$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cbc87493-0fce-429d-8060-e6fb407a845b.roa File: cbc87493-0fce-429d-8060-e6fb407a845b.roa (raw, json) Hash identifier: 1fZ6oWNS7+MuKrx8C2R4VmW8CklqfiZg/zfXEoYHc6w= Subject key identifier: A0:1A:1F:B5:D0:34:9E:AA:B0:51:0D:63:F9:5D:31:B1:F7:ED:1C:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0975A2D6863BE2200C6FFA2812440A247F31AF88 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cbc87493-0fce-429d-8060-e6fb407a845b.roa Signing time: Fri 11 Jul 2025 15:00:24 +0000 ROA not before: Fri 11 Jul 2025 15:00:24 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 98.82.158.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 01 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:75:a2:d6:86:3b:e2:20:0c:6f:fa:28:12:44:0a:24:7f:31:af:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 15:00:24 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=14a42325717a5ea7abfd3076386ddcd4b072f7825a3a1133187af3766588e76f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:5b:ce:6c:ae:29:3a:e9:c4:c5:63:5c:a9:02: 7a:b6:33:51:c7:ce:80:d9:14:17:b0:a3:89:7d:91: f5:7e:7e:de:59:38:ee:9d:7e:93:a7:6c:e0:71:12: 7f:d7:5f:cf:a5:da:5a:4e:64:9c:fe:63:72:34:6f: 48:6d:45:91:f9:3a:29:81:02:b8:10:ff:da:29:b0: 21:ad:19:08:d1:dd:e8:d2:0b:0b:6e:03:a1:33:ad: 78:48:bd:e9:70:53:e0:b7:09:9a:24:ae:9b:62:ed: 59:26:5b:a5:f1:e8:18:3c:b6:c7:ef:08:7b:99:17: 86:28:2e:66:e9:d9:21:0d:86:c8:e8:a0:e8:3b:ff: ee:35:1c:86:9a:07:23:83:90:19:39:88:49:f6:ae: d1:fb:e3:e4:8a:0f:f5:3d:6f:de:0f:90:07:14:67: 94:f3:38:ca:67:e0:7a:7c:bb:3e:53:b7:da:31:af: ef:a1:88:d3:be:84:2d:09:fe:da:e6:97:4c:bd:e4: 3b:eb:fa:c6:49:48:1d:3e:92:1a:f4:c3:4c:c3:44: d8:9d:55:a5:fc:1f:40:dc:4e:75:c0:a2:a0:46:fa: e2:02:61:24:ae:a1:98:99:9b:2b:a1:ce:7c:10:9d: 05:2f:1f:a2:73:83:f6:3f:a7:7f:43:50:2b:f3:c8: c6:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:1A:1F:B5:D0:34:9E:AA:B0:51:0D:63:F9:5D:31:B1:F7:ED:1C:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cbc87493-0fce-429d-8060-e6fb407a845b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.82.158.0/23 Signature Algorithm: sha256WithRSAEncryption 7b:09:6a:ac:04:50:04:6b:49:c8:eb:f0:c9:99:70:7d:b4:47: 34:a8:f0:7c:74:8e:8a:0e:5c:ff:cd:68:31:b4:88:4c:4c:e3: 07:c8:2d:6f:79:d3:77:8c:e1:5e:e7:07:74:82:ec:59:2c:ee: 79:f7:e4:ab:23:73:54:c0:66:9c:6d:02:20:9a:7b:35:d6:99: 78:40:24:a9:a0:cc:cd:e9:a6:ae:01:da:f6:b0:ee:6f:36:8c: 01:52:99:96:eb:be:db:95:e2:b9:45:ea:58:b6:33:4c:43:aa: e7:02:92:e7:73:9e:89:3b:93:95:ec:73:ee:ce:aa:fa:ff:31: 12:3e:b6:2b:20:f6:83:69:76:7a:d7:61:39:7d:8a:9e:b8:04: fe:d2:68:8b:32:62:f7:30:78:55:34:5e:fc:a3:fe:95:2a:f8: 19:c3:7c:60:f3:fd:79:c7:37:5a:05:31:b6:f4:4e:67:d7:e9: e2:24:a3:cb:f3:f1:45:24:5f:d7:a9:09:e2:00:a9:49:f9:ca: 7b:83:ad:1e:83:48:fa:00:55:8f:86:74:c3:40:f3:9e:f4:f1: c9:ef:07:95:b3:ba:17:b7:aa:bc:c8:92:87:f9:af:46:73:69: 73:0f:e3:57:f0:8a:c7:26:4f:84:15:55:6d:bf:94:28:be:e1: 2f:43:c3:96 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCXWi1oY74iAMb/ooEkQKJH8xr4gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMTUwMDI0WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNGE0MjMyNTcxN2E1ZWE3YWJmZDMwNzYzODZkZGNkNGIw NzJmNzgyNWEzYTExMzMxODdhZjM3NjY1ODhlNzZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbW85srik66cTFY1ypAnq2M1HHzoDZFBewo4l9kfV+ft5Z OO6dfpOnbOBxEn/XX8+l2lpOZJz+Y3I0b0htRZH5OimBArgQ/9opsCGtGQjR3ejS CwtuA6EzrXhIvelwU+C3CZokrpti7VkmW6Xx6Bg8tsfvCHuZF4YoLmbp2SENhsjo oOg7/+41HIaaByODkBk5iEn2rtH74+SKD/U9b94PkAcUZ5TzOMpn4Hp8uz5Tt9ox r++hiNO+hC0J/trml0y95Dvr+sZJSB0+khr0w0zDRNidVaX8H0DcTnXAoqBG+uIC YSSuoZiZmyuhznwQnQUvH6Jzg/Y/p39DUCvzyMZDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoBoftdA0nqqwUQ1j+V0xsfftHAUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NiYzg3NDkzLTBmY2UtNDI5ZC04MDYwLWU2ZmI0MDdhODQ1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFiUp4wDQYJKoZIhvcNAQELBQADggEBAHsJaqwEUARrScjr8MmZcH20RzSo 8Hx0jooOXP/NaDG0iExM4wfILW9503eM4V7nB3SC7Fks7nn35Ksjc1TAZpxtAiCa ezXWmXhAJKmgzM3ppq4B2vaw7m82jAFSmZbrvtuV4rlF6li2M0xDqucCkudznok7 k5Xsc+7Oqvr/MRI+tisg9oNpdnrXYTl9ip64BP7SaIsyYvcweFU0Xvyj/pUq+BnD fGDz/XnHN1oFMbb0TmfX6eIko8vz8UUkX9epCeIAqUn5ynuDrR6DSPoAVY+GdMNA 85708cnvB5Wzuhe3qrzIkof5r0ZzaXMP41fwiscmT4QVVW2/lCi+4S9Dw5Y= -----END CERTIFICATE-----Generated at Thu Jul 31 01:21:13 2025 by rpki-client