$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/594992aa-cf2d-47e4-a972-604ac2a7bde6.roa File: 594992aa-cf2d-47e4-a972-604ac2a7bde6.roa (raw, json) Hash identifier: UxOch9lO775bvXJuKzzmZCQX+I41SaktKNtmt8oqH8s= Subject key identifier: 0B:D1:1F:9A:86:F1:0E:AD:29:C3:D0:04:7E:9F:91:04:F0:46:A6:63 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2187677F10E902F6CB2567D329737CD64D37BEE8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/594992aa-cf2d-47e4-a972-604ac2a7bde6.roa Signing time: Wed 09 Jul 2025 00:30:28 +0000 ROA not before: Wed 09 Jul 2025 00:30:28 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.20.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:87:67:7f:10:e9:02:f6:cb:25:67:d3:29:73:7c:d6:4d:37:be:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:30:28 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=64001512ae7c29735857b8c0cdc22706483d8dcaab54b4f036d2a26a1891979e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:34:90:1a:52:3a:4a:86:2d:d2:12:e4:ae:5e: a5:ae:12:1f:11:d2:ad:06:6d:fa:4e:83:29:7d:ab: f2:f5:e7:d9:bc:e0:31:45:ce:03:58:b6:bd:bf:2f: 37:38:bc:25:9a:46:60:45:a3:f0:9a:ab:22:16:ec: 16:33:2c:4c:21:27:76:53:14:15:a5:04:37:13:8f: e1:5c:ce:b9:ab:71:1b:c6:c7:db:a6:24:3d:a8:14: 0d:d7:6d:d1:d5:04:f4:42:a3:b6:80:b9:e0:ee:ea: 4a:11:1a:08:bc:53:6e:59:4d:0f:f8:4e:0b:d0:62: f4:d4:0e:7b:7c:87:94:84:40:79:2f:d2:71:16:dd: a2:13:fb:5f:22:0d:c7:ab:6b:4c:72:67:77:61:44: a5:77:1b:a4:99:d4:fa:ae:61:11:7f:67:33:14:b5: b1:bb:63:62:87:c9:23:40:e7:c2:8c:3b:86:a8:32: a2:6a:93:7b:8e:5d:96:eb:ff:ca:5e:87:11:89:7a: 52:c5:2f:1e:1c:63:3a:d6:f7:b7:0d:1d:4d:30:ce: ba:57:af:aa:08:05:7d:a9:5e:af:79:77:23:2a:e7: e2:08:e3:00:ea:0e:4a:44:35:e3:b4:1b:50:6f:bd: 29:36:fb:e2:cd:7c:8e:f3:18:4e:56:81:be:6b:7f: 50:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:D1:1F:9A:86:F1:0E:AD:29:C3:D0:04:7E:9F:91:04:F0:46:A6:63 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/594992aa-cf2d-47e4-a972-604ac2a7bde6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7a:04:bb:55:ff:64:5a:62:ab:cc:37:90:87:78:d4:d3:29:af: 8a:3f:4b:2d:4b:ab:b8:dc:1f:fe:f3:73:0a:3c:cc:66:44:a5: 74:56:40:5b:63:1c:ec:9f:2e:85:ba:66:76:8b:30:00:18:15: 59:86:6a:7d:e7:27:8b:89:c5:2a:a2:0b:16:6a:7e:4c:46:ef: 07:b5:09:8a:af:2b:c7:df:35:a0:ca:c9:0a:02:f6:71:8c:a7: d3:af:51:7c:bd:e7:1a:ba:41:36:c7:e6:b3:58:e3:91:57:59: 10:6d:cf:fb:35:61:bf:c3:40:ce:ed:8d:a4:3d:18:27:f8:c4: a6:b5:68:fa:e3:8e:9b:e5:d0:fb:8e:1b:c3:d4:f1:d7:70:64: ad:7a:3c:80:e1:34:6e:22:c7:1e:43:8a:b1:a7:6c:3a:eb:0f: 42:f3:d6:c0:d7:b0:09:e9:53:c8:ee:8a:5f:88:67:6d:b9:64: af:d2:48:b0:66:3a:7f:30:9a:2d:13:7a:a1:4d:5a:bc:5b:71: ee:46:e7:14:e7:ea:05:7c:66:01:ed:64:07:ca:86:16:31:c6: 1c:44:8e:f6:79:b3:99:1c:82:36:a8:5b:d0:b0:00:9b:35:c6: 8b:46:72:89:96:53:78:31:e1:cb:91:4b:68:1e:d9:ce:0a:b7: c5:92:b5:b5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIYdnfxDpAvbLJWfTKXN81k03vugwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDAzMDI4WhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDAwMTUxMmFlN2MyOTczNTg1N2I4YzBjZGMyMjcwNjQ4 M2Q4ZGNhYWI1NGI0ZjAzNmQyYTI2YTE4OTE5NzllMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9NJAaUjpKhi3SEuSuXqWuEh8R0q0GbfpOgyl9q/L159m8 4DFFzgNYtr2/Lzc4vCWaRmBFo/CaqyIW7BYzLEwhJ3ZTFBWlBDcTj+FczrmrcRvG x9umJD2oFA3XbdHVBPRCo7aAueDu6koRGgi8U25ZTQ/4TgvQYvTUDnt8h5SEQHkv 0nEW3aIT+18iDcera0xyZ3dhRKV3G6SZ1PquYRF/ZzMUtbG7Y2KHySNA58KMO4ao MqJqk3uOXZbr/8pehxGJelLFLx4cYzrW97cNHU0wzrpXr6oIBX2pXq95dyMq5+II 4wDqDkpENeO0G1BvvSk2++LNfI7zGE5Wgb5rf1BnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUC9EfmobxDq0pw9AEfp+RBPBGpmMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5NDk5MmFhLWNmMmQtNDdlNC1hOTcyLTYwNGFjMmE3YmRlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAXFDANBgkqhkiG9w0BAQsFAAOCAQEAegS7Vf9kWmKrzDeQh3jU0ymvij9L LUuruNwf/vNzCjzMZkSldFZAW2Mc7J8uhbpmdoswABgVWYZqfecni4nFKqILFmp+ TEbvB7UJiq8rx981oMrJCgL2cYyn069RfL3nGrpBNsfms1jjkVdZEG3P+zVhv8NA zu2NpD0YJ/jEprVo+uOOm+XQ+44bw9Tx13BkrXo8gOE0biLHHkOKsadsOusPQvPW wNewCelTyO6KX4hnbblkr9JIsGY6fzCaLRN6oU1avFtx7kbnFOfqBXxmAe1kB8qG FjHGHESO9nmzmRyCNqhb0LAAmzXGi0ZyiZZTeDHhy5FLaB7Zzgq3xZK1tQ== -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:32 2025 by rpki-client