$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/740695a4-ae7e-44db-9a4c-1ddd5bc66e97.roa File: 740695a4-ae7e-44db-9a4c-1ddd5bc66e97.roa (raw, json) Hash identifier: jjia7JveNneXvrC1E/934ig9a0/EJ7KT2AbCq+GO+Ck= Subject key identifier: 39:6A:B0:19:AA:39:E8:98:E4:FF:4E:AD:90:BA:13:B9:86:BE:3C:97 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C1D920C9A84123C401076C6BC8DF386F60224FF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/740695a4-ae7e-44db-9a4c-1ddd5bc66e97.roa Signing time: Wed 06 Aug 2025 00:11:59 +0000 ROA not before: Wed 06 Aug 2025 00:11:59 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 184.169.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:1d:92:0c:9a:84:12:3c:40:10:76:c6:bc:8d:f3:86:f6:02:24:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 6 00:11:59 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=7c720785c212502e2cd6bc5888121636a23b015770b8a7834bb8e691a73be266, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:08:b1:f6:e6:a4:07:33:66:c2:c8:d0:87:67: dc:f7:75:85:81:39:23:f0:cf:30:94:8e:09:79:db: 01:d4:8c:3d:d2:5a:13:43:3d:75:40:93:5e:a7:69: 64:b8:e5:df:5b:03:8a:d2:9f:89:b4:f4:c9:fe:0a: 01:27:5e:3e:86:a5:5c:bf:30:05:3c:fe:02:c8:01: e7:7e:7e:c4:9e:4f:5a:91:3b:9b:77:8c:aa:a2:57: 5e:77:e8:56:26:92:8e:73:8b:c8:84:e1:23:aa:8d: b5:89:11:cf:6e:1e:ba:41:9b:12:a7:88:5c:f1:be: 82:46:85:f8:d1:6e:fe:7a:2f:d7:e2:95:8b:fa:4d: 57:9a:fa:d1:18:dc:d8:74:b9:24:b2:1b:99:b3:5e: 04:cc:3f:1e:fb:05:5e:26:a1:0b:db:28:8a:68:2b: 5a:67:23:7c:55:1b:73:a6:bc:fd:bc:b6:5d:8b:e8: 34:58:33:bc:60:b4:05:83:e9:6c:07:7e:34:a6:67: ae:a6:07:dc:0e:82:11:d8:13:71:09:d4:82:8c:c9: b2:ab:83:05:95:a4:e0:fb:d1:fb:60:69:ca:49:95: 74:78:34:b3:59:9d:0e:24:36:d9:be:7f:ab:d8:71: d0:2e:1c:ca:45:59:1a:b2:87:32:0a:15:e3:24:85: 53:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:6A:B0:19:AA:39:E8:98:E4:FF:4E:AD:90:BA:13:B9:86:BE:3C:97 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/740695a4-ae7e-44db-9a4c-1ddd5bc66e97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.169.64.0/19 Signature Algorithm: sha256WithRSAEncryption 05:dd:10:dd:b4:0b:82:5d:71:43:09:d4:4b:bb:af:29:05:3c: e7:0b:05:64:26:46:56:bc:24:9e:3a:f0:a4:c1:dc:65:0d:85: 76:c7:1c:94:2d:fb:5c:9f:3b:23:c6:fb:19:80:78:fa:f4:24: 45:6e:b9:1b:45:11:91:9c:fd:89:81:4c:ab:97:89:57:87:28: 6d:45:8b:fa:bc:0f:cf:3c:84:a7:9f:96:3d:af:48:41:41:cb: 4f:c9:e8:5a:be:5e:88:b9:43:75:d3:ba:a8:29:89:e0:b3:1b: f7:2f:8c:3f:66:17:7f:0d:49:67:0d:7e:76:10:95:89:a1:50: bb:b6:8b:75:0f:75:ac:57:6c:21:fc:6b:0e:06:8e:36:37:06: cf:bf:6b:bc:42:90:98:00:f7:8b:5f:7b:e2:fc:a7:6d:07:77: fd:20:7a:7b:cc:c0:18:db:26:6f:3c:86:d7:a0:ba:69:a1:10: 4f:f7:d2:ac:2d:34:fd:25:cd:ad:ed:05:b9:0a:96:5b:a2:d5: 13:a0:11:1e:e0:1f:35:f9:05:1e:9c:65:5c:70:e6:c0:de:01: 2d:4b:3c:83:c7:57:59:ac:35:4e:8d:6d:56:a8:d3:09:c7:8d: 0d:48:e5:23:0e:fd:40:4f:e3:c3:be:0d:94:7f:14:8c:60:d3: 73:3e:5f:ca -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDB2SDJqEEjxAEHbGvI3zhvYCJP8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA2MDAxMTU5WhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YzcyMDc4NWMyMTI1MDJlMmNkNmJjNTg4ODEyMTYzNmEy M2IwMTU3NzBiOGE3ODM0YmI4ZTY5MWE3M2JlMjY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9CLH25qQHM2bCyNCHZ9z3dYWBOSPwzzCUjgl52wHUjD3S WhNDPXVAk16naWS45d9bA4rSn4m09Mn+CgEnXj6GpVy/MAU8/gLIAed+fsSeT1qR O5t3jKqiV1536FYmko5zi8iE4SOqjbWJEc9uHrpBmxKniFzxvoJGhfjRbv56L9fi lYv6TVea+tEY3Nh0uSSyG5mzXgTMPx77BV4moQvbKIpoK1pnI3xVG3OmvP28tl2L 6DRYM7xgtAWD6WwHfjSmZ66mB9wOghHYE3EJ1IKMybKrgwWVpOD70ftgacpJlXR4 NLNZnQ4kNtm+f6vYcdAuHMpFWRqyhzIKFeMkhVNXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOWqwGao56Jjk/06tkLoTuYa+PJcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc0MDY5NWE0LWFlN2UtNDRkYi05YTRjLTFkZGQ1YmM2NmU5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAW4qUAwDQYJKoZIhvcNAQELBQADggEBAAXdEN20C4JdcUMJ1Eu7rykFPOcL BWQmRla8JJ468KTB3GUNhXbHHJQt+1yfOyPG+xmAePr0JEVuuRtFEZGc/YmBTKuX iVeHKG1Fi/q8D888hKeflj2vSEFBy0/J6Fq+Xoi5Q3XTuqgpieCzG/cvjD9mF38N SWcNfnYQlYmhULu2i3UPdaxXbCH8aw4GjjY3Bs+/a7xCkJgA94tfe+L8p20Hd/0g envMwBjbJm88htegummhEE/30qwtNP0lza3tBbkKllui1ROgER7gHzX5BR6cZVxw 5sDeAS1LPIPHV1msNU6NbVao0wnHjQ1I5SMO/UBP48O+DZR/FIxg03M+X8o= -----END CERTIFICATE-----Generated at Wed Aug 20 10:44:41 2025 by rpki-client