$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/202fa196-7fc4-42d7-9eda-ead645c20087.roa File: 202fa196-7fc4-42d7-9eda-ead645c20087.roa (raw, json) Hash identifier: 29uMvVvuffzhn7Tt5w9tY/whrr2PZ5RNMpZ8wMVhtYU= Subject key identifier: 79:A4:1B:1E:EC:8C:43:B9:D7:20:E2:29:A9:DD:26:29:5D:D5:F4:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 75795561AE1C8EC6D447559BF766D78EE37ED599 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/202fa196-7fc4-42d7-9eda-ead645c20087.roa Signing time: Mon 23 Jun 2025 15:51:10 +0000 ROA not before: Mon 23 Jun 2025 15:51:10 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:79:55:61:ae:1c:8e:c6:d4:47:55:9b:f7:66:d7:8e:e3:7e:d5:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:51:10 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=a2ba0c9917024d7f5b20612d7a6625217e528f4a61e7530b0d7af2a3d528ad3d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:fe:e9:e1:29:66:57:83:d9:d5:6f:65:91:c0: 66:2b:33:2f:c0:ba:0f:73:8a:a5:2b:47:ce:85:1c: 2f:4d:13:07:92:66:46:40:bb:56:27:6f:f2:98:e7: c4:e3:54:be:b2:a7:f7:20:2f:9c:e1:db:9c:b3:ca: 8c:a6:c2:6d:e9:f8:69:e8:5c:94:ed:7e:13:39:2e: 62:75:9b:d3:95:22:66:2a:1b:be:51:63:a6:98:97: 8f:57:90:aa:c0:65:0b:f4:e1:04:b3:b1:68:4e:74: 36:47:4e:2c:a7:05:44:90:e0:f1:13:ba:66:2b:dc: 00:5a:48:ba:0e:0d:ea:65:59:88:02:2b:38:fa:34: 64:4f:f8:7b:4b:76:0d:67:21:80:02:a8:61:9b:08: f3:ac:68:a1:aa:e1:22:fb:1b:79:c7:05:4c:35:d9: 22:ee:eb:df:e7:d2:ad:c5:a6:d7:69:8e:da:bb:22: a3:55:46:12:8d:f6:c9:74:f7:6f:0a:62:4c:c1:f6: b5:6f:e1:0d:34:51:b6:f2:ec:0b:ce:4c:c0:4e:b9: 3b:b3:f9:31:fc:fc:72:62:65:10:27:90:c3:5b:f2: b1:50:d4:11:7b:eb:f8:80:ae:62:44:a4:fb:26:7b: 04:f2:fb:4b:86:4f:94:bf:ca:4c:8b:4e:a3:44:55: a4:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:A4:1B:1E:EC:8C:43:B9:D7:20:E2:29:A9:DD:26:29:5D:D5:F4:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/202fa196-7fc4-42d7-9eda-ead645c20087.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.160.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:13:09:ec:d3:79:f8:37:4d:02:62:d7:9e:75:0a:f8:57:0f: a0:b2:1c:ac:22:a6:b8:0d:9c:06:a5:56:aa:ef:85:6d:c1:dd: 7a:41:89:08:89:26:a9:1f:ce:48:c2:c0:42:b6:fb:e0:d1:db: fe:52:ef:fc:66:04:0d:dc:09:9a:29:e9:db:42:ec:2a:75:7b: b6:88:42:c8:59:3f:d0:7c:6f:d5:13:34:fa:73:b7:7e:57:79: 7d:29:cf:f7:9e:21:2f:7b:d2:fa:67:21:e3:5f:b4:dc:51:d4: c5:89:49:7b:a5:be:e0:64:63:a5:fd:4a:16:f7:31:a2:61:df: 6c:e6:5b:82:9b:f1:23:bf:45:ec:36:06:c2:5a:89:f0:1a:a9: da:cb:cf:34:29:4e:57:f0:d9:c2:ca:cd:b8:73:b1:a9:31:0c: 88:c6:95:a6:fe:96:8c:d7:86:75:59:63:bd:5d:05:32:2a:f4: 51:5f:42:44:c6:03:dc:ac:65:61:fa:30:39:96:ac:86:96:9c: bd:94:83:17:d5:cf:c7:63:01:48:4e:5b:23:d2:8b:29:56:35: b3:13:84:14:0c:8a:97:05:88:ee:6c:d3:0a:ab:7c:81:29:a8: 7b:11:1e:7b:f7:96:58:a5:43:be:41:8a:0d:d2:f2:97:03:af: a8:7c:4c:82 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdXlVYa4cjsbUR1Wb92bXjuN+1ZkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTU1MTEwWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMmJhMGM5OTE3MDI0ZDdmNWIyMDYxMmQ3YTY2MjUyMTdl NTI4ZjRhNjFlNzUzMGIwZDdhZjJhM2Q1MjhhZDNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCs/unhKWZXg9nVb2WRwGYrMy/Aug9ziqUrR86FHC9NEweS ZkZAu1Ynb/KY58TjVL6yp/cgL5zh25yzyoymwm3p+GnoXJTtfhM5LmJ1m9OVImYq G75RY6aYl49XkKrAZQv04QSzsWhOdDZHTiynBUSQ4PETumYr3ABaSLoODeplWYgC Kzj6NGRP+HtLdg1nIYACqGGbCPOsaKGq4SL7G3nHBUw12SLu69/n0q3Fptdpjtq7 IqNVRhKN9sl0928KYkzB9rVv4Q00Ubby7AvOTMBOuTuz+TH8/HJiZRAnkMNb8rFQ 1BF76/iArmJEpPsmewTy+0uGT5S/ykyLTqNEVaSHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeaQbHuyMQ7nXIOIpqd0mKV3V9FcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIwMmZhMTk2LTdmYzQtNDJkNy05ZWRhLWVhZDY0NWMyMDA4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36AwDQYJKoZIhvcNAQELBQADggEBAHoTCezTefg3TQJi1551CvhXD6Cy HKwiprgNnAalVqrvhW3B3XpBiQiJJqkfzkjCwEK2++DR2/5S7/xmBA3cCZop6dtC 7Cp1e7aIQshZP9B8b9UTNPpzt35XeX0pz/eeIS970vpnIeNftNxR1MWJSXulvuBk Y6X9Shb3MaJh32zmW4Kb8SO/Rew2BsJaifAaqdrLzzQpTlfw2cLKzbhzsakxDIjG lab+lozXhnVZY71dBTIq9FFfQkTGA9ysZWH6MDmWrIaWnL2UgxfVz8djAUhOWyPS iylWNbMThBQMipcFiO5s0wqrfIEpqHsRHnv3llilQ75Big3S8pcDr6h8TII= -----END CERTIFICATE-----Generated at Sun Jun 29 08:07:38 2025 by rpki-client