$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d7da08a-f15f-40ea-ac7f-4dcc5efc60f9.roa File: 4d7da08a-f15f-40ea-ac7f-4dcc5efc60f9.roa (raw, json) Hash identifier: IsAbgtBfQ/oVzzlwp75sc1uBkxWgoUvoxa3i3kNocJ4= Subject key identifier: 01:12:CB:AB:36:56:1D:8C:C7:C3:14:46:B9:E7:77:F9:7D:CD:0F:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7EEDA95EE2C0787FDEE5CA66A8FD889B1A13E324 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d7da08a-f15f-40ea-ac7f-4dcc5efc60f9.roa Signing time: Fri 08 Aug 2025 00:22:03 +0000 ROA not before: Fri 08 Aug 2025 00:22:03 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 63.134.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:ed:a9:5e:e2:c0:78:7f:de:e5:ca:66:a8:fd:88:9b:1a:13:e3:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:22:03 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=4282c86e2c38dc4915c76b3438acf705b5166bc111e6723a009770bfa9ae8f0a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b2:9a:45:90:cf:46:5c:19:17:e6:4b:30:20: 44:25:7b:73:f7:7d:68:ef:b7:50:fd:a7:fa:06:3f: a1:4b:1f:e7:1e:5f:ad:50:65:02:2d:00:32:a9:fb: 9b:b8:a3:4d:75:9e:50:7d:18:d8:10:c9:17:d3:3a: e1:52:8e:df:7d:80:47:c7:45:60:18:87:4d:a2:87: a1:2e:90:9d:c6:fd:69:66:e0:d7:6b:59:70:3b:63: b7:3a:9c:39:0e:cd:51:53:73:34:7b:ce:07:c0:b4: 54:a5:28:81:6b:73:3d:1a:98:f4:b4:00:c7:fb:26: 46:b3:ca:fa:46:7d:41:45:92:e0:52:d9:75:25:46: c9:c6:50:a3:45:cf:cf:00:3b:25:95:cc:d0:50:09: 1d:e4:93:6c:d5:3a:59:09:1f:b4:52:a2:a1:fe:84: c8:8d:1e:e0:c2:62:2c:89:4b:04:df:fc:e3:c4:23: ee:c7:36:28:e2:f0:f4:ed:9f:b0:1d:04:83:32:9f: 66:92:fc:ee:90:cd:7e:b9:35:73:d3:08:6f:04:1b: b0:33:f0:95:0d:08:19:dd:63:a0:2e:c0:3c:b3:d7: 63:08:ed:03:25:15:80:82:5a:8c:80:24:40:b4:d5: 24:8a:a7:07:f1:be:80:e3:d7:fe:cc:e2:0a:81:dd: de:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:12:CB:AB:36:56:1D:8C:C7:C3:14:46:B9:E7:77:F9:7D:CD:0F:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d7da08a-f15f-40ea-ac7f-4dcc5efc60f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.134.0.0/17 Signature Algorithm: sha256WithRSAEncryption 8b:0b:02:77:dd:54:15:d1:0b:73:6a:a2:ea:17:46:bd:0f:fa: 5b:22:7f:db:0f:54:24:4b:3a:7c:33:10:7e:70:78:f6:18:df: bc:21:9a:06:f3:9c:00:d3:1b:f8:e0:51:ca:6b:e2:d0:ff:2f: 6d:9c:8f:05:eb:4c:3e:5e:86:b0:40:5c:90:de:6b:48:a8:f5: 21:19:7f:0a:ad:45:61:99:2b:33:cb:de:4f:48:61:82:6a:ab: 3f:c6:68:f6:a7:0b:73:3c:76:64:14:f6:4b:a9:6d:be:a6:71: 7a:24:a4:7a:69:6d:fc:14:1c:30:8d:d4:af:bb:03:b7:0b:08: 14:a1:cf:e2:f2:2b:6b:e8:ea:27:51:e3:79:c5:ed:02:8f:73: 75:23:c3:de:b6:45:e9:58:f9:10:d2:65:ab:69:ff:d4:73:2f: e8:6d:36:ed:d2:1e:10:34:82:15:84:8f:8e:68:db:84:38:f5: 5e:6e:49:10:e3:aa:2e:1d:01:bc:2b:e9:d3:49:62:5a:d1:5d: 51:e9:84:66:02:50:ed:36:0e:12:28:5e:2a:08:b2:66:71:ab: 4c:c5:11:44:7b:69:39:69:8d:4c:cd:1a:fa:89:bd:e4:b2:69: f9:aa:67:4f:0c:63:67:74:b5:07:e3:d6:8b:58:70:1e:c2:cb: 89:29:f9:66 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfu2pXuLAeH/e5cpmqP2ImxoT4yQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAyMjAzWhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjgyYzg2ZTJjMzhkYzQ5MTVjNzZiMzQzOGFjZjcwNWI1 MTY2YmMxMTFlNjcyM2EwMDk3NzBiZmE5YWU4ZjBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSsppFkM9GXBkX5kswIEQle3P3fWjvt1D9p/oGP6FLH+ce X61QZQItADKp+5u4o011nlB9GNgQyRfTOuFSjt99gEfHRWAYh02ih6EukJ3G/Wlm 4NdrWXA7Y7c6nDkOzVFTczR7zgfAtFSlKIFrcz0amPS0AMf7JkazyvpGfUFFkuBS 2XUlRsnGUKNFz88AOyWVzNBQCR3kk2zVOlkJH7RSoqH+hMiNHuDCYiyJSwTf/OPE I+7HNiji8PTtn7AdBIMyn2aS/O6QzX65NXPTCG8EG7Az8JUNCBndY6AuwDyz12MI 7QMlFYCCWoyAJEC01SSKpwfxvoDj1/7M4gqB3d6PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUARLLqzZWHYzHwxRGued3+X3ND0UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRkN2RhMDhhLWYxNWYtNDBlYS1hYzdmLTRkY2M1ZWZjNjBmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc/hgAwDQYJKoZIhvcNAQELBQADggEBAIsLAnfdVBXRC3NqouoXRr0P+lsi f9sPVCRLOnwzEH5wePYY37whmgbznADTG/jgUcpr4tD/L22cjwXrTD5ehrBAXJDe a0io9SEZfwqtRWGZKzPL3k9IYYJqqz/GaPanC3M8dmQU9kupbb6mcXokpHppbfwU HDCN1K+7A7cLCBShz+LyK2vo6idR43nF7QKPc3Ujw962RelY+RDSZatp/9RzL+ht Nu3SHhA0ghWEj45o24Q49V5uSRDjqi4dAbwr6dNJYlrRXVHphGYCUO02DhIoXioI smZxq0zFEUR7aTlpjUzNGvqJveSyafmqZ08MY2d0tQfj1otYcB7Cy4kp+WY= -----END CERTIFICATE-----Generated at Sat Aug 23 10:13:39 2025 by rpki-client