$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4ff7be7-36ae-48c9-b55e-9c6224aa1a42.roa File: b4ff7be7-36ae-48c9-b55e-9c6224aa1a42.roa (raw, json) Hash identifier: woqnFLu3yWbeolPWcNYDvpILmgMmGKDjUjdaNZF14Ug= Subject key identifier: A1:04:F9:E5:7B:87:75:99:79:2C:57:9C:7E:8F:77:C2:FE:3D:73:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2FFC5069EB85BB1212ABD8403243EBDE9022BDCD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4ff7be7-36ae-48c9-b55e-9c6224aa1a42.roa Signing time: Mon 30 Jun 2025 15:20:22 +0000 ROA not before: Mon 30 Jun 2025 15:20:22 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 66.36.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:fc:50:69:eb:85:bb:12:12:ab:d8:40:32:43:eb:de:90:22:bd:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 30 15:20:22 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=d7b9dbf27ec66d28bb61007abf8700abb70a793175aec483a2d6da9731707e39, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bd:91:28:7a:4d:9c:ab:72:77:63:c8:ec:5e: ce:a5:76:70:49:ad:17:52:f6:ca:01:0b:60:84:98: df:17:10:3e:bf:59:ae:d1:ed:10:00:3c:6c:b2:6e: ed:74:2f:3e:45:83:06:a5:9b:cf:1f:85:d9:30:50: 73:d8:31:bc:7c:b6:4c:3a:5a:2d:75:f4:49:3a:b5: c7:20:08:8f:1e:1c:e3:c7:89:0f:4c:04:63:68:bf: e8:67:80:5f:c3:b1:e0:cc:f9:1c:d5:64:b9:81:66: 46:8e:18:81:7d:07:bd:c8:69:c2:99:44:a4:54:77: 56:5b:cb:fe:43:2d:7e:5f:e0:91:99:5b:cb:89:42: 47:e8:32:f8:cb:21:3e:a7:e7:19:12:75:52:6b:7b: 7f:84:f5:eb:fd:13:b2:5c:16:b9:59:20:37:ec:07: da:9a:36:51:64:dc:bf:f2:6f:8b:bd:34:02:1b:92: 25:0d:92:3a:3e:5d:fa:a4:29:26:b3:55:7b:11:3b: 35:eb:6d:aa:9f:c7:b9:ab:91:b2:7d:34:fc:65:3c: 8b:88:2f:f7:99:c3:52:5a:c4:d4:2d:43:e5:74:5e: ca:00:1f:4f:50:39:8e:23:0f:a4:88:da:0c:e1:7a: 7d:cc:46:4a:6b:3b:f6:60:06:8b:f8:c8:91:bd:29: 5f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:04:F9:E5:7B:87:75:99:79:2C:57:9C:7E:8F:77:C2:FE:3D:73:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4ff7be7-36ae-48c9-b55e-9c6224aa1a42.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.36.32.0/19 Signature Algorithm: sha256WithRSAEncryption 9d:d7:0a:ea:14:a9:e0:82:8b:5d:ae:4d:0b:4c:e5:97:79:3a: 68:28:48:be:dd:f3:2f:7f:b0:f2:50:d4:f1:c4:31:34:75:46: 91:d1:9d:4b:5b:b1:a0:dc:42:2b:1a:6d:31:cf:ad:76:c8:c3: 62:ce:c9:18:8b:66:e3:4b:70:7f:0a:7d:dd:d3:61:56:ea:d8: 08:3b:2f:56:d3:23:26:91:05:d2:30:1f:e5:c5:0e:42:a7:08: 24:62:8d:cb:2a:96:85:33:d9:68:56:3c:10:bd:0a:bc:74:da: 30:30:c5:7b:b6:67:7b:82:31:20:3b:b2:21:d5:98:8b:3c:37: c5:bf:08:d6:55:82:03:61:05:69:2f:ce:56:e9:ce:60:e0:cb: f7:0f:6a:e0:0a:5d:6b:9c:a3:07:6b:78:9f:7e:19:d7:e9:ce: 8a:3c:d0:2f:1c:c4:24:63:17:0d:3a:f2:a7:e9:68:6f:45:f9: b9:a6:87:8a:19:bd:c8:0c:e1:3e:36:5f:1f:69:b1:7c:c2:2c: a0:ba:fe:40:9d:98:d9:06:bd:f2:5a:8a:69:b4:98:af:a1:33: 73:c1:48:09:c3:dc:0f:9e:f4:1b:99:08:74:a4:3f:0c:71:5d: f4:7f:12:d8:b1:75:0c:c5:19:33:12:9e:dd:db:7c:0e:11:9e: bb:54:bc:4c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL/xQaeuFuxISq9hAMkPr3pAivc0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjMwMTUyMDIyWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkN2I5ZGJmMjdlYzY2ZDI4YmI2MTAwN2FiZjg3MDBhYmI3 MGE3OTMxNzVhZWM0ODNhMmQ2ZGE5NzMxNzA3ZTM5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGvZEoek2cq3J3Y8jsXs6ldnBJrRdS9soBC2CEmN8XED6/ Wa7R7RAAPGyybu10Lz5Fgwalm88fhdkwUHPYMbx8tkw6Wi119Ek6tccgCI8eHOPH iQ9MBGNov+hngF/DseDM+RzVZLmBZkaOGIF9B73IacKZRKRUd1Zby/5DLX5f4JGZ W8uJQkfoMvjLIT6n5xkSdVJre3+E9ev9E7JcFrlZIDfsB9qaNlFk3L/yb4u9NAIb kiUNkjo+XfqkKSazVXsROzXrbaqfx7mrkbJ9NPxlPIuIL/eZw1JaxNQtQ+V0XsoA H09QOY4jD6SI2gzhen3MRkprO/ZgBov4yJG9KV/HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoQT55XuHdZl5LFecfo93wv49cwYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I0ZmY3YmU3LTM2YWUtNDhjOS1iNTVlLTljNjIyNGFhMWE0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVCJCAwDQYJKoZIhvcNAQELBQADggEBAJ3XCuoUqeCCi12uTQtM5Zd5Omgo SL7d8y9/sPJQ1PHEMTR1RpHRnUtbsaDcQisabTHPrXbIw2LOyRiLZuNLcH8Kfd3T YVbq2Ag7L1bTIyaRBdIwH+XFDkKnCCRijcsqloUz2WhWPBC9Crx02jAwxXu2Z3uC MSA7siHVmIs8N8W/CNZVggNhBWkvzlbpzmDgy/cPauAKXWucowdreJ9+Gdfpzoo8 0C8cxCRjFw068qfpaG9F+bmmh4oZvcgM4T42Xx9psXzCLKC6/kCdmNkGvfJaimm0 mK+hM3PBSAnD3A+e9BuZCHSkPwxxXfR/EtixdQzFGTMSnt3bfA4RnrtUvEw= -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:01 2025 by rpki-client