$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0289191f-e4dc-455d-9489-a1ebc7ea58b4.roa File: 0289191f-e4dc-455d-9489-a1ebc7ea58b4.roa (raw, json) Hash identifier: cP0dA7a/accjmfAyU7t0XIFme5rCaxwFbqeo/F8TyPY= Subject key identifier: 27:30:29:D9:E8:3B:C3:4E:AC:3B:45:92:63:73:8C:CB:6C:9C:DF:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 23EB995D8CF0BD4CC118CDBB22D899CD788A28A6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0289191f-e4dc-455d-9489-a1ebc7ea58b4.roa Signing time: Wed 09 Jul 2025 00:31:29 +0000 ROA not before: Wed 09 Jul 2025 00:31:29 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.22.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:eb:99:5d:8c:f0:bd:4c:c1:18:cd:bb:22:d8:99:cd:78:8a:28:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:31:29 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=9406fc9e8f8a2a06eb4d97a33a538bd540867bee7b4e67d57ec589aa605733dc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:37:a3:84:48:a8:06:cf:ca:df:39:61:6f:56: ba:93:b6:9a:55:9c:93:21:e6:4d:8c:1a:76:59:7d: 01:5a:5d:33:88:fd:64:3b:31:75:42:e7:67:57:f3: e1:e3:78:64:19:3c:4e:b0:50:ae:58:f3:a9:79:8c: 93:5f:c5:3e:33:b1:33:1e:31:10:64:1a:5e:4a:6f: 53:ee:00:96:25:5f:30:59:2e:48:7b:67:8c:97:33: 9b:ad:04:d3:e5:8c:e0:0d:ae:92:0e:f2:a3:98:21: c5:a9:19:33:ab:93:be:c3:e8:7f:72:cb:ed:f1:6f: 4d:88:56:17:16:18:a8:d6:68:47:8d:24:6b:38:01: f3:63:45:ec:de:44:dd:7c:44:8b:35:43:a4:82:b3: ed:10:e7:d3:9d:41:4f:3c:ab:ba:ab:58:06:78:57: fa:e7:de:6f:bc:be:36:20:6d:e4:96:fa:b9:50:b5: 7e:9b:fb:f2:e6:d1:12:4c:de:0f:f9:e0:f8:d3:4d: 87:e3:5d:7b:7c:e7:de:9b:8c:5c:26:b8:38:be:cb: ac:67:20:a8:41:69:98:36:8e:40:cd:cb:a3:3f:2c: 3c:a4:a2:a6:a1:31:37:73:c3:0e:13:46:d7:c2:be: 3a:78:dc:a0:eb:d8:36:e0:2b:f2:d5:84:ac:85:80: 7c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:30:29:D9:E8:3B:C3:4E:AC:3B:45:92:63:73:8C:CB:6C:9C:DF:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0289191f-e4dc-455d-9489-a1ebc7ea58b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.22.0.0/18 Signature Algorithm: sha256WithRSAEncryption 10:b7:73:bb:2a:54:f0:48:23:e8:63:bf:06:4b:99:b0:4c:aa: 57:99:b3:c4:56:67:15:8b:fe:96:51:51:54:6b:6d:0e:c2:bb: 29:4f:76:ff:52:9b:ac:c5:2b:ec:70:08:b5:47:e2:df:de:66: c8:4c:3f:f0:20:50:86:e3:bf:c4:c5:2c:53:3b:73:a1:76:d5: 87:da:5b:ef:37:4c:9b:19:0d:f5:c0:67:92:b2:67:16:ce:87: 3e:8e:6e:1e:94:ff:35:ef:12:9c:67:29:cc:5e:21:8a:8f:8a: 24:97:93:ba:0b:3d:ef:c5:82:9d:69:63:fc:4e:7b:19:b7:ba: 19:8d:36:ef:f6:fd:75:78:69:ed:70:83:f7:5e:9c:9a:8b:2c: 84:35:f4:42:b0:3a:41:c0:40:e6:59:83:31:28:74:fb:29:bd: cd:47:f7:cb:44:55:f1:45:64:cd:0e:41:89:c1:63:ac:39:b3: 72:66:f5:2d:e9:d6:35:28:4d:59:bf:fd:46:3e:95:c8:8c:c7: 21:fc:4d:11:a4:82:43:0e:5c:1d:ce:1a:2d:ed:89:5e:c7:9d: 85:e6:f5:f1:dc:c0:73:18:05:7f:f3:3c:51:7f:c0:4a:1a:74: c2:6c:4d:61:59:cf:d9:6b:bf:a0:f4:ff:f3:e9:c9:19:92:5a: 0e:15:bd:0d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUI+uZXYzwvUzBGM27ItiZzXiKKKYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDAzMTI5WhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDA2ZmM5ZThmOGEyYTA2ZWI0ZDk3YTMzYTUzOGJkNTQw ODY3YmVlN2I0ZTY3ZDU3ZWM1ODlhYTYwNTczM2RjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUN6OESKgGz8rfOWFvVrqTtppVnJMh5k2MGnZZfQFaXTOI /WQ7MXVC52dX8+HjeGQZPE6wUK5Y86l5jJNfxT4zsTMeMRBkGl5Kb1PuAJYlXzBZ Lkh7Z4yXM5utBNPljOANrpIO8qOYIcWpGTOrk77D6H9yy+3xb02IVhcWGKjWaEeN JGs4AfNjRezeRN18RIs1Q6SCs+0Q59OdQU88q7qrWAZ4V/rn3m+8vjYgbeSW+rlQ tX6b+/Lm0RJM3g/54PjTTYfjXXt8596bjFwmuDi+y6xnIKhBaZg2jkDNy6M/LDyk oqahMTdzww4TRtfCvjp43KDr2DbgK/LVhKyFgHzRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJzAp2eg7w06sO0WSY3OMy2yc38gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAyODkxOTFmLWU0ZGMtNDU1ZC05NDg5LWExZWJjN2VhNThiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYXFgAwDQYJKoZIhvcNAQELBQADggEBABC3c7sqVPBII+hjvwZLmbBMqleZ s8RWZxWL/pZRUVRrbQ7CuylPdv9Sm6zFK+xwCLVH4t/eZshMP/AgUIbjv8TFLFM7 c6F21YfaW+83TJsZDfXAZ5KyZxbOhz6Obh6U/zXvEpxnKcxeIYqPiiSXk7oLPe/F gp1pY/xOexm3uhmNNu/2/XV4ae1wg/denJqLLIQ19EKwOkHAQOZZgzEodPspvc1H 98tEVfFFZM0OQYnBY6w5s3Jm9S3p1jUoTVm//UY+lciMxyH8TRGkgkMOXB3OGi3t iV7HnYXm9fHcwHMYBX/zPFF/wEoadMJsTWFZz9lrv6D0//PpyRmSWg4VvQ0= -----END CERTIFICATE-----Generated at Tue Jul 22 04:28:49 2025 by rpki-client