$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b131daf1-b7a0-4cfc-895e-57ca8f2fcc6e.roa File: b131daf1-b7a0-4cfc-895e-57ca8f2fcc6e.roa (raw, json) Hash identifier: asLqLgQNdB4M0GbTMJpZcoXulKNlO+mWlRWFb3uOOdg= Subject key identifier: E2:82:7B:88:2F:40:EA:0F:C2:F5:EA:18:45:4A:08:A4:9C:4D:18:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6942D9DFCE8B4E4104E772525812C6EB14046B89 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b131daf1-b7a0-4cfc-895e-57ca8f2fcc6e.roa Signing time: Wed 09 Jul 2025 00:32:20 +0000 ROA not before: Wed 09 Jul 2025 00:32:20 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.21.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:42:d9:df:ce:8b:4e:41:04:e7:72:52:58:12:c6:eb:14:04:6b:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:32:20 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=b97cfba0cd1d65b53afd7c31e5824330d185bbb3e0b71524b39ba5515c8577af, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:50:7f:7a:99:5f:36:3e:fc:c8:6f:2d:2f:f9: 39:ab:50:c3:ab:31:ab:b6:dd:d0:6c:de:30:e6:5e: 73:e3:9f:7c:3a:9b:dd:ae:91:c1:09:4d:17:f4:43: 19:30:d8:2b:5e:dc:24:5b:80:9b:19:5e:90:a4:e8: fb:1e:e1:ea:5a:6e:f5:fe:40:50:d2:b7:15:06:ba: 16:8d:ee:00:8a:29:43:dd:9d:2a:c7:95:0e:e1:2f: da:c2:f1:61:60:c4:ac:74:c4:f6:f1:63:22:4e:9f: 3b:f5:28:ee:3a:99:93:d0:65:73:b8:e6:82:1e:72: 79:77:35:89:92:4c:5a:1f:07:aa:a1:f3:ba:f3:db: 1c:de:74:7c:48:21:5e:da:cb:65:86:d0:38:f0:52: 7d:f3:4b:27:8f:35:42:63:c4:c7:c1:9e:03:62:61: 45:46:24:12:ab:b8:ce:6a:e1:d6:95:cc:4e:64:c8: 4a:3e:4e:33:7c:7f:e0:b2:45:f8:2f:c1:cc:0f:2e: 15:53:a0:76:5e:24:50:8c:7c:bd:58:ba:90:d4:54: 56:1d:85:2e:85:71:e6:d9:c5:36:bc:de:9f:dc:f3: 56:39:3b:04:67:96:31:29:f5:83:45:03:ca:ab:f0: 97:6c:dd:f2:4a:f9:3c:f5:7b:97:33:0d:c7:fb:87: d0:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:82:7B:88:2F:40:EA:0F:C2:F5:EA:18:45:4A:08:A4:9C:4D:18:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b131daf1-b7a0-4cfc-895e-57ca8f2fcc6e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.21.48.0/20 Signature Algorithm: sha256WithRSAEncryption 7e:cf:7e:9d:80:db:1f:d5:4f:39:b7:0f:9e:8d:15:99:ee:78: 24:11:21:30:4a:50:75:9b:95:73:de:49:fe:4c:4b:cf:cc:21: c0:86:90:76:3f:fa:21:1a:2e:b4:2d:f3:02:03:91:dd:c6:c5: 52:5c:a5:17:79:21:dc:2e:dd:d8:51:64:0c:4d:2d:86:f8:db: 72:2f:64:36:c0:4f:ed:c8:e3:45:c9:42:5b:95:97:ce:91:11: a6:80:e8:84:74:91:b4:84:71:9b:e6:41:80:08:b3:92:78:db: fb:4b:3f:71:2a:3b:af:7f:da:23:9a:0b:f8:8d:88:41:b6:97: 6a:18:63:a1:27:c2:48:7d:c6:45:33:18:2a:04:ad:45:87:d1: b0:39:e3:8b:e5:99:01:46:69:b9:84:17:d6:21:16:60:24:64: 75:1c:d8:56:b9:87:6c:9a:44:78:8c:a7:c3:3e:fa:56:d2:e1: 1a:6d:99:ad:b6:f1:b3:1e:8c:f6:f5:17:77:ba:25:35:55:45: 10:3b:21:78:f5:d6:3a:5d:66:47:59:32:d6:83:9e:10:46:20: 20:4e:44:40:72:c9:e2:f5:35:c0:2c:e0:0e:27:b9:c5:de:11: 12:7d:57:58:97:0c:91:41:72:b6:01:b0:38:da:0b:ff:fe:e2: eb:21:70:66 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaULZ386LTkEE53JSWBLG6xQEa4kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDAzMjIwWhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTdjZmJhMGNkMWQ2NWI1M2FmZDdjMzFlNTgyNDMzMGQx ODViYmIzZTBiNzE1MjRiMzliYTU1MTVjODU3N2FmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4UH96mV82PvzIby0v+TmrUMOrMau23dBs3jDmXnPjn3w6 m92ukcEJTRf0Qxkw2Cte3CRbgJsZXpCk6Pse4epabvX+QFDStxUGuhaN7gCKKUPd nSrHlQ7hL9rC8WFgxKx0xPbxYyJOnzv1KO46mZPQZXO45oIecnl3NYmSTFofB6qh 87rz2xzedHxIIV7ay2WG0DjwUn3zSyePNUJjxMfBngNiYUVGJBKruM5q4daVzE5k yEo+TjN8f+CyRfgvwcwPLhVToHZeJFCMfL1YupDUVFYdhS6FcebZxTa83p/c81Y5 OwRnljEp9YNFA8qr8Jds3fJK+Tz1e5czDcf7h9ARAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4oJ7iC9A6g/C9eoYRUoIpJxNGLYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxMzFkYWYxLWI3YTAtNGNmYy04OTVlLTU3Y2E4ZjJmY2M2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQXFTAwDQYJKoZIhvcNAQELBQADggEBAH7Pfp2A2x/VTzm3D56NFZnueCQR ITBKUHWblXPeSf5MS8/MIcCGkHY/+iEaLrQt8wIDkd3GxVJcpRd5Idwu3dhRZAxN LYb423IvZDbAT+3I40XJQluVl86REaaA6IR0kbSEcZvmQYAIs5J42/tLP3EqO69/ 2iOaC/iNiEG2l2oYY6Enwkh9xkUzGCoErUWH0bA544vlmQFGabmEF9YhFmAkZHUc 2Fa5h2yaRHiMp8M++lbS4Rptma228bMejPb1F3e6JTVVRRA7IXj11jpdZkdZMtaD nhBGICBOREByyeL1NcAs4A4nucXeERJ9V1iXDJFBcrYBsDjaC//+4ushcGY= -----END CERTIFICATE-----Generated at Mon Jul 21 18:12:24 2025 by rpki-client