$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/987d9d1d-c0ee-40e6-9e9c-2a073bf41dca.roa File: 987d9d1d-c0ee-40e6-9e9c-2a073bf41dca.roa (raw, json) Hash identifier: 6iM2E4X42eIteuZqHiEzTWwTHMmSof1+/cUwo/8YB9Q= Subject key identifier: 64:7B:AE:40:2C:2E:D5:E3:40:63:E9:84:B3:D1:A4:15:C5:23:4F:70 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F28CAC73C7463911FA99230F54C360C348A22A0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/987d9d1d-c0ee-40e6-9e9c-2a073bf41dca.roa Signing time: Tue 08 Jul 2025 00:20:12 +0000 ROA not before: Tue 08 Jul 2025 00:20:12 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.23.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:28:ca:c7:3c:74:63:91:1f:a9:92:30:f5:4c:36:0c:34:8a:22:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 00:20:12 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=988da0a1e9f385465775a117164a0420cb54c440821d3b0d2e4556991b8469c4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:88:5d:7a:f8:a1:c4:90:9d:14:7b:6c:cc:d2: 25:16:11:13:6b:69:f8:c6:ad:b3:31:c8:0c:5f:83: a6:e8:b7:12:a8:a9:af:9a:db:ad:76:fa:5b:1c:d3: 2e:57:07:7f:2c:81:69:8b:d6:97:9b:6c:7a:72:8b: fc:06:bf:83:8f:fb:2b:ef:20:29:87:44:35:37:3f: 54:63:ac:f1:44:b8:50:45:5e:20:24:8d:62:68:82: 0f:77:95:7f:cb:eb:ce:2c:e0:cf:c6:c4:27:38:cc: 51:c0:bc:e3:b0:d3:e9:dc:86:d8:48:c6:ff:c8:7b: 61:64:48:5c:6a:e6:9d:e1:05:32:92:c1:8b:95:e6: 67:c4:fd:b1:50:fa:c1:18:7a:fb:df:60:3b:7d:e2: 0c:e1:56:a5:38:0d:e9:b5:0f:28:f5:f5:82:90:12: 52:9d:40:0b:81:cd:ff:48:36:ca:1a:da:d5:33:ab: fb:71:c7:73:f5:57:09:d8:97:69:75:64:e4:8b:4b: f9:1f:57:1c:87:5a:ca:4d:38:f4:2e:47:94:ba:8e: 8f:18:f1:d5:4c:7a:e5:55:21:00:97:db:e5:50:85: 09:a4:84:e0:28:b6:c4:0e:07:50:b1:02:eb:94:1d: 47:c3:0b:23:ac:37:c2:fb:9f:c5:c6:a5:02:d5:a4: 24:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:7B:AE:40:2C:2E:D5:E3:40:63:E9:84:B3:D1:A4:15:C5:23:4F:70 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/987d9d1d-c0ee-40e6-9e9c-2a073bf41dca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.23.0.0/17 Signature Algorithm: sha256WithRSAEncryption 13:a0:05:e2:b5:f3:5a:a1:d8:01:13:eb:2f:d2:76:bf:77:d7: 52:11:e9:b3:7f:15:30:63:0a:41:01:20:4a:51:c1:4f:1c:f9: b8:b3:c2:99:24:3f:db:e7:36:98:6a:e6:9c:7a:bd:26:7b:e1: fe:9f:be:60:e1:89:45:c1:be:ae:d8:0e:3b:1d:c6:dd:37:5c: ee:aa:d3:5d:55:aa:e0:f4:e2:44:a4:b2:fd:0e:91:e5:25:5c: 92:69:af:fa:8e:f6:97:c4:eb:e3:8f:3d:83:9f:42:e3:26:d1: a3:c9:28:2f:f8:0c:97:56:23:60:23:66:9c:ad:5e:33:22:29: 94:91:b5:3d:25:27:eb:43:b3:d3:9f:da:96:c1:f4:b3:54:74: 6d:7d:e6:5a:ca:da:65:2f:eb:b8:28:dd:d6:b6:c7:41:5d:fa: 59:40:40:12:8f:b5:70:2b:94:23:9b:12:82:b0:8a:eb:44:7e: 31:76:33:89:b4:7a:d9:e0:36:c6:b7:8b:b8:68:da:6c:4e:6d: d5:3f:86:bf:27:01:82:ac:93:b6:60:00:67:3a:ce:ab:b0:0b: 8e:44:c6:5e:b3:81:89:9d:e6:a2:eb:48:37:56:45:be:d9:9a: 39:24:4c:d6:a7:34:04:e5:49:2e:11:62:f9:0a:f9:10:be:cd: aa:d6:ce:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDyjKxzx0Y5EfqZIw9Uw2DDSKIqAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MDAyMDEyWhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODhkYTBhMWU5ZjM4NTQ2NTc3NWExMTcxNjRhMDQyMGNi NTRjNDQwODIxZDNiMGQyZTQ1NTY5OTFiODQ2OWM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtiF16+KHEkJ0Ue2zM0iUWERNrafjGrbMxyAxfg6botxKo qa+a2612+lsc0y5XB38sgWmL1pebbHpyi/wGv4OP+yvvICmHRDU3P1RjrPFEuFBF XiAkjWJogg93lX/L684s4M/GxCc4zFHAvOOw0+nchthIxv/Ie2FkSFxq5p3hBTKS wYuV5mfE/bFQ+sEYevvfYDt94gzhVqU4Dem1Dyj19YKQElKdQAuBzf9INsoa2tUz q/txx3P1VwnYl2l1ZOSLS/kfVxyHWspNOPQuR5S6jo8Y8dVMeuVVIQCX2+VQhQmk hOAotsQOB1CxAuuUHUfDCyOsN8L7n8XGpQLVpCQPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZHuuQCwu1eNAY+mEs9GkFcUjT3AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4N2Q5ZDFkLWMwZWUtNDBlNi05ZTljLTJhMDczYmY0MWRjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdrFwAwDQYJKoZIhvcNAQELBQADggEBABOgBeK181qh2AET6y/Sdr9311IR 6bN/FTBjCkEBIEpRwU8c+bizwpkkP9vnNphq5px6vSZ74f6fvmDhiUXBvq7YDjsd xt03XO6q011VquD04kSksv0OkeUlXJJpr/qO9pfE6+OPPYOfQuMm0aPJKC/4DJdW I2AjZpytXjMiKZSRtT0lJ+tDs9Of2pbB9LNUdG195lrK2mUv67go3da2x0Fd+llA QBKPtXArlCObEoKwiutEfjF2M4m0etngNsa3i7ho2mxObdU/hr8nAYKsk7ZgAGc6 zquwC45Exl6zgYmd5qLrSDdWRb7ZmjkkTNanNATlSS4RYvkK+RC+zarWztw= -----END CERTIFICATE-----Generated at Mon Jul 21 13:01:39 2025 by rpki-client