$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43679d0b-d4d6-4195-8f78-61e5d3431f35.roa File: 43679d0b-d4d6-4195-8f78-61e5d3431f35.roa (raw, json) Hash identifier: ycjo/BAGKyUnYgJALHSgmO0rfKHH53UfkBTfIjFk7sc= Subject key identifier: F0:32:72:2A:1C:E0:0F:7E:99:89:1A:A9:D9:31:33:5C:CF:A3:B3:35 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6AEC7AB1295F1EDD15D9EB9AA41E8D8DA1D44457 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43679d0b-d4d6-4195-8f78-61e5d3431f35.roa Signing time: Tue 08 Jul 2025 15:22:09 +0000 ROA not before: Tue 08 Jul 2025 15:22:09 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 164.152.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 01 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:ec:7a:b1:29:5f:1e:dd:15:d9:eb:9a:a4:1e:8d:8d:a1:d4:44:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 15:22:09 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=0ffe489d8648d67f28da54668560052f8f01bab1f085b3bd5eee06b0bcefbe77, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:60:d8:12:f7:70:1d:35:e1:7a:8e:89:68:15: db:23:89:c2:b9:6d:62:b5:fd:dd:f8:51:14:87:ce: 61:97:0c:c0:42:de:ce:1d:1c:0c:9b:b9:e5:e6:29: c4:6e:02:4d:ed:fb:93:a1:2a:f0:72:d6:90:7f:4d: 53:7f:83:96:9f:8b:97:98:82:ab:69:11:a1:2d:9d: 0f:c4:37:4d:c4:ea:f2:93:96:a4:c5:12:51:a8:89: 05:c2:02:81:b7:91:01:b8:08:de:29:ff:64:fe:8f: 6e:dc:ed:51:c7:01:ca:6e:c1:26:81:98:18:20:53: 47:1a:ed:29:d5:f4:3b:85:88:33:bb:73:44:13:19: a1:e4:db:4e:0c:d0:e9:9a:a2:09:d9:b1:f0:2d:ae: a9:f6:2f:f2:3b:f3:04:76:61:47:53:71:dd:9d:48: cf:d0:3b:37:4d:e2:0b:41:18:a2:4c:8f:97:79:36: 90:e2:09:cd:bf:75:20:8e:0a:18:a7:65:c3:34:c6: 43:76:c4:f4:8d:7b:7c:08:31:31:ea:e6:5d:0e:e5: f9:e0:f0:17:e7:38:9b:92:54:6c:34:06:1d:5b:cb: e1:ed:0b:e8:1c:9b:e1:db:c5:30:d5:5a:93:ab:64: 0a:1d:af:d9:34:81:fa:90:bb:f2:44:4b:f2:fc:3a: cb:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:32:72:2A:1C:E0:0F:7E:99:89:1A:A9:D9:31:33:5C:CF:A3:B3:35 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43679d0b-d4d6-4195-8f78-61e5d3431f35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.152.200.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:93:69:dd:f4:f4:37:3c:22:dd:e5:10:ff:d1:8a:8a:b5:86: 07:5c:0e:6d:43:24:14:1a:d2:41:fc:8f:bf:35:80:89:83:47: 37:6f:b1:c6:a9:36:d6:ba:6c:41:1f:8f:cb:5d:9f:e3:ec:eb: 58:c8:1f:40:61:8a:7e:a7:e1:85:c5:6a:14:40:47:06:ed:a7: ab:ca:69:36:73:f7:a0:80:e5:be:fd:24:ea:8a:c1:2d:fe:8a: e4:a8:e1:a4:73:ed:60:78:50:61:ab:4a:77:be:2b:6f:7b:e8: 2f:72:af:f2:74:f5:4c:ba:06:02:c3:c0:be:a7:b2:e5:8b:48: 10:d1:66:2b:04:8e:4c:54:e0:40:dc:ff:33:05:ba:3b:f0:60: 83:71:64:83:dd:60:f9:06:cf:b4:97:fc:ae:17:50:a1:9a:b8: 2a:f8:5c:1f:c6:4f:53:a7:f0:7c:0b:32:f7:91:03:21:8b:52: b4:fe:12:22:04:69:52:6e:54:1c:a2:36:cc:df:da:52:70:5b: 7d:0c:c8:47:92:0b:9c:86:fa:00:7b:20:dc:ca:d2:1c:e4:86: 3e:2c:0a:43:fa:ad:46:25:bc:43:2f:95:5e:9f:f7:1f:90:13: f4:a1:a6:67:6d:54:8f:d8:f3:c3:2e:b9:84:4b:a2:8b:be:b6: 90:71:fd:76 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaux6sSlfHt0V2euapB6NjaHURFcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTUyMjA5WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZmZlNDg5ZDg2NDhkNjdmMjhkYTU0NjY4NTYwMDUyZjhm MDFiYWIxZjA4NWIzYmQ1ZWVlMDZiMGJjZWZiZTc3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCYNgS93AdNeF6joloFdsjicK5bWK1/d34URSHzmGXDMBC 3s4dHAybueXmKcRuAk3t+5OhKvBy1pB/TVN/g5afi5eYgqtpEaEtnQ/EN03E6vKT lqTFElGoiQXCAoG3kQG4CN4p/2T+j27c7VHHAcpuwSaBmBggU0ca7SnV9DuFiDO7 c0QTGaHk204M0OmaognZsfAtrqn2L/I78wR2YUdTcd2dSM/QOzdN4gtBGKJMj5d5 NpDiCc2/dSCOChinZcM0xkN2xPSNe3wIMTHq5l0O5fng8BfnOJuSVGw0Bh1by+Ht C+gcm+HbxTDVWpOrZAodr9k0gfqQu/JES/L8OsvNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8DJyKhzgD36ZiRqp2TEzXM+jszUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzNjc5ZDBiLWQ0ZDYtNDE5NS04Zjc4LTYxZTVkMzQzMWYzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKkmMgwDQYJKoZIhvcNAQELBQADggEBAD6Tad309Dc8It3lEP/Rioq1hgdc Dm1DJBQa0kH8j781gImDRzdvscapNta6bEEfj8tdn+Ps61jIH0Bhin6n4YXFahRA Rwbtp6vKaTZz96CA5b79JOqKwS3+iuSo4aRz7WB4UGGrSne+K2976C9yr/J09Uy6 BgLDwL6nsuWLSBDRZisEjkxU4EDc/zMFujvwYINxZIPdYPkGz7SX/K4XUKGauCr4 XB/GT1On8HwLMveRAyGLUrT+EiIEaVJuVByiNszf2lJwW30MyEeSC5yG+gB7INzK 0hzkhj4sCkP6rUYlvEMvlV6f9x+QE/ShpmdtVI/Y88MuuYRLoou+tpBx/XY= -----END CERTIFICATE-----Generated at Thu Jul 31 01:10:47 2025 by rpki-client