$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbfb9b3d-d8ac-4bd4-8c1f-37dc2f3c0ced.roa File: fbfb9b3d-d8ac-4bd4-8c1f-37dc2f3c0ced.roa (raw, json) Hash identifier: F6D1zVXApsGKRytukD/dzqhAfDgEAv1BmC4Ps+ERIkU= Subject key identifier: 94:CC:6A:F4:FA:30:1D:CD:E4:DF:2C:0F:D9:4C:7F:56:E7:8A:B9:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E57251CFDD9FFAFCE0553F217C4FD406C3B9767 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbfb9b3d-d8ac-4bd4-8c1f-37dc2f3c0ced.roa Signing time: Tue 01 Jul 2025 00:12:08 +0000 ROA not before: Tue 01 Jul 2025 00:12:08 +0000 ROA not after: Tue 05 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.86.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:57:25:1c:fd:d9:ff:af:ce:05:53:f2:17:c4:fd:40:6c:3b:97:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 1 00:12:08 2025 GMT Not After : Aug 5 23:59:59 2025 GMT Subject: serialNumber=2ff5060f0143572e147ac8a0c6a768dc589e35879ef5d369cd68ffe92703889c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:6e:1b:f8:aa:5e:3e:c7:99:42:1a:a8:a6:d2: 60:79:5a:6b:ee:3a:11:af:56:54:88:b5:63:6a:0e: 62:96:bf:22:df:a0:97:c8:44:3e:a6:f9:17:a6:a1: db:a8:f8:5b:79:01:c9:06:37:06:72:b0:1d:f9:5f: 8d:5e:bd:9c:5e:41:a6:b1:15:09:b9:f5:03:fe:39: d1:9c:7d:dc:15:d5:82:70:13:1c:9f:89:ea:77:a1: 3d:65:fd:67:8f:07:3f:9a:56:ca:d0:fb:b0:06:84: 0d:8a:87:a4:b8:e8:05:f6:ea:99:dd:b3:00:70:fb: 57:98:42:0e:ce:52:cf:41:e4:5a:50:53:c7:9e:dc: 9d:7e:6d:f0:9d:19:09:f1:7e:72:d3:bf:03:98:e2: 4a:49:84:fe:1c:5f:2b:44:e3:d0:0a:b1:a8:09:c5: 52:90:4c:ba:fa:9e:ab:6e:04:1d:0e:f5:f7:17:c4: 34:b1:60:5f:ac:21:c9:20:57:7f:5d:c7:2b:64:d0: 54:63:1c:9e:63:c9:9f:29:bb:72:de:00:a7:12:5e: 40:2b:86:60:15:34:71:8c:f0:84:f4:56:d3:50:db: d9:89:f1:a5:1c:34:b7:a2:52:4f:ec:76:4b:95:53: 51:41:b4:4c:1b:c9:ba:1f:e1:ef:e8:5d:13:76:80: fe:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:CC:6A:F4:FA:30:1D:CD:E4:DF:2C:0F:D9:4C:7F:56:E7:8A:B9:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbfb9b3d-d8ac-4bd4-8c1f-37dc2f3c0ced.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.86.0.0/16 Signature Algorithm: sha256WithRSAEncryption 29:17:94:ce:ba:c3:1e:96:60:d4:eb:bb:33:08:12:79:79:01: 56:39:ac:85:ea:1d:b1:cf:cb:d1:6d:e6:ee:a2:74:81:97:04: 8e:0f:a3:33:5a:71:b0:d1:89:9c:c6:bb:02:50:9a:b2:1a:40: 36:df:16:0b:0e:8e:aa:a1:ae:66:ea:56:a6:79:f8:c7:5b:c6: 19:9a:f4:db:59:ba:6e:d4:01:0d:2e:48:b2:dd:dc:67:c6:81: e3:52:7b:8e:b5:9c:71:33:c7:d4:56:ce:ad:3a:27:78:7d:64: d6:2d:4b:79:eb:b8:aa:b0:59:38:55:68:48:61:a8:30:06:f9: 44:35:96:ab:df:74:aa:95:75:80:6f:15:34:20:a6:8d:e6:e9: ae:e1:fe:9a:7e:fb:6c:52:cc:55:9f:4d:ac:e1:0d:e1:26:65: 79:0a:23:ef:70:64:4b:b3:db:d1:77:4a:00:dc:dc:1e:db:0d: 17:f4:cb:1b:b5:e4:a3:dd:03:49:e2:f5:84:de:a7:e8:78:78: 40:01:92:3a:1a:e6:47:ad:91:03:46:4d:e8:d0:ca:bb:50:95: 42:7c:c6:06:bb:ee:9f:3d:7c:30:19:3e:56:ef:19:ee:55:7b: 74:3a:2d:20:c4:90:fb:48:61:3a:da:bf:a1:b2:88:3e:7d:c4: 1e:4d:c0:24 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXlclHP3Z/6/OBVPyF8T9QGw7l2cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAxMDAxMjA4WhcNMjUwODA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZmY1MDYwZjAxNDM1NzJlMTQ3YWM4YTBjNmE3NjhkYzU4 OWUzNTg3OWVmNWQzNjljZDY4ZmZlOTI3MDM4ODljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUbhv4ql4+x5lCGqim0mB5WmvuOhGvVlSItWNqDmKWvyLf oJfIRD6m+Remoduo+Ft5AckGNwZysB35X41evZxeQaaxFQm59QP+OdGcfdwV1YJw Exyfiep3oT1l/WePBz+aVsrQ+7AGhA2Kh6S46AX26pndswBw+1eYQg7OUs9B5FpQ U8ee3J1+bfCdGQnxfnLTvwOY4kpJhP4cXytE49AKsagJxVKQTLr6nqtuBB0O9fcX xDSxYF+sIckgV39dxytk0FRjHJ5jyZ8pu3LeAKcSXkArhmAVNHGM8IT0VtNQ29mJ 8aUcNLeiUk/sdkuVU1FBtEwbybof4e/oXRN2gP7VAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlMxq9PowHc3k3ywP2Ux/VueKuVcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiZmI5YjNkLWQ4YWMtNGJkNC04YzFmLTM3ZGMyZjNjMGNlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBFVjANBgkqhkiG9w0BAQsFAAOCAQEAKReUzrrDHpZg1Ou7MwgSeXkBVjms heodsc/L0W3m7qJ0gZcEjg+jM1pxsNGJnMa7AlCashpANt8WCw6OqqGuZupWpnn4 x1vGGZr021m6btQBDS5Ist3cZ8aB41J7jrWccTPH1FbOrToneH1k1i1Leeu4qrBZ OFVoSGGoMAb5RDWWq990qpV1gG8VNCCmjebpruH+mn77bFLMVZ9NrOEN4SZleQoj 73BkS7Pb0XdKANzcHtsNF/TLG7Xko90DSeL1hN6n6Hh4QAGSOhrmR62RA0ZN6NDK u1CVQnzGBrvunz18MBk+Vu8Z7lV7dDotIMSQ+0hhOtq/obKIPn3EHk3AJA== -----END CERTIFICATE-----Generated at Mon Jul 21 18:10:51 2025 by rpki-client