$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/06059ff6-507b-48bc-b001-58f4b8757574.roa File: 06059ff6-507b-48bc-b001-58f4b8757574.roa (raw, json) Hash identifier: szKuvsFQSO8qLWSi8JGYTlyr7h6YgNEqmXBBScXDRbY= Subject key identifier: 50:37:0E:B2:BE:29:19:FC:01:4D:C1:37:68:53:97:A1:A6:6B:E7:63 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36C70CE11941D192F4D33BEA3640C4B5A58367CF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/06059ff6-507b-48bc-b001-58f4b8757574.roa Signing time: Wed 09 Jul 2025 00:32:15 +0000 ROA not before: Wed 09 Jul 2025 00:32:15 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.22.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 24 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:c7:0c:e1:19:41:d1:92:f4:d3:3b:ea:36:40:c4:b5:a5:83:67:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:32:15 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=dbcce50fb3bb6c11ee1dc97867e6dd869433b76a942e76383746006d5aa83c49, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c4:a9:f8:0c:d8:7e:56:6b:e9:90:8c:b1:fd: e4:d5:08:92:25:6d:21:44:4c:53:82:66:1f:b1:6b: be:14:ab:3f:f7:7d:bd:8f:25:ae:cd:59:4b:b6:5a: b1:af:d2:47:33:19:dc:8a:30:83:1b:d1:f8:9d:7d: 09:bd:51:c5:28:2b:f2:86:67:c4:04:a3:13:2e:ae: 4c:77:c0:7c:d0:a7:17:c5:6f:a1:44:90:a3:f2:f8: 02:19:46:f1:82:be:8a:e5:47:31:34:5b:60:35:3e: 07:a8:92:ab:9b:22:de:f7:11:96:68:28:a5:da:9f: e6:e6:f9:bc:ec:7b:bb:80:ec:eb:34:57:8e:bd:15: 2a:80:3d:89:05:f5:dd:2b:b9:9c:6e:a9:d9:7c:b0: 59:2a:20:eb:62:c1:c9:7c:b7:51:d9:05:48:79:95: 76:36:69:7b:09:ab:1d:5e:22:49:ee:f2:96:84:5c: a1:df:01:98:0b:c2:b6:99:96:f9:81:51:94:aa:9a: f6:41:2b:b2:2a:c6:4b:03:b1:ef:c5:bf:cc:a2:9a: 35:1e:41:c6:98:fc:9a:f2:77:6e:4c:84:d3:65:dc: 58:e3:e7:ce:24:09:66:0e:ce:85:5d:c4:68:a8:28: df:ed:a6:c9:32:2e:22:5c:f8:ac:31:97:7a:c2:02: 01:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:37:0E:B2:BE:29:19:FC:01:4D:C1:37:68:53:97:A1:A6:6B:E7:63 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/06059ff6-507b-48bc-b001-58f4b8757574.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.22.64.0/21 Signature Algorithm: sha256WithRSAEncryption bd:8e:f2:a1:ef:18:52:bd:46:79:0e:47:71:c6:db:08:7d:ae: f2:36:00:10:99:9c:fb:ab:93:c0:4d:4e:8a:48:68:9f:db:91: b6:f5:ad:76:7d:d2:8b:ff:65:3c:dc:b2:c0:1a:7c:d2:04:f3: af:a3:43:50:80:e1:a7:1c:0f:a3:80:85:61:23:ec:1f:55:a2: 42:af:f7:51:65:d8:4f:64:bd:93:50:ba:38:40:89:a0:74:a4: d2:fa:6a:d6:1c:0e:38:74:60:13:13:14:64:3d:8d:ca:b2:5b: 26:e6:09:c6:cf:51:e2:a7:42:0c:c4:06:57:aa:ba:5c:a6:97: c5:7a:0b:c3:6a:84:3e:64:9a:d6:42:96:8d:de:0d:c2:f8:62: 5d:0b:0a:fc:26:91:c2:55:e4:54:7d:82:36:52:96:f1:4d:46: 41:19:1b:9b:80:c7:47:f3:6b:13:5f:af:d4:93:c1:ac:c2:2b: f9:5d:16:bf:46:a8:77:40:8f:a2:26:89:2a:eb:82:26:56:96: 3b:24:44:58:5f:af:7e:c3:a3:6a:b3:bc:a9:b5:9f:26:86:2c: f1:d5:df:74:88:66:1d:d5:1a:20:49:c1:33:03:a5:bd:c9:0f: 14:db:97:64:53:30:5d:b7:17:89:06:77:d0:5a:04:9d:40:06: 33:65:1e:9f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNscM4RlB0ZL00zvqNkDEtaWDZ88wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDAzMjE1WhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYmNjZTUwZmIzYmI2YzExZWUxZGM5Nzg2N2U2ZGQ4Njk0 MzNiNzZhOTQyZTc2MzgzNzQ2MDA2ZDVhYTgzYzQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2xKn4DNh+VmvpkIyx/eTVCJIlbSFETFOCZh+xa74Uqz/3 fb2PJa7NWUu2WrGv0kczGdyKMIMb0fidfQm9UcUoK/KGZ8QEoxMurkx3wHzQpxfF b6FEkKPy+AIZRvGCvorlRzE0W2A1PgeokqubIt73EZZoKKXan+bm+bzse7uA7Os0 V469FSqAPYkF9d0ruZxuqdl8sFkqIOtiwcl8t1HZBUh5lXY2aXsJqx1eIknu8paE XKHfAZgLwraZlvmBUZSqmvZBK7IqxksDse/Fv8yimjUeQcaY/Jryd25MhNNl3Fjj 584kCWYOzoVdxGioKN/tpskyLiJc+Kwxl3rCAgFRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUDcOsr4pGfwBTcE3aFOXoaZr52MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA2MDU5ZmY2LTUwN2ItNDhiYy1iMDAxLTU4ZjRiODc1NzU3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMXFkAwDQYJKoZIhvcNAQELBQADggEBAL2O8qHvGFK9RnkOR3HG2wh9rvI2 ABCZnPurk8BNTopIaJ/bkbb1rXZ90ov/ZTzcssAafNIE86+jQ1CA4accD6OAhWEj 7B9VokKv91Fl2E9kvZNQujhAiaB0pNL6atYcDjh0YBMTFGQ9jcqyWybmCcbPUeKn QgzEBlequlyml8V6C8NqhD5kmtZClo3eDcL4Yl0LCvwmkcJV5FR9gjZSlvFNRkEZ G5uAx0fzaxNfr9STwazCK/ldFr9GqHdAj6ImiSrrgiZWljskRFhfr37Do2qzvKm1 nyaGLPHV33SIZh3VGiBJwTMDpb3JDxTbl2RTMF23F4kGd9BaBJ1ABjNlHp8= -----END CERTIFICATE-----Generated at Wed Jul 23 02:18:24 2025 by rpki-client