$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b329dcd2-1949-46fc-8852-9e7592d53c17.roa File: b329dcd2-1949-46fc-8852-9e7592d53c17.roa (raw, json) Hash identifier: LQzbPM13GzhOkBYEb0Mc7760OUmyshJbO4G8fC36VuA= Subject key identifier: C5:8F:E8:7E:4B:61:97:3D:C8:97:5F:29:69:3D:AF:E8:CD:DD:17:A4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4ADC50A5808CBBF966D443B152BEF401004872CB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b329dcd2-1949-46fc-8852-9e7592d53c17.roa Signing time: Fri 11 Jul 2025 15:00:28 +0000 ROA not before: Fri 11 Jul 2025 15:00:28 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 98.82.154.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:dc:50:a5:80:8c:bb:f9:66:d4:43:b1:52:be:f4:01:00:48:72:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 11 15:00:28 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=dcba32f226ff6b7c3fa5f32275ec1c4b8a5ae3cb2b68640c9f86524037d3f1b4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:1a:c2:6a:6c:b4:1d:5c:04:32:e1:91:5e:45: bb:5b:64:9e:df:04:43:a8:7b:2d:86:34:b8:c1:d2: 13:4f:92:fb:04:50:4b:f1:a3:f5:84:55:20:62:ae: 83:e5:b2:2c:ac:88:62:04:8e:e6:c2:5c:5b:05:65: 98:d0:91:e4:c4:4b:8c:0d:fe:3e:05:ce:db:02:78: 6d:16:8d:e6:ff:f1:4a:89:09:02:9f:49:36:0c:1b: eb:3c:87:a6:bb:c4:e0:da:d1:41:af:9f:3f:c6:1b: b8:c4:3e:5c:20:a7:14:10:08:48:ef:69:58:80:9e: e5:c6:70:e9:b3:e3:a6:ec:d0:64:89:1c:e7:35:9b: a8:50:bb:52:c0:70:26:45:f2:f3:67:83:c8:26:2f: f4:85:ef:25:80:cf:b8:3b:f0:ec:6f:2e:8d:fb:89: 2c:d2:00:ee:cf:a2:b2:ad:d2:70:62:f1:e0:38:03: a9:13:49:7a:26:1d:77:5d:9c:b0:69:a1:f0:f7:f7: 3b:ac:f1:3e:a5:8f:f3:07:72:bc:2d:5c:d9:53:7b: 8e:cd:7b:6b:c8:d2:c1:a3:d8:7d:1f:77:ef:65:d3: 17:3e:38:19:27:43:af:6a:80:ed:46:47:95:21:91: 78:90:f2:ab:76:86:7a:05:94:59:10:a4:25:57:87: ae:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:8F:E8:7E:4B:61:97:3D:C8:97:5F:29:69:3D:AF:E8:CD:DD:17:A4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b329dcd2-1949-46fc-8852-9e7592d53c17.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.82.154.0/23 Signature Algorithm: sha256WithRSAEncryption c5:5b:20:2b:4d:5b:ca:04:e5:f0:0d:ca:ec:ed:3e:38:2a:7e: 50:a1:14:87:b0:ad:09:a3:ce:d3:42:89:02:b5:a2:e2:b2:9d: fd:a3:4f:ae:bb:7e:83:a8:5f:46:12:1a:fa:c1:f4:e6:6c:86: 4d:c9:df:02:8d:bc:bd:47:9e:91:30:0f:66:93:84:fe:b3:15: 03:0a:7e:cd:96:da:a6:43:95:0a:dd:4d:23:45:03:7d:38:6e: 71:56:28:ff:36:27:f0:00:6a:bb:8d:84:82:0d:33:e9:a4:3c: 8c:c1:5c:ee:34:6e:25:65:58:ac:26:c0:eb:2d:df:5e:f5:3f: e3:b8:75:49:da:ee:2f:e5:53:0e:cc:c5:01:ee:4a:af:34:8c: 9f:84:42:ab:79:4f:c4:f4:06:d1:20:6b:24:3e:ad:48:91:90: 88:e6:94:19:6f:8f:e3:02:3f:f6:39:42:c9:37:04:04:ec:09: e6:ad:94:e5:5e:f2:6b:b5:15:72:87:b4:2d:59:07:5c:1c:c4: 87:fe:92:91:fb:a4:f8:c0:52:ce:87:07:84:4b:9b:df:e5:8b: e3:08:85:cc:fd:d4:9a:ee:36:78:37:58:dc:82:df:a2:d8:98: e4:7c:8f:0b:d8:78:4a:4d:d7:83:f1:93:e2:07:c3:33:53:04: d5:bc:2e:bb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUStxQpYCMu/lm1EOxUr70AQBIcsswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzExMTUwMDI4WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkY2JhMzJmMjI2ZmY2YjdjM2ZhNWYzMjI3NWVjMWM0Yjhh NWFlM2NiMmI2ODY0MGM5Zjg2NTI0MDM3ZDNmMWI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOGsJqbLQdXAQy4ZFeRbtbZJ7fBEOoey2GNLjB0hNPkvsE UEvxo/WEVSBiroPlsiysiGIEjubCXFsFZZjQkeTES4wN/j4FztsCeG0Wjeb/8UqJ CQKfSTYMG+s8h6a7xODa0UGvnz/GG7jEPlwgpxQQCEjvaViAnuXGcOmz46bs0GSJ HOc1m6hQu1LAcCZF8vNng8gmL/SF7yWAz7g78OxvLo37iSzSAO7PorKt0nBi8eA4 A6kTSXomHXddnLBpofD39zus8T6lj/MHcrwtXNlTe47Ne2vI0sGj2H0fd+9l0xc+ OBknQ69qgO1GR5UhkXiQ8qt2hnoFlFkQpCVXh66nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxY/ofkthlz3Il18paT2v6M3dF6QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzMjlkY2QyLTE5NDktNDZmYy04ODUyLTllNzU5MmQ1M2MxNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFiUpowDQYJKoZIhvcNAQELBQADggEBAMVbICtNW8oE5fANyuztPjgqflCh FIewrQmjztNCiQK1ouKynf2jT667foOoX0YSGvrB9OZshk3J3wKNvL1HnpEwD2aT hP6zFQMKfs2W2qZDlQrdTSNFA304bnFWKP82J/AAaruNhIINM+mkPIzBXO40biVl WKwmwOst3171P+O4dUna7i/lUw7MxQHuSq80jJ+EQqt5T8T0BtEgayQ+rUiRkIjm lBlvj+MCP/Y5Qsk3BATsCeatlOVe8mu1FXKHtC1ZB1wcxIf+kpH7pPjAUs6HB4RL m9/li+MIhcz91JruNng3WNyC36LYmOR8jwvYeEpN14Pxk+IHwzNTBNW8Lrs= -----END CERTIFICATE-----Generated at Mon Jul 21 18:20:00 2025 by rpki-client