$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67401507-6b26-4968-8f0b-57906e23ab34.roa File: 67401507-6b26-4968-8f0b-57906e23ab34.roa (raw, json) Hash identifier: QNcW3lprtdWwShKJYhmRDHrF5yWtEQUnVpReLPbGWWg= Subject key identifier: 6B:A5:45:9A:DE:20:B5:DB:14:A3:19:76:74:3A:68:D4:7D:06:A0:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C22523954BE9D126141A29C85D5F15EFE5CE837 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67401507-6b26-4968-8f0b-57906e23ab34.roa Signing time: Sat 19 Jul 2025 00:01:42 +0000 ROA not before: Sat 19 Jul 2025 00:01:42 +0000 ROA not after: Sat 23 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 208.83.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:22:52:39:54:be:9d:12:61:41:a2:9c:85:d5:f1:5e:fe:5c:e8:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 19 00:01:42 2025 GMT Not After : Aug 23 23:59:59 2025 GMT Subject: serialNumber=b81937004ce8fb58553eb53e3eeaed82bbb85b7f6d0a907ca7e6c6df9e3dbbbd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:cc:45:86:be:62:0f:a7:28:40:f6:87:93:58: 97:43:7c:35:90:da:12:0f:8e:29:4d:9c:23:ee:41: ea:f1:14:60:44:31:3d:7e:23:7b:69:71:93:d3:6d: a7:e4:3c:18:db:0b:33:3c:da:98:5a:d1:f6:37:da: 23:22:0b:5a:9d:1f:8d:46:99:01:a3:1d:e3:a5:f2: f1:79:9f:e9:0b:6f:de:7a:08:30:f3:b8:59:b5:77: b3:2a:a2:76:db:a9:e7:da:80:8e:94:69:6d:da:9c: 34:c5:cb:8b:b0:a0:90:f5:6a:73:25:a0:17:4e:fd: 99:16:54:27:90:a2:08:44:8e:4b:93:2d:0f:10:76: 83:61:53:e8:cb:90:fc:14:b3:f0:28:d2:1d:ea:85: 54:bf:b7:c8:c0:ab:be:9d:24:3d:52:c3:d9:5c:d3: 1e:4c:fe:b7:9b:62:88:8e:f9:1e:9d:da:d3:51:49: ed:28:6d:b1:9c:09:64:c5:54:4d:ed:4a:b6:15:65: b3:a3:ed:0f:3d:cc:9b:c9:f1:1a:65:d2:cb:7a:34: 43:19:d7:8d:88:3f:9f:f3:aa:ad:90:0d:e3:6d:51: 89:85:27:44:e6:97:71:32:93:15:15:96:a1:b8:68: 3f:5c:4c:fa:fc:04:43:f9:71:a3:6d:13:4b:b8:6a: b0:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A5:45:9A:DE:20:B5:DB:14:A3:19:76:74:3A:68:D4:7D:06:A0:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/67401507-6b26-4968-8f0b-57906e23ab34.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.83.24.0/21 Signature Algorithm: sha256WithRSAEncryption c1:42:f4:b3:ed:bf:ba:0d:5f:a3:b4:4e:a0:3f:2b:6f:3c:8c: e7:0e:82:9f:57:ed:f4:43:96:e8:aa:b4:e0:91:94:49:19:96: 30:0f:3e:28:0f:30:56:16:77:a9:ca:4b:ca:9b:35:f7:24:88: a3:9b:de:ac:9c:a3:5d:e7:1f:73:da:b1:0a:09:41:db:fc:9b: 27:3d:ef:23:fa:6b:24:4e:5f:8a:13:f6:2a:c2:21:40:f5:60: 84:01:30:52:15:fc:65:28:a5:9b:2b:78:6d:41:f4:00:bc:e4: be:ac:8e:32:f6:16:f9:db:6a:23:36:5f:8f:7d:8e:49:53:ef: 55:b1:8c:d5:a8:2b:32:23:4d:d1:f3:e1:68:7a:82:cf:a7:e3: 04:de:3e:a5:ff:bd:27:89:0e:c0:63:51:39:df:a7:48:fb:5c: fc:b8:7e:38:9d:43:47:f0:f5:f0:a5:8f:ff:35:48:fe:3d:8b: 70:fc:90:6a:df:e7:ff:2d:ab:14:cd:ce:7d:d0:61:55:09:b0: c7:c0:4b:c9:50:55:c6:48:62:71:0a:87:9d:7f:f9:74:38:0e: 1a:58:a6:b6:49:66:c2:1f:45:b2:9c:33:a3:d8:d9:59:7b:dd: a8:a5:da:30:f8:67:49:80:22:49:44:01:82:35:b4:0d:33:e4: cb:0d:79:4b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbCJSOVS+nRJhQaKchdXxXv5c6DcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE5MDAwMTQyWhcNMjUwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiODE5MzcwMDRjZThmYjU4NTUzZWI1M2UzZWVhZWQ4MmJi Yjg1YjdmNmQwYTkwN2NhN2U2YzZkZjllM2RiYmJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSzEWGvmIPpyhA9oeTWJdDfDWQ2hIPjilNnCPuQerxFGBE MT1+I3tpcZPTbafkPBjbCzM82pha0fY32iMiC1qdH41GmQGjHeOl8vF5n+kLb956 CDDzuFm1d7MqonbbqefagI6UaW3anDTFy4uwoJD1anMloBdO/ZkWVCeQoghEjkuT LQ8QdoNhU+jLkPwUs/Ao0h3qhVS/t8jAq76dJD1Sw9lc0x5M/rebYoiO+R6d2tNR Se0obbGcCWTFVE3tSrYVZbOj7Q89zJvJ8Rpl0st6NEMZ142IP5/zqq2QDeNtUYmF J0Tml3EykxUVlqG4aD9cTPr8BEP5caNtE0u4arAxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUa6VFmt4gtdsUoxl2dDpo1H0GoMQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY3NDAxNTA3LTZiMjYtNDk2OC04ZjBiLTU3OTA2ZTIzYWIzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPQUxgwDQYJKoZIhvcNAQELBQADggEBAMFC9LPtv7oNX6O0TqA/K288jOcO gp9X7fRDluiqtOCRlEkZljAPPigPMFYWd6nKS8qbNfckiKOb3qyco13nH3PasQoJ Qdv8myc97yP6ayROX4oT9irCIUD1YIQBMFIV/GUopZsreG1B9AC85L6sjjL2Fvnb aiM2X499jklT71WxjNWoKzIjTdHz4Wh6gs+n4wTePqX/vSeJDsBjUTnfp0j7XPy4 fjidQ0fw9fClj/81SP49i3D8kGrf5/8tqxTNzn3QYVUJsMfAS8lQVcZIYnEKh51/ +XQ4DhpYprZJZsIfRbKcM6PY2Vl73ail2jD4Z0mAIklEAYI1tA0z5MsNeUs= -----END CERTIFICATE-----Generated at Mon Jul 21 18:22:06 2025 by rpki-client