$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d3ae0b1-fd64-4676-b9be-3f20ed4e2489.roa File: 0d3ae0b1-fd64-4676-b9be-3f20ed4e2489.roa (raw, json) Hash identifier: D4s32tZ5izOKrhsvRcyPkBskgpb/habJWfJvJVMZJI8= Subject key identifier: B6:49:13:5E:97:69:E5:2E:9B:0B:A2:2D:8D:C1:1F:76:8E:D4:7C:7B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 44141CFA3D05A8B1428ADE951496490654129173 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d3ae0b1-fd64-4676-b9be-3f20ed4e2489.roa Signing time: Sat 19 Jul 2025 00:31:45 +0000 ROA not before: Sat 19 Jul 2025 00:31:45 +0000 ROA not after: Sat 23 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:14:1c:fa:3d:05:a8:b1:42:8a:de:95:14:96:49:06:54:12:91:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 19 00:31:45 2025 GMT Not After : Aug 23 23:59:59 2025 GMT Subject: serialNumber=d9511b33c16bd53229215d9c38474289e1b0695b9361053ef80583a67005ce50, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:32:87:a0:6a:a9:f4:7e:ce:e8:ec:d0:03:27: 34:0a:7b:a1:52:dc:83:a9:a6:99:87:77:cd:97:88: 27:63:82:0e:a0:b0:bf:db:65:f1:47:7f:34:b4:2c: c4:8b:63:0a:0c:07:d1:e6:c1:6a:69:25:84:e7:39: f8:57:90:a6:99:c3:62:41:47:9d:bf:86:5e:dd:b1: cb:8a:3d:d3:84:af:ab:3f:c4:0e:db:1a:7a:64:fe: 1a:2e:fd:5b:57:15:f7:03:5a:06:95:e3:e7:0c:4c: e1:2d:75:22:0f:4c:10:75:c9:b4:33:fc:8f:24:ab: ba:2a:83:a1:50:65:16:8f:4f:fd:b1:b2:19:0e:98: 35:41:b2:86:85:88:48:8c:a1:7f:04:05:e4:ea:aa: b5:c0:cb:4b:46:e2:69:e1:d5:9d:68:2d:18:fa:d7: ab:55:c0:0a:55:b4:b0:c3:b0:f6:0c:6f:88:32:d0: 0a:78:a5:0d:99:a7:25:f6:5b:f5:56:34:d6:30:a8: 98:e3:30:fc:1a:ee:41:92:6e:34:eb:c5:6d:22:ff: 7c:4c:95:c3:84:6e:65:1c:90:a0:eb:91:41:d0:f6: 9d:6c:0c:e2:ed:7d:1c:bb:ed:fb:a5:a9:db:20:c4: 7c:08:70:80:42:ca:1c:c4:6a:cd:54:df:6d:a2:96: aa:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:49:13:5E:97:69:E5:2E:9B:0B:A2:2D:8D:C1:1F:76:8E:D4:7C:7B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d3ae0b1-fd64-4676-b9be-3f20ed4e2489.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.111.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:3b:b7:55:71:54:ad:da:ca:ea:83:26:13:16:2b:be:f5:b6: df:41:0b:a7:d4:69:79:62:37:48:1b:7e:e7:a7:59:a9:70:1c: 13:fa:d1:3d:6d:35:1d:0d:d0:95:b1:02:36:67:b1:93:4d:74: 23:c2:2e:80:89:19:a9:b2:dd:54:5f:d8:59:84:09:ad:a3:35: 46:45:f6:43:82:d1:3e:a0:6a:6a:47:e0:1c:3f:7e:71:c2:cb: 49:e1:d1:eb:f2:08:bb:c5:50:e4:2c:e1:98:21:25:46:93:49: 26:a8:07:e0:1f:c1:51:86:db:df:31:c9:ec:f3:9d:01:5e:a7: 4d:d4:55:61:50:de:c9:c0:c7:46:f6:ab:3d:43:c2:3b:5a:2d: 19:f9:0e:ad:67:dd:88:80:96:c0:6a:40:84:76:40:80:e4:5a: 0e:40:b1:20:3d:20:b0:52:90:65:1b:0c:52:f7:8b:b8:2f:31: 8e:5b:c9:2e:38:a8:ae:d5:db:eb:df:1c:a9:be:51:0b:4c:44: ae:8e:0e:50:46:9c:20:85:c8:63:d7:41:e2:71:c6:c3:ae:20: d7:39:8f:d3:e4:11:93:cf:15:00:e3:5f:de:87:f8:5e:b6:4c: 43:fb:0c:51:6d:31:8f:41:31:8e:b8:d1:89:ba:64:95:f6:e0: ef:89:13:a7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURBQc+j0FqLFCit6VFJZJBlQSkXMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE5MDAzMTQ1WhcNMjUwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOTUxMWIzM2MxNmJkNTMyMjkyMTVkOWMzODQ3NDI4OWUx YjA2OTViOTM2MTA1M2VmODA1ODNhNjcwMDVjZTUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXMoegaqn0fs7o7NADJzQKe6FS3IOpppmHd82XiCdjgg6g sL/bZfFHfzS0LMSLYwoMB9HmwWppJYTnOfhXkKaZw2JBR52/hl7dscuKPdOEr6s/ xA7bGnpk/hou/VtXFfcDWgaV4+cMTOEtdSIPTBB1ybQz/I8kq7oqg6FQZRaPT/2x shkOmDVBsoaFiEiMoX8EBeTqqrXAy0tG4mnh1Z1oLRj616tVwApVtLDDsPYMb4gy 0Ap4pQ2ZpyX2W/VWNNYwqJjjMPwa7kGSbjTrxW0i/3xMlcOEbmUckKDrkUHQ9p1s DOLtfRy77fulqdsgxHwIcIBCyhzEas1U322ilqqBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtkkTXpdp5S6bC6ItjcEfdo7UfHswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBkM2FlMGIxLWZkNjQtNDY3Ni1iOWJlLTNmMjBlZDRlMjQ4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/G8wDQYJKoZIhvcNAQELBQADggEBAI47t1VxVK3ayuqDJhMWK771tt9B C6fUaXliN0gbfuenWalwHBP60T1tNR0N0JWxAjZnsZNNdCPCLoCJGamy3VRf2FmE Ca2jNUZF9kOC0T6gampH4Bw/fnHCy0nh0evyCLvFUOQs4ZghJUaTSSaoB+AfwVGG 298xyezznQFep03UVWFQ3snAx0b2qz1DwjtaLRn5Dq1n3YiAlsBqQIR2QIDkWg5A sSA9ILBSkGUbDFL3i7gvMY5byS44qK7V2+vfHKm+UQtMRK6ODlBGnCCFyGPXQeJx xsOuINc5j9PkEZPPFQDjX96H+F62TEP7DFFtMY9BMY640Ym6ZJX24O+JE6c= -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:59 2025 by rpki-client