$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c0863cb-d8db-4dd6-8295-d6c518a6cec9.roa File: 3c0863cb-d8db-4dd6-8295-d6c518a6cec9.roa (raw, json) Hash identifier: QFrS1g3WI3MCe0EaOCdV3iL8wXSdCWH5SiHB2N5ZEMs= Subject key identifier: 27:C3:84:D5:76:AF:B8:45:D5:9D:83:57:FA:B8:B7:AD:9F:FB:3A:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 036538277541E9EA5B05F218579BA5ED13CCC487 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c0863cb-d8db-4dd6-8295-d6c518a6cec9.roa Signing time: Tue 08 Jul 2025 00:30:14 +0000 ROA not before: Tue 08 Jul 2025 00:30:14 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.62.70.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:65:38:27:75:41:e9:ea:5b:05:f2:18:57:9b:a5:ed:13:cc:c4:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 00:30:14 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=d96550dacb37ccbc69600605cba2fbb32f750d8f51bf6b5a60bbb3b3912838f9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:18:f8:da:07:ca:d1:f7:9c:e7:62:8c:a0:ef: 80:5e:fc:41:26:35:0e:3e:28:08:cb:bf:f9:7c:d6: 80:cc:86:61:82:cc:30:f7:87:34:cb:81:c9:b8:38: ea:23:bb:23:89:6e:f6:c9:9b:62:a1:c7:bb:41:31: f2:5a:49:3e:e5:07:71:f4:6b:7c:36:b4:b8:e4:0c: 44:e9:72:9b:69:18:b9:a7:52:ba:29:e2:3f:5c:ea: 05:ed:44:86:ac:44:52:91:b7:2a:89:ee:92:33:6c: c5:04:f1:95:e2:ec:79:b8:1a:d5:82:b4:2e:4f:93: b4:9a:f0:2a:2d:d0:34:2c:f3:0e:59:1a:01:02:2a: 8a:c1:f3:43:e4:af:3e:87:52:70:6a:d7:f5:e5:fc: 15:8e:7b:be:dd:68:d0:96:27:e9:09:cb:1e:b0:6c: bd:44:ca:fb:b0:30:d5:74:08:89:ca:a7:2d:84:a9: f6:1e:7b:fc:be:21:3d:92:64:51:b4:c3:44:5d:14: f0:73:92:19:e2:38:4d:03:44:d1:1e:85:cd:56:4d: c4:5e:2d:ff:dc:35:d7:aa:93:b4:e7:6f:b0:eb:5a: 31:e1:e8:14:50:2c:69:a3:ca:54:5c:c2:de:1f:de: 60:5d:b7:e8:70:a6:8f:99:7c:d8:dc:37:27:fb:e6: d3:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:C3:84:D5:76:AF:B8:45:D5:9D:83:57:FA:B8:B7:AD:9F:FB:3A:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c0863cb-d8db-4dd6-8295-d6c518a6cec9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.62.70.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:b1:d1:2d:d8:6b:d3:ce:97:19:a0:c9:13:c9:07:4f:69:e6: dd:f5:06:36:dd:44:a9:0f:85:da:ac:d5:17:a4:dd:e8:d6:f3: 65:19:af:6f:3c:c7:2b:4a:71:7f:80:52:85:d2:bf:32:35:4a: 25:ad:a0:76:ed:26:26:2f:9a:13:b1:e5:a7:9b:e8:31:ee:bc: fd:0f:cf:91:8f:f4:7c:7f:7e:19:d7:0f:15:63:c0:36:9c:f4: cc:64:47:82:df:ec:94:23:1a:91:c2:17:63:c7:04:74:56:9b: 89:d0:1a:16:65:92:b6:89:14:95:06:bb:9b:18:d4:e7:8a:ef: b6:0c:43:4e:15:76:bb:0e:6f:bf:f9:ec:d6:3b:c1:43:3a:86: 35:47:dd:79:81:84:0e:c6:33:89:0e:2f:e7:cf:d9:40:92:8b: 6c:26:23:b6:66:ce:c7:a6:cf:64:08:9f:45:2e:0f:40:66:91: 39:ac:d8:6f:ec:5b:ca:cd:38:b3:80:58:0d:04:4b:a8:32:6a: e5:90:7b:7e:13:be:b3:a1:9d:5b:16:24:1d:1b:0c:1b:8d:78: e0:10:2c:81:ae:3c:85:64:37:92:a0:6a:1b:95:16:5d:76:c6: 76:8b:a6:c9:0d:91:d9:22:91:c5:c8:78:90:fb:49:82:9d:d3: 14:c4:31:a9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA2U4J3VB6epbBfIYV5ul7RPMxIcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MDAzMDE0WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkOTY1NTBkYWNiMzdjY2JjNjk2MDA2MDVjYmEyZmJiMzJm NzUwZDhmNTFiZjZiNWE2MGJiYjNiMzkxMjgzOGY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlGPjaB8rR95znYoyg74Be/EEmNQ4+KAjLv/l81oDMhmGC zDD3hzTLgcm4OOojuyOJbvbJm2Khx7tBMfJaST7lB3H0a3w2tLjkDETpcptpGLmn Urop4j9c6gXtRIasRFKRtyqJ7pIzbMUE8ZXi7Hm4GtWCtC5Pk7Sa8Cot0DQs8w5Z GgECKorB80Pkrz6HUnBq1/Xl/BWOe77daNCWJ+kJyx6wbL1EyvuwMNV0CInKpy2E qfYee/y+IT2SZFG0w0RdFPBzkhniOE0DRNEehc1WTcReLf/cNdeqk7Tnb7DrWjHh 6BRQLGmjylRcwt4f3mBdt+hwpo+ZfNjcNyf75tOlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJ8OE1XavuEXVnYNX+ri3rZ/7OkkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjMDg2M2NiLWQ4ZGItNGRkNi04Mjk1LWQ2YzUxOGE2Y2VjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEQPkYwDQYJKoZIhvcNAQELBQADggEBAA6x0S3Ya9POlxmgyRPJB09p5t31 BjbdRKkPhdqs1Rek3ejW82UZr288xytKcX+AUoXSvzI1SiWtoHbtJiYvmhOx5aeb 6DHuvP0Pz5GP9Hx/fhnXDxVjwDac9MxkR4Lf7JQjGpHCF2PHBHRWm4nQGhZlkraJ FJUGu5sY1OeK77YMQ04VdrsOb7/57NY7wUM6hjVH3XmBhA7GM4kOL+fP2UCSi2wm I7Zmzsemz2QIn0UuD0BmkTms2G/sW8rNOLOAWA0ES6gyauWQe34TvrOhnVsWJB0b DBuNeOAQLIGuPIVkN5KgahuVFl12xnaLpskNkdkikcXIeJD7SYKd0xTEMak= -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:03 2025 by rpki-client