$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efb54f3e-2c1a-4dbb-876a-f86620b04208.roa File: efb54f3e-2c1a-4dbb-876a-f86620b04208.roa (raw, json) Hash identifier: O5IY5w/LshrrMBL1JCoC2XS93ULA6Aa/K/mon+NAPdE= Subject key identifier: 78:B1:E9:A1:2D:52:4E:DE:9F:34:23:7D:BD:07:1A:A5:3B:3B:AB:66 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 769EA780D0177CB809B470240357BF48F330421E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efb54f3e-2c1a-4dbb-876a-f86620b04208.roa Signing time: Wed 13 Aug 2025 00:41:06 +0000 ROA not before: Wed 13 Aug 2025 00:41:06 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:9e:a7:80:d0:17:7c:b8:09:b4:70:24:03:57:bf:48:f3:30:42:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:41:06 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=d99b542f6dd52e10d14f57e83de98e4ea66e3c2c75b8798ca8491ac23f44992a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a3:4f:05:e4:38:05:82:13:91:5c:2e:34:91: 26:a6:0c:a4:3b:99:74:56:69:04:b6:62:2e:2c:13: 5b:82:3d:57:3d:ee:6c:1f:fb:90:f5:54:cb:2b:22: 9e:50:60:88:2c:26:20:fb:f0:06:f2:db:1b:11:d2: c0:d2:91:60:bd:26:1a:f7:62:61:2f:f9:0f:bc:e9: 5d:b9:df:f4:a6:bc:d3:81:6f:4e:07:77:51:c7:88: 8c:67:04:0c:99:65:6c:42:96:73:ca:06:fd:66:02: 23:52:18:bc:5f:f1:a5:e9:65:52:11:c0:ac:91:eb: 3e:69:83:56:d2:7a:49:f2:54:c4:92:12:2b:26:4f: 3a:2b:56:bb:13:e5:cf:53:ad:21:63:4c:09:ba:fd: 39:cc:dd:98:9e:91:22:96:d7:1f:43:81:bf:35:6b: 36:c2:de:76:06:3e:c6:d2:94:ac:1b:d7:c3:80:af: 26:57:91:c9:a9:ce:b6:51:e3:a2:cd:f4:e8:8f:8e: 1d:f2:0e:c2:8f:9f:65:ea:70:01:dc:fb:92:91:42: 95:57:78:52:e8:35:30:a0:63:65:60:97:b7:89:84: ac:82:66:db:cd:77:27:56:33:8b:5f:57:51:67:b1: a5:bb:2e:1e:3a:0f:c5:0f:3b:d2:0b:01:af:2a:7f: 19:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:B1:E9:A1:2D:52:4E:DE:9F:34:23:7D:BD:07:1A:A5:3B:3B:AB:66 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efb54f3e-2c1a-4dbb-876a-f86620b04208.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.164.0/24 Signature Algorithm: sha256WithRSAEncryption b8:82:2f:d3:36:a7:7f:3b:69:67:2e:6b:ed:bd:c7:d1:ec:95: 29:5e:88:1f:2f:f5:b3:fd:c1:d3:fa:48:21:0b:57:96:55:fa: 40:4e:e5:94:e2:c3:d3:7c:75:d7:92:79:ca:0f:03:0f:56:34: 0a:43:72:d1:dc:1f:f8:95:63:db:ff:ec:0e:48:ff:00:61:b9: 15:ae:d8:42:8c:75:51:a5:06:7b:fb:ee:53:04:be:32:85:77: b2:9a:9a:8a:5a:8f:0e:58:37:df:a6:73:75:01:52:97:8e:88: ae:48:6d:db:cf:3b:68:7d:de:89:1a:2d:fa:be:25:79:e8:65: 69:2c:21:85:09:ea:ee:a3:ab:b7:5d:fa:fd:7b:49:da:38:6a: c8:0d:84:27:43:f7:04:77:c2:0f:59:cf:f2:4e:c3:30:89:32: 32:cb:bc:42:4e:82:5e:1a:dc:29:d8:c5:11:fe:76:c4:96:be: cc:a7:85:35:ce:2d:80:c1:b0:c5:2f:66:d6:3b:62:b2:07:fa: 82:3b:a6:91:ae:9b:c4:20:2f:5f:fc:cc:62:28:7e:a2:12:dc: af:de:e1:9d:1c:ff:29:3c:68:20:96:eb:f0:bc:0c:11:fa:52: 63:a0:a3:7a:a0:94:e0:af:aa:08:48:f5:86:b1:80:82:cd:b7: d9:2e:21:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdp6ngNAXfLgJtHAkA1e/SPMwQh4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDA0MTA2WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOTliNTQyZjZkZDUyZTEwZDE0ZjU3ZTgzZGU5OGU0ZWE2 NmUzYzJjNzViODc5OGNhODQ5MWFjMjNmNDQ5OTJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxo08F5DgFghORXC40kSamDKQ7mXRWaQS2Yi4sE1uCPVc9 7mwf+5D1VMsrIp5QYIgsJiD78Aby2xsR0sDSkWC9Jhr3YmEv+Q+86V253/SmvNOB b04Hd1HHiIxnBAyZZWxClnPKBv1mAiNSGLxf8aXpZVIRwKyR6z5pg1bSeknyVMSS EismTzorVrsT5c9TrSFjTAm6/TnM3ZiekSKW1x9Dgb81azbC3nYGPsbSlKwb18OA ryZXkcmpzrZR46LN9OiPjh3yDsKPn2XqcAHc+5KRQpVXeFLoNTCgY2Vgl7eJhKyC ZtvNdydWM4tfV1FnsaW7Lh46D8UPO9ILAa8qfxm/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeLHpoS1STt6fNCN9vQcapTs7q2YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VmYjU0ZjNlLTJjMWEtNGRiYi04NzZhLWY4NjYyMGIwNDIwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36QwDQYJKoZIhvcNAQELBQADggEBALiCL9M2p387aWcua+29x9HslSle iB8v9bP9wdP6SCELV5ZV+kBO5ZTiw9N8ddeSecoPAw9WNApDctHcH/iVY9v/7A5I /wBhuRWu2EKMdVGlBnv77lMEvjKFd7Kamopajw5YN9+mc3UBUpeOiK5IbdvPO2h9 3okaLfq+JXnoZWksIYUJ6u6jq7dd+v17Sdo4asgNhCdD9wR3wg9Zz/JOwzCJMjLL vEJOgl4a3CnYxRH+dsSWvsynhTXOLYDBsMUvZtY7YrIH+oI7ppGum8QgL1/8zGIo fqIS3K/e4Z0c/yk8aCCW6/C8DBH6UmOgo3qglOCvqghI9YaxgILNt9kuIbw= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:28 2025 by rpki-client