$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6dd9c40d-8be6-4e5b-989a-6f29edd3202c.roa File: 6dd9c40d-8be6-4e5b-989a-6f29edd3202c.roa (raw, json) Hash identifier: 4ubqG/Muli8gOWcmgQ+4GLmidvz57FzfLFXyT0m6Rtk= Subject key identifier: 50:4F:E5:E0:8E:05:6F:79:B2:40:7D:37:9F:3D:BE:1A:A7:72:28:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3943295B9D42DE555C866E74859709EA4F6BCE53 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6dd9c40d-8be6-4e5b-989a-6f29edd3202c.roa Signing time: Wed 09 Jul 2025 00:32:14 +0000 ROA not before: Wed 09 Jul 2025 00:32:14 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.23.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:43:29:5b:9d:42:de:55:5c:86:6e:74:85:97:09:ea:4f:6b:ce:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:32:14 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=bbbb8c0de29ecdaa7407f453562dae2f90070d40e056ccdecd26dabb839894d7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:20:d7:05:3f:06:f5:f1:af:5a:3b:89:cc:be: e7:ce:6e:a9:d2:c7:12:ba:9f:1c:df:62:cf:f0:6b: 41:ed:90:ea:69:45:88:a8:63:4a:37:a4:9d:13:94: de:d5:29:01:2a:ee:0d:eb:d4:e6:9f:67:e6:79:3c: fe:75:74:3b:e7:35:bb:57:97:31:95:a5:e6:a0:00: 9c:0a:c7:cb:78:cf:02:ec:f3:71:5a:21:3a:cc:6a: 65:0b:51:2f:5b:52:ce:eb:ee:39:06:42:42:03:a6: 9e:97:8d:3a:d6:a4:6b:75:ad:b3:2b:08:52:df:22: 7f:83:46:4e:f4:4d:54:89:5d:76:8f:23:94:d7:90: 3c:38:97:92:f5:56:e5:af:a3:4a:b0:94:75:08:8b: 05:4e:2f:6b:b8:5f:92:ab:49:12:fa:70:dd:b7:1f: 27:b3:ff:24:d6:dc:2b:fc:68:1c:64:92:ad:b4:de: b5:1c:db:29:12:b7:e5:46:19:0d:a9:16:cf:6c:d5: 9e:9a:e2:36:16:80:4d:d6:5c:e1:d7:2d:c1:bb:e2: c6:97:7a:40:5c:79:82:d4:c8:af:1c:8b:bb:af:aa: f7:df:d7:81:bf:d6:71:d1:fb:a8:d5:53:f7:21:61: c7:26:e4:28:77:78:7e:17:b5:fa:5a:0f:20:ce:33: 7f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:4F:E5:E0:8E:05:6F:79:B2:40:7D:37:9F:3D:BE:1A:A7:72:28:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6dd9c40d-8be6-4e5b-989a-6f29edd3202c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.64.0/21 Signature Algorithm: sha256WithRSAEncryption 74:45:6a:fd:f0:6f:11:e1:62:8f:11:88:21:1b:0f:21:cb:7e: 60:4c:8d:c2:4a:75:72:bc:db:2c:3f:ff:ca:b2:94:65:05:3f: a7:60:74:28:57:50:9e:db:b7:e6:4c:f1:05:5b:6c:7d:06:65: d3:d7:7f:cc:7a:b7:6d:69:64:25:37:88:4e:31:cd:49:2e:eb: ce:b2:f1:0f:4e:17:ef:fe:70:96:6c:6b:6b:f6:36:d2:15:ab: 00:7d:7b:5a:cc:01:50:76:ae:7f:64:fd:6b:7a:c5:6c:af:a5: f0:04:e3:25:58:71:6f:14:d5:1e:18:50:28:a8:f1:cf:ee:e4: 53:df:db:b9:75:b7:5f:bf:57:8b:c9:02:ec:eb:17:25:f7:4d: da:0e:3a:31:50:cc:cc:a9:51:2d:09:0a:ec:1f:d0:24:d9:5b: 33:7e:31:86:7e:a9:79:f9:e1:90:f0:f2:df:47:32:d1:9d:f6: d1:6d:29:68:6f:04:cd:10:6a:a8:cf:63:e8:af:2e:85:d0:24: d0:ba:63:57:c7:ef:a9:86:27:14:55:7d:dd:31:b6:70:1e:25: 0e:e2:46:b5:22:15:6b:54:37:b3:ac:7f:20:f0:91:2e:92:a5: 3b:c0:5a:49:d7:b3:b9:d3:9d:8e:35:63:b7:5e:f1:80:d5:49: cc:b6:17:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOUMpW51C3lVchm50hZcJ6k9rzlMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDAzMjE0WhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYmJiOGMwZGUyOWVjZGFhNzQwN2Y0NTM1NjJkYWUyZjkw MDcwZDQwZTA1NmNjZGVjZDI2ZGFiYjgzOTg5NGQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8INcFPwb18a9aO4nMvufObqnSxxK6nxzfYs/wa0HtkOpp RYioY0o3pJ0TlN7VKQEq7g3r1OafZ+Z5PP51dDvnNbtXlzGVpeagAJwKx8t4zwLs 83FaITrMamULUS9bUs7r7jkGQkIDpp6XjTrWpGt1rbMrCFLfIn+DRk70TVSJXXaP I5TXkDw4l5L1VuWvo0qwlHUIiwVOL2u4X5KrSRL6cN23Hyez/yTW3Cv8aBxkkq20 3rUc2ykSt+VGGQ2pFs9s1Z6a4jYWgE3WXOHXLcG74saXekBceYLUyK8ci7uvqvff 14G/1nHR+6jVU/chYccm5Ch3eH4XtfpaDyDOM3+FAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUE/l4I4Fb3myQH03nz2+GqdyKDEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZkZDljNDBkLThiZTYtNGU1Yi05ODlhLTZmMjllZGQzMjAyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMXF0AwDQYJKoZIhvcNAQELBQADggEBAHRFav3wbxHhYo8RiCEbDyHLfmBM jcJKdXK82yw//8qylGUFP6dgdChXUJ7bt+ZM8QVbbH0GZdPXf8x6t21pZCU3iE4x zUku686y8Q9OF+/+cJZsa2v2NtIVqwB9e1rMAVB2rn9k/Wt6xWyvpfAE4yVYcW8U 1R4YUCio8c/u5FPf27l1t1+/V4vJAuzrFyX3TdoOOjFQzMypUS0JCuwf0CTZWzN+ MYZ+qXn54ZDw8t9HMtGd9tFtKWhvBM0QaqjPY+ivLoXQJNC6Y1fH76mGJxRVfd0x tnAeJQ7iRrUiFWtUN7OsfyDwkS6SpTvAWknXs7nTnY41Y7de8YDVScy2F7k= -----END CERTIFICATE-----Generated at Mon Jul 21 18:10:40 2025 by rpki-client