$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e093b29-3153-49c7-bbdd-9089a1389778.roa File: 9e093b29-3153-49c7-bbdd-9089a1389778.roa (raw, json) Hash identifier: 6kzzq76q1gopt0U21jQAlQzz2YIAVLdBkzQF6pkMXrk= Subject key identifier: 8C:57:00:20:D3:7E:E0:AC:96:2D:CE:03:66:FC:B2:30:E5:C8:D9:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31758A64FD8B328FC4CBE253F8835785841C256D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e093b29-3153-49c7-bbdd-9089a1389778.roa Signing time: Fri 18 Jul 2025 00:00:13 +0000 ROA not before: Fri 18 Jul 2025 00:00:13 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.169.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 01 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:75:8a:64:fd:8b:32:8f:c4:cb:e2:53:f8:83:57:85:84:1c:25:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:00:13 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=30c2dc5ff48c3d7159447e9497683c471083ef9eccd580439b929c609c1ba55e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1d:2b:40:53:96:20:1e:7e:44:98:98:2b:5f: 84:53:a7:45:fe:51:b8:f7:fc:3d:48:dc:ba:b6:6a: d7:a8:cb:54:da:1d:70:17:23:5b:7c:b3:fc:ac:5a: 22:b4:f8:f5:c1:35:19:3c:15:c5:bf:10:56:59:d5: a4:05:2a:26:e6:69:90:bd:a6:46:f5:ed:0b:9e:4a: 5f:95:ae:70:5a:31:91:31:8d:f9:e9:c3:23:46:75: ec:ac:3e:2b:45:3f:76:45:3b:2e:91:53:5f:f8:5a: d0:72:1f:47:19:df:08:36:ae:23:c7:51:d9:90:f6: 07:bd:3c:cd:e4:01:3e:2d:8a:1e:b8:52:2f:16:df: b0:6b:29:c8:a9:1f:9d:2a:4e:0f:0a:ca:b8:a6:0a: bf:1b:f3:92:52:ed:8b:04:9b:24:03:a0:cc:34:6a: eb:0a:9c:8c:9c:08:31:07:11:f4:5e:9b:b6:50:bf: 85:e0:9e:9e:4d:49:9c:4d:70:14:66:45:98:6e:57: c5:fc:ce:73:e6:e6:b9:7f:1f:1c:ed:4f:79:a8:35: 6d:98:d8:b1:8d:6a:8d:bf:c3:82:f6:09:b0:b5:44: fd:b7:f0:06:03:10:aa:c9:85:6b:9f:db:2b:20:fa: 24:48:87:2b:03:24:50:f3:13:f0:42:a3:f0:c6:59: 04:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:57:00:20:D3:7E:E0:AC:96:2D:CE:03:66:FC:B2:30:E5:C8:D9:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e093b29-3153-49c7-bbdd-9089a1389778.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.169.0.0/16 Signature Algorithm: sha256WithRSAEncryption 33:b6:a1:16:23:02:45:b1:7a:37:a8:49:30:84:51:d8:79:1c: af:73:e0:5a:1f:d4:21:49:f1:50:a2:d9:fc:13:23:00:e5:54: 82:bd:f4:62:c1:52:9a:a0:c1:56:77:22:db:a7:f2:19:33:52: 6a:23:11:b7:2d:ba:d9:11:d3:68:09:1f:da:7f:6f:62:f2:d0: b7:ee:0a:47:54:df:24:32:40:8d:47:35:d8:0a:03:50:3f:89: f7:0a:51:64:5a:6a:d2:ad:22:e5:9e:f8:00:98:3e:02:76:f4: 26:d1:04:fd:c3:58:e1:42:82:e2:37:64:07:8a:a0:32:07:d8: 73:e5:d7:96:80:db:68:ba:a6:eb:70:c7:93:05:31:13:18:96: bf:e9:47:13:21:fe:a3:fa:32:1c:b1:6e:a9:28:20:4c:34:05: ea:a9:94:31:6a:90:1f:a0:73:83:f7:f4:0e:16:03:3e:e7:bc: 38:19:c2:7a:bd:c9:44:5a:79:2d:70:43:8f:00:57:a8:5c:8d: e2:c7:1e:f2:ce:ad:9f:a6:62:f9:52:ba:0c:a1:35:e0:68:92: 87:5f:8d:83:21:41:6a:46:61:eb:f8:34:d5:71:93:33:3a:9a: 35:c4:51:c9:13:16:0a:47:3a:ec:69:ee:32:d2:eb:43:20:3a: 76:01:cf:5a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMXWKZP2LMo/Ey+JT+INXhYQcJW0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDAwMDEzWhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMGMyZGM1ZmY0OGMzZDcxNTk0NDdlOTQ5NzY4M2M0NzEw ODNlZjllY2NkNTgwNDM5YjkyOWM2MDljMWJhNTVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwHStAU5YgHn5EmJgrX4RTp0X+Ubj3/D1I3Lq2ateoy1Ta HXAXI1t8s/ysWiK0+PXBNRk8FcW/EFZZ1aQFKibmaZC9pkb17QueSl+VrnBaMZEx jfnpwyNGdeysPitFP3ZFOy6RU1/4WtByH0cZ3wg2riPHUdmQ9ge9PM3kAT4tih64 Ui8W37BrKcipH50qTg8KyrimCr8b85JS7YsEmyQDoMw0ausKnIycCDEHEfRem7ZQ v4Xgnp5NSZxNcBRmRZhuV8X8znPm5rl/HxztT3moNW2Y2LGNao2/w4L2CbC1RP23 8AYDEKrJhWuf2ysg+iRIhysDJFDzE/BCo/DGWQSDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjFcAINN+4KyWLc4DZvyyMOXI2cYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllMDkzYjI5LTMxNTMtNDljNy1iYmRkLTkwODlhMTM4OTc3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDMqTANBgkqhkiG9w0BAQsFAAOCAQEAM7ahFiMCRbF6N6hJMIRR2Hkcr3Pg Wh/UIUnxUKLZ/BMjAOVUgr30YsFSmqDBVnci26fyGTNSaiMRty262RHTaAkf2n9v YvLQt+4KR1TfJDJAjUc12AoDUD+J9wpRZFpq0q0i5Z74AJg+Anb0JtEE/cNY4UKC 4jdkB4qgMgfYc+XXloDbaLqm63DHkwUxExiWv+lHEyH+o/oyHLFuqSggTDQF6qmU MWqQH6Bzg/f0DhYDPue8OBnCer3JRFp5LXBDjwBXqFyN4sce8s6tn6Zi+VK6DKE1 4GiSh1+NgyFBakZh6/g01XGTMzqaNcRRyRMWCkc67GnuMtLrQyA6dgHPWg== -----END CERTIFICATE-----Generated at Thu Jul 31 01:13:21 2025 by rpki-client