$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/005037bc-a4b6-4346-b450-faf7d0be820b.roa File: 005037bc-a4b6-4346-b450-faf7d0be820b.roa (raw, json) Hash identifier: /TSjW7YKEtDJjlsrxhv9qF/clA581RIcqyLW1DaeTLk= Subject key identifier: 1D:7F:C6:13:42:55:C3:F9:D8:CF:87:46:FF:AC:B8:5D:99:A5:B7:AE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1F08998BDE9A18BBC973AA27F018C9013E034157 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/005037bc-a4b6-4346-b450-faf7d0be820b.roa Signing time: Wed 09 Jul 2025 00:32:13 +0000 ROA not before: Wed 09 Jul 2025 00:32:13 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.20.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:08:99:8b:de:9a:18:bb:c9:73:aa:27:f0:18:c9:01:3e:03:41:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:32:13 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=dca8e5c111e3145e4b84651825a430dcaa629101d460220784d776265e06a929, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c3:f3:c3:9e:44:80:eb:e6:4c:6a:84:36:d7: 37:11:2a:10:1e:11:5c:0f:60:26:e9:64:c2:6d:2a: 2f:b2:06:f7:83:98:41:a2:8c:ea:19:75:39:38:22: a8:74:99:1a:29:72:26:07:f6:ee:c3:84:87:29:98: 69:fe:3d:41:41:8b:fd:11:91:6f:de:70:11:cf:a6: a2:ff:bb:2f:36:62:7b:7c:9c:f9:05:83:43:aa:f3: 05:64:ea:2d:71:77:c4:96:4d:16:f5:5a:f7:b1:b2: 46:01:6b:06:e6:22:b9:61:79:72:a5:c3:89:08:08: 26:ac:bc:6e:c3:8c:b5:97:e5:09:83:59:ae:01:d2: 0f:68:bb:0a:ff:28:7d:41:8c:91:f1:02:97:b3:03: 25:dd:20:2d:e7:92:24:77:8d:fd:59:91:d9:d2:3a: e6:6f:74:c7:97:93:3b:d3:9c:e5:8f:f1:1e:06:98: 2b:6c:e9:50:ec:d2:be:cf:51:d9:d6:76:72:e8:a0: fe:69:1b:e3:2c:3c:29:ca:d8:10:26:4e:5a:8b:00: 38:d8:bc:f8:f8:25:40:a8:0a:4e:af:43:2b:9b:12: 3b:1a:ed:77:2f:9c:ae:a2:f2:aa:ed:97:5d:37:b6: c3:ea:f3:df:07:11:7a:53:e6:bd:f9:47:62:0e:12: e8:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:7F:C6:13:42:55:C3:F9:D8:CF:87:46:FF:AC:B8:5D:99:A5:B7:AE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/005037bc-a4b6-4346-b450-faf7d0be820b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.20.0.0/15 Signature Algorithm: sha256WithRSAEncryption ac:68:48:69:11:c3:74:10:14:c8:7b:f3:ac:8a:ef:13:89:32: 1f:ca:01:56:ef:54:e3:7d:a5:3f:d6:a7:8f:34:e2:a0:71:93: 04:0b:49:c0:36:6b:fc:33:49:dc:1b:e3:a1:8c:64:b6:6d:3b: 3c:06:fc:3b:1a:45:f6:db:51:2f:c1:7d:08:08:72:02:07:63: 95:6f:82:23:ab:32:cf:c3:bc:72:34:90:91:2e:fe:e4:fb:19: 17:3c:c9:c2:25:13:e8:12:07:38:cc:3c:25:6f:6b:97:54:b5: 74:af:9a:f4:d5:65:60:fe:00:d7:33:4d:80:1b:a1:d7:e0:0b: b5:64:e4:c2:88:85:4f:52:55:7e:0b:7d:45:7e:3e:0c:dd:b0: 7a:8b:56:a2:38:b4:35:83:0b:67:6d:6a:0c:53:8a:ed:dd:4a: 8f:0c:ef:bd:a5:4d:98:9d:53:00:42:d9:e2:a1:1f:21:39:55: 67:80:fd:6d:45:0e:82:b4:b4:ab:08:46:11:82:8f:49:be:85: 63:f6:7c:22:9c:98:3b:0d:fb:a1:31:89:d2:ac:3c:df:06:d2: 73:3c:7a:38:d8:2e:22:5b:4d:4c:d1:1c:1f:bd:30:42:09:17: 3f:f4:b4:60:b9:b7:0d:2e:f2:fb:a1:47:6e:ef:a2:ba:0a:d4: 61:00:de:af -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHwiZi96aGLvJc6on8BjJAT4DQVcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDAzMjEzWhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkY2E4ZTVjMTExZTMxNDVlNGI4NDY1MTgyNWE0MzBkY2Fh NjI5MTAxZDQ2MDIyMDc4NGQ3NzYyNjVlMDZhOTI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDw/PDnkSA6+ZMaoQ21zcRKhAeEVwPYCbpZMJtKi+yBveD mEGijOoZdTk4Iqh0mRopciYH9u7DhIcpmGn+PUFBi/0RkW/ecBHPpqL/uy82Ynt8 nPkFg0Oq8wVk6i1xd8SWTRb1WvexskYBawbmIrlheXKlw4kICCasvG7DjLWX5QmD Wa4B0g9ouwr/KH1BjJHxApezAyXdIC3nkiR3jf1ZkdnSOuZvdMeXkzvTnOWP8R4G mCts6VDs0r7PUdnWdnLooP5pG+MsPCnK2BAmTlqLADjYvPj4JUCoCk6vQyubEjsa 7XcvnK6i8qrtl103tsPq898HEXpT5r35R2IOEujnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHX/GE0JVw/nYz4dG/6y4XZmlt64wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAwNTAzN2JjLWE0YjYtNDM0Ni1iNDUwLWZhZjdkMGJlODIwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEXFDANBgkqhkiG9w0BAQsFAAOCAQEArGhIaRHDdBAUyHvzrIrvE4kyH8oB Vu9U432lP9anjzTioHGTBAtJwDZr/DNJ3BvjoYxktm07PAb8OxpF9ttRL8F9CAhy AgdjlW+CI6syz8O8cjSQkS7+5PsZFzzJwiUT6BIHOMw8JW9rl1S1dK+a9NVlYP4A 1zNNgBuh1+ALtWTkwoiFT1JVfgt9RX4+DN2weotWoji0NYMLZ21qDFOK7d1Kjwzv vaVNmJ1TAELZ4qEfITlVZ4D9bUUOgrS0qwhGEYKPSb6FY/Z8IpyYOw37oTGJ0qw8 3wbSczx6ONguIltNTNEcH70wQgkXP/S0YLm3DS7y+6FHbu+iugrUYQDerw== -----END CERTIFICATE-----Generated at Tue Jul 22 04:55:07 2025 by rpki-client