$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58c78734-91d9-4994-9461-7b6172f0caa6.roa File: 58c78734-91d9-4994-9461-7b6172f0caa6.roa (raw, json) Hash identifier: u6lYaUHsHiaccaReYjLSNxlflHEfrlyKwgnrMsh+Enk= Subject key identifier: 10:E4:EE:CB:39:1E:20:53:45:0F:AC:04:FB:5D:7D:ED:59:35:66:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7ED24B9D8799012931C2EB4964A84DBCAFD6E0B8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58c78734-91d9-4994-9461-7b6172f0caa6.roa Signing time: Fri 11 Jul 2025 00:40:17 +0000 ROA not before: Fri 11 Jul 2025 00:40:17 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 67.202.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:d2:4b:9d:87:99:01:29:31:c2:eb:49:64:a8:4d:bc:af:d6:e0:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 00:40:17 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=ef6e7ef4153c84ecf1c40e39313713246d6c951b54b647b227dd319eab07d7b8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8f:fd:b8:a6:46:ac:2b:19:39:b6:47:2e:24: 6f:15:cc:06:d8:b5:1c:fb:4c:11:af:82:a9:d0:21: ec:e2:98:c2:3b:d4:71:39:7d:d4:84:e1:2e:cd:f1: 0c:ce:27:92:11:01:6b:f7:85:b3:06:b4:94:64:65: 6f:db:85:86:53:25:04:c9:b6:78:af:3c:2b:10:eb: 0e:b0:ba:5c:d4:08:05:53:1d:c8:33:23:a5:83:e1: 7d:09:30:b0:c3:fa:58:cb:dc:e0:4a:6a:1e:9a:07: b6:23:d5:d6:f0:0a:c0:8f:4e:2d:12:5f:e2:13:bc: 33:70:0f:e2:90:f6:43:7f:a8:de:fa:9c:5e:37:29: c4:bd:61:8c:f3:74:07:85:49:4b:d2:58:0f:8e:89: 24:9c:19:63:7c:01:45:df:e0:41:61:88:c7:de:2d: ec:2f:9a:fb:9b:b3:af:87:8d:89:64:24:ee:2e:bf: a8:81:50:24:37:e1:55:55:f6:d5:70:07:12:b5:7c: b4:c9:65:0e:2b:a9:3b:cf:06:9b:b2:de:1b:b2:32: 63:35:28:a1:6e:27:7f:fe:6f:83:db:e2:91:f5:7b: 38:83:78:76:90:08:1c:fd:9b:f1:99:e8:d1:15:2f: 04:ad:7e:19:f2:f0:93:06:ca:9f:a4:b4:05:68:8d: c6:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:E4:EE:CB:39:1E:20:53:45:0F:AC:04:FB:5D:7D:ED:59:35:66:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58c78734-91d9-4994-9461-7b6172f0caa6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 67.202.0.0/18 Signature Algorithm: sha256WithRSAEncryption be:d0:a2:73:2a:ed:7f:fb:22:e5:90:27:81:09:7b:22:e8:47: 55:1d:5d:1e:ce:c5:00:fa:59:66:90:c9:9c:ac:c0:a4:df:5f: 91:5b:1e:74:95:30:7e:f8:c9:b7:5d:b7:ae:5a:29:2f:0c:73: 1c:a7:6e:db:88:4c:3a:8d:30:41:33:21:c7:a5:d3:6a:f9:d8: 4e:6f:a0:d9:bd:35:e0:e2:00:7b:b5:7d:4a:6a:b4:12:8b:63: 73:60:26:37:9c:df:9b:fd:42:5e:78:f6:26:b4:0b:b2:4d:54: bb:ee:35:8d:c3:37:93:93:25:af:71:8c:d6:68:ef:39:ee:73: 2e:d2:2c:9d:68:d8:f1:c8:f2:2c:90:a7:d2:d7:f9:b9:ee:fc: 23:bd:09:87:55:38:6d:32:19:d1:f2:ab:e0:c7:e1:19:33:4a: f6:79:bf:ae:aa:fc:0b:89:42:52:f1:cf:d5:d9:ef:9d:64:3b: 0c:21:35:d7:e0:ef:3d:af:58:43:36:49:31:1c:e6:e8:4f:7d: 21:93:a8:07:73:e2:0a:6e:11:88:77:9d:78:1d:97:55:81:cc: 2e:64:35:fe:d9:8d:09:90:bc:ec:39:64:f3:23:73:0c:f6:6f: e9:61:5f:73:2b:7c:d4:65:ae:50:27:94:9e:ac:f9:16:99:d0: 97:65:6d:5c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUftJLnYeZASkxwutJZKhNvK/W4LgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMDA0MDE3WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjZlN2VmNDE1M2M4NGVjZjFjNDBlMzkzMTM3MTMyNDZk NmM5NTFiNTRiNjQ3YjIyN2RkMzE5ZWFiMDdkN2I4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqj/24pkasKxk5tkcuJG8VzAbYtRz7TBGvgqnQIezimMI7 1HE5fdSE4S7N8QzOJ5IRAWv3hbMGtJRkZW/bhYZTJQTJtnivPCsQ6w6wulzUCAVT HcgzI6WD4X0JMLDD+ljL3OBKah6aB7Yj1dbwCsCPTi0SX+ITvDNwD+KQ9kN/qN76 nF43KcS9YYzzdAeFSUvSWA+OiSScGWN8AUXf4EFhiMfeLewvmvubs6+HjYlkJO4u v6iBUCQ34VVV9tVwBxK1fLTJZQ4rqTvPBpuy3huyMmM1KKFuJ3/+b4Pb4pH1eziD eHaQCBz9m/GZ6NEVLwStfhny8JMGyp+ktAVojcYdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEOTuyzkeIFNFD6wE+1197Vk1ZlcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4Yzc4NzM0LTkxZDktNDk5NC05NDYxLTdiNjE3MmYwY2FhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZDygAwDQYJKoZIhvcNAQELBQADggEBAL7QonMq7X/7IuWQJ4EJeyLoR1Ud XR7OxQD6WWaQyZyswKTfX5FbHnSVMH74ybddt65aKS8McxynbtuITDqNMEEzIcel 02r52E5voNm9NeDiAHu1fUpqtBKLY3NgJjec35v9Ql549ia0C7JNVLvuNY3DN5OT Ja9xjNZo7znucy7SLJ1o2PHI8iyQp9LX+bnu/CO9CYdVOG0yGdHyq+DH4RkzSvZ5 v66q/AuJQlLxz9XZ751kOwwhNdfg7z2vWEM2STEc5uhPfSGTqAdz4gpuEYh3nXgd l1WBzC5kNf7ZjQmQvOw5ZPMjcwz2b+lhX3MrfNRlrlAnlJ6s+RaZ0JdlbVw= -----END CERTIFICATE-----Generated at Mon Jul 21 18:21:14 2025 by rpki-client