$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d69d305c-a658-4c39-8075-c28e2b201286.roa File: d69d305c-a658-4c39-8075-c28e2b201286.roa (raw, json) Hash identifier: hNIE2SGrgHnGILjzrJm0zst8J3jazKj1unVSrSjYGnE= Subject key identifier: 63:D6:9D:04:8A:C8:51:02:B5:2B:53:9B:97:FD:49:D3:92:7B:A1:DF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C8B63464B380854F42743898F998A5019AB946D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d69d305c-a658-4c39-8075-c28e2b201286.roa Signing time: Fri 18 Jul 2025 00:00:31 +0000 ROA not before: Fri 18 Jul 2025 00:00:31 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 208.115.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:8b:63:46:4b:38:08:54:f4:27:43:89:8f:99:8a:50:19:ab:94:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:00:31 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=03fd382ba41e09bff30567255767d010137cc0ec1c8994dfdab1f3d6f89625bd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ea:d6:fd:9f:91:53:ce:9c:3f:4c:0f:09:11: 65:ee:76:1b:dc:d8:e0:b3:73:aa:c2:18:d9:3d:47: 57:9b:94:75:99:b7:84:d6:ca:30:36:52:48:8f:e1: 55:ca:f1:a5:8e:cf:ae:65:44:0d:09:ee:97:6e:30: 7f:a3:cf:41:db:ed:35:ac:d9:e2:85:bd:d5:c6:9b: 38:4c:0c:63:60:fd:70:30:ef:9d:cb:1c:a3:1e:7c: d2:9c:b1:40:8f:a3:5f:d7:74:b0:26:6b:5d:ac:82: 3d:ef:49:15:a0:45:a7:07:12:bd:8c:c0:3b:1a:8f: 65:cb:82:b1:38:91:e1:04:88:84:c9:b3:f0:f5:28: d8:bf:b6:d0:63:b7:70:67:0a:7d:67:84:f0:d9:24: dd:31:85:63:1b:15:e9:4e:4f:4b:29:00:34:c2:85: 67:7d:ab:b3:76:ae:22:0e:5c:0e:80:b0:db:da:6f: f2:53:2c:45:7a:de:b6:c6:e1:5b:34:c5:22:af:7c: 07:72:ad:36:f4:a1:ec:c2:a7:23:00:f5:b1:60:7b: 8c:cc:5a:04:7d:2a:24:2c:2e:5e:28:2d:e6:83:96: 04:65:94:fb:63:9e:15:43:1b:28:46:98:2b:74:da: cc:e1:7d:17:1d:81:36:7c:80:08:ad:b9:3e:0a:7b: 92:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:D6:9D:04:8A:C8:51:02:B5:2B:53:9B:97:FD:49:D3:92:7B:A1:DF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d69d305c-a658-4c39-8075-c28e2b201286.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.115.0.0/19 Signature Algorithm: sha256WithRSAEncryption cf:08:1d:07:e8:42:c7:83:08:45:2f:9d:c4:07:5d:da:49:0b: 69:03:17:cb:67:90:e7:8e:41:23:b0:1c:b4:dc:7c:41:c2:9c: c3:84:66:67:90:ff:1d:04:6c:42:78:c4:ab:03:1a:d4:eb:69: 28:66:66:53:1b:4a:62:5a:8c:22:44:55:55:f8:39:af:20:9a: 9b:76:77:2a:79:b1:aa:ae:18:3b:55:56:b3:d1:db:01:27:33: 35:14:4a:de:68:61:ce:84:7f:c9:21:95:d6:3e:6f:5a:d4:df: 6b:9a:8a:ec:c3:af:16:ac:f7:ea:b0:ce:dc:83:6b:42:5a:ed: ca:09:6b:fe:1c:55:47:5a:08:e9:bd:29:86:cf:99:09:72:ae: c8:53:0c:2b:41:61:3c:99:cc:d4:12:69:68:4a:7c:c3:48:74: 7a:f1:e9:b2:9d:d1:ef:1e:68:df:7c:b1:bf:43:38:96:7b:fb: 8c:a0:2a:e3:b2:a7:b2:6c:82:e9:20:14:cc:87:8a:ee:e3:67: 9f:06:0a:77:0d:d6:3c:62:86:8a:f8:c7:57:be:ee:d1:a1:51: d8:50:35:9d:db:d8:8f:fd:da:35:46:6e:2f:16:c1:b4:de:f3: 2c:42:46:9b:2c:40:6b:76:3c:47:b9:69:81:f7:8f:a7:a4:7d: dd:61:fe:84 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHItjRks4CFT0J0OJj5mKUBmrlG0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDAwMDMxWhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwM2ZkMzgyYmE0MWUwOWJmZjMwNTY3MjU1NzY3ZDAxMDEz N2NjMGVjMWM4OTk0ZGZkYWIxZjNkNmY4OTYyNWJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+6tb9n5FTzpw/TA8JEWXudhvc2OCzc6rCGNk9R1eblHWZ t4TWyjA2UkiP4VXK8aWOz65lRA0J7pduMH+jz0Hb7TWs2eKFvdXGmzhMDGNg/XAw 753LHKMefNKcsUCPo1/XdLAma12sgj3vSRWgRacHEr2MwDsaj2XLgrE4keEEiITJ s/D1KNi/ttBjt3BnCn1nhPDZJN0xhWMbFelOT0spADTChWd9q7N2riIOXA6AsNva b/JTLEV63rbG4Vs0xSKvfAdyrTb0oezCpyMA9bFge4zMWgR9KiQsLl4oLeaDlgRl lPtjnhVDGyhGmCt02szhfRcdgTZ8gAituT4Ke5IfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUY9adBIrIUQK1K1Obl/1J05J7od8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q2OWQzMDVjLWE2NTgtNGMzOS04MDc1LWMyOGUyYjIwMTI4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXQcwAwDQYJKoZIhvcNAQELBQADggEBAM8IHQfoQseDCEUvncQHXdpJC2kD F8tnkOeOQSOwHLTcfEHCnMOEZmeQ/x0EbEJ4xKsDGtTraShmZlMbSmJajCJEVVX4 Oa8gmpt2dyp5saquGDtVVrPR2wEnMzUUSt5oYc6Ef8khldY+b1rU32uaiuzDrxas 9+qwztyDa0Ja7coJa/4cVUdaCOm9KYbPmQlyrshTDCtBYTyZzNQSaWhKfMNIdHrx 6bKd0e8eaN98sb9DOJZ7+4ygKuOyp7JsgukgFMyHiu7jZ58GCncN1jxihor4x1e+ 7tGhUdhQNZ3b2I/92jVGbi8WwbTe8yxCRpssQGt2PEe5aYH3j6ekfd1h/oQ= -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:30 2025 by rpki-client