$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/23a53446-cb7a-4e95-8459-59f35aa8088c.roa File: 23a53446-cb7a-4e95-8459-59f35aa8088c.roa (raw, json) Hash identifier: 8w6gCDtDJARQAcV+Tv18SOxGXrZYXlCy2mkMITMwsj0= Subject key identifier: 5C:99:8E:83:A8:09:31:77:0D:BD:F3:90:E3:D5:79:AE:2B:FA:32:09 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B7B846FE4B06231AC71C4114D8505B4A81E829B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/23a53446-cb7a-4e95-8459-59f35aa8088c.roa Signing time: Fri 11 Jul 2025 00:40:15 +0000 ROA not before: Fri 11 Jul 2025 00:40:15 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 65.0.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:7b:84:6f:e4:b0:62:31:ac:71:c4:11:4d:85:05:b4:a8:1e:82:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 00:40:15 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=7b17ff8697ab264c6023e19ed0d55ffaddd3d85cce1d3f74028c7076f37fc0e6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:67:d6:6d:37:2a:b3:8b:7a:06:a2:97:6a:dc: ab:eb:9f:cc:f2:73:9f:32:bb:3f:7f:59:9d:53:68: de:33:cb:4a:02:a2:07:c6:d6:86:33:d9:76:f0:75: 80:33:5c:de:6d:6c:83:99:eb:27:8d:e5:ba:09:59: a9:34:6d:a7:af:03:7c:26:fc:a2:d4:91:de:59:dd: 9c:ef:11:c4:5f:e8:12:0e:98:c2:0f:eb:54:cb:cf: 64:cd:c2:da:00:61:79:8a:4c:ef:e7:b6:38:e3:67: 8c:4f:be:ec:18:e0:68:1f:0b:9d:e9:02:40:41:b3: 87:dc:8f:08:0d:1b:ab:23:df:02:bb:69:c1:eb:1a: 26:75:aa:61:03:23:6d:67:e1:4d:94:14:1a:32:ce: 8d:5c:ad:43:4a:38:79:48:4a:5c:94:57:13:e4:5f: ba:52:f7:17:7e:17:8c:26:ad:9e:e0:90:04:a1:a7: 22:ef:2c:ff:12:00:23:03:ca:1b:22:59:d5:d8:ed: b3:b5:ed:c9:5c:f3:26:b4:de:7e:73:2e:76:32:4f: 86:85:39:c3:30:b9:81:5f:c1:f1:86:0c:11:d0:60: 96:e6:51:39:be:40:2a:97:e0:bc:9e:7c:75:88:8d: 8c:77:e9:21:5a:aa:01:37:22:6b:d6:ce:99:74:b1: 2a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:99:8E:83:A8:09:31:77:0D:BD:F3:90:E3:D5:79:AE:2B:FA:32:09 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/23a53446-cb7a-4e95-8459-59f35aa8088c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.0.0.0/14 Signature Algorithm: sha256WithRSAEncryption aa:4e:b3:65:e9:1e:02:d8:86:88:80:02:39:45:63:49:38:75: 01:d3:58:49:34:c2:13:24:24:84:c0:4d:0d:3a:23:b1:ed:87: a3:3b:79:26:78:01:d2:c1:86:0f:20:5d:a3:33:71:c5:4a:7b: 68:72:b4:93:32:f6:64:d2:e7:b7:f6:5f:50:57:73:27:3a:20: a0:10:2d:36:af:ff:33:12:8b:84:87:45:39:10:93:6e:bf:2d: 31:72:54:5c:a2:1a:e3:ab:70:2a:8d:f7:38:48:76:59:ca:c9: 57:15:4b:7b:f1:69:0a:19:e6:61:42:d5:40:72:82:32:9b:b1: 41:a5:25:2d:94:bf:e2:c9:99:48:d6:50:1f:f6:f4:cc:03:4b: 0f:85:75:3c:98:8c:52:99:3f:3f:bf:24:6f:17:ef:92:c0:65: 3f:a7:f3:04:2c:6b:ea:45:9d:5a:04:c0:02:9c:66:0b:e0:2c: 87:6d:00:06:01:90:bb:a6:4d:3d:0e:3a:6c:10:8c:e0:ee:bf: 6e:1b:cb:3f:a8:ee:2a:0d:97:f2:31:f5:09:93:5d:13:e5:6c: 34:d7:d1:ff:46:07:5f:d6:64:9c:74:4c:48:47:e6:4c:2c:b3: a6:73:d7:eb:29:5e:ef:f1:68:24:fa:78:89:82:fc:47:6a:7a: b2:22:ca:f1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUa3uEb+SwYjGsccQRTYUFtKgegpswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMDA0MDE1WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YjE3ZmY4Njk3YWIyNjRjNjAyM2UxOWVkMGQ1NWZmYWRk ZDNkODVjY2UxZDNmNzQwMjhjNzA3NmYzN2ZjMGU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbZ9ZtNyqzi3oGopdq3Kvrn8zyc58yuz9/WZ1TaN4zy0oC ogfG1oYz2XbwdYAzXN5tbIOZ6yeN5boJWak0baevA3wm/KLUkd5Z3ZzvEcRf6BIO mMIP61TLz2TNwtoAYXmKTO/ntjjjZ4xPvuwY4GgfC53pAkBBs4fcjwgNG6sj3wK7 acHrGiZ1qmEDI21n4U2UFBoyzo1crUNKOHlISlyUVxPkX7pS9xd+F4wmrZ7gkASh pyLvLP8SACMDyhsiWdXY7bO17clc8ya03n5zLnYyT4aFOcMwuYFfwfGGDBHQYJbm UTm+QCqX4LyefHWIjYx36SFaqgE3ImvWzpl0sSpbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUXJmOg6gJMXcNvfOQ49V5riv6MgkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzYTUzNDQ2LWNiN2EtNGU5NS04NDU5LTU5ZjM1YWE4MDg4Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJBADANBgkqhkiG9w0BAQsFAAOCAQEAqk6zZekeAtiGiIACOUVjSTh1AdNY STTCEyQkhMBNDTojse2Hozt5JngB0sGGDyBdozNxxUp7aHK0kzL2ZNLnt/ZfUFdz JzogoBAtNq//MxKLhIdFORCTbr8tMXJUXKIa46twKo33OEh2WcrJVxVLe/FpChnm YULVQHKCMpuxQaUlLZS/4smZSNZQH/b0zANLD4V1PJiMUpk/P78kbxfvksBlP6fz BCxr6kWdWgTAApxmC+Ash20ABgGQu6ZNPQ46bBCM4O6/bhvLP6juKg2X8jH1CZNd E+VsNNfR/0YHX9ZknHRMSEfmTCyzpnPX6yle7/FoJPp4iYL8R2p6siLK8Q== -----END CERTIFICATE-----Generated at Mon Jul 21 13:07:04 2025 by rpki-client