$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3fe332a1-e627-48fb-af81-adef2af88de1.roa File: 3fe332a1-e627-48fb-af81-adef2af88de1.roa (raw, json) Hash identifier: kPU037p2QpLMr7b56GFb2HB6yURF9S4F2lvLt8IZNpg= Subject key identifier: B2:82:6A:CC:8D:56:A6:34:B7:EB:0F:5C:E8:20:37:9F:69:28:7A:58 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 03627E05EA7973F360E81A8302ED1E730B5CC955 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3fe332a1-e627-48fb-af81-adef2af88de1.roa Signing time: Wed 09 Jul 2025 00:50:29 +0000 ROA not before: Wed 09 Jul 2025 00:50:29 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 5.60.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:62:7e:05:ea:79:73:f3:60:e8:1a:83:02:ed:1e:73:0b:5c:c9:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:50:29 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=78e0c8df62fd734bd6dea7e3c0583719f498c96c37e5932e4997555bb231876b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:14:a4:82:e3:f3:67:ed:86:c9:89:c1:b9:8f: 6a:34:b9:65:25:27:ea:b9:15:a6:1d:eb:bd:cd:95: c1:7a:cf:ff:dd:59:f8:a3:40:29:42:e3:bf:7c:a5: b4:e8:28:3a:58:52:6e:1a:61:4b:82:6e:21:34:ae: ee:09:99:8d:2b:2a:5b:dd:a9:3d:e5:3c:65:96:b5: 23:f6:f9:e5:27:ed:f4:c9:18:32:08:4b:52:8d:3f: 90:1c:f0:20:0e:30:e7:59:1d:18:0d:31:0f:7b:b9: 75:29:00:82:de:c1:2a:f0:ff:82:b8:b2:c3:d6:48: 8e:a2:27:3c:80:b0:83:b6:53:71:26:98:4f:1d:0d: 87:3b:1b:82:1d:b7:82:f1:2c:bf:e7:7a:31:6e:1c: 14:a6:49:6e:57:16:86:49:aa:a0:8f:db:50:34:63: ba:bf:68:3e:f2:24:e0:1a:64:b5:27:af:1f:5e:95: 0b:3f:81:0d:52:c7:c6:cf:3a:bb:11:68:12:3e:a1: 7c:9c:f5:01:99:38:bd:cb:13:56:d9:46:30:8e:0f: 14:c2:b5:1a:ed:09:ab:aa:16:c6:3f:fd:e8:05:6b: 86:5f:33:7d:cd:6e:8c:98:ca:7a:e7:a9:78:d7:3c: 75:a8:32:ac:ee:04:23:61:ad:f0:bc:20:ce:53:df: 20:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:82:6A:CC:8D:56:A6:34:B7:EB:0F:5C:E8:20:37:9F:69:28:7A:58 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3fe332a1-e627-48fb-af81-adef2af88de1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.60.0.0/16 Signature Algorithm: sha256WithRSAEncryption d4:04:94:e3:e7:d2:73:54:2d:fb:ab:ba:b0:40:46:4b:ee:f0: c9:ff:a7:5c:e3:ea:63:06:48:af:22:76:bf:81:40:cd:66:72: f4:d0:34:ff:0f:bc:96:74:b8:d7:10:8d:07:22:42:f4:00:ec: 50:36:3c:79:dd:aa:5c:dd:b4:43:f2:62:98:97:f3:65:a9:32: e5:47:3b:47:cd:4c:4f:f2:35:24:20:36:fd:14:48:9b:1d:49: 0c:fe:ce:8c:b2:fe:dd:ef:b6:35:59:f6:18:c4:6c:cd:09:00: 9f:97:93:61:2b:07:5a:fe:0d:e5:cb:7e:77:6a:d9:2e:e4:76: ac:22:bc:b9:d1:1c:0a:cc:fd:bd:be:05:8a:c5:c6:b2:7f:68: 8d:9a:fd:39:51:43:c4:98:f7:e1:88:7b:2e:bb:4f:b6:a3:87: 24:a7:bd:2b:67:03:92:b6:64:0e:1c:08:f0:9c:bc:c9:4c:ad: 15:4b:79:19:64:66:9e:5d:9d:5a:28:de:e3:76:f0:da:9e:7d: f4:52:07:80:29:13:c1:15:c7:c6:4e:df:1e:a6:ed:4b:6d:8a: 16:d7:8a:4f:0f:52:a4:cb:79:cf:55:41:e8:12:a7:42:02:78: c4:f7:e8:8f:92:e9:ae:e5:da:cb:3c:20:88:26:56:32:cd:11: 43:d4:dc:cb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUA2J+Bep5c/Ng6BqDAu0ecwtcyVUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDA1MDI5WhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OGUwYzhkZjYyZmQ3MzRiZDZkZWE3ZTNjMDU4MzcxOWY0 OThjOTZjMzdlNTkzMmU0OTk3NTU1YmIyMzE4NzZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDFKSC4/Nn7YbJicG5j2o0uWUlJ+q5FaYd673NlcF6z//d WfijQClC4798pbToKDpYUm4aYUuCbiE0ru4JmY0rKlvdqT3lPGWWtSP2+eUn7fTJ GDIIS1KNP5Ac8CAOMOdZHRgNMQ97uXUpAILewSrw/4K4ssPWSI6iJzyAsIO2U3Em mE8dDYc7G4Idt4LxLL/nejFuHBSmSW5XFoZJqqCP21A0Y7q/aD7yJOAaZLUnrx9e lQs/gQ1Sx8bPOrsRaBI+oXyc9QGZOL3LE1bZRjCODxTCtRrtCauqFsY//egFa4Zf M33NboyYynrnqXjXPHWoMqzuBCNhrfC8IM5T3yDPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUsoJqzI1WpjS36w9c6CA3n2koelgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNmZTMzMmExLWU2MjctNDhmYi1hZjgxLWFkZWYyYWY4OGRlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAFPDANBgkqhkiG9w0BAQsFAAOCAQEA1ASU4+fSc1Qt+6u6sEBGS+7wyf+n XOPqYwZIryJ2v4FAzWZy9NA0/w+8lnS41xCNByJC9ADsUDY8ed2qXN20Q/JimJfz Zaky5Uc7R81MT/I1JCA2/RRImx1JDP7OjLL+3e+2NVn2GMRszQkAn5eTYSsHWv4N 5ct+d2rZLuR2rCK8udEcCsz9vb4FisXGsn9ojZr9OVFDxJj34Yh7LrtPtqOHJKe9 K2cDkrZkDhwI8Jy8yUytFUt5GWRmnl2dWije43bw2p599FIHgCkTwRXHxk7fHqbt S22KFteKTw9SpMt5z1VB6BKnQgJ4xPfoj5LpruXayzwgiCZWMs0RQ9Tcyw== -----END CERTIFICATE-----Generated at Mon Jul 21 18:07:53 2025 by rpki-client