f7.roa File: ef7c7fbd-7e17-4e28-91a6-c01f8f23e2f7.roa (raw, json) Hash identifier: UXGRwiCJAiB2N7oYkVty+7itZD5E928r7x6sY8pQUR8= Subject key identifier: 39:FF:66:F7:95:42:58:DE:99:D9:34:F2:8D:EF:2C:E3:38:BA:7F:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59C13C1BE0B98FECB73BF48CC4B5D2CB4E0F0A59 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef7c7fbd-7e17-4e28-91a6-c01f8f23e2f7.roa Signing time: Tue 15 Jul 2025 00:11:04 +0000 ROA not before: Tue 15 Jul 2025 00:11:04 +0000 ROA not after: Tue 19 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 98.75.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c1:3c:1b:e0:b9:8f:ec:b7:3b:f4:8c:c4:b5:d2:cb:4e:0f:0a:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 15 00:11:04 2025 GMT Not After : Aug 19 23:59:59 2025 GMT Subject: serialNumber=aa46bf0b3deb2d12f2e110212abbe3a20a1bd6ad43d059ee6f200d5c33f2817a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:33:aa:71:c9:03:70:80:6c:73:07:3d:38:93: ed:4a:10:11:0d:7d:a4:ee:99:8f:1a:60:00:a0:83: 3e:8b:23:e2:8b:94:08:a4:df:68:bf:b9:d0:b5:31: 18:c8:00:e8:33:6c:df:0c:a9:d2:5e:89:ae:51:49: b9:43:bd:65:f8:f0:f0:b2:5f:af:4e:af:bf:dd:f7: bc:60:c1:ad:01:63:01:9f:da:d3:a1:34:bd:ab:bc: 96:02:42:09:cf:3b:2c:b2:55:48:a2:35:40:64:c9: 53:25:a3:fb:95:08:f9:eb:23:72:70:01:b0:84:b4: 47:8c:06:ec:43:6b:f4:ee:5b:86:b5:7a:5a:85:6e: 98:5b:d9:8b:e2:9d:30:8e:ed:23:9a:9b:50:a6:c4: 77:95:10:d8:13:7b:78:5a:3a:5f:8b:23:d5:8e:07: 38:68:83:83:92:cd:64:24:b9:b7:f3:74:ff:0f:99: 9a:23:ad:b7:21:40:a0:85:64:ba:c0:15:40:f9:b2: 38:24:76:ec:d1:23:10:6c:d6:b8:ae:63:ee:96:6b: be:89:74:5c:5f:9e:d5:e3:0f:2f:d4:ae:b7:ab:dc: 6c:80:6a:b8:c3:1d:a2:74:a5:56:1e:53:e7:0f:47: 2f:5c:4c:6e:e7:fe:17:6c:6f:34:9a:18:65:e4:fa: bc:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:FF:66:F7:95:42:58:DE:99:D9:34:F2:8D:EF:2C:E3:38:BA:7F:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef7c7fbd-7e17-4e28-91a6-c01f8f23e2f7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.75.0.0/16 Signature Algorithm: sha256WithRSAEncryption 07:20:9b:7f:d7:04:b6:d1:c4:fc:95:c9:e4:3a:ab:13:ac:06: be:5e:0a:5f:09:ad:11:3f:fe:37:76:45:3e:eb:1f:4d:87:6a: 77:e4:8f:a7:3c:09:8c:75:9c:37:a4:3d:f8:80:33:c1:f2:00: 33:97:b5:27:fc:03:26:d5:1a:c3:28:35:64:61:66:c0:d9:a2: 53:ce:32:53:51:b8:86:71:d4:05:6d:0e:91:73:8a:70:6d:59: fb:2a:b8:78:f6:e0:06:8e:ec:79:4c:5e:35:37:84:e8:79:0d: 17:fb:56:c0:46:38:4d:2f:7a:ea:c2:5f:d1:47:b4:96:2b:40: b0:d0:cc:92:7e:32:15:14:5d:c6:f0:a6:01:2a:54:46:ab:c2: 45:4e:3a:ca:84:73:6f:c6:0e:21:54:3c:d9:63:36:70:1a:d5: d4:26:ad:b6:be:9f:30:fc:14:9f:59:3c:9c:0c:fd:92:af:51: fe:53:d4:4d:da:14:83:1a:d6:5f:85:c5:e9:2c:ba:f4:41:11: bc:61:1f:33:46:1a:57:77:6c:94:e1:3c:19:dc:98:81:25:97: 14:1e:1e:2a:9d:2b:80:21:78:6a:9d:c4:ae:5a:d6:f1:46:c7: ca:d5:be:53:d1:e9:86:a8:ba:be:60:59:a3:97:d2:71:a8:80: b6:7b:82:66 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWcE8G+C5j+y3O/SMxLXSy04PClkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE1MDAxMTA0WhcNMjUwODE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTQ2YmYwYjNkZWIyZDEyZjJlMTEwMjEyYWJiZTNhMjBh MWJkNmFkNDNkMDU5ZWU2ZjIwMGQ1YzMzZjI4MTdhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLM6pxyQNwgGxzBz04k+1KEBENfaTumY8aYACggz6LI+KL lAik32i/udC1MRjIAOgzbN8MqdJeia5RSblDvWX48PCyX69Or7/d97xgwa0BYwGf 2tOhNL2rvJYCQgnPOyyyVUiiNUBkyVMlo/uVCPnrI3JwAbCEtEeMBuxDa/TuW4a1 elqFbphb2YvinTCO7SOam1CmxHeVENgTe3haOl+LI9WOBzhog4OSzWQkubfzdP8P mZojrbchQKCFZLrAFUD5sjgkduzRIxBs1riuY+6Wa76JdFxfntXjDy/Urrer3GyA arjDHaJ0pVYeU+cPRy9cTG7n/hdsbzSaGGXk+rz1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOf9m95VCWN6Z2TTyje8s4zi6f1swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VmN2M3ZmJkLTdlMTctNGUyOC05MWE2LWMwMWY4ZjIzZTJmNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBiSzANBgkqhkiG9w0BAQsFAAOCAQEAByCbf9cEttHE/JXJ5DqrE6wGvl4K XwmtET/+N3ZFPusfTYdqd+SPpzwJjHWcN6Q9+IAzwfIAM5e1J/wDJtUawyg1ZGFm wNmiU84yU1G4hnHUBW0OkXOKcG1Z+yq4ePbgBo7seUxeNTeE6HkNF/tWwEY4TS96 6sJf0Ue0litAsNDMkn4yFRRdxvCmASpURqvCRU46yoRzb8YOIVQ82WM2cBrV1Cat tr6fMPwUn1k8nAz9kq9R/lPUTdoUgxrWX4XF6Sy69EERvGEfM0YaV3dslOE8GdyY gSWXFB4eKp0rgCF4ap3ErlrW8UbHytW+U9Hphqi6vmBZo5fScaiAtnuCZg== -----END CERTIFICATE-----Generated at Mon Jul 21 18:04:48 2025 by rpki-client