$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2a09846-443b-40e8-960d-92a8061d00c7.roa File: e2a09846-443b-40e8-960d-92a8061d00c7.roa (raw, json) Hash identifier: MFaXqBcLs1U1HsLKrmoVvwp+utkZs/3dVOBHuQEffXM= Subject key identifier: BF:CD:13:F3:48:4D:88:3B:E5:07:15:76:2A:50:A4:1A:38:1F:E1:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 338E2F5FA1AB171B393A31D105E3FECE655BF763 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2a09846-443b-40e8-960d-92a8061d00c7.roa Signing time: Fri 18 Jul 2025 00:40:13 +0000 ROA not before: Fri 18 Jul 2025 00:40:13 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:8e:2f:5f:a1:ab:17:1b:39:3a:31:d1:05:e3:fe:ce:65:5b:f7:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:40:13 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=0e1f0b1132d320058c355600a2d705d45fe53399d5ea575da8345845729d3c23, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:16:5a:13:ec:42:ed:80:fa:58:50:d5:71:ae: ac:1f:b5:ec:79:5d:93:11:5b:df:a4:24:3f:e4:f5: a0:76:35:b0:77:04:0d:fa:74:78:ae:48:fb:67:fe: eb:76:0c:62:23:43:e5:c8:69:35:5b:10:67:48:96: be:06:f8:5f:2b:4f:d7:ac:b3:d6:43:09:a8:da:51: b3:68:39:6b:88:03:a7:4d:9f:31:71:6d:31:91:59: ca:ac:5c:10:25:10:3b:e4:5b:dc:b9:e1:18:37:00: 9e:b3:82:86:69:62:92:04:a7:47:b8:50:b5:96:53: 42:af:ba:92:a1:e1:66:79:2b:1c:cc:b6:a7:f6:26: d2:a4:5a:d7:0b:bb:2a:f2:cf:77:39:2b:63:5b:5e: 87:ec:1c:f8:7f:4e:0c:e5:d8:a4:c3:9a:e3:8c:33: 20:73:60:31:2a:f4:2e:17:5e:39:15:04:aa:29:83: 9b:3b:62:fd:c2:c8:94:fc:4d:70:42:e6:10:08:fe: 94:d1:47:df:00:b5:af:3a:d3:e9:9f:a6:85:4f:6f: 60:61:6e:cd:a7:2d:cc:37:49:93:d8:59:8f:1a:d9: ad:41:0d:f4:fa:23:4f:1e:9b:08:78:40:31:34:73: cf:ba:fb:b7:2d:43:98:82:94:f9:34:3c:ec:eb:55: 1f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:CD:13:F3:48:4D:88:3B:E5:07:15:76:2A:50:A4:1A:38:1F:E1:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2a09846-443b-40e8-960d-92a8061d00c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.66.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:e6:5f:69:ae:aa:de:8c:64:c7:15:ca:d5:26:80:96:96:ed: 3f:1b:6a:e8:e0:eb:07:ac:ca:22:fd:ee:ad:44:cb:b6:b6:24: bc:bf:9e:53:b9:bd:fa:2f:ab:80:57:80:37:6f:20:ed:5c:c1: 99:65:dd:6c:77:d7:5f:91:2c:45:7d:73:02:30:bd:25:a6:cb: db:21:13:6b:e6:2f:cd:fd:dd:94:b1:1b:bc:42:0c:0c:a1:ac: b9:20:a7:6c:e6:18:5d:9d:c8:e1:70:df:0e:48:b4:6b:8e:92: 37:2a:3d:bd:bf:0b:ed:3e:7f:77:35:f8:4b:a4:62:b0:04:6c: c5:18:43:f3:5b:a8:0a:83:8e:2d:4d:28:f3:02:14:b2:73:25: 7d:be:cb:76:0c:7c:11:e1:1f:1b:cf:df:86:4b:71:0c:24:6d: 75:ea:35:00:52:18:31:4d:74:37:f1:3c:de:b8:88:b4:f1:2c: ab:72:89:2e:73:87:d4:33:9f:a6:fb:e5:f2:91:b1:8f:d9:ce: e8:ac:ca:74:2c:aa:dc:a2:80:ea:d8:96:15:95:c9:b9:ec:c5: c6:5f:b0:cf:fe:d5:bf:e3:53:bd:7b:d1:7b:a9:24:44:a0:5b: 58:a1:18:d8:c8:d1:72:33:fb:ab:2b:4b:88:f7:5f:14:53:90: 74:28:f5:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM44vX6GrFxs5OjHRBeP+zmVb92MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDA0MDEzWhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZTFmMGIxMTMyZDMyMDA1OGMzNTU2MDBhMmQ3MDVkNDVm ZTUzMzk5ZDVlYTU3NWRhODM0NTg0NTcyOWQzYzIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRFloT7ELtgPpYUNVxrqwftex5XZMRW9+kJD/k9aB2NbB3 BA36dHiuSPtn/ut2DGIjQ+XIaTVbEGdIlr4G+F8rT9ess9ZDCajaUbNoOWuIA6dN nzFxbTGRWcqsXBAlEDvkW9y54Rg3AJ6zgoZpYpIEp0e4ULWWU0KvupKh4WZ5KxzM tqf2JtKkWtcLuyryz3c5K2NbXofsHPh/Tgzl2KTDmuOMMyBzYDEq9C4XXjkVBKop g5s7Yv3CyJT8TXBC5hAI/pTRR98Ata860+mfpoVPb2Bhbs2nLcw3SZPYWY8a2a1B DfT6I08emwh4QDE0c8+6+7ctQ5iClPk0POzrVR9NAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUv80T80hNiDvlBxV2KlCkGjgf4dcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UyYTA5ODQ2LTQ0M2ItNDBlOC05NjBkLTkyYTgwNjFkMDBjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/EIwDQYJKoZIhvcNAQELBQADggEBAArmX2muqt6MZMcVytUmgJaW7T8b aujg6wesyiL97q1Ey7a2JLy/nlO5vfovq4BXgDdvIO1cwZll3Wx311+RLEV9cwIw vSWmy9shE2vmL8393ZSxG7xCDAyhrLkgp2zmGF2dyOFw3w5ItGuOkjcqPb2/C+0+ f3c1+EukYrAEbMUYQ/NbqAqDji1NKPMCFLJzJX2+y3YMfBHhHxvP34ZLcQwkbXXq NQBSGDFNdDfxPN64iLTxLKtyiS5zh9Qzn6b75fKRsY/ZzuisynQsqtyigOrYlhWV ybnsxcZfsM/+1b/jU7170XupJESgW1ihGNjI0XIz+6srS4j3XxRTkHQo9Z0= -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:08 2025 by rpki-client