$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61630a45-5ce6-4aaa-ba3b-b4682bc87ede.roa File: 61630a45-5ce6-4aaa-ba3b-b4682bc87ede.roa (raw, json) Hash identifier: IqYpeLeBlBKoQwXGH1bff0aln34dglHFOcUsmo/7MkE= Subject key identifier: DB:1A:C6:44:30:EC:93:BF:EB:46:E4:FD:4E:10:B3:45:09:11:23:60 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31BC9AF54CD2C169E1A892E66E5A1ECD58FCF67D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61630a45-5ce6-4aaa-ba3b-b4682bc87ede.roa Signing time: Tue 01 Jul 2025 00:10:29 +0000 ROA not before: Tue 01 Jul 2025 00:10:29 +0000 ROA not after: Tue 05 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.131.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:bc:9a:f5:4c:d2:c1:69:e1:a8:92:e6:6e:5a:1e:cd:58:fc:f6:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 1 00:10:29 2025 GMT Not After : Aug 5 23:59:59 2025 GMT Subject: serialNumber=c159826321da22fb56023e268167f03a4a6ab67000728e16d29552a7f58f9734, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e6:f0:b1:0d:42:1c:6a:0f:91:80:92:16:52: 6d:35:d8:37:3e:bd:e9:35:b8:5f:4f:2d:b3:7b:90: ab:12:d6:80:16:6b:f8:65:ec:6a:b5:fc:c6:bb:12: 0b:d4:9a:fd:79:77:e6:f4:2c:da:39:83:13:f7:cd: 99:3c:2f:ea:c5:0e:58:d2:a9:31:d5:27:5d:23:d9: 7b:6d:f4:77:d2:a6:fe:8d:93:04:19:a6:7d:ac:41: 5a:66:84:ca:0c:67:22:c0:04:40:2d:5f:1c:89:c3: 39:a3:a1:78:6e:80:3e:dd:6a:23:6f:86:f7:22:66: 75:7f:fb:70:70:7b:e9:fb:54:8e:cb:41:c0:09:b7: 2e:af:b7:c3:49:e9:d6:86:24:86:c4:66:38:16:c7: dc:cc:c1:e3:8b:64:41:1f:9f:65:d9:7c:8e:c4:3f: ed:15:22:2a:8d:94:6f:a8:7a:88:48:19:b1:2a:c4: 17:ba:dc:00:03:1d:e0:b1:70:fe:fb:f6:d0:8c:59: 88:ec:2e:1e:2c:6f:1e:1f:14:99:05:b9:44:5e:c1: b9:51:2e:b9:0d:f4:53:1f:66:13:3a:6e:90:71:3c: 13:60:da:76:d3:fe:8d:ca:61:47:39:95:2a:aa:d9: e2:3e:1f:00:ab:3b:8d:40:6a:08:fb:0c:ef:7a:9f: 3b:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:1A:C6:44:30:EC:93:BF:EB:46:E4:FD:4E:10:B3:45:09:11:23:60 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61630a45-5ce6-4aaa-ba3b-b4682bc87ede.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.131.128.0/17 Signature Algorithm: sha256WithRSAEncryption a2:11:d4:ce:46:6f:ac:e2:19:b8:23:5b:bb:8d:12:cf:2b:11: 7f:45:17:b3:43:2b:93:8e:73:56:a8:bc:e3:9c:9e:d2:d4:e2: a1:b8:b5:ed:f9:f3:e8:63:58:54:70:6e:96:c7:80:28:39:b5: c8:07:f0:51:28:d8:f1:83:79:95:2f:b9:67:e5:91:7a:7d:5c: 0f:04:a8:ad:8c:e1:cf:1f:a3:86:85:c0:8f:78:4c:f1:99:c1: 04:bf:1e:ef:28:ef:61:9c:ef:9e:d9:6a:98:ea:1a:4e:6f:85: 3d:3d:29:7e:39:bc:91:fa:f7:70:3d:98:d6:ed:17:4a:73:fe: a7:82:b0:b1:11:07:b5:2c:37:93:81:ef:f1:c9:91:ef:a5:b2: dd:73:85:cd:59:b2:14:65:fb:1b:de:2d:03:bb:58:66:c2:5c: 95:ea:cd:c9:6b:fc:2a:ee:38:3e:96:ca:1e:98:e9:69:7e:7d: 02:e4:f1:fd:0a:f6:6d:e7:de:a7:32:ea:0f:6b:03:f2:2b:16: eb:e2:03:38:56:93:66:93:a9:57:20:34:32:c9:28:40:7e:a9: 3a:15:50:d2:41:cb:cd:eb:04:80:5f:9b:44:39:26:3a:2b:6f: ba:69:81:4e:ef:85:ea:dc:8d:59:c7:1e:9b:ef:b0:4f:5d:52: c2:fe:d2:b5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMbya9UzSwWnhqJLmbloezVj89n0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAxMDAxMDI5WhcNMjUwODA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTU5ODI2MzIxZGEyMmZiNTYwMjNlMjY4MTY3ZjAzYTRh NmFiNjcwMDA3MjhlMTZkMjk1NTJhN2Y1OGY5NzM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx5vCxDUIcag+RgJIWUm012Dc+vek1uF9PLbN7kKsS1oAW a/hl7Gq1/Ma7EgvUmv15d+b0LNo5gxP3zZk8L+rFDljSqTHVJ10j2Xtt9HfSpv6N kwQZpn2sQVpmhMoMZyLABEAtXxyJwzmjoXhugD7daiNvhvciZnV/+3Bwe+n7VI7L QcAJty6vt8NJ6daGJIbEZjgWx9zMweOLZEEfn2XZfI7EP+0VIiqNlG+oeohIGbEq xBe63AADHeCxcP779tCMWYjsLh4sbx4fFJkFuURewblRLrkN9FMfZhM6bpBxPBNg 2nbT/o3KYUc5lSqq2eI+HwCrO41Aagj7DO96nztrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2xrGRDDsk7/rRuT9ThCzRQkRI2AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxNjMwYTQ1LTVjZTYtNGFhYS1iYTNiLWI0NjgyYmM4N2VkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdAg4AwDQYJKoZIhvcNAQELBQADggEBAKIR1M5Gb6ziGbgjW7uNEs8rEX9F F7NDK5OOc1aovOOcntLU4qG4te358+hjWFRwbpbHgCg5tcgH8FEo2PGDeZUvuWfl kXp9XA8EqK2M4c8fo4aFwI94TPGZwQS/Hu8o72Gc757ZapjqGk5vhT09KX45vJH6 93A9mNbtF0pz/qeCsLERB7UsN5OB7/HJke+lst1zhc1ZshRl+xveLQO7WGbCXJXq zclr/CruOD6Wyh6Y6Wl+fQLk8f0K9m3n3qcy6g9rA/IrFuviAzhWk2aTqVcgNDLJ KEB+qToVUNJBy83rBIBfm0Q5Jjorb7ppgU7vhercjVnHHpvvsE9dUsL+0rU= -----END CERTIFICATE-----Generated at Mon Jul 21 18:10:56 2025 by rpki-client