$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17428170-47b5-40b1-8882-bb95915d3ed7.roa File: 17428170-47b5-40b1-8882-bb95915d3ed7.roa (raw, json) Hash identifier: J36E+SQ3RNduRi7iphjX2I4l8pSu4XKL6dHDdWdTJJ4= Subject key identifier: F1:3E:02:CB:05:27:A8:F7:A3:E4:F1:7D:E2:76:A5:AA:68:BE:89:DC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A1B52891921BBAB23160A504387D9E579BC5A82 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17428170-47b5-40b1-8882-bb95915d3ed7.roa Signing time: Mon 30 Jun 2025 15:20:17 +0000 ROA not before: Mon 30 Jun 2025 15:20:17 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 66.109.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 24 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:1b:52:89:19:21:bb:ab:23:16:0a:50:43:87:d9:e5:79:bc:5a:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 30 15:20:17 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=d5be95c8d1abdc7fcbcfb19f2a4de3fc67f1f6cc3afbee0ec0b821a120397adf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:5e:27:aa:4f:80:50:62:4d:10:52:fa:89:0c: 69:5e:b5:e7:7b:01:7b:d0:2e:18:8f:9b:0e:62:1f: 7a:80:3f:ac:e2:83:7a:cb:3e:07:85:cd:68:7c:37: be:13:94:c1:42:3f:cc:e7:6f:c8:ef:4b:55:70:c2: 6f:81:25:38:57:8b:7b:93:dc:14:81:23:cf:b3:26: f1:d1:91:c1:d1:2a:02:a2:b7:12:59:d8:97:c1:cc: 38:7b:8e:7f:b9:15:b5:8b:e8:90:a6:19:ab:a8:73: ca:95:8d:7d:63:cc:2a:6b:09:9c:fb:9a:25:2d:12: 70:56:4c:f0:13:be:3a:9a:a8:64:98:31:65:da:6d: 23:7b:0e:ac:4c:71:01:7b:79:3e:50:5b:0a:14:fb: 4e:60:9e:3f:6b:65:47:57:9d:bd:c1:ec:e2:f6:bf: d2:af:ff:f1:1e:74:b7:8a:e4:dd:28:34:a5:65:37: 4a:aa:93:1d:ae:4c:94:b3:2d:8c:62:3e:cf:95:3a: 0b:1d:8c:87:3f:b1:c2:26:e0:b3:82:ad:05:88:5a: 8f:ba:24:08:c4:bc:79:9b:5a:01:73:4d:3b:81:3c: 0d:24:ca:31:30:3c:70:85:85:bb:ca:e9:e3:91:76: 51:cd:25:3e:61:89:91:5b:0a:2b:50:c8:ce:14:8e: af:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:3E:02:CB:05:27:A8:F7:A3:E4:F1:7D:E2:76:A5:AA:68:BE:89:DC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17428170-47b5-40b1-8882-bb95915d3ed7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.109.64.0/20 Signature Algorithm: sha256WithRSAEncryption 0f:14:e2:9c:12:5c:1c:b2:a2:91:cc:d4:38:d1:ca:dc:71:59: dd:5f:e7:68:a1:8e:7e:3a:2a:f5:d8:bf:d9:a0:9b:bc:ac:9a: 9a:01:14:29:eb:d1:ab:02:a0:2a:89:73:81:4c:64:9a:8a:6d: ce:89:4a:65:a1:d3:51:e8:5d:c5:81:6c:43:aa:a1:13:ea:14: df:8c:12:34:bd:e3:5d:8a:cd:42:3d:a6:31:f2:22:87:72:49: 4c:82:b7:d9:cb:6a:80:bb:05:4a:0a:7d:40:79:0a:51:e8:46: a7:eb:a3:c5:fc:54:8a:e5:ef:7a:0d:38:5c:78:27:a2:b1:cb: 45:20:6a:8b:6f:4b:cc:57:05:e9:89:f7:48:68:8d:c2:5a:87: 1e:ec:87:5b:ce:b6:41:28:ca:6f:16:4c:52:60:e3:fa:44:ab: fa:bf:4c:ff:6b:2f:99:79:0d:f6:f6:47:e3:32:7b:5c:4a:8a: db:8b:74:17:af:02:a4:6e:94:e6:64:34:60:58:16:9d:6f:c9: 2d:44:2e:8a:1a:75:61:4a:0c:b6:84:4f:e2:fb:ae:e8:44:ac: 1b:4b:fa:4a:e1:96:a0:f1:a0:e7:8e:a6:6f:b2:f3:58:8a:b7: 62:08:55:ff:60:2c:10:b4:a3:32:d4:1f:e9:40:a4:df:a0:d2: 84:44:9e:7e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUShtSiRkhu6sjFgpQQ4fZ5Xm8WoIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjMwMTUyMDE3WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNWJlOTVjOGQxYWJkYzdmY2JjZmIxOWYyYTRkZTNmYzY3 ZjFmNmNjM2FmYmVlMGVjMGI4MjFhMTIwMzk3YWRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZXieqT4BQYk0QUvqJDGleted7AXvQLhiPmw5iH3qAP6zi g3rLPgeFzWh8N74TlMFCP8znb8jvS1Vwwm+BJThXi3uT3BSBI8+zJvHRkcHRKgKi txJZ2JfBzDh7jn+5FbWL6JCmGauoc8qVjX1jzCprCZz7miUtEnBWTPATvjqaqGSY MWXabSN7DqxMcQF7eT5QWwoU+05gnj9rZUdXnb3B7OL2v9Kv//EedLeK5N0oNKVl N0qqkx2uTJSzLYxiPs+VOgsdjIc/scIm4LOCrQWIWo+6JAjEvHmbWgFzTTuBPA0k yjEwPHCFhbvK6eORdlHNJT5hiZFbCitQyM4Ujq+LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8T4CywUnqPej5PF94nalqmi+idwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE3NDI4MTcwLTQ3YjUtNDBiMS04ODgyLWJiOTU5MTVkM2VkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARCbUAwDQYJKoZIhvcNAQELBQADggEBAA8U4pwSXByyopHM1DjRytxxWd1f 52ihjn46KvXYv9mgm7ysmpoBFCnr0asCoCqJc4FMZJqKbc6JSmWh01HoXcWBbEOq oRPqFN+MEjS9412KzUI9pjHyIodySUyCt9nLaoC7BUoKfUB5ClHoRqfro8X8VIrl 73oNOFx4J6Kxy0UgaotvS8xXBemJ90hojcJahx7sh1vOtkEoym8WTFJg4/pEq/q/ TP9rL5l5Dfb2R+Mye1xKituLdBevAqRulOZkNGBYFp1vyS1ELooadWFKDLaET+L7 ruhErBtL+krhlqDxoOeOpm+y81iKt2IIVf9gLBC0ozLUH+lApN+g0oREnn4= -----END CERTIFICATE-----Generated at Wed Jul 23 02:06:07 2025 by rpki-client