$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67e38fd2-258c-4ee2-b47d-b15038a29e00.roa File: 67e38fd2-258c-4ee2-b47d-b15038a29e00.roa (raw, json) Hash identifier: IansBoQ+INsdnqZr99hT/Nvu8Ka1G9J5yxYcGFC8kAg= Subject key identifier: 12:CD:36:CB:AB:91:75:CF:78:49:F3:AB:97:C5:A4:94:68:95:83:CA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 18E84E6360D8FFDFDBEEE49D39516E3446A259BE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67e38fd2-258c-4ee2-b47d-b15038a29e00.roa Signing time: Mon 18 Aug 2025 15:22:01 +0000 ROA not before: Mon 18 Aug 2025 15:22:01 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 184.72.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:e8:4e:63:60:d8:ff:df:db:ee:e4:9d:39:51:6e:34:46:a2:59:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:22:01 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=51440f34135e09b4aeaaf7b84db8bc025ff54a9cb7b081cd3200320301bd56f9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:af:fc:42:df:1d:b1:16:2b:48:67:2f:7f:9d: 39:1f:1a:78:27:12:99:df:16:83:47:b3:ad:8b:b2: c6:3e:1a:ab:ea:b9:05:4b:ec:4e:37:19:cb:6b:48: ab:e2:9f:2e:db:77:50:05:36:eb:5d:62:bc:c2:42: 65:ad:5d:6a:9f:03:56:0e:26:29:33:71:73:cb:d5: de:5d:08:1c:ac:14:15:24:28:b8:a7:9f:48:86:81: a3:7a:89:88:6f:1a:a7:d6:0b:ad:5c:18:91:1d:a8: e2:fc:1a:7f:8f:6b:8c:de:26:ea:66:2c:31:fd:e5: a9:86:61:ab:d5:b1:a3:03:cb:5c:d6:00:2d:b3:ba: 68:25:13:e2:6a:f5:64:bb:ba:4e:8d:b2:94:d8:31: 38:ce:c5:a6:05:9b:ad:c3:54:73:44:e4:99:5f:4d: a0:17:7c:43:c4:d2:27:84:3f:4d:49:56:e5:5b:02: 87:2f:8f:4f:89:15:37:d9:a4:d3:0d:1c:10:68:dc: 7b:a8:7c:aa:1d:19:4f:d4:44:eb:f9:a7:ad:ef:be: 01:7a:d3:00:97:90:0b:ad:9c:ed:2f:d4:ae:6e:f2: 69:a7:5c:58:9d:37:72:80:4b:42:6e:0e:f9:da:fd: 8d:81:8f:33:41:73:f4:66:4a:79:a7:bb:d6:73:a2: 48:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:CD:36:CB:AB:91:75:CF:78:49:F3:AB:97:C5:A4:94:68:95:83:CA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67e38fd2-258c-4ee2-b47d-b15038a29e00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.64.0/19 Signature Algorithm: sha256WithRSAEncryption 3f:41:17:61:ca:5e:87:6b:40:c4:42:83:f3:d3:1e:40:77:84: 2a:7b:8f:7f:4a:8d:75:92:24:af:8c:ba:93:bc:a8:89:0c:ad: 50:e7:73:8e:ba:fd:50:3b:94:7a:69:d1:8f:0b:b5:68:30:25: 48:ed:f1:61:69:3e:f2:2a:06:bb:1e:91:c1:29:2a:71:fb:0e: e0:54:dd:66:0c:47:dc:dc:4b:bb:ea:4c:a9:d2:c0:f5:d1:bc: 78:9a:66:05:c3:a7:d0:ad:97:b4:eb:3c:cf:f5:a7:3d:8c:50: 4a:c0:32:39:63:43:af:31:8e:65:2f:bb:83:31:b2:2d:09:92: fc:d1:fa:b3:be:5a:d2:72:57:72:ef:8d:f6:5e:1a:46:20:fb: 28:0c:10:9b:1c:25:f8:15:00:b5:c5:dc:b1:aa:c0:24:dd:ac: 2e:0d:67:c1:df:1f:72:0d:83:02:8b:71:c6:1b:df:90:2a:f3: d1:de:e3:8e:fa:1d:ca:59:84:c3:95:52:50:f4:1a:9c:e4:1a: 87:c6:43:96:49:e0:de:63:23:bf:27:56:ad:fa:dd:9e:f5:61: 39:ac:cd:25:74:a2:b1:ed:32:98:47:25:bb:95:40:15:9d:29: 02:53:6b:88:3c:7a:c2:80:b3:32:15:3f:85:3d:bd:29:2c:b0: 15:7c:dc:eb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGOhOY2DY/9/b7uSdOVFuNEaiWb4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUyMjAxWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTQ0MGYzNDEzNWUwOWI0YWVhYWY3Yjg0ZGI4YmMwMjVm ZjU0YTljYjdiMDgxY2QzMjAwMzIwMzAxYmQ1NmY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMr/xC3x2xFitIZy9/nTkfGngnEpnfFoNHs62LssY+Gqvq uQVL7E43GctrSKviny7bd1AFNutdYrzCQmWtXWqfA1YOJikzcXPL1d5dCBysFBUk KLinn0iGgaN6iYhvGqfWC61cGJEdqOL8Gn+Pa4zeJupmLDH95amGYavVsaMDy1zW AC2zumglE+Jq9WS7uk6NspTYMTjOxaYFm63DVHNE5JlfTaAXfEPE0ieEP01JVuVb Aocvj0+JFTfZpNMNHBBo3HuofKodGU/UROv5p63vvgF60wCXkAutnO0v1K5u8mmn XFidN3KAS0JuDvna/Y2BjzNBc/RmSnmnu9ZzokiRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEs02y6uRdc94SfOrl8WklGiVg8owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY3ZTM4ZmQyLTI1OGMtNGVlMi1iNDdkLWIxNTAzOGEyOWUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAW4SEAwDQYJKoZIhvcNAQELBQADggEBAD9BF2HKXodrQMRCg/PTHkB3hCp7 j39KjXWSJK+MupO8qIkMrVDnc466/VA7lHpp0Y8LtWgwJUjt8WFpPvIqBrsekcEp KnH7DuBU3WYMR9zcS7vqTKnSwPXRvHiaZgXDp9Ctl7TrPM/1pz2MUErAMjljQ68x jmUvu4Mxsi0JkvzR+rO+WtJyV3LvjfZeGkYg+ygMEJscJfgVALXF3LGqwCTdrC4N Z8HfH3INgwKLccYb35Aq89He4476HcpZhMOVUlD0GpzkGofGQ5ZJ4N5jI78nVq36 3Z71YTmszSV0orHtMphHJbuVQBWdKQJTa4g8esKAszIVP4U9vSkssBV83Os= -----END CERTIFICATE-----Generated at Sat Aug 23 08:11:19 2025 by rpki-client