$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc06020b-ae9c-471e-9f71-d0c6ae8b06b6.roa File: bc06020b-ae9c-471e-9f71-d0c6ae8b06b6.roa (raw, json) Hash identifier: gFypR0Ak9C1/FD1A632eJkk0Mf9yRiPDVoJjlrOP5Ao= Subject key identifier: E5:91:F0:3E:F1:A5:CC:F0:B1:78:5A:56:A8:54:69:8D:77:FB:49:46 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B71D797D201687F8926ECFB3BE0BC4DB5B6D47F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc06020b-ae9c-471e-9f71-d0c6ae8b06b6.roa Signing time: Tue 01 Jul 2025 00:10:31 +0000 ROA not before: Tue 01 Jul 2025 00:10:31 +0000 ROA not after: Tue 05 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.185.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:71:d7:97:d2:01:68:7f:89:26:ec:fb:3b:e0:bc:4d:b5:b6:d4:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 1 00:10:31 2025 GMT Not After : Aug 5 23:59:59 2025 GMT Subject: serialNumber=7d4b012e663f420db03a47f4c9ff0a60d14d30b36e548401f6f60652100e06bc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fc:8e:4d:78:f5:61:7f:b9:09:76:95:58:7b: 23:e2:72:b5:7f:97:f4:48:4d:a2:39:61:32:86:4a: 96:74:e8:fa:e1:d0:43:da:80:ec:6c:76:e7:e0:46: a4:4c:c4:93:87:0f:45:41:15:ba:63:5e:61:94:f0: ab:6b:a2:56:dc:4c:de:71:d0:c2:d3:db:86:c6:7a: 68:5c:cc:ec:ac:b0:b6:a2:0c:1f:47:a2:1e:d1:5a: 9c:ad:9e:72:a8:ec:7b:4e:51:7e:fc:f2:c2:66:7f: 25:bf:0e:f6:a5:40:89:42:d4:eb:02:53:36:aa:28: 1a:4f:41:2e:37:6c:5d:42:a1:07:ec:81:82:79:e1: 82:69:bb:84:14:16:5c:23:71:62:cf:0c:95:cb:35: 8a:0f:7d:fb:6e:b6:a0:e6:6e:40:f7:81:58:20:94: 69:61:d8:40:81:31:c7:7d:01:e8:c2:bd:e3:57:74: 61:e3:9f:2d:5c:d7:9a:d0:63:01:a6:bb:8b:ad:11: 72:f6:27:51:bd:6f:f1:83:ff:9f:b0:97:de:d7:14: ac:7e:df:c6:d1:31:5d:87:b1:f7:6e:aa:00:c4:49: cd:d5:92:f7:af:91:1b:fc:18:ab:d1:b5:68:d1:b7: 11:0d:6d:b8:ac:3a:8f:cb:08:b2:e8:9d:1d:0a:9b: 87:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:91:F0:3E:F1:A5:CC:F0:B1:78:5A:56:A8:54:69:8D:77:FB:49:46 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc06020b-ae9c-471e-9f71-d0c6ae8b06b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.185.128.0/19 Signature Algorithm: sha256WithRSAEncryption 39:c9:ff:da:7b:64:46:ed:08:bb:0b:b0:82:b0:b6:42:a0:9f: da:c2:cb:fb:f4:1c:16:30:d7:09:16:3b:65:cf:07:52:ff:31: a8:0c:a9:7b:00:9d:8a:c3:e3:d4:af:2a:f0:68:af:4b:9a:1e: af:fc:8e:35:e3:15:37:cf:03:a7:f6:a2:a0:68:b0:17:23:d1: 8a:7e:82:e6:46:6c:79:d0:2d:b1:8b:7c:bc:e8:58:9a:a1:9a: 0a:29:ee:f5:77:9c:10:c9:39:e8:af:cd:74:e4:76:6f:be:26: 72:73:95:07:4c:7b:0d:71:88:61:5a:70:e6:18:46:72:cb:a5: a5:e7:7e:13:d4:a3:d3:cf:25:df:cd:f6:aa:dd:98:c2:44:e9: 7d:48:2d:a9:fc:8a:04:85:0b:30:9d:f7:80:79:4c:35:27:4b: dd:d3:ca:98:aa:59:45:2c:25:ec:73:5a:68:74:ec:3d:46:e9: a5:7d:72:4f:ee:51:4a:74:73:a6:75:c1:d8:58:12:02:43:5a: 31:1f:69:e4:f0:08:47:17:cb:4d:eb:4c:7d:49:71:df:cb:f8: 26:c2:8e:d0:04:3f:3d:e3:c3:e5:8d:78:fb:71:2f:0a:36:4c: 2e:8e:95:e4:a9:7b:6a:61:7a:6d:cb:12:5c:98:b2:d2:1d:f0: 73:f2:3e:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO3HXl9IBaH+JJuz7O+C8TbW21H8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAxMDAxMDMxWhcNMjUwODA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDRiMDEyZTY2M2Y0MjBkYjAzYTQ3ZjRjOWZmMGE2MGQx NGQzMGIzNmU1NDg0MDFmNmY2MDY1MjEwMGUwNmJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy/I5NePVhf7kJdpVYeyPicrV/l/RITaI5YTKGSpZ06Prh 0EPagOxsdufgRqRMxJOHD0VBFbpjXmGU8KtrolbcTN5x0MLT24bGemhczOyssLai DB9Hoh7RWpytnnKo7HtOUX788sJmfyW/DvalQIlC1OsCUzaqKBpPQS43bF1CoQfs gYJ54YJpu4QUFlwjcWLPDJXLNYoPfftutqDmbkD3gVgglGlh2ECBMcd9AejCveNX dGHjny1c15rQYwGmu4utEXL2J1G9b/GD/5+wl97XFKx+38bRMV2HsfduqgDESc3V kvevkRv8GKvRtWjRtxENbbisOo/LCLLonR0Km4fBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5ZHwPvGlzPCxeFpWqFRpjXf7SUYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JjMDYwMjBiLWFlOWMtNDcxZS05ZjcxLWQwYzZhZThiMDZiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVAuYAwDQYJKoZIhvcNAQELBQADggEBADnJ/9p7ZEbtCLsLsIKwtkKgn9rC y/v0HBYw1wkWO2XPB1L/MagMqXsAnYrD49SvKvBor0uaHq/8jjXjFTfPA6f2oqBo sBcj0Yp+guZGbHnQLbGLfLzoWJqhmgop7vV3nBDJOeivzXTkdm++JnJzlQdMew1x iGFacOYYRnLLpaXnfhPUo9PPJd/N9qrdmMJE6X1ILan8igSFCzCd94B5TDUnS93T ypiqWUUsJexzWmh07D1G6aV9ck/uUUp0c6Z1wdhYEgJDWjEfaeTwCEcXy03rTH1J cd/L+CbCjtAEPz3jw+WNePtxLwo2TC6OleSpe2phem3LElyYstId8HPyPvc= -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:23 2025 by rpki-client