$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/537c046e-5a56-4195-932d-8cb70983c76c.roa File: 537c046e-5a56-4195-932d-8cb70983c76c.roa (raw, json) Hash identifier: lfyHisy05P//F/qbJ1TkpIAGEnF/LzFdE7H5dsDoiOc= Subject key identifier: E0:5B:B2:EF:CB:95:3F:6C:A4:DF:AF:68:71:87:8C:89:F6:EA:41:EE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 40B1D81D522ECC00DD8F1D374F583C316E08CA5F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/537c046e-5a56-4195-932d-8cb70983c76c.roa Signing time: Wed 09 Jul 2025 00:30:32 +0000 ROA not before: Wed 09 Jul 2025 00:30:32 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.254.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:b1:d8:1d:52:2e:cc:00:dd:8f:1d:37:4f:58:3c:31:6e:08:ca:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:30:32 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=35872f4b59a7e22cf0e3eda420eeaa27c54b8aed35b8369dc6f44bf2ee85fec8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:52:e1:e3:0a:ba:fc:45:d8:21:3f:98:ba:66: 21:03:74:09:6c:8f:59:69:c9:cd:c4:c8:98:18:40: 2d:77:31:65:09:74:65:e7:58:5f:17:b6:f6:48:db: 0a:66:ae:24:16:90:f7:96:85:1d:a3:c4:af:51:d4: ac:12:3b:66:6f:ae:49:1e:e3:31:3a:34:4e:f5:6f: 2f:14:33:59:62:ac:f3:bd:30:08:a6:29:16:94:92: 8b:e3:15:ca:c6:da:a5:23:7b:af:2a:9d:8f:0a:45: 77:fa:7f:b1:45:2b:e2:9d:c6:b8:f5:5b:6a:3f:03: 39:b3:e0:c5:f6:fc:ef:dc:bf:4a:30:8c:af:0a:bd: d5:10:1a:ad:6b:35:e3:0d:3f:ef:1a:22:9e:9f:c6: 67:0b:7a:f2:42:a1:2e:27:39:c9:09:c1:8f:5c:d1: ee:48:2f:a9:d0:3e:b9:37:0e:40:c9:09:2e:e3:78: 1c:54:40:ed:dd:ce:37:df:c9:fc:9a:99:e9:91:12: 86:69:db:9b:98:b1:77:70:51:c9:9a:67:e6:4d:ab: 88:23:16:5d:48:f6:54:99:26:93:11:58:e7:29:bf: 13:f7:af:73:99:35:9c:43:a1:d1:07:ad:eb:10:9f: 2c:76:d6:c9:79:4a:f2:a8:5f:e0:8a:ae:22:20:0f: e3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:5B:B2:EF:CB:95:3F:6C:A4:DF:AF:68:71:87:8C:89:F6:EA:41:EE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/537c046e-5a56-4195-932d-8cb70983c76c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.254.8.0/22 Signature Algorithm: sha256WithRSAEncryption d4:2f:70:f7:d1:8e:f5:37:09:92:56:e9:c4:69:e8:db:30:a7: f6:25:1b:53:00:c2:fc:25:8e:72:1a:49:d6:59:f4:33:9f:78: 8a:7f:4b:8d:6d:53:06:a3:b9:4f:bd:c2:57:73:54:55:c4:6d: 4b:9c:48:01:8d:06:50:21:12:cb:76:fa:b0:7b:8c:05:06:d3: c3:74:83:d1:ec:1b:ec:7b:96:c9:1b:c0:17:51:cf:f0:52:57: e3:1a:13:b2:d8:68:3d:1a:63:a2:15:f9:da:fd:e6:eb:b0:c1: 23:57:35:35:25:47:5d:25:e7:dd:21:14:73:20:b9:17:58:bc: 7b:b3:fe:10:d5:33:c5:2a:fe:e8:0f:d8:42:eb:4a:13:8b:3d: 57:c0:8c:3b:e7:b8:12:be:7c:e7:c3:1b:e1:7a:87:4f:1b:11: 51:8c:42:f7:ac:b5:46:ac:de:9f:de:64:2b:33:44:70:15:0a: d4:3c:2a:2c:22:31:bc:74:13:26:45:8c:2e:33:61:0d:0e:5a: 1e:4e:78:36:4e:e9:b3:b7:3a:44:82:61:e2:f9:d9:e1:12:26: 89:8c:b4:3a:a9:cc:60:05:7e:1e:34:42:fc:67:d9:51:64:05: 2c:a7:9d:df:eb:34:9a:c4:f3:d8:a4:ad:38:8c:a2:1a:10:51: 2d:53:b3:38 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQLHYHVIuzADdjx03T1g8MW4Iyl8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDAzMDMyWhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTg3MmY0YjU5YTdlMjJjZjBlM2VkYTQyMGVlYWEyN2M1 NGI4YWVkMzViODM2OWRjNmY0NGJmMmVlODVmZWM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2UuHjCrr8RdghP5i6ZiEDdAlsj1lpyc3EyJgYQC13MWUJ dGXnWF8XtvZI2wpmriQWkPeWhR2jxK9R1KwSO2Zvrkke4zE6NE71by8UM1lirPO9 MAimKRaUkovjFcrG2qUje68qnY8KRXf6f7FFK+Kdxrj1W2o/Azmz4MX2/O/cv0ow jK8KvdUQGq1rNeMNP+8aIp6fxmcLevJCoS4nOckJwY9c0e5IL6nQPrk3DkDJCS7j eBxUQO3dzjffyfyamemREoZp25uYsXdwUcmaZ+ZNq4gjFl1I9lSZJpMRWOcpvxP3 r3OZNZxDodEHresQnyx21sl5SvKoX+CKriIgD+M7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4Fuy78uVP2yk369ocYeMifbqQe4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzN2MwNDZlLTVhNTYtNDE5NS05MzJkLThjYjcwOTgzYzc2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX/ggwDQYJKoZIhvcNAQELBQADggEBANQvcPfRjvU3CZJW6cRp6Nswp/Yl G1MAwvwljnIaSdZZ9DOfeIp/S41tUwajuU+9wldzVFXEbUucSAGNBlAhEst2+rB7 jAUG08N0g9HsG+x7lskbwBdRz/BSV+MaE7LYaD0aY6IV+dr95uuwwSNXNTUlR10l 590hFHMguRdYvHuz/hDVM8Uq/ugP2ELrShOLPVfAjDvnuBK+fOfDG+F6h08bEVGM QvestUas3p/eZCszRHAVCtQ8KiwiMbx0EyZFjC4zYQ0OWh5OeDZO6bO3OkSCYeL5 2eESJomMtDqpzGAFfh40Qvxn2VFkBSynnd/rNJrE89ikrTiMohoQUS1Tszg= -----END CERTIFICATE-----Generated at Tue Jul 22 04:57:44 2025 by rpki-client