$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25155f0e-306e-4adb-8e5e-8f1ee87796e1.roa File: 25155f0e-306e-4adb-8e5e-8f1ee87796e1.roa (raw, json) Hash identifier: WExv+82k/KgmpA9CRbaxoNCyfeFi427OZEQkUhrNIlg= Subject key identifier: F0:DD:41:6F:A0:68:A1:67:DA:C0:1D:9F:D8:ED:58:CC:BA:02:12:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 167AEA9D95B6FEC4ED129545FBC6C484BA60BF76 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25155f0e-306e-4adb-8e5e-8f1ee87796e1.roa Signing time: Wed 09 Jul 2025 00:52:06 +0000 ROA not before: Wed 09 Jul 2025 00:52:06 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.25.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:7a:ea:9d:95:b6:fe:c4:ed:12:95:45:fb:c6:c4:84:ba:60:bf:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:52:06 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=091d518d1525a443796604fd6114fa8823d74cfb6718a6acb736bd06ecd33d40, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:97:57:08:eb:ef:71:e0:1d:d5:ec:1b:e5:f3: e9:6b:33:90:66:52:fc:f8:a4:5b:6c:f7:40:c6:3f: 6e:b9:0c:3b:1b:ca:c6:ac:ca:16:75:85:f2:a3:2f: d9:b0:af:d5:b0:e0:6f:1e:06:0f:ec:6c:9d:9a:3a: 4c:fb:1b:12:c2:20:f5:ce:e2:fd:16:a5:29:f8:62: 8a:02:1c:af:29:40:2b:9a:4b:c4:ac:4b:22:2a:10: cc:ec:6e:ce:a5:9e:c5:c0:5d:a4:c2:35:c4:a9:60: 59:a9:16:03:24:3b:78:69:83:6b:fa:9a:a2:7d:98: 9d:ab:38:f2:3c:23:3b:fa:77:bd:8a:f2:1f:1d:ca: a4:54:08:58:55:d7:9b:2c:0f:9b:da:ed:80:63:fa: 45:53:97:18:0f:76:38:44:17:65:f5:0e:8b:9e:6b: 67:06:87:19:39:11:12:9f:2e:81:72:df:67:33:9a: ab:a6:e1:62:d6:30:bc:8c:3a:69:4f:b3:26:fb:f4: 1b:40:7b:54:e3:78:cd:ce:31:72:de:56:55:bc:1d: 74:6f:88:1e:38:5a:6c:d3:bc:0b:1e:df:49:71:b6: 03:06:88:ea:58:e2:64:b5:61:64:23:f7:73:86:bb: ff:88:b7:c3:2b:55:ba:ca:bb:48:9b:94:27:c6:46: 7b:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:DD:41:6F:A0:68:A1:67:DA:C0:1D:9F:D8:ED:58:CC:BA:02:12:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25155f0e-306e-4adb-8e5e-8f1ee87796e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.68.0/24 Signature Algorithm: sha256WithRSAEncryption 19:e9:d5:8a:52:a8:e5:0b:98:55:99:5b:02:1f:2e:2d:9f:40: 10:fb:32:b1:b8:c0:bd:d6:2a:4f:d2:0f:c7:c7:9d:fa:f9:87: 51:d4:a2:7f:4a:d6:4a:95:88:14:e5:76:50:22:cc:45:da:e0: c4:ed:44:f1:6d:b3:ee:8c:4b:77:a4:74:fd:aa:47:af:f9:45: 18:b7:43:50:55:98:b6:ef:bd:83:4b:0e:33:25:e1:5d:76:4c: 3f:dc:97:6e:c4:e9:f4:86:94:13:88:ad:4c:6c:60:3d:6b:f1: 66:42:46:92:b2:16:37:76:8f:2f:43:d7:c5:d3:8d:32:43:15: 54:18:91:44:7e:86:dc:d8:21:bd:45:5c:e6:11:66:1d:e0:ce: 5d:3f:5f:d1:40:a1:a7:b1:3f:41:15:2f:5a:f2:31:bd:ee:89: 88:b2:8e:b2:9e:dc:3e:17:e5:1f:d3:0a:8f:ee:76:82:8b:aa: 1b:97:17:55:f4:e2:4e:11:e0:ad:f7:1c:99:74:f6:fc:10:7a: 3e:50:59:b1:fd:62:f5:20:be:2a:23:78:c1:13:fb:88:2e:36: d8:1e:95:b7:aa:1f:eb:00:03:02:93:d6:35:ec:44:6a:fb:94: 88:a4:96:a7:c1:21:d8:1a:8a:b1:4b:fb:cc:e8:bd:3c:16:cb: 59:9f:b6:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFnrqnZW2/sTtEpVF+8bEhLpgv3YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDA1MjA2WhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTFkNTE4ZDE1MjVhNDQzNzk2NjA0ZmQ2MTE0ZmE4ODIz ZDc0Y2ZiNjcxOGE2YWNiNzM2YmQwNmVjZDMzZDQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbl1cI6+9x4B3V7Bvl8+lrM5BmUvz4pFts90DGP265DDsb ysasyhZ1hfKjL9mwr9Ww4G8eBg/sbJ2aOkz7GxLCIPXO4v0WpSn4YooCHK8pQCua S8SsSyIqEMzsbs6lnsXAXaTCNcSpYFmpFgMkO3hpg2v6mqJ9mJ2rOPI8Izv6d72K 8h8dyqRUCFhV15ssD5va7YBj+kVTlxgPdjhEF2X1Douea2cGhxk5ERKfLoFy32cz mqum4WLWMLyMOmlPsyb79BtAe1TjeM3OMXLeVlW8HXRviB44WmzTvAse30lxtgMG iOpY4mS1YWQj93OGu/+It8MrVbrKu0iblCfGRnvPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8N1Bb6BooWfawB2f2O1YzLoCErgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI1MTU1ZjBlLTMwNmUtNGFkYi04ZTVlLThmMWVlODc3OTZlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2GUQwDQYJKoZIhvcNAQELBQADggEBABnp1YpSqOULmFWZWwIfLi2fQBD7 MrG4wL3WKk/SD8fHnfr5h1HUon9K1kqViBTldlAizEXa4MTtRPFts+6MS3ekdP2q R6/5RRi3Q1BVmLbvvYNLDjMl4V12TD/cl27E6fSGlBOIrUxsYD1r8WZCRpKyFjd2 jy9D18XTjTJDFVQYkUR+htzYIb1FXOYRZh3gzl0/X9FAoaexP0EVL1ryMb3uiYiy jrKe3D4X5R/TCo/udoKLqhuXF1X04k4R4K33HJl09vwQej5QWbH9YvUgviojeMET +4guNtgelbeqH+sAAwKT1jXsRGr7lIiklqfBIdgairFL+8zovTwWy1mftmg= -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:48 2025 by rpki-client