$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa File: 0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa (raw, json) Hash identifier: TmFbXPdmC1s6DHo1cio2M4i5FBQIQn8k6lC14wdjaUw= Subject key identifier: 20:2F:BB:73:3D:9A:52:1A:19:99:F8:7E:95:AD:B8:FC:39:DC:E2:A1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E84C2F211D14EB44DF31ECCDCFA6847A92C003D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa Signing time: Mon 14 Jul 2025 15:20:13 +0000 ROA not before: Mon 14 Jul 2025 15:20:13 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:84:c2:f2:11:d1:4e:b4:4d:f3:1e:cc:dc:fa:68:47:a9:2c:00:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 14 15:20:13 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=effe855cf0fbf6984b94bfcf096ebf75d20f680d3d2453270434cebf3d98b8d9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:76:cb:83:fa:81:c6:bf:01:cf:b2:22:dd:fb: 35:de:45:2f:27:8c:86:36:7b:6b:8d:29:b2:ff:16: 42:84:d7:10:06:d7:d4:34:a0:3b:95:58:23:a8:b5: ce:46:0c:ac:5c:32:a9:1b:55:b5:cb:f7:d9:d2:c0: 1b:41:70:02:bc:22:b8:a4:14:59:84:ba:6c:40:64: 4c:c9:d2:1b:2f:b3:9e:32:9b:b5:f7:cd:a6:77:32: f8:be:01:60:8c:02:3b:15:67:eb:08:7b:04:3f:11: 52:ba:31:e2:00:7a:f6:41:e3:5e:09:8b:e7:f7:c4: b8:4a:f4:90:ca:ed:32:9a:de:a6:25:00:02:49:74: 0d:67:bf:f9:dd:c1:6c:21:70:6f:73:c7:9d:67:6e: 78:99:71:a1:7e:6b:07:1c:ff:7e:ed:38:fc:a6:40: 14:1e:83:bd:3c:c0:6f:48:1f:b6:29:8e:de:00:4b: 04:61:80:b0:90:e0:44:03:d2:31:a0:d6:8a:41:79: da:89:63:9e:c2:97:d6:b1:b1:58:1c:0b:0a:d3:a0: 61:5f:fb:10:89:a5:97:c5:a2:83:93:58:86:5a:87: 59:be:86:55:37:25:29:0c:3f:f9:dd:ae:33:3b:6c: 13:f3:38:2c:75:86:13:9d:86:5a:52:fa:9c:91:50: e3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:2F:BB:73:3D:9A:52:1A:19:99:F8:7E:95:AD:B8:FC:39:DC:E2:A1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.128.0/18 Signature Algorithm: sha256WithRSAEncryption aa:82:e3:e2:be:c4:e6:e7:96:a4:1e:d9:f7:b5:5f:26:23:57: 27:4d:b1:be:fb:2d:37:63:9d:3f:2c:2a:27:22:69:8b:9c:c0: ca:be:ef:bd:2f:b8:7e:2c:96:d6:8f:ee:18:3a:de:c0:03:ad: 1d:59:83:e5:52:bf:a6:da:5d:dc:53:25:8a:7a:32:5a:d1:b1: 45:2a:ae:dd:fe:e3:06:f4:0a:fc:83:7c:c9:1c:b9:9f:b1:80: 8b:e8:c2:01:8f:ea:68:7f:e0:9f:df:1e:46:b7:02:2c:a7:f4: 6e:1c:7b:51:b0:a5:00:c4:93:0b:c1:44:dc:c4:b6:8f:60:cf: 77:86:b7:10:bd:56:b2:8c:9a:0c:e7:c6:6b:8c:c1:78:ba:3b: 8f:80:14:3a:3c:e2:fd:e2:5a:ab:58:1b:56:93:75:53:0a:31: c3:21:8d:11:0d:90:18:da:bc:e6:69:75:29:25:17:e4:a0:47: 2d:82:ed:4f:3d:c1:78:13:f3:6f:95:8e:95:14:31:eb:99:6c: 99:4d:3a:12:e9:41:42:42:aa:32:0d:d6:d6:72:a9:46:b9:05: cf:c2:02:f5:45:6d:8d:77:60:21:84:8b:c0:a3:48:ee:a1:66: 10:9f:a6:85:8f:cb:91:b7:bd:01:08:1c:cf:6b:ab:a3:2c:c8: 3c:36:8a:96 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXoTC8hHRTrRN8x7M3PpoR6ksAD0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE0MTUyMDEzWhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZmZlODU1Y2YwZmJmNjk4NGI5NGJmY2YwOTZlYmY3NWQy MGY2ODBkM2QyNDUzMjcwNDM0Y2ViZjNkOThiOGQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCadsuD+oHGvwHPsiLd+zXeRS8njIY2e2uNKbL/FkKE1xAG 19Q0oDuVWCOotc5GDKxcMqkbVbXL99nSwBtBcAK8IrikFFmEumxAZEzJ0hsvs54y m7X3zaZ3Mvi+AWCMAjsVZ+sIewQ/EVK6MeIAevZB414Ji+f3xLhK9JDK7TKa3qYl AAJJdA1nv/ndwWwhcG9zx51nbniZcaF+awcc/37tOPymQBQeg708wG9IH7Ypjt4A SwRhgLCQ4EQD0jGg1opBedqJY57Cl9axsVgcCwrToGFf+xCJpZfFooOTWIZah1m+ hlU3JSkMP/ndrjM7bBPzOCx1hhOdhlpS+pyRUONfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIC+7cz2aUhoZmfh+la24/Dnc4qEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlZGMyNTIxLWE1M2UtNGIwNS1iNTM0LThiM2JlOWQ5ZjhlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZA/IAwDQYJKoZIhvcNAQELBQADggEBAKqC4+K+xObnlqQe2fe1XyYjVydN sb77LTdjnT8sKiciaYucwMq+770vuH4sltaP7hg63sADrR1Zg+VSv6baXdxTJYp6 MlrRsUUqrt3+4wb0CvyDfMkcuZ+xgIvowgGP6mh/4J/fHka3Aiyn9G4ce1GwpQDE kwvBRNzEto9gz3eGtxC9VrKMmgznxmuMwXi6O4+AFDo84v3iWqtYG1aTdVMKMcMh jRENkBjavOZpdSklF+SgRy2C7U89wXgT82+VjpUUMeuZbJlNOhLpQUJCqjIN1tZy qUa5Bc/CAvVFbY13YCGEi8CjSO6hZhCfpoWPy5G3vQEIHM9rq6MsyDw2ipY= -----END CERTIFICATE-----Generated at Mon Jul 21 18:05:51 2025 by rpki-client