$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f924b639-a668-4962-9eae-8a87cb05de1d.roa File: f924b639-a668-4962-9eae-8a87cb05de1d.roa (raw, json) Hash identifier: rw3GcTZa5jKFANRTFdzSTpGYHaABb4Ro505CzwyPy0c= Subject key identifier: DB:F1:36:01:E2:6A:DA:4B:8D:0D:9C:5E:31:93:D0:51:4A:A0:9E:DD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2740E4C928F31C8E52732CB53197201A1AC89CBB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f924b639-a668-4962-9eae-8a87cb05de1d.roa Signing time: Wed 09 Jul 2025 00:20:59 +0000 ROA not before: Wed 09 Jul 2025 00:20:59 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.182.236.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:40:e4:c9:28:f3:1c:8e:52:73:2c:b5:31:97:20:1a:1a:c8:9c:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:20:59 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=ea2932782f4b353061e0f514909d1a57dcb65a2a7bb1088494df7e31496a0005, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:96:7f:36:ef:be:9d:09:73:61:41:5c:bb:5b: 84:d7:16:fb:d0:c6:ef:fb:fb:bc:62:b8:e0:fd:a5: 85:2b:b5:af:2d:d7:8d:c4:1e:11:c0:79:d8:4a:db: cc:87:c0:ea:63:85:e5:8a:e0:5b:8c:1b:bd:b8:1e: 07:50:7c:66:b8:0c:19:bd:94:c0:e3:59:55:15:0b: a1:51:b8:9f:73:db:0b:6e:a2:c1:71:c1:0a:32:94: 24:29:fa:5c:a2:cc:a5:63:00:d8:64:9e:de:20:32: 8e:e9:5f:c9:13:a1:5e:ab:94:19:73:09:a7:00:be: 85:55:04:50:2b:b7:ff:13:e4:a8:7e:2c:4e:44:1f: bb:a7:c6:03:d4:cb:41:46:d7:eb:cb:3a:89:99:1a: 3c:17:fa:2d:93:6e:9d:a9:8f:fa:54:b1:24:7c:ee: 8e:2a:0e:9e:3b:af:65:17:99:69:49:3a:0c:bf:27: f9:9c:af:34:06:58:6e:f2:e5:de:82:5c:73:fe:3f: 39:27:a9:b6:f1:6c:24:22:b7:43:ac:c1:55:c3:3f: 58:00:a5:9e:24:c3:f0:99:86:14:16:e5:32:bf:93: 14:3a:ea:03:5e:c7:50:0d:89:c5:cb:60:e6:f4:12: 30:43:b9:76:8f:02:9c:a7:cd:19:59:db:8d:17:c4: 11:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:F1:36:01:E2:6A:DA:4B:8D:0D:9C:5E:31:93:D0:51:4A:A0:9E:DD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f924b639-a668-4962-9eae-8a87cb05de1d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.182.236.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:8d:18:af:5b:5a:b9:91:f6:4d:10:e0:f6:dd:b8:0b:a5:00: 6a:15:43:7e:56:be:6c:fb:92:b0:39:c8:c2:04:ce:3a:c5:21: c4:7b:25:f0:d2:21:ef:8b:f0:5c:98:92:2b:d1:ea:a3:b1:a6: 56:b1:44:f4:59:fa:9a:d9:9a:2d:cf:31:e2:fa:e6:ea:60:05: 12:f8:15:f3:29:30:05:9b:d9:d9:b5:31:ac:1a:77:89:d7:db: a0:33:47:d8:06:be:16:1b:b6:79:70:b9:dc:af:6c:98:65:59: 49:ef:e4:30:57:80:80:ae:e6:54:8b:f4:c1:e6:9a:fe:2c:29: 43:42:d8:25:19:31:68:be:3d:78:ec:6f:e7:07:03:57:85:34: aa:91:6b:ca:ae:e5:af:f5:b7:40:63:41:a6:58:7f:8a:ed:bf: e0:f2:0d:7a:50:c1:07:e3:d8:a9:8a:6e:4e:75:ef:f2:c4:84: d6:18:13:a8:eb:0a:91:26:3e:0a:b2:6e:15:9f:22:c0:39:b4: 5b:73:07:68:d5:b6:48:17:ec:d9:eb:dc:95:d2:26:7f:04:bb: c3:85:74:75:73:ef:fb:40:0d:b2:9a:61:40:84:64:18:1a:81: 0a:78:89:e0:b9:10:9c:01:26:6a:9e:ef:b0:ea:ad:91:22:24: 63:3b:04:e1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJ0DkySjzHI5Scyy1MZcgGhrInLswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDAyMDU5WhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYTI5MzI3ODJmNGIzNTMwNjFlMGY1MTQ5MDlkMWE1N2Rj YjY1YTJhN2JiMTA4ODQ5NGRmN2UzMTQ5NmEwMDA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdln82776dCXNhQVy7W4TXFvvQxu/7+7xiuOD9pYUrta8t 143EHhHAedhK28yHwOpjheWK4FuMG724HgdQfGa4DBm9lMDjWVUVC6FRuJ9z2wtu osFxwQoylCQp+lyizKVjANhknt4gMo7pX8kToV6rlBlzCacAvoVVBFArt/8T5Kh+ LE5EH7unxgPUy0FG1+vLOomZGjwX+i2Tbp2pj/pUsSR87o4qDp47r2UXmWlJOgy/ J/mcrzQGWG7y5d6CXHP+PzknqbbxbCQit0OswVXDP1gApZ4kw/CZhhQW5TK/kxQ6 6gNex1ANicXLYOb0EjBDuXaPApynzRlZ240XxBGjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2/E2AeJq2kuNDZxeMZPQUUqgnt0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y5MjRiNjM5LWE2NjgtNDk2Mi05ZWFlLThhODdjYjA1ZGUxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHYtuwwDQYJKoZIhvcNAQELBQADggEBABuNGK9bWrmR9k0Q4PbduAulAGoV Q35Wvmz7krA5yMIEzjrFIcR7JfDSIe+L8FyYkivR6qOxplaxRPRZ+prZmi3PMeL6 5upgBRL4FfMpMAWb2dm1Mawad4nX26AzR9gGvhYbtnlwudyvbJhlWUnv5DBXgICu 5lSL9MHmmv4sKUNC2CUZMWi+PXjsb+cHA1eFNKqRa8qu5a/1t0BjQaZYf4rtv+Dy DXpQwQfj2KmKbk517/LEhNYYE6jrCpEmPgqybhWfIsA5tFtzB2jVtkgX7Nnr3JXS Jn8Eu8OFdHVz7/tADbKaYUCEZBgagQp4ieC5EJwBJmqe77DqrZEiJGM7BOE= -----END CERTIFICATE-----Generated at Tue Jul 22 04:40:08 2025 by rpki-client