$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec792006-3ad4-432c-bc6d-ecaf9f2f840b.roa File: ec792006-3ad4-432c-bc6d-ecaf9f2f840b.roa (raw, json) Hash identifier: bWEgb2On5fGflfF4crZXpslFqkdE2LmXK5XuK6sdiWg= Subject key identifier: FF:6E:93:96:79:6A:77:A7:A1:B6:ED:49:08:22:02:C5:64:F7:A8:6A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 10991A246B4AA0A1237BAD8EAFB9D06C2117F708 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec792006-3ad4-432c-bc6d-ecaf9f2f840b.roa Signing time: Tue 08 Jul 2025 00:21:50 +0000 ROA not before: Tue 08 Jul 2025 00:21:50 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.21.224.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:99:1a:24:6b:4a:a0:a1:23:7b:ad:8e:af:b9:d0:6c:21:17:f7:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 00:21:50 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=6003439b9f8359244cc9f55468622f062d86aa5f9271ee88da6e76bf5b7aeb17, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:76:2f:cd:2c:eb:ba:2e:b7:38:72:67:cd:fa: 45:61:3b:98:5b:05:47:21:c0:f8:6d:4e:d7:05:bf: 26:2e:cd:d4:45:d8:ca:a5:d5:84:6b:57:e2:82:05: 5e:c9:16:96:a2:d9:0b:ac:4f:3c:cc:d0:6e:85:6e: 30:78:fe:c5:f4:60:a0:9e:ee:39:11:23:18:31:85: 8f:f1:4c:f3:a6:c5:20:81:5c:8c:f6:99:55:65:ea: c4:01:7b:2e:99:b5:d1:36:5d:0f:b3:d2:23:b9:0f: 54:7b:8d:b8:99:05:2d:05:cf:20:b7:f6:33:86:02: 47:86:b6:37:08:d2:3c:2b:e6:0d:b1:02:38:b9:8c: 96:6e:f3:6e:02:76:e6:56:ff:f8:89:fd:86:c3:75: ce:82:f1:2a:21:ed:72:67:7f:a2:d3:26:b8:6f:ae: 78:bf:21:e0:1b:2a:aa:ca:63:26:9c:ca:8f:b1:5d: e4:b9:9c:8f:bb:0e:af:d1:51:b6:6e:71:72:6f:aa: 00:9b:e3:cd:f2:02:7a:a8:9d:d2:a9:58:22:a9:ba: fd:05:e1:2f:d4:e8:45:1c:34:bd:82:81:fa:d3:3a: 2c:ac:95:6e:ae:a7:45:df:f1:45:d8:ee:fc:ef:d1: 1b:7a:9f:99:d5:a7:89:e8:51:82:bc:ee:e9:e2:ac: 92:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:6E:93:96:79:6A:77:A7:A1:B6:ED:49:08:22:02:C5:64:F7:A8:6A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ec792006-3ad4-432c-bc6d-ecaf9f2f840b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.224.0/19 Signature Algorithm: sha256WithRSAEncryption 3c:0f:92:39:51:1a:68:44:96:04:f4:ef:d8:90:73:40:a8:13: c0:71:89:21:ba:c9:a0:b9:a3:f4:29:4f:ac:d5:43:66:fa:b6: 19:f8:22:24:09:7c:ab:43:ef:8a:f4:a0:bc:f7:4d:54:55:fa: aa:5b:cd:34:1e:9a:0d:25:6f:c7:ec:6d:d2:0c:52:0e:6b:a8: d7:6a:99:be:99:ad:ce:10:c3:b5:61:08:a0:fc:38:93:8a:c5: 2c:3d:a2:bf:b0:6b:d4:84:cc:c2:3e:e6:f7:ac:74:f0:48:b1: 0b:6f:22:80:4c:87:9d:5a:92:7b:13:60:b7:82:95:07:af:fd: cd:94:6b:be:6e:1a:51:b1:c3:df:07:01:c8:8b:65:b9:2b:ad: ff:0b:f6:91:d5:7c:ea:1a:77:0f:95:7e:ce:f4:bf:8c:10:8d: a8:03:e8:04:58:3e:8d:3d:5e:d7:bf:10:22:da:22:d7:b1:1c: c5:e6:b5:a6:3f:42:44:64:1f:76:29:ce:22:bf:90:d7:7b:63: 76:46:c2:be:26:c7:1e:ff:f3:7e:cb:7e:d0:29:45:f0:09:a1: 84:40:7b:08:71:94:99:ac:39:72:13:79:9e:fb:55:1a:95:97: d5:ea:db:10:09:27:ec:a4:02:0c:bc:34:c8:c1:2f:a8:cb:47: ac:ef:54:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEJkaJGtKoKEje62Or7nQbCEX9wgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MDAyMTUwWhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDAzNDM5YjlmODM1OTI0NGNjOWY1NTQ2ODYyMmYwNjJk ODZhYTVmOTI3MWVlODhkYTZlNzZiZjViN2FlYjE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpdi/NLOu6Lrc4cmfN+kVhO5hbBUchwPhtTtcFvyYuzdRF 2Mql1YRrV+KCBV7JFpai2QusTzzM0G6FbjB4/sX0YKCe7jkRIxgxhY/xTPOmxSCB XIz2mVVl6sQBey6ZtdE2XQ+z0iO5D1R7jbiZBS0FzyC39jOGAkeGtjcI0jwr5g2x Aji5jJZu824CduZW//iJ/YbDdc6C8Soh7XJnf6LTJrhvrni/IeAbKqrKYyacyo+x XeS5nI+7Dq/RUbZucXJvqgCb483yAnqondKpWCKpuv0F4S/U6EUcNL2CgfrTOiys lW6up0Xf8UXY7vzv0Rt6n5nVp4noUYK87unirJKdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/26Tlnlqd6ehtu1JCCICxWT3qGowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VjNzkyMDA2LTNhZDQtNDMyYy1iYzZkLWVjYWY5ZjJmODQwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVrFeAwDQYJKoZIhvcNAQELBQADggEBADwPkjlRGmhElgT079iQc0CoE8Bx iSG6yaC5o/QpT6zVQ2b6thn4IiQJfKtD74r0oLz3TVRV+qpbzTQemg0lb8fsbdIM Ug5rqNdqmb6Zrc4Qw7VhCKD8OJOKxSw9or+wa9SEzMI+5vesdPBIsQtvIoBMh51a knsTYLeClQev/c2Ua75uGlGxw98HAciLZbkrrf8L9pHVfOoadw+Vfs70v4wQjagD 6ARYPo09Xte/ECLaItexHMXmtaY/QkRkH3YpziK/kNd7Y3ZGwr4mxx7/837LftAp RfAJoYRAewhxlJmsOXITeZ77VRqVl9Xq2xAJJ+ykAgy8NMjBL6jLR6zvVNI= -----END CERTIFICATE-----Generated at Mon Jul 21 18:04:40 2025 by rpki-client