$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e18127e7-1573-4e16-8284-95afb7316aa5.roa File: e18127e7-1573-4e16-8284-95afb7316aa5.roa (raw, json) Hash identifier: du0wnYUMVaKdLCk3GRIJVVmTO26SnLhbxksihnEgQ+M= Subject key identifier: 6A:5C:9C:80:3E:C3:BB:DE:C7:0D:D0:92:8F:1E:97:9E:B9:01:B4:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7598E384D062298848DF57235E915ACF4229F8F5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e18127e7-1573-4e16-8284-95afb7316aa5.roa Signing time: Sat 12 Jul 2025 00:31:10 +0000 ROA not before: Sat 12 Jul 2025 00:31:10 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.137.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:98:e3:84:d0:62:29:88:48:df:57:23:5e:91:5a:cf:42:29:f8:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 12 00:31:10 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=f3b4cc8a4fd9049f9affa2f6fe6d3e78f7d9a0e5d5f693f45604ba511cb29618, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a9:8a:38:bd:d8:ca:70:a3:66:4e:8a:9d:4d: 64:41:e9:99:d9:6e:e5:2f:99:4c:f4:d1:dd:c6:eb: 1c:56:b2:40:d1:6d:91:1a:8f:ca:84:74:8d:62:e4: a1:d1:73:7f:f1:e3:65:12:fa:77:ca:25:4e:02:46: 0b:5c:b4:6d:89:89:3f:8c:75:f1:34:a2:5d:1b:53: 65:b3:dc:44:f7:17:e3:08:11:b4:74:7b:f7:81:21: fe:34:a9:9f:75:fc:4b:7a:ab:11:b2:a2:a5:b3:bf: a8:65:c8:b0:fb:f4:b9:ca:81:aa:c6:f0:7e:6d:1f: 71:ba:64:9d:67:33:94:e9:51:b6:be:df:16:c7:6d: 05:b0:ae:c6:ed:45:72:01:06:a9:7d:46:ec:5b:07: 5f:2f:6c:cd:20:6f:a0:ef:4f:1d:e1:25:0e:e8:2e: dd:87:2e:1d:56:3a:72:46:a3:a9:72:5b:39:51:ac: 37:f4:e1:0a:6c:ec:f5:04:75:ad:36:16:36:ff:b6: ac:7a:05:4a:71:b6:eb:f1:d4:fc:19:ac:a5:4d:62: 4e:1a:7f:80:57:e1:c8:ca:67:f0:09:14:3d:5f:97: ed:45:22:45:67:f2:20:53:0a:69:66:63:32:a7:63: 8c:9f:df:b2:69:35:c1:5a:1e:e8:66:37:1f:fd:09: ff:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:5C:9C:80:3E:C3:BB:DE:C7:0D:D0:92:8F:1E:97:9E:B9:01:B4:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e18127e7-1573-4e16-8284-95afb7316aa5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.137.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3e:5c:8d:a7:a1:c6:b0:d5:fa:65:0f:e5:f1:82:84:0e:d3:f1: b5:18:05:d4:ac:52:16:02:e5:9e:b0:ce:61:2e:5a:5b:d6:08: 7b:89:11:60:1e:0f:df:19:12:7c:3a:8a:66:0f:db:f3:a6:55: d7:2b:42:15:cc:43:7b:a3:7a:53:14:41:20:24:ba:bd:f7:49: 95:ad:6a:38:2b:09:a1:bb:81:70:3d:7e:80:84:d8:fe:ac:7b: a4:4f:cb:32:c3:9e:a6:14:5a:f9:43:4f:2f:9f:bd:75:b6:f6: ef:ad:2d:c9:55:ab:db:1a:8e:a4:00:3f:65:88:a2:73:89:47: 10:f1:e3:b6:2a:db:c5:d3:c9:11:cd:46:19:14:de:f4:ba:cd: 42:ce:01:75:b5:f8:19:1f:a8:68:b2:ee:9d:61:01:e1:a7:07: ab:95:c7:43:f6:5e:ff:af:0e:a5:b4:4a:13:ec:08:78:c0:95: cf:97:6e:89:09:3e:22:4e:da:27:de:8d:6d:d0:46:ce:4d:5f: bf:96:5b:a7:58:77:55:7b:f1:b1:fc:77:ba:51:07:eb:59:29: cf:44:30:ec:91:24:40:91:5e:85:a4:33:74:b3:15:15:44:b0: cb:b8:ef:c3:35:66:4c:27:cb:f8:2b:92:87:32:73:e2:cc:0a: 7e:c3:9d:53 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdZjjhNBiKYhI31cjXpFaz0Ip+PUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzEyMDAzMTEwWhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmM2I0Y2M4YTRmZDkwNDlmOWFmZmEyZjZmZTZkM2U3OGY3 ZDlhMGU1ZDVmNjkzZjQ1NjA0YmE1MTFjYjI5NjE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIqYo4vdjKcKNmToqdTWRB6ZnZbuUvmUz00d3G6xxWskDR bZEaj8qEdI1i5KHRc3/x42US+nfKJU4CRgtctG2JiT+MdfE0ol0bU2Wz3ET3F+MI EbR0e/eBIf40qZ91/Et6qxGyoqWzv6hlyLD79LnKgarG8H5tH3G6ZJ1nM5TpUba+ 3xbHbQWwrsbtRXIBBql9RuxbB18vbM0gb6DvTx3hJQ7oLt2HLh1WOnJGo6lyWzlR rDf04Qps7PUEda02Fjb/tqx6BUpxtuvx1PwZrKVNYk4af4BX4cjKZ/AJFD1fl+1F IkVn8iBTCmlmYzKnY4yf37JpNcFaHuhmNx/9Cf/ZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUalycgD7Du97HDdCSjx6XnrkBtCIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UxODEyN2U3LTE1NzMtNGUxNi04Mjg0LTk1YWZiNzMxNmFhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2iTANBgkqhkiG9w0BAQsFAAOCAQEAPlyNp6HGsNX6ZQ/l8YKEDtPxtRgF 1KxSFgLlnrDOYS5aW9YIe4kRYB4P3xkSfDqKZg/b86ZV1ytCFcxDe6N6UxRBICS6 vfdJla1qOCsJobuBcD1+gITY/qx7pE/LMsOephRa+UNPL5+9dbb2760tyVWr2xqO pAA/ZYiic4lHEPHjtirbxdPJEc1GGRTe9LrNQs4BdbX4GR+oaLLunWEB4acHq5XH Q/Ze/68OpbRKE+wIeMCVz5duiQk+Ik7aJ96NbdBGzk1fv5Zbp1h3VXvxsfx3ulEH 61kpz0Qw7JEkQJFehaQzdLMVFUSwy7jvwzVmTCfL+CuShzJz4swKfsOdUw== -----END CERTIFICATE-----Generated at Mon Jul 21 18:19:04 2025 by rpki-client