$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d745880d-9e6a-449c-9c99-caee7921445e.roa File: d745880d-9e6a-449c-9c99-caee7921445e.roa (raw, json) Hash identifier: i3zJ5ng8LvCT1ei0zsqRo7oy+DVWRAmC+kPlL+eNtvs= Subject key identifier: 64:68:FC:B9:C9:4B:93:D0:33:0B:66:0A:43:8F:5A:7B:92:6E:2E:FB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 052DC83901E66597B9696420E9AEFCBA8E96F173 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d745880d-9e6a-449c-9c99-caee7921445e.roa Signing time: Fri 18 Jul 2025 00:21:15 +0000 ROA not before: Fri 18 Jul 2025 00:21:15 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.0.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:2d:c8:39:01:e6:65:97:b9:69:64:20:e9:ae:fc:ba:8e:96:f1:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:21:15 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=cc1c1238e481c4b467d654fd74ab89a96820156d77745ce310ad1847a60d3dcd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1a:cf:10:95:77:3c:70:ed:40:43:13:2f:0a: e1:8b:c6:84:36:d8:f5:46:ff:f1:21:e9:9c:fb:7e: b7:bb:09:87:64:15:9b:17:b4:43:3a:cb:fd:d3:53: 19:ae:7f:a7:c9:f8:30:40:54:99:6b:64:81:1c:2b: 4f:ff:37:1e:a7:96:a0:31:b2:2f:8d:50:01:25:0c: ab:57:5b:8d:23:e1:ba:77:b3:1c:bb:2c:86:60:19: ba:11:6e:fb:b8:d4:be:ef:c0:7e:a9:bf:56:31:54: f0:f2:66:10:0d:f7:6c:a3:2c:90:7d:82:39:8e:74: bf:40:36:c5:7f:a3:a9:1d:25:70:4d:e5:55:03:2d: c7:73:db:cb:75:41:68:cc:83:2e:c6:fc:65:72:6c: 82:d6:a2:d4:f1:f2:fe:ec:31:a6:0b:ef:f4:2f:60: c4:66:67:8a:5e:a5:32:97:d6:22:70:11:96:0f:77: ae:4a:b2:75:d0:8f:32:03:be:ee:f4:66:03:67:64: 0a:85:4a:10:b1:61:d1:45:b9:47:92:23:5e:94:9d: fc:9c:aa:4c:9a:fb:f7:8a:6d:8c:f7:c0:50:4f:e1: 9f:ce:30:f8:5a:c5:aa:5e:fd:fb:a7:7b:c2:85:82: 79:2e:be:02:d3:32:3d:62:74:bd:80:c5:c8:18:bf: 50:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:68:FC:B9:C9:4B:93:D0:33:0B:66:0A:43:8F:5A:7B:92:6E:2E:FB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d745880d-9e6a-449c-9c99-caee7921445e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.0.0.0/16 Signature Algorithm: sha256WithRSAEncryption 17:d9:60:36:a3:ed:42:4e:e0:6f:a7:0b:c5:a7:88:c4:ab:94: f2:ca:fd:1a:4a:3d:d1:49:27:06:88:16:3b:1a:ff:09:82:ba: e2:2b:55:83:67:08:51:ad:05:39:2f:ed:44:13:fe:3d:c3:29: e1:3f:32:f6:b5:7f:2c:41:09:db:30:bf:84:33:6c:fe:dd:05: 95:12:ae:cb:6e:26:4b:b2:1a:01:05:56:7a:98:fa:44:3d:d9: 7a:72:a3:99:97:eb:be:ab:00:dd:e1:0f:2a:92:91:58:28:4a: f7:67:dd:fa:fe:1d:69:ec:84:c1:c5:81:a0:03:24:be:a6:f3: 86:7d:9e:15:56:dd:bf:b6:4b:51:56:ad:bd:52:be:a6:bf:12: cb:3f:85:d5:8c:0e:34:20:37:2d:35:e1:25:11:73:fa:75:ec: 64:53:e3:b3:51:30:d1:63:21:11:29:b0:bb:55:34:33:dc:8e: c8:f5:0a:34:c2:1e:66:32:98:c6:a8:64:dc:87:d3:65:3f:1e: 08:3a:3a:17:b2:0c:f9:4e:d9:4b:17:7d:ee:93:e5:4f:b5:d3: e5:46:b8:40:ce:67:26:7c:33:bf:0e:fe:37:2e:53:82:8a:f0: cf:0d:b6:39:b1:3e:5e:df:e1:bc:4b:a4:f2:61:c6:39:45:bc: 80:b8:bc:c2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBS3IOQHmZZe5aWQg6a78uo6W8XMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDAyMTE1WhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzFjMTIzOGU0ODFjNGI0NjdkNjU0ZmQ3NGFiODlhOTY4 MjAxNTZkNzc3NDVjZTMxMGFkMTg0N2E2MGQzZGNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsGs8QlXc8cO1AQxMvCuGLxoQ22PVG//Eh6Zz7fre7CYdk FZsXtEM6y/3TUxmuf6fJ+DBAVJlrZIEcK0//Nx6nlqAxsi+NUAElDKtXW40j4bp3 sxy7LIZgGboRbvu41L7vwH6pv1YxVPDyZhAN92yjLJB9gjmOdL9ANsV/o6kdJXBN 5VUDLcdz28t1QWjMgy7G/GVybILWotTx8v7sMaYL7/QvYMRmZ4pepTKX1iJwEZYP d65KsnXQjzIDvu70ZgNnZAqFShCxYdFFuUeSI16Unfycqkya+/eKbYz3wFBP4Z/O MPhaxape/fune8KFgnkuvgLTMj1idL2AxcgYv1BhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZGj8uclLk9AzC2YKQ49ae5JuLvswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q3NDU4ODBkLTllNmEtNDQ5Yy05Yzk5LWNhZWU3OTIxNDQ1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2ADANBgkqhkiG9w0BAQsFAAOCAQEAF9lgNqPtQk7gb6cLxaeIxKuU8sr9 Gko90UknBogWOxr/CYK64itVg2cIUa0FOS/tRBP+PcMp4T8y9rV/LEEJ2zC/hDNs /t0FlRKuy24mS7IaAQVWepj6RD3ZenKjmZfrvqsA3eEPKpKRWChK92fd+v4daeyE wcWBoAMkvqbzhn2eFVbdv7ZLUVatvVK+pr8Syz+F1YwONCA3LTXhJRFz+nXsZFPj s1Ew0WMhESmwu1U0M9yOyPUKNMIeZjKYxqhk3IfTZT8eCDo6F7IM+U7ZSxd97pPl T7XT5Ua4QM5nJnwzvw7+Ny5Tgorwzw22ObE+Xt/hvEuk8mHGOUW8gLi8wg== -----END CERTIFICATE-----Generated at Mon Jul 21 18:12:26 2025 by rpki-client