$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da395588-d89b-4035-b834-7552c1e5a259.roa File: da395588-d89b-4035-b834-7552c1e5a259.roa (raw, json) Hash identifier: Puz36UiAzN9aT3KpA5QCYB9JiuHn7hXE3LDNnZ3DR9c= Subject key identifier: F5:E4:6D:E4:0A:A2:95:7A:D7:17:46:B6:5E:67:CB:8F:D9:1C:6E:F6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59818B3BCC6DEC23E72C12619BA1DB0F10CDC2B3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da395588-d89b-4035-b834-7552c1e5a259.roa Signing time: Wed 18 Jun 2025 00:20:56 +0000 ROA not before: Wed 18 Jun 2025 00:20:56 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 76.223.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:81:8b:3b:cc:6d:ec:23:e7:2c:12:61:9b:a1:db:0f:10:cd:c2:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:20:56 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=cb8b9901bfb6b09154b3b67c094991b6eba2d0e186e651d1b769ab01119ec532, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:a8:0c:d3:8b:53:54:18:8d:18:94:04:08:c7: 87:bf:57:40:ea:fc:36:23:0c:a0:fa:0e:97:3e:4a: 7a:51:7e:25:bc:45:97:e5:dd:25:a1:c6:2e:58:12: 19:71:56:b4:a4:a7:93:c5:5e:d0:b6:88:de:8b:87: 20:b7:e3:24:a1:b7:ee:cc:8f:5e:d6:45:a6:64:af: 83:28:d6:9a:d3:70:8d:f4:4f:65:a6:96:54:02:12: 0d:7f:3c:81:0d:f5:32:05:0e:d6:74:8d:62:63:38: 47:55:66:e3:44:3d:39:a8:3b:ef:69:b1:a8:3f:df: 5f:7c:95:13:d3:c8:2a:26:f3:a9:e8:82:ff:0a:fe: f6:31:05:b1:85:55:3c:95:1a:96:6e:a3:61:91:b1: ee:32:c4:8f:a5:14:4f:51:f5:6b:44:ba:0c:96:57: 55:8d:4c:ca:6b:7a:31:87:58:fc:c3:df:b0:59:3b: 80:2f:34:79:d6:d5:f3:d5:f1:07:62:4a:71:4b:da: 54:7b:fc:83:bf:3a:1f:f3:ce:0f:23:24:dd:7b:50: a7:aa:63:70:d6:58:0b:96:cc:38:11:3c:ee:6f:d1: b8:ad:66:be:e5:2d:43:bc:5f:9f:96:3b:8e:39:e4: 4d:24:6e:9a:38:57:8a:11:1c:19:06:e4:93:7d:df: 79:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:E4:6D:E4:0A:A2:95:7A:D7:17:46:B6:5E:67:CB:8F:D9:1C:6E:F6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da395588-d89b-4035-b834-7552c1e5a259.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.168.0/24 Signature Algorithm: sha256WithRSAEncryption 87:71:89:1f:2d:71:84:4c:52:14:c7:5f:80:fa:3b:0a:13:c7: 7c:d5:f2:e4:d4:1a:9d:28:33:58:1e:dd:0a:6b:b8:cc:d8:27: 17:a8:e8:a4:4e:88:de:d7:13:ef:70:0b:c3:df:97:d2:80:4c: a4:04:42:78:ae:7a:94:50:38:5e:08:e1:49:0b:80:ce:cf:3b: 2a:4c:68:8f:68:31:87:b2:ae:31:51:90:54:9c:27:04:6c:27: bf:df:35:aa:46:8d:96:c0:87:82:a6:fa:e2:4e:8d:90:ae:51: 76:51:31:db:e7:eb:80:3d:de:4e:bf:da:44:ef:94:b1:ba:d0: 66:ba:72:02:05:ef:9e:05:9a:0a:76:0d:c1:18:7a:9f:4f:5b: 0a:fb:05:9e:a4:03:d8:f8:da:ce:df:d1:36:99:53:d9:da:b0: 2b:8f:65:44:7b:26:25:42:2e:3b:72:b9:8c:43:26:a4:77:70: e4:87:ae:87:ca:e5:71:4d:d5:46:e3:38:10:76:9b:c7:ed:d0: 1a:24:e3:59:69:ad:18:9b:67:63:47:c8:ab:c8:f3:57:75:ad: ac:a8:2a:78:6e:c9:c5:c9:56:d0:e2:d1:01:d1:02:63:19:51: 16:c4:cf:45:5c:80:d1:20:97:54:31:fa:3a:cc:cf:f5:52:2f: dd:f4:c0:8d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWYGLO8xt7CPnLBJhm6HbDxDNwrMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE4MDAyMDU2WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYjhiOTkwMWJmYjZiMDkxNTRiM2I2N2MwOTQ5OTFiNmVi YTJkMGUxODZlNjUxZDFiNzY5YWIwMTExOWVjNTMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuqAzTi1NUGI0YlAQIx4e/V0Dq/DYjDKD6Dpc+SnpRfiW8 RZfl3SWhxi5YEhlxVrSkp5PFXtC2iN6LhyC34ySht+7Mj17WRaZkr4Mo1prTcI30 T2WmllQCEg1/PIEN9TIFDtZ0jWJjOEdVZuNEPTmoO+9psag/3198lRPTyCom86no gv8K/vYxBbGFVTyVGpZuo2GRse4yxI+lFE9R9WtEugyWV1WNTMprejGHWPzD37BZ O4AvNHnW1fPV8QdiSnFL2lR7/IO/Oh/zzg8jJN17UKeqY3DWWAuWzDgRPO5v0bit Zr7lLUO8X5+WO4455E0kbpo4V4oRHBkG5JN933nDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9eRt5AqilXrXF0a2XmfLj9kcbvYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhMzk1NTg4LWQ4OWItNDAzNS1iODM0LTc1NTJjMWU1YTI1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36gwDQYJKoZIhvcNAQELBQADggEBAIdxiR8tcYRMUhTHX4D6OwoTx3zV 8uTUGp0oM1ge3QpruMzYJxeo6KROiN7XE+9wC8Pfl9KATKQEQniuepRQOF4I4UkL gM7POypMaI9oMYeyrjFRkFScJwRsJ7/fNapGjZbAh4Km+uJOjZCuUXZRMdvn64A9 3k6/2kTvlLG60Ga6cgIF754Fmgp2DcEYep9PWwr7BZ6kA9j42s7f0TaZU9nasCuP ZUR7JiVCLjtyuYxDJqR3cOSHrofK5XFN1UbjOBB2m8ft0Bok41lprRibZ2NHyKvI 81d1rayoKnhuycXJVtDi0QHRAmMZURbEz0VcgNEgl1Qx+jrMz/VSL930wI0= -----END CERTIFICATE-----Generated at Sat Jul 5 19:32:06 2025 by rpki-client