$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a3b8fad-9258-46d6-b69b-f0193aa2914e.roa File: 4a3b8fad-9258-46d6-b69b-f0193aa2914e.roa (raw, json) Hash identifier: GfuAWTa8UCu5XC4oRcsWLWvbTa8eMtUDNMHMSU2Qw/A= Subject key identifier: 29:13:6F:1F:C4:DF:7E:98:32:E8:E6:EC:B4:BE:54:6D:19:52:E2:CE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A3B4060FC177722486FA6A81DF7A0CA49AAAADB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a3b8fad-9258-46d6-b69b-f0193aa2914e.roa Signing time: Mon 30 Jun 2025 15:00:20 +0000 ROA not before: Mon 30 Jun 2025 15:00:20 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 157.52.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:3b:40:60:fc:17:77:22:48:6f:a6:a8:1d:f7:a0:ca:49:aa:aa:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 30 15:00:20 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=6b49fd3f830f345dae716d664ba31b652a287ebd4335b775a84836d421887799, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:72:4e:e8:24:3d:22:99:33:dc:3f:2a:dd:75: 57:0a:e4:83:64:69:55:82:41:bf:59:03:53:8f:6b: e3:63:60:f8:7a:eb:63:4b:dc:21:e8:fd:32:03:24: 12:c0:85:73:35:80:d8:eb:28:04:5f:ed:0d:31:5d: db:be:44:e5:6d:16:0f:7f:30:a0:4b:cc:8e:f3:9c: e3:45:b9:e4:63:0a:2a:7f:cf:8f:8c:ea:a4:09:42: 8c:db:18:3e:24:7f:d3:df:00:1d:1d:2a:75:e5:2f: 8a:e2:0f:34:8e:02:62:fc:31:f2:f8:a1:18:de:97: 34:f8:81:23:c9:97:1f:92:69:82:b8:6c:46:2d:10: a0:86:4c:0e:3c:1c:10:0b:9d:ba:04:f7:e2:3b:ac: 13:3d:9e:08:fb:79:dd:dd:b2:50:d9:7a:d6:b3:04: a3:7a:04:a4:49:9f:3a:eb:d5:0f:c0:16:4f:b7:5a: 46:25:bc:68:86:88:7d:ec:02:ba:d1:12:1f:e2:70: 2f:2d:60:1c:ff:07:1f:33:1b:5e:b2:4c:28:92:61: ea:52:59:8d:08:8c:14:5a:54:bd:29:4a:98:32:23: e7:67:2c:14:db:24:28:a0:c8:10:44:ad:30:06:30: ee:1c:a0:69:26:d7:e1:9a:af:bd:0c:d0:07:65:ee: 66:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:13:6F:1F:C4:DF:7E:98:32:E8:E6:EC:B4:BE:54:6D:19:52:E2:CE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a3b8fad-9258-46d6-b69b-f0193aa2914e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.52.128.0/17 Signature Algorithm: sha256WithRSAEncryption 8d:2a:56:28:54:cf:a6:85:54:3e:c0:65:df:dd:31:2f:f9:a9: 8e:15:90:41:94:a5:0b:c8:66:69:55:97:28:15:a7:25:73:65: 3e:f8:d6:58:43:c3:73:f2:4a:57:02:37:4e:59:8b:d4:42:d1: 44:fe:c9:29:11:3f:dc:f9:fd:e3:f8:c5:5e:f2:59:07:e0:d9: c8:97:28:a1:10:32:94:2b:88:0b:95:36:c8:0c:f0:78:93:38: 3c:fe:a8:b9:d9:dd:51:4d:14:84:02:81:53:93:fb:35:4a:a8: 92:b7:c4:7a:f7:8e:de:df:d0:e1:77:4f:11:0b:40:e3:6e:6b: 1c:84:33:6b:6f:07:bf:42:e7:77:9a:dc:11:9a:2e:8e:52:38: ef:3d:9f:31:e9:bf:24:bd:8e:db:60:71:e7:7e:9d:8f:60:7e: 10:9d:97:d5:12:c4:63:0d:16:1e:cd:61:2e:ef:24:53:20:0d: 60:2b:d4:f6:7c:43:07:86:ac:cf:b9:08:93:43:81:5e:1d:f0: f4:8d:02:f1:c7:d3:21:38:0e:74:48:ad:61:b1:26:05:1b:c0: b4:c3:4a:d8:34:30:73:04:bf:c9:6d:6e:70:f6:7b:aa:63:30: ea:0f:19:52:52:84:95:47:41:0f:a8:7a:be:56:96:50:49:a1: 8e:94:37:39 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUejtAYPwXdyJIb6aoHfegykmqqtswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjMwMTUwMDIwWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjQ5ZmQzZjgzMGYzNDVkYWU3MTZkNjY0YmEzMWI2NTJh Mjg3ZWJkNDMzNWI3NzVhODQ4MzZkNDIxODg3Nzk5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnck7oJD0imTPcPyrddVcK5INkaVWCQb9ZA1OPa+NjYPh6 62NL3CHo/TIDJBLAhXM1gNjrKARf7Q0xXdu+ROVtFg9/MKBLzI7znONFueRjCip/ z4+M6qQJQozbGD4kf9PfAB0dKnXlL4riDzSOAmL8MfL4oRjelzT4gSPJlx+SaYK4 bEYtEKCGTA48HBALnboE9+I7rBM9ngj7ed3dslDZetazBKN6BKRJnzrr1Q/AFk+3 WkYlvGiGiH3sArrREh/icC8tYBz/Bx8zG16yTCiSYepSWY0IjBRaVL0pSpgyI+dn LBTbJCigyBBErTAGMO4coGkm1+Gar70M0Adl7mbDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKRNvH8Tffpgy6ObstL5UbRlS4s4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhM2I4ZmFkLTkyNTgtNDZkNi1iNjliLWYwMTkzYWEyOTE0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAedNIAwDQYJKoZIhvcNAQELBQADggEBAI0qVihUz6aFVD7AZd/dMS/5qY4V kEGUpQvIZmlVlygVpyVzZT741lhDw3PySlcCN05Zi9RC0UT+ySkRP9z5/eP4xV7y WQfg2ciXKKEQMpQriAuVNsgM8HiTODz+qLnZ3VFNFIQCgVOT+zVKqJK3xHr3jt7f 0OF3TxELQONuaxyEM2tvB79C53ea3BGaLo5SOO89nzHpvyS9jttgced+nY9gfhCd l9USxGMNFh7NYS7vJFMgDWAr1PZ8QweGrM+5CJNDgV4d8PSNAvHH0yE4DnRIrWGx JgUbwLTDStg0MHMEv8ltbnD2e6pjMOoPGVJShJVHQQ+oer5WllBJoY6UNzk= -----END CERTIFICATE-----Generated at Tue Jul 1 19:08:45 2025 by rpki-client