$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4fc45e7-8bde-4b2c-ad82-302a6c0ccbfd.roa File: b4fc45e7-8bde-4b2c-ad82-302a6c0ccbfd.roa (raw, json) Hash identifier: wGaEtHpzgPYAHcyEWyz3kT8iiUn1/yZ96jpdSyN9d8c= Subject key identifier: E4:55:10:92:27:63:73:3A:68:6D:87:25:40:F4:BF:53:8A:55:C4:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 73AE1B901A7060D6C68C981048DFB6287228206E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4fc45e7-8bde-4b2c-ad82-302a6c0ccbfd.roa Signing time: Fri 22 Aug 2025 00:21:01 +0000 ROA not before: Fri 22 Aug 2025 00:21:01 +0000 ROA not after: Fri 26 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 167.147.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:ae:1b:90:1a:70:60:d6:c6:8c:98:10:48:df:b6:28:72:28:20:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 22 00:21:01 2025 GMT Not After : Sep 26 23:59:59 2025 GMT Subject: serialNumber=61824be212adb2145e7d47fb58e8d5ddc8cb36652e94772f7bfabc5b31f849ee, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:56:a4:a1:fe:d6:f9:a5:30:11:1b:2d:f9:8b: 9a:df:3a:76:04:57:09:46:aa:71:c9:b1:be:47:8b: 2c:d1:e1:d9:8d:6f:a9:5d:4f:8b:4f:d7:d4:04:9e: 89:41:bb:27:5d:9f:35:ce:9c:24:1e:59:b9:76:32: dc:cb:9d:40:7c:e7:8a:c7:a6:ea:83:87:b0:ee:54: 74:48:6e:89:20:cc:d9:d5:65:ef:bc:f1:0d:71:99: 10:cf:6f:58:20:a1:0a:a3:65:95:19:05:e5:c9:a5: 27:cf:59:59:d1:a5:8b:2b:56:26:64:77:d8:70:29: e7:06:0f:ef:64:65:9d:7d:6c:79:90:ed:24:06:8f: 2d:45:7e:c9:f3:db:99:ce:55:9c:e9:d0:ef:72:f2: 78:cd:7b:27:06:fe:68:35:b9:bb:2b:f8:e1:63:ed: 6b:95:61:f6:c1:6b:65:2d:c8:87:ef:a6:41:6b:1d: 2e:98:7f:8d:fe:e6:51:e0:ef:7f:de:b7:68:d4:51: 7f:75:cb:77:5e:48:ac:5f:42:76:7b:f1:8d:01:a3: 93:cb:fc:0d:01:51:82:12:dd:c9:ce:59:05:ad:68: c3:69:49:fa:e9:59:28:8e:27:c5:98:1a:da:66:19: 12:96:5c:bf:bf:6e:c9:e6:6d:cb:b0:bc:12:67:d9: b0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:55:10:92:27:63:73:3A:68:6D:87:25:40:F4:BF:53:8A:55:C4:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4fc45e7-8bde-4b2c-ad82-302a6c0ccbfd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 167.147.0.0/16 Signature Algorithm: sha256WithRSAEncryption b8:62:27:f3:61:ec:c7:03:46:8f:e6:48:af:88:ca:d6:bc:5f: c2:c7:b2:0c:b7:bf:0f:16:4a:2b:a9:0a:d9:a6:90:44:3d:37: 39:97:52:fb:22:06:51:00:85:bc:b4:df:1a:f8:f7:d1:d9:0b: 21:79:c1:ef:b6:a5:20:0e:fb:2f:eb:d3:3d:a7:79:4a:c0:68: 6a:00:5f:03:41:9b:e6:53:b8:df:d8:c3:7e:6f:22:bf:40:fa: fb:c8:15:7f:6f:47:af:c5:51:02:6b:34:98:10:16:87:e3:e8: d2:53:78:44:f4:7f:cf:e0:af:c6:7c:12:a7:31:b3:7c:29:a9: 27:92:4d:c8:28:b9:71:95:9f:49:7e:83:04:04:cf:77:1b:15: e8:3f:40:e4:ac:99:01:4a:ee:2d:c9:ff:64:4b:8a:48:d6:3e: 44:9d:d8:2d:ad:18:72:b4:f9:bb:00:1f:1a:42:6d:cc:92:13: 7c:be:17:d8:df:db:9f:24:67:23:6e:c4:ad:52:b3:d4:ce:d8: 72:e2:0a:77:9c:de:8c:5f:60:18:ce:61:73:c0:25:3f:a0:96: 17:c1:a6:8c:e8:17:23:d4:4f:bf:53:51:9a:58:d3:c9:99:1e: 01:b6:8d:a4:dc:cf:e7:12:55:60:05:57:47:e3:be:59:7d:42: 54:0d:67:9c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUc64bkBpwYNbGjJgQSN+2KHIoIG4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIyMDAyMTAxWhcNMjUwOTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MTgyNGJlMjEyYWRiMjE0NWU3ZDQ3ZmI1OGU4ZDVkZGM4 Y2IzNjY1MmU5NDc3MmY3YmZhYmM1YjMxZjg0OWVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbVqSh/tb5pTARGy35i5rfOnYEVwlGqnHJsb5HiyzR4dmN b6ldT4tP19QEnolBuyddnzXOnCQeWbl2MtzLnUB854rHpuqDh7DuVHRIbokgzNnV Ze+88Q1xmRDPb1ggoQqjZZUZBeXJpSfPWVnRpYsrViZkd9hwKecGD+9kZZ19bHmQ 7SQGjy1Ffsnz25nOVZzp0O9y8njNeycG/mg1ubsr+OFj7WuVYfbBa2UtyIfvpkFr HS6Yf43+5lHg73/et2jUUX91y3deSKxfQnZ78Y0Bo5PL/A0BUYIS3cnOWQWtaMNp SfrpWSiOJ8WYGtpmGRKWXL+/bsnmbcuwvBJn2bBrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5FUQkidjczpobYclQPS/U4pVxCMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I0ZmM0NWU3LThiZGUtNGIyYy1hZDgyLTMwMmE2YzBjY2JmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCnkzANBgkqhkiG9w0BAQsFAAOCAQEAuGIn82HsxwNGj+ZIr4jK1rxfwsey DLe/DxZKK6kK2aaQRD03OZdS+yIGUQCFvLTfGvj30dkLIXnB77alIA77L+vTPad5 SsBoagBfA0Gb5lO439jDfm8iv0D6+8gVf29Hr8VRAms0mBAWh+Po0lN4RPR/z+Cv xnwSpzGzfCmpJ5JNyCi5cZWfSX6DBATPdxsV6D9A5KyZAUruLcn/ZEuKSNY+RJ3Y La0YcrT5uwAfGkJtzJITfL4X2N/bnyRnI27ErVKz1M7YcuIKd5zejF9gGM5hc8Al P6CWF8GmjOgXI9RPv1NRmljTyZkeAbaNpNzP5xJVYAVXR+O+WX1CVA1nnA== -----END CERTIFICATE-----Generated at Sat Aug 23 06:42:06 2025 by rpki-client