$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f0b048d-2305-43d3-a474-0e095ab7e09b.roa File: 4f0b048d-2305-43d3-a474-0e095ab7e09b.roa (raw, json) Hash identifier: wp+VZNlUsKu+Gc7Y8GGvF8E8tAMRs82COnet1FTAXHI= Subject key identifier: 17:03:08:CE:D1:E6:5D:60:A6:64:BE:1B:9E:8F:A9:E7:C1:19:16:30 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5DC745C065D1EACDE8413F10E2DDB98EC3FE5B9A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f0b048d-2305-43d3-a474-0e095ab7e09b.roa Signing time: Mon 30 Jun 2025 15:20:28 +0000 ROA not before: Mon 30 Jun 2025 15:20:28 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.53.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:c7:45:c0:65:d1:ea:cd:e8:41:3f:10:e2:dd:b9:8e:c3:fe:5b:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 30 15:20:28 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=03ebd3763b35bf6d7f987b343124ba770f4554b4b198057fcaf422a2ea5fdfc2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:34:75:e8:e5:0a:ad:97:8c:e8:3a:a6:09:e2: 37:52:dc:de:20:69:e0:68:b4:c4:41:4f:40:f8:a5: 53:46:1e:d5:3c:5d:92:97:7d:4b:a2:e6:c2:a7:9f: 28:f8:66:ec:dc:a7:7b:0e:b6:6e:6b:db:c0:81:6a: db:b4:ea:fb:3c:66:bd:01:7f:c7:0e:0d:89:28:dc: dc:8e:2a:15:5f:65:8b:14:c3:a9:6b:7e:e6:be:5d: 93:bd:c8:d6:33:eb:26:4b:83:7b:4d:fa:43:91:b0: 80:f1:3e:3f:7a:0b:3c:e4:d5:c9:8f:42:c1:4b:a0: ee:15:81:0c:a3:19:f1:a8:3d:c5:bc:ca:0d:7d:51: 23:f7:60:12:b3:e0:e1:98:ed:70:62:81:cd:02:3b: f2:6c:2d:fd:c1:c4:82:60:f9:1e:b8:9a:5f:9b:5f: dc:52:35:18:a3:74:9b:18:8c:8e:a4:28:1c:5c:ff: 0b:cc:15:16:52:fd:23:9f:50:ab:6f:29:cf:76:05: d0:74:66:f9:f2:e1:84:8a:cf:5b:66:d3:ce:be:3e: 91:b3:32:55:5f:c6:f9:d1:b2:a4:ad:c5:57:0f:dc: b1:e2:b2:3a:a1:55:bd:e2:fc:e6:45:03:d8:1c:82: 55:0d:5c:81:68:f9:e5:ca:7b:02:a3:93:70:17:6a: 65:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:03:08:CE:D1:E6:5D:60:A6:64:BE:1B:9E:8F:A9:E7:C1:19:16:30 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f0b048d-2305-43d3-a474-0e095ab7e09b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.53.192.0/20 Signature Algorithm: sha256WithRSAEncryption 84:ce:3a:8d:6b:ac:d6:ef:2b:15:e6:c5:6b:54:4e:9c:6c:e8: ba:12:f5:56:5f:44:bd:0e:d7:5f:fb:ea:74:74:0b:37:17:54: 46:86:ae:e7:71:1e:71:5c:f6:5a:90:f0:66:58:7d:89:99:c0: 1e:e8:5a:bb:1f:9e:5d:4d:32:04:c4:0b:16:53:06:8d:8a:22: 14:af:ee:19:15:a3:4d:6f:86:a2:07:34:94:8f:6f:4c:2c:2a: a7:56:8a:1f:a8:41:c2:56:52:a9:25:24:de:23:51:4c:29:fa: 71:37:44:d5:7a:45:68:db:f6:86:f7:57:a2:e9:56:c1:a0:a7: 13:e9:fe:34:f9:a4:a3:c2:f4:d4:fa:55:04:70:06:cb:68:00: 34:1a:3a:62:7b:d2:ac:ba:e1:5e:1a:d6:8c:e3:c2:59:10:6f: 79:92:94:d0:c5:da:6b:c1:4e:6e:6e:5e:40:88:e9:e4:75:0c: f7:c5:4a:e7:fa:4c:c1:5a:04:bc:a2:6f:11:3f:ed:a7:dd:2c: 6f:34:ed:1b:5c:05:10:36:52:cf:28:4b:05:be:e9:21:d3:27: 6d:62:ce:73:55:cb:e5:b1:16:fe:fa:e1:02:05:ce:84:dd:fb: e9:e2:9c:ee:07:5d:9b:7d:d8:c6:b5:15:73:56:8a:08:c0:7d: 31:d8:c2:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXcdFwGXR6s3oQT8Q4t25jsP+W5owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjMwMTUyMDI4WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwM2ViZDM3NjNiMzViZjZkN2Y5ODdiMzQzMTI0YmE3NzBm NDU1NGI0YjE5ODA1N2ZjYWY0MjJhMmVhNWZkZmMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeNHXo5Qqtl4zoOqYJ4jdS3N4gaeBotMRBT0D4pVNGHtU8 XZKXfUui5sKnnyj4Zuzcp3sOtm5r28CBatu06vs8Zr0Bf8cODYko3NyOKhVfZYsU w6lrfua+XZO9yNYz6yZLg3tN+kORsIDxPj96Czzk1cmPQsFLoO4VgQyjGfGoPcW8 yg19USP3YBKz4OGY7XBigc0CO/JsLf3BxIJg+R64ml+bX9xSNRijdJsYjI6kKBxc /wvMFRZS/SOfUKtvKc92BdB0Zvny4YSKz1tm086+PpGzMlVfxvnRsqStxVcP3LHi sjqhVb3i/OZFA9gcglUNXIFo+eXKewKjk3AXamXHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFwMIztHmXWCmZL4bno+p58EZFjAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmMGIwNDhkLTIzMDUtNDNkMy1hNDc0LTBlMDk1YWI3ZTA5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARFNcAwDQYJKoZIhvcNAQELBQADggEBAITOOo1rrNbvKxXmxWtUTpxs6LoS 9VZfRL0O11/76nR0CzcXVEaGrudxHnFc9lqQ8GZYfYmZwB7oWrsfnl1NMgTECxZT Bo2KIhSv7hkVo01vhqIHNJSPb0wsKqdWih+oQcJWUqklJN4jUUwp+nE3RNV6RWjb 9ob3V6LpVsGgpxPp/jT5pKPC9NT6VQRwBstoADQaOmJ70qy64V4a1ozjwlkQb3mS lNDF2mvBTm5uXkCI6eR1DPfFSuf6TMFaBLyibxE/7afdLG807RtcBRA2Us8oSwW+ 6SHTJ21iznNVy+WxFv764QIFzoTd++ninO4HXZt92Ma1FXNWigjAfTHYwiA= -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:44 2025 by rpki-client