$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc318b70-5b88-4bf7-8b6c-9a26cee65109.roa File: bc318b70-5b88-4bf7-8b6c-9a26cee65109.roa (raw, json) Hash identifier: nDfFVzVlu83FrWJ+/kI98Ds1T4AzyL1lIdRqPr7G2oo= Subject key identifier: E2:12:BA:9F:A4:52:00:02:1D:69:5A:CF:03:40:52:B7:8C:A8:01:1C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4191623D99EEEBFA0292FAAE38DEAB2E62764F68 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc318b70-5b88-4bf7-8b6c-9a26cee65109.roa Signing time: Mon 14 Jul 2025 15:20:23 +0000 ROA not before: Mon 14 Jul 2025 15:20:23 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 72.44.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:91:62:3d:99:ee:eb:fa:02:92:fa:ae:38:de:ab:2e:62:76:4f:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 14 15:20:23 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=63053239b909cfa8a109e8267a5248d246415e97cacac60cfb07b8392d5f924d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:90:6b:65:56:69:ea:f3:2a:c1:31:f5:ff:0b: e7:86:70:59:a9:4b:2a:25:91:24:43:76:ee:6c:89: 53:3e:3a:43:da:9f:3b:ab:52:b8:9b:c6:0b:b1:46: f3:92:a1:bb:74:0a:44:73:66:0e:f8:d2:be:01:dc: d0:3d:a2:b8:68:a2:3a:fd:30:e3:24:38:02:51:76: 80:f9:9c:86:e4:fe:85:e9:2f:c5:8f:37:5d:b8:a2: da:4f:a8:e0:5b:24:bd:6f:62:19:01:36:b3:63:7e: 06:bf:03:a1:ce:51:6c:4c:f1:93:48:cd:d6:fd:4d: 9b:40:64:49:ba:d1:f9:1c:40:5a:94:dc:ed:be:ff: a9:45:89:59:54:08:14:a5:42:d1:65:88:f0:51:8f: 21:42:02:b3:ee:72:ed:06:8c:ba:f5:a3:e3:e9:67: a0:a7:7c:44:3f:8a:65:18:f9:2d:51:24:f7:3d:04: 3b:10:f2:9c:d2:3e:62:9b:3b:5b:5b:ba:0d:fa:8c: 59:c5:a5:99:01:80:22:6d:ab:10:3a:52:a5:a6:06: a1:31:f9:21:c1:4e:2f:f8:da:4b:ef:b8:32:48:1a: 15:b8:f8:d1:ce:2d:23:20:68:c6:99:69:1b:97:f9: 17:08:8c:b2:e7:19:6d:10:3c:30:9c:66:e9:ef:c9: 7b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:12:BA:9F:A4:52:00:02:1D:69:5A:CF:03:40:52:B7:8C:A8:01:1C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc318b70-5b88-4bf7-8b6c-9a26cee65109.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.44.64.0/20 Signature Algorithm: sha256WithRSAEncryption b7:7c:8b:f6:f0:a6:a2:fd:56:4f:62:77:43:92:1b:f0:dd:0f: 12:90:f6:61:0a:45:78:aa:6e:04:12:36:8e:8b:7a:79:ba:77: a0:b1:2c:15:96:c0:95:b9:28:ac:57:14:8a:30:c3:4f:6f:de: 7e:84:62:50:ac:3d:90:00:ef:a5:e6:f1:89:33:0a:ce:72:9d: c5:38:b0:3a:66:68:75:36:de:c9:aa:34:c9:2c:b1:36:30:8e: 65:12:dd:19:4a:95:bc:a0:1b:c3:39:96:c3:a0:25:e5:e8:c3: ac:6d:23:66:0e:e7:97:86:a3:cd:15:1a:ca:3c:1e:b1:96:ba: 13:43:b2:43:68:88:69:8e:3e:aa:22:6a:c6:07:92:d0:c0:b3: 39:4c:fb:95:18:48:81:43:05:49:44:73:27:56:ce:3a:e1:1b: 08:0a:ad:0e:54:c1:49:9b:50:25:7e:72:90:8d:55:90:e7:6c: a2:75:dd:69:ca:b1:38:8a:cb:4e:5a:65:a8:51:f3:6b:45:11: 43:32:91:1b:7e:ee:da:29:bb:bc:17:7f:a3:7f:fa:e9:76:ce: 6e:de:23:e4:6c:1b:ad:b1:a4:09:41:6c:5d:7e:57:8b:96:6a: d9:75:e6:ee:12:f7:c9:2c:4b:36:cb:6d:19:fd:68:00:e8:6c: 7d:d9:01:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQZFiPZnu6/oCkvquON6rLmJ2T2gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE0MTUyMDIzWhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MzA1MzIzOWI5MDljZmE4YTEwOWU4MjY3YTUyNDhkMjQ2 NDE1ZTk3Y2FjYWM2MGNmYjA3YjgzOTJkNWY5MjRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwkGtlVmnq8yrBMfX/C+eGcFmpSyolkSRDdu5siVM+OkPa nzurUribxguxRvOSobt0CkRzZg740r4B3NA9orhoojr9MOMkOAJRdoD5nIbk/oXp L8WPN124otpPqOBbJL1vYhkBNrNjfga/A6HOUWxM8ZNIzdb9TZtAZEm60fkcQFqU 3O2+/6lFiVlUCBSlQtFliPBRjyFCArPucu0GjLr1o+PpZ6CnfEQ/imUY+S1RJPc9 BDsQ8pzSPmKbO1tbug36jFnFpZkBgCJtqxA6UqWmBqEx+SHBTi/42kvvuDJIGhW4 +NHOLSMgaMaZaRuX+RcIjLLnGW0QPDCcZunvyXsNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4hK6n6RSAAIdaVrPA0BSt4yoARwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JjMzE4YjcwLTViODgtNGJmNy04YjZjLTlhMjZjZWU2NTEwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARILEAwDQYJKoZIhvcNAQELBQADggEBALd8i/bwpqL9Vk9id0OSG/DdDxKQ 9mEKRXiqbgQSNo6Lenm6d6CxLBWWwJW5KKxXFIoww09v3n6EYlCsPZAA76Xm8Ykz Cs5yncU4sDpmaHU23smqNMkssTYwjmUS3RlKlbygG8M5lsOgJeXow6xtI2YO55eG o80VGso8HrGWuhNDskNoiGmOPqoiasYHktDAszlM+5UYSIFDBUlEcydWzjrhGwgK rQ5UwUmbUCV+cpCNVZDnbKJ13WnKsTiKy05aZahR82tFEUMykRt+7topu7wXf6N/ +ul2zm7eI+RsG62xpAlBbF1+V4uWatl15u4S98ksSzbLbRn9aADobH3ZAVg= -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:20 2025 by rpki-client