$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a2dbcc6-943c-4355-975e-2ab1a5b7ed0e.roa File: 7a2dbcc6-943c-4355-975e-2ab1a5b7ed0e.roa (raw, json) Hash identifier: Ok0z8OSIoA3ZPMOFOKVkDwaXC39KM6Wkg5BnoYJlDZg= Subject key identifier: 84:5F:2F:E6:5E:D6:DE:85:3B:FC:8C:DF:44:7C:E3:B9:60:90:E8:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 137C166844FD98D4C4275E1F62796BB5395211F5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a2dbcc6-943c-4355-975e-2ab1a5b7ed0e.roa Signing time: Tue 12 Aug 2025 00:00:20 +0000 ROA not before: Tue 12 Aug 2025 00:00:20 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.32.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:7c:16:68:44:fd:98:d4:c4:27:5e:1f:62:79:6b:b5:39:52:11:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:00:20 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=811f5b0cef79a02a6c3a19b00183de2e24e9ce109cddc1e2a07fcd7921abd5ee, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7e:ff:3e:50:49:47:e0:be:bb:32:61:d1:c7: a9:bc:ac:b4:ad:47:bd:e1:fb:a8:1b:e4:72:e9:ed: f4:c7:b2:f4:9e:dc:a9:07:3b:4c:51:b0:1a:e7:0b: a9:ca:5f:ac:c2:ec:54:da:8e:f8:3c:c3:57:9b:2c: 92:d3:42:bd:a2:d9:16:c7:86:b8:ff:c1:e7:1c:b3: 5a:2e:ce:73:a3:94:a9:2c:28:f6:ad:a5:6f:1f:bc: 19:b5:b0:d2:b4:de:bc:13:5a:11:0f:a0:9d:18:c0: ab:a2:2b:57:28:42:11:01:1f:74:88:a9:31:4e:90: aa:ec:d4:18:64:24:6f:35:62:73:3a:02:d6:f1:e7: ef:6c:0e:69:07:a9:ee:40:44:ba:ec:0c:88:43:77: 8b:25:62:93:44:4c:89:c9:60:6c:09:b9:d7:dc:d4: 08:df:61:4b:61:ec:aa:bb:22:f9:af:3c:82:f6:2b: 9e:79:5e:c1:cb:a9:77:17:3e:24:70:f4:cc:c1:54: 7d:cb:b0:7a:e8:9d:08:7a:27:50:9e:20:ad:2b:e7: 0d:f4:9f:82:3c:da:91:e1:d7:7c:31:81:76:8e:a0: 64:d7:27:78:44:c6:a5:65:11:e4:c9:f1:83:65:c8: 1d:2b:20:17:cb:e7:77:2a:a3:8f:89:06:94:7f:50: 07:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:5F:2F:E6:5E:D6:DE:85:3B:FC:8C:DF:44:7C:E3:B9:60:90:E8:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7a2dbcc6-943c-4355-975e-2ab1a5b7ed0e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.32.128.0/20 Signature Algorithm: sha256WithRSAEncryption 79:49:1f:d5:eb:09:c2:b9:ff:7d:6d:54:91:1b:cf:f9:49:90: f6:fd:47:72:90:ac:01:c5:04:13:7e:c8:89:7c:98:6c:03:4c: 21:35:2b:5a:e4:dc:c1:6e:c2:19:5e:0b:d5:85:84:f3:ce:a9: ed:a3:2f:dd:ca:62:df:8c:cb:a0:92:cc:c2:eb:42:7b:9f:7c: 3f:56:ee:2d:25:9e:16:5c:9c:2e:df:5f:a5:f1:fd:68:58:8a: 60:38:a3:96:a8:f2:af:1b:af:63:d2:7d:8a:8f:bb:4e:67:4d: 43:31:59:50:4d:77:20:d3:e2:cd:f1:50:ac:c0:73:fd:b6:f4: ac:65:63:56:07:fd:a8:eb:58:92:93:67:cb:2c:4b:40:ec:3c: 1d:cc:43:15:e3:f9:93:50:f0:0f:a9:a9:8f:7c:a8:e6:53:ee: 2d:7f:03:48:b2:95:cd:a1:42:ab:93:8b:d1:63:3f:17:6b:1d: 2a:80:de:3f:02:2b:be:79:5c:41:a1:ed:54:e3:ac:2a:c3:b1: 96:32:e3:ff:b4:5a:a0:8c:37:86:86:d0:41:c7:89:b8:78:dc: 22:83:ad:9b:ce:3a:86:96:ee:57:98:d3:7b:2f:24:ea:aa:06: d0:08:b6:89:e3:38:34:8b:b8:68:26:81:d5:13:ca:97:4b:b9: 31:a7:67:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE3wWaET9mNTEJ14fYnlrtTlSEfUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAwMDIwWhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTFmNWIwY2VmNzlhMDJhNmMzYTE5YjAwMTgzZGUyZTI0 ZTljZTEwOWNkZGMxZTJhMDdmY2Q3OTIxYWJkNWVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCffv8+UElH4L67MmHRx6m8rLStR73h+6gb5HLp7fTHsvSe 3KkHO0xRsBrnC6nKX6zC7FTajvg8w1ebLJLTQr2i2RbHhrj/weccs1ouznOjlKks KPatpW8fvBm1sNK03rwTWhEPoJ0YwKuiK1coQhEBH3SIqTFOkKrs1BhkJG81YnM6 Atbx5+9sDmkHqe5ARLrsDIhDd4slYpNETInJYGwJudfc1AjfYUth7Kq7IvmvPIL2 K555XsHLqXcXPiRw9MzBVH3LsHronQh6J1CeIK0r5w30n4I82pHh13wxgXaOoGTX J3hExqVlEeTJ8YNlyB0rIBfL53cqo4+JBpR/UAcHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhF8v5l7W3oU7/IzfRHzjuWCQ6O8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdhMmRiY2M2LTk0M2MtNDM1NS05NzVlLTJhYjFhNWI3ZWQwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATMIIAwDQYJKoZIhvcNAQELBQADggEBAHlJH9XrCcK5/31tVJEbz/lJkPb9 R3KQrAHFBBN+yIl8mGwDTCE1K1rk3MFuwhleC9WFhPPOqe2jL93KYt+My6CSzMLr QnuffD9W7i0lnhZcnC7fX6Xx/WhYimA4o5ao8q8br2PSfYqPu05nTUMxWVBNdyDT 4s3xUKzAc/229KxlY1YH/ajrWJKTZ8ssS0DsPB3MQxXj+ZNQ8A+pqY98qOZT7i1/ A0iylc2hQquTi9FjPxdrHSqA3j8CK755XEGh7VTjrCrDsZYy4/+0WqCMN4aG0EHH ibh43CKDrZvOOoaW7leY03svJOqqBtAItonjODSLuGgmgdUTypdLuTGnZ+Y= -----END CERTIFICATE-----Generated at Sat Aug 23 12:19:41 2025 by rpki-client