$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a07397dc-3051-482a-957d-ed3a4c2859b6.roa File: a07397dc-3051-482a-957d-ed3a4c2859b6.roa (raw, json) Hash identifier: nABoDlzZ6KtjxPZH1xNRI+9s8rKYqArkbB0XnSnD/zo= Subject key identifier: 5C:DA:9D:1F:F2:AF:11:95:15:98:6A:11:8D:8C:25:27:BA:EE:F2:FA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43009FCFDB4ACD558311B9D794A7AA14E72D5D7A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a07397dc-3051-482a-957d-ed3a4c2859b6.roa Signing time: Mon 16 Jun 2025 15:51:34 +0000 ROA not before: Mon 16 Jun 2025 15:51:34 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 98.80.0.0/13 maxlen: 13 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:00:9f:cf:db:4a:cd:55:83:11:b9:d7:94:a7:aa:14:e7:2d:5d:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 16 15:51:34 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=d41043d94b6c8ea4ac55b95ade852832cb34bca3a9655be8a8b337ac347cfc68, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6a:9e:48:5c:d9:63:2b:55:c2:1c:ec:27:ab: 51:87:93:cb:95:40:7a:a6:0f:4e:50:73:3c:ca:e2: d9:1a:2a:32:9d:fc:b6:f9:d4:fd:ad:3b:c7:6b:b0: 1f:05:94:fa:99:12:33:41:46:6a:04:9e:0c:8b:23: 12:88:19:ce:af:17:cd:c4:5e:cb:2e:a4:98:47:00: 3d:8f:9e:74:a4:9a:34:cf:8f:31:08:c2:b3:ee:7d: a5:40:8e:c4:75:2b:76:3b:3c:50:27:2b:73:4b:42: 6c:28:1e:2f:ed:a9:3b:b2:c1:c3:1f:cf:5f:c9:b0: fe:4c:3d:56:1e:aa:7e:49:f9:12:ca:38:05:27:89: de:80:d5:97:50:33:65:98:3d:b5:c6:4a:2b:01:6d: c9:b8:c0:f1:13:ad:36:c2:d6:8f:53:3a:29:05:73: 50:66:8f:6b:d5:ce:fb:6d:7d:9b:11:9e:28:b1:6b: a0:4c:6d:a4:6c:59:13:89:91:c9:5c:bd:90:09:9e: 11:8f:0e:60:87:58:3f:db:77:56:4c:28:e6:03:22: 72:42:5c:b3:53:aa:1b:b2:2b:78:77:a1:da:6e:27: cb:52:ce:d9:5b:20:1d:12:f1:26:7d:3d:0d:a7:32: 83:eb:b9:29:89:72:eb:69:79:25:b1:82:ce:4e:fc: 1c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:DA:9D:1F:F2:AF:11:95:15:98:6A:11:8D:8C:25:27:BA:EE:F2:FA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a07397dc-3051-482a-957d-ed3a4c2859b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.80.0.0/13 Signature Algorithm: sha256WithRSAEncryption a5:42:8e:e5:ad:06:9d:4e:0c:9b:b7:08:df:9e:59:9a:84:1d: d3:4e:43:98:33:13:56:e8:3e:5b:48:00:be:fe:69:88:d1:34: 5c:a1:40:b3:6b:a3:8b:ec:49:54:36:c2:ce:f7:6c:55:eb:3c: 38:5c:a4:d2:4a:c0:98:9e:7b:30:6a:69:09:2e:69:98:2b:77: 76:ea:04:a8:be:0a:ee:fc:6d:cd:89:68:9e:a4:8c:8e:84:a4: b3:9d:bb:ea:da:d3:4c:13:07:e2:45:77:4b:79:b5:3d:f0:95: 03:44:22:33:c7:08:2f:3a:2b:04:61:61:8b:0e:cc:4a:bf:50: e5:11:f2:ae:8f:89:c5:77:b8:e5:37:37:01:70:0b:00:70:42: 24:1f:93:4e:53:ea:a2:19:7a:ca:13:f1:f1:d1:c1:47:36:63: 60:2a:55:34:2e:76:84:29:de:4f:5e:e3:12:86:0b:14:8a:13: b6:22:fa:1e:3e:1f:dd:3b:06:8e:83:24:f6:f4:8f:91:61:5d: 6b:7b:d3:25:51:a0:ee:9a:0d:0b:05:53:ef:f3:1c:cd:1d:60: fa:86:50:2a:85:77:a7:42:0d:77:14:51:86:ea:83:cf:b6:da: c2:53:9e:b9:d1:9a:7b:9e:67:d3:ef:62:df:9c:c3:5c:f1:b3: ad:e1:10:3e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQwCfz9tKzVWDEbnXlKeqFOctXXowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE2MTU1MTM0WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDEwNDNkOTRiNmM4ZWE0YWM1NWI5NWFkZTg1MjgzMmNi MzRiY2EzYTk2NTViZThhOGIzMzdhYzM0N2NmYzY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXap5IXNljK1XCHOwnq1GHk8uVQHqmD05QczzK4tkaKjKd /Lb51P2tO8drsB8FlPqZEjNBRmoEngyLIxKIGc6vF83EXssupJhHAD2PnnSkmjTP jzEIwrPufaVAjsR1K3Y7PFAnK3NLQmwoHi/tqTuywcMfz1/JsP5MPVYeqn5J+RLK OAUnid6A1ZdQM2WYPbXGSisBbcm4wPETrTbC1o9TOikFc1Bmj2vVzvttfZsRniix a6BMbaRsWROJkclcvZAJnhGPDmCHWD/bd1ZMKOYDInJCXLNTqhuyK3h3odpuJ8tS ztlbIB0S8SZ9PQ2nMoPruSmJcutpeSWxgs5O/BxJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUXNqdH/KvEZUVmGoRjYwlJ7ru8vowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EwNzM5N2RjLTMwNTEtNDgyYS05NTdkLWVkM2E0YzI4NTliNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwNiUDANBgkqhkiG9w0BAQsFAAOCAQEApUKO5a0GnU4Mm7cI355ZmoQd005D mDMTVug+W0gAvv5piNE0XKFAs2uji+xJVDbCzvdsVes8OFyk0krAmJ57MGppCS5p mCt3duoEqL4K7vxtzYlonqSMjoSks5276trTTBMH4kV3S3m1PfCVA0QiM8cILzor BGFhiw7MSr9Q5RHyro+JxXe45Tc3AXALAHBCJB+TTlPqohl6yhPx8dHBRzZjYCpV NC52hCneT17jEoYLFIoTtiL6Hj4f3TsGjoMk9vSPkWFda3vTJVGg7poNCwVT7/Mc zR1g+oZQKoV3p0INdxRRhuqDz7bawlOeudGae55n0+9i35zDXPGzreEQPg== -----END CERTIFICATE-----Generated at Tue Jul 1 00:48:57 2025 by rpki-client