$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64416939-e386-4747-9efd-e38b0c06dbeb.roa File: 64416939-e386-4747-9efd-e38b0c06dbeb.roa (raw, json) Hash identifier: w7E2O2DmXTQK3bMhs99Fje560mwJRMVfQbYsmrfiQlE= Subject key identifier: AE:D4:D2:1D:ED:93:AD:0F:0D:14:DA:5F:5C:4F:BC:D1:17:D8:5E:2E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 74D034194B0D5D59130A606FCF1D25B6D8D41C41 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64416939-e386-4747-9efd-e38b0c06dbeb.roa Signing time: Fri 11 Jul 2025 00:10:22 +0000 ROA not before: Fri 11 Jul 2025 00:10:22 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 207.202.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:d0:34:19:4b:0d:5d:59:13:0a:60:6f:cf:1d:25:b6:d8:d4:1c:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 00:10:22 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=2ef635962a993c31ca481d1edbcb2825d2fdf22e51357fe0b5ac2c124a4e402a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:60:9b:d4:f8:6b:69:94:4a:eb:4f:ac:00:2c: 95:6a:22:31:e6:d9:13:3f:32:d4:e0:63:ef:4c:e6: c0:4d:6f:35:3d:f6:8e:9c:60:6c:9f:9d:28:68:b9: 36:86:1b:83:e4:14:21:3f:fa:51:bb:4c:e6:a8:d4: f8:df:11:4e:c5:4e:2f:57:84:8e:88:36:49:99:51: 27:3e:5d:6b:89:fa:58:d9:87:13:c9:e6:2e:1c:15: 6c:d8:90:5b:3f:fa:7d:34:54:9c:6c:7c:ca:a5:04: 49:8d:94:aa:cf:29:8a:d6:7f:b2:34:92:90:73:77: 93:f4:ac:62:e2:7f:67:35:88:07:b9:65:d5:93:29: 74:ad:7c:40:2e:60:07:ac:e9:f8:61:b8:08:ea:fb: c0:92:fb:31:fe:f3:3b:b7:ff:b9:00:b5:df:f3:fa: 89:42:2e:18:f3:ce:4b:63:27:92:b8:f6:38:90:f4: 88:91:46:4d:cd:7a:5f:08:95:38:f7:ff:a4:f9:47: be:a7:e9:ac:cf:c9:b9:90:be:9a:00:e2:10:9c:e2: c8:a0:fe:10:1e:73:75:19:81:aa:f3:52:c0:1a:b5: da:6a:ed:bd:57:67:ff:d7:a2:bd:59:f5:3b:66:fd: 5f:56:dc:2b:99:d8:9a:f1:a4:ed:97:95:b7:8f:5c: a5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:D4:D2:1D:ED:93:AD:0F:0D:14:DA:5F:5C:4F:BC:D1:17:D8:5E:2E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64416939-e386-4747-9efd-e38b0c06dbeb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.202.128.0/17 Signature Algorithm: sha256WithRSAEncryption 70:6c:6a:cb:cd:15:27:e6:17:3f:f8:14:9e:d5:1a:c7:29:43: 1b:74:8a:b5:76:7d:cc:42:89:85:0e:64:92:f0:ff:d4:bf:b7: 60:48:6d:2f:90:35:93:0a:a3:30:e0:ce:35:09:65:da:4b:93: ac:e7:d9:ed:cb:c9:ad:ed:70:d3:d8:b9:eb:42:45:3a:e0:09: 0e:6b:d3:68:cf:75:ca:5d:4f:b0:95:02:16:b3:86:c8:11:c3: a5:dd:c7:4b:aa:dc:ff:1c:1b:f3:6a:69:64:1c:d0:54:d0:2b: 43:b4:96:67:11:65:ca:b4:77:ea:e7:dc:69:2b:e6:2a:cd:7b: 85:8a:27:4b:dd:d8:93:9e:62:74:1d:ea:01:73:2a:ec:b0:fa: 8d:ff:7e:19:1d:67:fc:f5:f7:ba:5e:b2:72:7e:53:c4:f5:7b: 57:f1:d6:e8:42:0d:cb:17:68:bb:be:ee:0e:c8:02:a2:8c:17: c5:2d:a4:be:4d:bb:59:02:ee:f9:e1:16:db:01:ee:8e:4b:ba: a0:fa:2c:cd:c2:c5:cf:44:62:36:24:d6:a2:c4:87:46:33:ac: af:4d:55:0b:9d:46:10:37:93:77:94:d3:5d:16:57:49:7e:e7: 6e:ed:2c:2d:34:8d:fc:73:b2:39:7b:9a:14:e6:66:16:e5:86: b5:62:3b:8a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdNA0GUsNXVkTCmBvzx0lttjUHEEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMDAxMDIyWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZWY2MzU5NjJhOTkzYzMxY2E0ODFkMWVkYmNiMjgyNWQy ZmRmMjJlNTEzNTdmZTBiNWFjMmMxMjRhNGU0MDJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/YJvU+GtplErrT6wALJVqIjHm2RM/MtTgY+9M5sBNbzU9 9o6cYGyfnShouTaGG4PkFCE/+lG7TOao1PjfEU7FTi9XhI6INkmZUSc+XWuJ+ljZ hxPJ5i4cFWzYkFs/+n00VJxsfMqlBEmNlKrPKYrWf7I0kpBzd5P0rGLif2c1iAe5 ZdWTKXStfEAuYAes6fhhuAjq+8CS+zH+8zu3/7kAtd/z+olCLhjzzktjJ5K49jiQ 9IiRRk3Nel8IlTj3/6T5R76n6azPybmQvpoA4hCc4sig/hAec3UZgarzUsAatdpq 7b1XZ//Xor1Z9Ttm/V9W3CuZ2JrxpO2XlbePXKVLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrtTSHe2TrQ8NFNpfXE+80RfYXi4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY0NDE2OTM5LWUzODYtNDc0Ny05ZWZkLWUzOGIwYzA2ZGJlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfPyoAwDQYJKoZIhvcNAQELBQADggEBAHBsasvNFSfmFz/4FJ7VGscpQxt0 irV2fcxCiYUOZJLw/9S/t2BIbS+QNZMKozDgzjUJZdpLk6zn2e3Lya3tcNPYuetC RTrgCQ5r02jPdcpdT7CVAhazhsgRw6Xdx0uq3P8cG/NqaWQc0FTQK0O0lmcRZcq0 d+rn3Gkr5irNe4WKJ0vd2JOeYnQd6gFzKuyw+o3/fhkdZ/z197pesnJ+U8T1e1fx 1uhCDcsXaLu+7g7IAqKMF8UtpL5Nu1kC7vnhFtsB7o5LuqD6LM3Cxc9EYjYk1qLE h0YzrK9NVQudRhA3k3eU010WV0l+527tLC00jfxzsjl7mhTmZhblhrViO4o= -----END CERTIFICATE-----Generated at Tue Jul 22 04:55:17 2025 by rpki-client