$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fedc474e-fb66-46fd-a711-926e9d1c3e4c.roa File: fedc474e-fb66-46fd-a711-926e9d1c3e4c.roa (raw, json) Hash identifier: ZH9+NraZyfcadR4v/1GGwgEs3WFwN6rZzduJlqy0xYo= Subject key identifier: AC:43:82:CA:6C:E5:C5:E7:95:D1:DB:77:CA:71:5B:CA:1E:7E:24:FD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2C257E4DDBF527690432042161BEF50CE35FDEB7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fedc474e-fb66-46fd-a711-926e9d1c3e4c.roa Signing time: Fri 08 Aug 2025 00:12:28 +0000 ROA not before: Fri 08 Aug 2025 00:12:28 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 37.7.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:25:7e:4d:db:f5:27:69:04:32:04:21:61:be:f5:0c:e3:5f:de:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:12:28 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=1c6eb73c6e4a123ed532af849566205c53788989252a2e12b9808798ef0910bb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c4:da:df:41:c7:aa:c8:df:22:ec:80:b5:c7: f9:39:a1:96:eb:c4:9a:35:3f:97:6c:72:45:73:8e: 6f:ad:f8:71:80:f7:88:d4:40:c5:d0:c0:6f:38:6e: b0:71:25:9b:c0:6c:cb:a3:a2:7e:40:cf:3e:91:43: 74:1e:a8:27:21:a1:15:f5:e0:6b:76:28:94:4c:f0: 2f:fd:69:bb:4a:da:18:90:ab:6b:b4:41:c2:46:7f: 4d:33:a3:2c:59:0b:ec:ba:45:6f:90:74:dc:1d:77: c8:f2:7a:ae:3f:44:a5:a0:77:af:7c:4b:56:15:ea: cf:f9:22:af:9d:3c:5e:e5:eb:b0:2a:b8:27:c1:2e: ce:f7:f7:d6:b5:c1:d6:a5:4e:f9:3a:1e:b8:37:49: 29:d0:95:e3:4b:40:54:b5:f7:f2:96:51:34:a7:c9: 6a:af:cd:20:e5:ee:65:35:8e:a3:b2:66:00:38:d4: 93:f0:37:75:58:8a:5b:72:c2:62:5f:b1:e0:b6:48: 52:15:25:63:e1:76:42:21:69:62:dc:9b:ed:6a:3b: 7f:61:76:72:a2:9e:28:eb:b7:b2:c3:e3:0f:c7:5d: 12:9e:c5:a5:80:fd:3f:0a:b4:4a:e4:8c:2e:95:4c: cc:e0:9e:31:68:ae:5c:38:7a:67:46:51:f9:78:56: 87:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:43:82:CA:6C:E5:C5:E7:95:D1:DB:77:CA:71:5B:CA:1E:7E:24:FD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fedc474e-fb66-46fd-a711-926e9d1c3e4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.7.0.0/16 Signature Algorithm: sha256WithRSAEncryption af:11:17:d5:d5:f7:f7:25:db:26:0e:58:e9:8d:4b:07:56:d0: be:90:81:3c:55:ba:d6:99:7d:84:c2:9f:f7:24:b3:11:e2:31: 65:29:62:1c:0f:ba:05:76:d9:d4:f1:2a:3b:7b:fd:54:03:52: ac:a8:ee:9a:98:5c:0c:e3:81:a3:ba:ce:59:d6:94:d3:6b:e9: 39:b6:8a:29:6a:b0:f0:58:93:18:90:8e:e4:28:0a:e3:cd:71: 5d:44:dd:35:20:f7:27:2a:45:0a:b8:80:60:b9:37:dd:bf:3b: 05:1c:7e:f0:6f:22:ae:59:81:97:41:e7:2b:87:54:6f:cd:62: 7b:b5:b9:0e:a7:7d:14:77:69:9b:95:8a:0a:a3:23:04:25:aa: 1b:ae:04:a1:0d:65:09:21:21:ee:3b:dd:64:04:82:25:6d:f3: 71:46:bd:2e:de:6d:6e:72:7a:4a:83:5a:56:3d:a5:e8:b1:54: 55:78:ab:be:01:45:28:45:95:6a:59:ae:43:b8:99:7c:87:2b: 12:f4:9d:ac:11:b9:1f:43:7b:d0:5b:a2:cf:a5:62:a6:9e:db: e4:ac:80:4c:95:74:3d:c1:cb:a2:6a:29:c6:e8:9c:45:77:5a: 3a:30:98:68:ca:ee:af:99:ff:76:b0:1f:f1:f2:1e:c0:cd:b7: e0:c6:f8:9d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULCV+Tdv1J2kEMgQhYb71DONf3rcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAxMjI4WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzZlYjczYzZlNGExMjNlZDUzMmFmODQ5NTY2MjA1YzUz Nzg4OTg5MjUyYTJlMTJiOTgwODc5OGVmMDkxMGJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoxNrfQceqyN8i7IC1x/k5oZbrxJo1P5dsckVzjm+t+HGA 94jUQMXQwG84brBxJZvAbMujon5Azz6RQ3QeqCchoRX14Gt2KJRM8C/9abtK2hiQ q2u0QcJGf00zoyxZC+y6RW+QdNwdd8jyeq4/RKWgd698S1YV6s/5Iq+dPF7l67Aq uCfBLs7399a1wdalTvk6Hrg3SSnQleNLQFS19/KWUTSnyWqvzSDl7mU1jqOyZgA4 1JPwN3VYiltywmJfseC2SFIVJWPhdkIhaWLcm+1qO39hdnKinijrt7LD4w/HXRKe xaWA/T8KtErkjC6VTMzgnjForlw4emdGUfl4VodfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUrEOCymzlxeeV0dt3ynFbyh5+JP0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZlZGM0NzRlLWZiNjYtNDZmZC1hNzExLTkyNmU5ZDFjM2U0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAlBzANBgkqhkiG9w0BAQsFAAOCAQEArxEX1dX39yXbJg5Y6Y1LB1bQvpCB PFW61pl9hMKf9ySzEeIxZSliHA+6BXbZ1PEqO3v9VANSrKjumphcDOOBo7rOWdaU 02vpObaKKWqw8FiTGJCO5CgK481xXUTdNSD3JypFCriAYLk33b87BRx+8G8irlmB l0HnK4dUb81ie7W5Dqd9FHdpm5WKCqMjBCWqG64EoQ1lCSEh7jvdZASCJW3zcUa9 Lt5tbnJ6SoNaVj2l6LFUVXirvgFFKEWValmuQ7iZfIcrEvSdrBG5H0N70Fuiz6Vi pp7b5KyATJV0PcHLomopxuicRXdaOjCYaMrur5n/drAf8fIewM234Mb4nQ== -----END CERTIFICATE-----Generated at Sat Aug 23 08:22:17 2025 by rpki-client