$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b7999-d38a-4b9b-9aff-302f3d69984e.roa File: f27b7999-d38a-4b9b-9aff-302f3d69984e.roa (raw, json) Hash identifier: 96APFsIFWBLNLU65HCEbrub5opu7EUIheTNA136Ed8k= Subject key identifier: 64:52:EB:45:DE:83:59:63:A9:A6:86:DF:D3:19:14:F4:4E:A7:47:E8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25F665B0942E434F295A1AA247641DF44E0C3222 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b7999-d38a-4b9b-9aff-302f3d69984e.roa Signing time: Tue 08 Jul 2025 00:50:57 +0000 ROA not before: Tue 08 Jul 2025 00:50:57 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.236.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:f6:65:b0:94:2e:43:4f:29:5a:1a:a2:47:64:1d:f4:4e:0c:32:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 00:50:57 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=da2b21576010b7a68f0130044e8c6dd84c3f9ac1ecebd43b313af4cea820bdaf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a7:9c:31:dc:ea:a1:f2:e6:63:e1:42:6a:56: bc:82:21:25:22:2f:f8:25:48:20:0f:59:95:76:0d: 3c:64:74:0b:c4:7a:dc:db:3f:d1:5d:9a:46:bf:64: 30:ba:99:5a:1d:c9:6e:b1:74:9e:ff:ef:8c:5f:bc: 6d:fb:e4:03:06:98:a0:28:ec:66:61:05:ac:7a:af: 7b:38:d6:ef:5c:a8:af:2c:79:25:d1:95:25:a0:86: 26:35:bc:02:c3:10:53:0a:c0:65:6e:33:a1:13:6a: 28:c0:78:c8:45:f4:e4:93:b3:1c:a8:d5:8f:94:04: 5d:80:4f:b2:72:f5:ba:52:bf:d1:86:01:1f:9a:af: 98:42:db:ce:4f:3c:1e:d7:11:8f:47:1e:3c:a0:6a: b6:45:1b:22:17:56:5a:56:99:31:e5:19:f8:f8:00: 6b:9d:16:bc:01:91:97:7d:bb:51:7c:93:b2:56:cc: c3:7d:83:d7:96:bd:ee:63:e8:cf:61:8a:40:df:f7: 42:80:91:2e:7e:70:0c:81:60:7d:27:df:bf:12:b9: c1:1f:f2:4e:37:c6:4e:32:f5:0e:ec:a5:cd:ef:0b: 63:7a:60:e4:c4:83:54:45:56:d1:34:c8:36:f6:8f: f2:94:95:0a:9d:53:18:13:72:d3:52:3c:b0:b0:86: a5:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:52:EB:45:DE:83:59:63:A9:A6:86:DF:D3:19:14:F4:4E:A7:47:E8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f27b7999-d38a-4b9b-9aff-302f3d69984e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.132.0/22 Signature Algorithm: sha256WithRSAEncryption 49:9c:4e:07:1c:92:2a:fd:7c:34:d2:cd:97:f9:e3:e3:a0:d8: 1c:c7:7e:9f:eb:b1:20:46:f7:9b:8c:49:64:94:7d:dd:8f:30: 45:5e:38:86:a5:2a:4d:02:d9:6d:ac:6b:4a:de:c7:90:7a:09: e7:ae:08:9f:4c:6c:a2:a1:b0:ef:ad:88:2c:db:f4:cb:3e:6d: ac:ed:d2:76:25:50:8e:f5:b5:23:6a:ba:e7:f4:bc:2b:28:be: 85:90:0b:c6:53:3b:3f:10:6e:a1:67:7e:ee:5b:85:33:9c:d4: 3f:be:d1:2d:6b:f6:72:6f:56:42:4c:48:12:7a:4d:d4:b7:a9: aa:fc:af:46:a9:04:f4:e7:b8:36:7b:58:03:a2:dc:c7:2d:42: d0:55:62:f9:48:bf:50:8e:d1:01:c8:8a:1b:69:80:28:26:47: 7e:75:57:e1:97:55:e8:a3:70:70:ea:5d:1e:21:13:15:ca:8b: c5:49:73:7c:96:3d:bb:f1:65:14:e1:3c:df:52:87:51:6a:b2: c4:4f:3f:bd:31:cb:63:5d:1c:2f:5d:96:fb:e9:c8:d9:ec:f6: 35:93:c3:99:2b:fb:68:0d:2b:da:15:84:3d:c7:b8:24:0f:e1: 79:33:0b:e4:4e:8f:67:b6:d3:6b:52:47:30:71:e1:13:2e:65: 17:53:e8:d4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJfZlsJQuQ08pWhqiR2Qd9E4MMiIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MDA1MDU3WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTJiMjE1NzYwMTBiN2E2OGYwMTMwMDQ0ZThjNmRkODRj M2Y5YWMxZWNlYmQ0M2IzMTNhZjRjZWE4MjBiZGFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4p5wx3Oqh8uZj4UJqVryCISUiL/glSCAPWZV2DTxkdAvE etzbP9Fdmka/ZDC6mVodyW6xdJ7/74xfvG375AMGmKAo7GZhBax6r3s41u9cqK8s eSXRlSWghiY1vALDEFMKwGVuM6ETaijAeMhF9OSTsxyo1Y+UBF2AT7Jy9bpSv9GG AR+ar5hC285PPB7XEY9HHjygarZFGyIXVlpWmTHlGfj4AGudFrwBkZd9u1F8k7JW zMN9g9eWve5j6M9hikDf90KAkS5+cAyBYH0n378SucEf8k43xk4y9Q7spc3vC2N6 YOTEg1RFVtE0yDb2j/KUlQqdUxgTctNSPLCwhqXnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZFLrRd6DWWOppobf0xkU9E6nR+gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyN2I3OTk5LWQzOGEtNGI5Yi05YWZmLTMwMmYzZDY5OTg0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALM7IQwDQYJKoZIhvcNAQELBQADggEBAEmcTgcckir9fDTSzZf54+Og2BzH fp/rsSBG95uMSWSUfd2PMEVeOIalKk0C2W2sa0rex5B6CeeuCJ9MbKKhsO+tiCzb 9Ms+bazt0nYlUI71tSNquuf0vCsovoWQC8ZTOz8QbqFnfu5bhTOc1D++0S1r9nJv VkJMSBJ6TdS3qar8r0apBPTnuDZ7WAOi3MctQtBVYvlIv1CO0QHIihtpgCgmR351 V+GXVeijcHDqXR4hExXKi8VJc3yWPbvxZRThPN9Sh1FqssRPP70xy2NdHC9dlvvp yNns9jWTw5kr+2gNK9oVhD3HuCQP4XkzC+ROj2e202tSRzBx4RMuZRdT6NQ= -----END CERTIFICATE-----Generated at Tue Jul 22 05:09:35 2025 by rpki-client