$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74c2211b-19a5-49dd-8b48-1481b2c37b9d.roa File: 74c2211b-19a5-49dd-8b48-1481b2c37b9d.roa (raw, json) Hash identifier: /e45J/9IVYkG+D7JZeHG4xhUAoRGKUgPbmDjY3p11jg= Subject key identifier: 38:54:4A:95:4C:EF:2C:38:B4:D5:C6:60:B1:55:71:03:25:F3:D4:58 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6735BB8E450FB4982EBD06DEBD6C24F26F98E821 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74c2211b-19a5-49dd-8b48-1481b2c37b9d.roa Signing time: Wed 02 Jul 2025 00:31:48 +0000 ROA not before: Wed 02 Jul 2025 00:31:48 +0000 ROA not after: Wed 06 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.87.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:35:bb:8e:45:0f:b4:98:2e:bd:06:de:bd:6c:24:f2:6f:98:e8:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 2 00:31:48 2025 GMT Not After : Aug 6 23:59:59 2025 GMT Subject: serialNumber=1a711896cbfe3e31335d601f627a48191b837364f9d0ec780ada35796a8b900c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:b1:7f:42:e6:31:e8:83:92:b7:86:bf:f9:6e: af:bc:5f:13:d7:36:ba:b3:63:bf:c0:89:38:db:1c: c7:7a:57:dd:fb:5c:9a:9d:d5:f5:f6:22:9a:eb:c3: da:74:6c:20:36:af:61:64:a0:f2:f8:0d:b4:b1:e3: ae:f8:ee:0f:72:8b:dd:d3:d1:b7:49:37:f2:20:5f: 5f:3f:c3:63:8e:b8:b2:b1:97:c2:d8:b9:52:c0:cb: b2:bd:73:f8:0a:76:fd:1c:2f:58:a2:b4:25:40:47: 0b:04:16:6a:76:60:96:45:bb:b5:ce:69:a5:9f:85: 67:ba:42:72:94:0e:2a:23:0e:ad:7d:eb:1f:3e:d8: c8:2a:3d:5d:0a:a9:b8:82:fe:b4:db:43:3e:ff:13: 3d:3b:f7:59:ea:a2:46:0a:da:75:00:63:6d:98:1f: 8b:43:56:ba:e4:9d:27:17:85:55:e9:ef:79:5b:8a: 23:4f:f2:5b:63:4b:b7:7f:03:49:b0:f8:ed:d5:04: 23:b7:bc:b0:cb:ff:9c:e2:f1:8e:8a:69:04:e4:b7: 5c:ba:aa:75:20:31:f6:ee:02:5b:70:1f:34:62:97: 04:e5:13:a1:73:5b:df:44:41:3b:4c:1d:6a:f0:f9: 64:cc:20:5f:32:02:86:d7:05:6d:33:ae:42:23:70: a7:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:54:4A:95:4C:EF:2C:38:B4:D5:C6:60:B1:55:71:03:25:F3:D4:58 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74c2211b-19a5-49dd-8b48-1481b2c37b9d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.87.16.0/21 Signature Algorithm: sha256WithRSAEncryption a1:15:b9:ee:82:c1:78:a1:6b:21:20:99:6c:02:c9:be:61:57: f4:30:3a:26:c1:b1:20:01:6b:41:1a:59:00:1c:b7:ab:20:fb: e5:e7:46:d2:9d:7f:d3:95:98:ff:94:a7:a6:dc:1e:dd:50:05: 95:a4:27:3e:ea:01:7f:45:75:09:eb:df:bb:32:49:bd:80:92: d8:0e:c9:03:07:3d:20:8d:a4:e8:70:53:5c:0e:63:17:83:9e: ea:5c:90:c1:25:23:8c:32:d4:2c:39:20:6a:47:05:d7:d0:b2: a6:4d:a7:60:00:15:f6:1a:e5:78:56:b4:00:19:e4:34:bc:fb: 64:78:6d:8f:f6:e9:ef:3f:8a:2e:82:0c:47:b1:7f:3f:7c:cc: f8:06:ee:d7:1a:5a:9a:80:95:57:bd:77:52:bc:05:cd:d3:8e: 1a:c0:d3:f6:98:8f:2d:2d:b6:2a:fb:83:79:d6:8e:cf:e3:37: 55:a7:8f:36:a5:a7:16:85:76:5f:17:3f:37:ba:ff:56:0d:9f: d5:8c:8b:58:6f:76:0e:50:d9:de:6a:f5:9c:86:0d:36:e4:40: d9:f7:af:c5:6d:5a:ad:41:45:44:92:dc:58:b5:a6:f5:cc:0a: 9d:82:84:84:e2:10:68:97:d8:b3:01:ca:5d:f6:91:c0:e4:c6: 03:d9:a2:ea -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZzW7jkUPtJguvQbevWwk8m+Y6CEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAyMDAzMTQ4WhcNMjUwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTcxMTg5NmNiZmUzZTMxMzM1ZDYwMWY2MjdhNDgxOTFi ODM3MzY0ZjlkMGVjNzgwYWRhMzU3OTZhOGI5MDBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwsX9C5jHog5K3hr/5bq+8XxPXNrqzY7/AiTjbHMd6V937 XJqd1fX2Iprrw9p0bCA2r2FkoPL4DbSx46747g9yi93T0bdJN/IgX18/w2OOuLKx l8LYuVLAy7K9c/gKdv0cL1iitCVARwsEFmp2YJZFu7XOaaWfhWe6QnKUDiojDq19 6x8+2MgqPV0KqbiC/rTbQz7/Ez0791nqokYK2nUAY22YH4tDVrrknScXhVXp73lb iiNP8ltjS7d/A0mw+O3VBCO3vLDL/5zi8Y6KaQTkt1y6qnUgMfbuAltwHzRilwTl E6FzW99EQTtMHWrw+WTMIF8yAobXBW0zrkIjcKd1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOFRKlUzvLDi01cZgsVVxAyXz1FgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc0YzIyMTFiLTE5YTUtNDlkZC04YjQ4LTE0ODFiMmMzN2I5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPYVxAwDQYJKoZIhvcNAQELBQADggEBAKEVue6CwXihayEgmWwCyb5hV/Qw OibBsSABa0EaWQAct6sg++XnRtKdf9OVmP+Up6bcHt1QBZWkJz7qAX9FdQnr37sy Sb2AktgOyQMHPSCNpOhwU1wOYxeDnupckMElI4wy1Cw5IGpHBdfQsqZNp2AAFfYa 5XhWtAAZ5DS8+2R4bY/26e8/ii6CDEexfz98zPgG7tcaWpqAlVe9d1K8Bc3TjhrA 0/aYjy0ttir7g3nWjs/jN1WnjzalpxaFdl8XPze6/1YNn9WMi1hvdg5Q2d5q9ZyG DTbkQNn3r8VtWq1BRUSS3Fi1pvXMCp2ChITiEGiX2LMByl32kcDkxgPZouo= -----END CERTIFICATE-----Generated at Mon Jul 21 18:14:17 2025 by rpki-client