$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2c885d6-4061-421b-99ff-f05202cdada5.roa File: f2c885d6-4061-421b-99ff-f05202cdada5.roa (raw, json) Hash identifier: azagrhAPm5SmcuHsHbXUbOV78bKxzPZtoMRM1HiSlG8= Subject key identifier: AE:7C:B1:80:04:4C:38:06:12:D1:62:D2:1F:20:5E:F2:36:E7:22:E2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 63289B47C19671A663260EB7B55DDE5BFC20198E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2c885d6-4061-421b-99ff-f05202cdada5.roa Signing time: Tue 22 Jul 2025 00:31:04 +0000 ROA not before: Tue 22 Jul 2025 00:31:04 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 44.223.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:28:9b:47:c1:96:71:a6:63:26:0e:b7:b5:5d:de:5b:fc:20:19:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 00:31:04 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=81253c61b76ad6ba183a425f143a7d2185288ed0751f0238412f7b8f7c9f287b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:42:da:d4:bd:0d:df:0e:23:07:81:dd:54:03: 46:f6:3f:99:f9:c3:53:7e:3f:07:ba:b8:44:d1:c6: 5c:2f:23:85:43:49:b5:fc:79:00:22:e2:34:76:95: cd:8c:e6:41:ec:54:23:c3:4b:d6:29:8a:ad:4a:85: da:49:c3:4f:c6:74:61:8f:6b:95:1c:42:2f:8f:82: df:14:27:7f:d1:11:d8:86:c8:50:e0:2c:71:62:f7: ae:45:2d:99:b5:0e:8b:8f:70:95:07:36:13:a7:eb: 1b:52:49:31:20:12:a8:ec:0e:c9:95:ea:3b:db:fb: 84:2e:a7:78:9f:33:34:e4:54:67:7d:60:13:ec:aa: bd:90:85:b0:3c:e5:03:26:b5:0e:78:c4:0d:79:b2: 44:dc:0a:56:c4:4e:d1:39:a0:50:ba:09:d5:8d:a0: 35:8e:d3:f4:b5:76:f3:37:5d:cc:67:ca:8b:84:12: d6:70:43:98:1e:c0:36:fb:57:54:66:99:86:21:4e: 8c:a8:13:2a:b8:17:2b:d9:91:aa:ff:11:d3:94:89: 65:95:57:5c:56:fb:1b:b0:2b:2f:f7:5f:a4:93:f5: 16:56:7e:79:c8:be:73:b9:cb:b2:7c:2f:b3:e6:26: 4b:25:fb:21:24:4b:1a:1c:9a:d3:76:5b:7e:0e:e6: 87:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:7C:B1:80:04:4C:38:06:12:D1:62:D2:1F:20:5E:F2:36:E7:22:E2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2c885d6-4061-421b-99ff-f05202cdada5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.223.121.0/24 Signature Algorithm: sha256WithRSAEncryption c5:60:fd:65:7b:b7:48:5a:29:03:21:c7:1a:5b:a8:9a:aa:cd: 68:7d:88:df:ce:36:78:2f:54:2e:db:31:ed:f0:23:05:96:d4: a1:4a:32:4f:2c:4c:27:30:b5:0a:d1:0a:ca:50:9b:15:5c:18: 84:24:c8:53:85:dd:da:d4:29:bf:b1:ff:fb:ba:7f:bf:e1:6b: ce:9b:58:87:a3:e4:0c:3d:b3:eb:2a:d1:75:22:f4:74:88:e8: fb:ad:e5:c3:fa:62:d5:f3:b2:70:1f:ae:39:98:c0:d6:ec:26: da:2a:29:9e:96:04:f0:73:68:d8:da:c1:ab:e5:82:05:27:54: 20:33:2c:2d:a0:f2:83:c3:bd:2d:be:d2:50:9d:f9:0c:93:39: 59:3f:35:20:8e:28:5b:65:0e:86:e5:e0:db:49:5c:8e:3e:10: 5e:bd:6b:ce:73:90:c4:a7:72:f5:4a:dc:13:ae:f0:4c:80:6b: 08:e6:69:d9:a8:5b:38:14:70:b5:bd:70:c8:0f:62:48:84:cb: 31:6c:a2:14:8a:19:a6:7e:45:5f:28:be:82:c4:18:81:f4:04: e0:8e:b8:7f:77:a3:99:93:73:91:d3:2d:34:d4:ad:c9:ca:d0: 2e:2c:0f:fc:ec:f6:ec:5e:25:69:b7:89:48:5d:7f:6c:1a:10: f8:bd:a3:38 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYyibR8GWcaZjJg63tV3eW/wgGY4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMDAzMTA0WhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTI1M2M2MWI3NmFkNmJhMTgzYTQyNWYxNDNhN2QyMTg1 Mjg4ZWQwNzUxZjAyMzg0MTJmN2I4ZjdjOWYyODdiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNQtrUvQ3fDiMHgd1UA0b2P5n5w1N+Pwe6uETRxlwvI4VD SbX8eQAi4jR2lc2M5kHsVCPDS9Ypiq1KhdpJw0/GdGGPa5UcQi+Pgt8UJ3/REdiG yFDgLHFi965FLZm1DouPcJUHNhOn6xtSSTEgEqjsDsmV6jvb+4Qup3ifMzTkVGd9 YBPsqr2QhbA85QMmtQ54xA15skTcClbETtE5oFC6CdWNoDWO0/S1dvM3XcxnyouE EtZwQ5gewDb7V1RmmYYhToyoEyq4FyvZkar/EdOUiWWVV1xW+xuwKy/3X6ST9RZW fnnIvnO5y7J8L7PmJksl+yEkSxocmtN2W34O5ocLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrnyxgARMOAYS0WLSHyBe8jbnIuIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyYzg4NWQ2LTQwNjEtNDIxYi05OWZmLWYwNTIwMmNkYWRhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAs33kwDQYJKoZIhvcNAQELBQADggEBAMVg/WV7t0haKQMhxxpbqJqqzWh9 iN/ONngvVC7bMe3wIwWW1KFKMk8sTCcwtQrRCspQmxVcGIQkyFOF3drUKb+x//u6 f7/ha86bWIej5Aw9s+sq0XUi9HSI6Put5cP6YtXzsnAfrjmYwNbsJtoqKZ6WBPBz aNjawavlggUnVCAzLC2g8oPDvS2+0lCd+QyTOVk/NSCOKFtlDobl4NtJXI4+EF69 a85zkMSncvVK3BOu8EyAawjmadmoWzgUcLW9cMgPYkiEyzFsohSKGaZ+RV8ovoLE GIH0BOCOuH93o5mTc5HTLTTUrcnK0C4sD/zs9uxeJWm3iUhdf2waEPi9ozg= -----END CERTIFICATE-----Generated at Tue Jul 22 05:09:24 2025 by rpki-client