$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a90b50e7-2729-47d9-b938-a8bafbfa8fdc.roa File: a90b50e7-2729-47d9-b938-a8bafbfa8fdc.roa (raw, json) Hash identifier: oEaIX+9FmnRRAWR1m01Yx285t+OcrmsUADXYZNgW6e0= Subject key identifier: 96:F8:9C:8F:14:1B:0A:FA:3A:5B:7D:14:7F:FC:12:D8:90:0F:54:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 21A9AFD3AF6EFA3193E97AC07B63FBFD06EA0BC1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a90b50e7-2729-47d9-b938-a8bafbfa8fdc.roa Signing time: Wed 16 Jul 2025 00:20:23 +0000 ROA not before: Wed 16 Jul 2025 00:20:23 +0000 ROA not after: Wed 20 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.83.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:a9:af:d3:af:6e:fa:31:93:e9:7a:c0:7b:63:fb:fd:06:ea:0b:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 16 00:20:23 2025 GMT Not After : Aug 20 23:59:59 2025 GMT Subject: serialNumber=bf1a12e579d7470fcdb31c711dce8b9770ca3952abe20e539e29d24590d0b834, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:3f:38:a4:61:12:e6:97:2d:5a:cc:c1:c4:0c: 58:c8:93:d0:de:bb:d0:4a:bf:8d:f0:6e:6a:27:10: e8:a6:5d:21:f8:c2:8c:83:1b:ee:08:5d:08:83:95: 77:39:01:e5:24:73:a8:13:f4:5c:05:e4:3f:9a:2c: d3:e5:fa:66:1e:ff:3f:42:ac:19:12:69:e1:bc:cc: 10:bf:58:57:94:6b:b7:fe:77:fe:57:0f:65:42:ee: dd:ed:7d:14:51:88:dc:44:5d:00:e3:2d:40:5c:36: ce:d5:50:2d:a7:6a:01:a5:77:08:05:a2:18:37:49: 9d:5d:88:c1:9d:0f:bd:4a:92:de:39:53:32:61:89: 91:a0:fa:f9:75:c2:ac:b4:7f:19:4f:aa:49:44:ac: cd:b0:85:61:8f:f1:bd:c0:35:9d:7f:53:bd:a7:0d: c2:02:a8:74:72:e7:6e:d8:0a:11:33:23:a2:33:df: 9d:69:20:ea:41:6b:aa:2d:6e:ca:bb:b9:0e:e1:54: 09:ee:8e:99:ca:2b:50:b2:40:7d:49:78:0b:a5:1b: c4:ae:5a:6a:2e:a4:a7:38:84:76:02:ac:f4:3b:bd: a5:26:20:44:77:b7:56:49:d2:c8:d6:50:19:35:b3: 49:95:11:70:de:cd:99:e6:5d:7e:73:36:6e:dc:95: 23:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F8:9C:8F:14:1B:0A:FA:3A:5B:7D:14:7F:FC:12:D8:90:0F:54:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a90b50e7-2729-47d9-b938-a8bafbfa8fdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.83.200.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:90:f8:f7:2f:4d:5b:55:d2:a2:2c:1b:7c:6b:e4:df:b2:db: 96:9a:b4:77:9e:22:bb:c4:27:b4:ac:7c:91:e5:62:25:cb:65: d5:a3:bb:a0:7d:31:69:35:33:bd:c2:8a:d0:fe:59:1f:02:24: 34:81:ca:1a:31:c0:0e:a8:85:cd:53:7b:51:34:62:80:4b:28: 3f:91:cc:c1:91:b2:80:96:3d:12:cc:bd:91:0d:65:8b:06:48: 70:e7:dd:0b:ab:8a:b8:90:cc:a0:47:91:ab:63:6b:95:70:b5: da:c2:57:d6:af:e9:74:70:96:fa:e1:27:82:32:e5:bb:c3:76: 79:1f:32:55:7c:78:c5:9e:6a:ae:6e:4f:a8:d2:6c:f1:ce:fb: 82:8f:d5:c4:84:1a:24:c9:96:ae:af:e4:23:fe:4f:29:9f:6d: ed:97:c6:3f:66:d4:bf:8e:f7:15:83:2e:d9:8f:2a:d8:99:9b: 97:71:c8:c3:c6:b3:57:13:c0:c0:80:7d:95:d7:2c:76:1d:71: e6:20:ce:a6:aa:e7:c9:95:b6:fe:5a:ff:96:7e:7a:ed:0a:d2: 5b:05:d6:cc:01:84:92:1d:b8:fc:bb:49:43:4b:5c:af:aa:f8: bb:86:90:7e:4a:bf:4a:3d:8a:3b:d0:7c:1f:51:23:06:0e:8d: 0a:44:7a:a7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIamv069u+jGT6XrAe2P7/QbqC8EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE2MDAyMDIzWhcNMjUwODIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjFhMTJlNTc5ZDc0NzBmY2RiMzFjNzExZGNlOGI5Nzcw Y2EzOTUyYWJlMjBlNTM5ZTI5ZDI0NTkwZDBiODM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCPzikYRLmly1azMHEDFjIk9Deu9BKv43wbmonEOimXSH4 woyDG+4IXQiDlXc5AeUkc6gT9FwF5D+aLNPl+mYe/z9CrBkSaeG8zBC/WFeUa7f+ d/5XD2VC7t3tfRRRiNxEXQDjLUBcNs7VUC2nagGldwgFohg3SZ1diMGdD71Kkt45 UzJhiZGg+vl1wqy0fxlPqklErM2whWGP8b3ANZ1/U72nDcICqHRy527YChEzI6Iz 351pIOpBa6otbsq7uQ7hVAnujpnKK1CyQH1JeAulG8SuWmoupKc4hHYCrPQ7vaUm IER3t1ZJ0sjWUBk1s0mVEXDezZnmXX5zNm7clSPrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlvicjxQbCvo6W30Uf/wS2JAPVJIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E5MGI1MGU3LTI3MjktNDdkOS1iOTM4LWE4YmFmYmZhOGZkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKtU8gwDQYJKoZIhvcNAQELBQADggEBAJuQ+PcvTVtV0qIsG3xr5N+y25aa tHeeIrvEJ7SsfJHlYiXLZdWju6B9MWk1M73CitD+WR8CJDSByhoxwA6ohc1Te1E0 YoBLKD+RzMGRsoCWPRLMvZENZYsGSHDn3QuririQzKBHkatja5VwtdrCV9av6XRw lvrhJ4Iy5bvDdnkfMlV8eMWeaq5uT6jSbPHO+4KP1cSEGiTJlq6v5CP+Tymfbe2X xj9m1L+O9xWDLtmPKtiZm5dxyMPGs1cTwMCAfZXXLHYdceYgzqaq58mVtv5a/5Z+ eu0K0lsF1swBhJIduPy7SUNLXK+q+LuGkH5Kv0o9ijvQfB9RIwYOjQpEeqc= -----END CERTIFICATE-----Generated at Mon Jul 21 18:05:45 2025 by rpki-client