$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa File: 07008d8d-f039-461c-be80-d42cb304abe4.roa (raw, json) Hash identifier: NsRXdqpRxW7l5rVBa/UzRJSkfcFOe8CNGQTh3h5zVI8= Subject key identifier: A9:47:80:46:24:B1:62:8A:75:71:33:AA:A1:35:7E:9A:74:32:E6:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F574DA30273E7782E6E94146BF8CD32DCE87105 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa Signing time: Fri 18 Jul 2025 00:21:19 +0000 ROA not before: Fri 18 Jul 2025 00:21:19 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.20.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:57:4d:a3:02:73:e7:78:2e:6e:94:14:6b:f8:cd:32:dc:e8:71:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:21:19 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=11aa08b7237ad62b32a87636dc2a8a97897ef4545dc665db37e2dd14dae993d2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:24:4e:6b:d2:c3:68:e2:b5:52:d8:f9:c5:c6: 32:b3:ef:2a:f9:35:e3:78:26:53:c1:1c:3e:0a:21: 16:5c:8b:1c:c7:68:ac:6c:3b:e0:8b:ef:d6:fb:61: 99:a6:07:21:50:1e:81:13:63:97:55:91:e8:8c:a1: 13:6c:17:fe:0d:3b:8a:56:af:53:2e:72:1b:a1:d8: 2b:a3:74:5a:60:c2:76:3b:4b:ab:1c:a3:ff:9b:fe: 2b:4d:9f:35:3f:b9:c4:4c:81:f6:4d:f3:02:66:40: 09:17:a8:9e:4c:3e:45:09:2c:5f:5a:fd:49:4e:b3: 80:4d:e6:01:ca:9d:11:16:6d:aa:b0:d2:27:ee:6b: 6c:d6:7e:27:bd:6d:95:91:b7:25:b2:ea:d1:b7:f8: f3:c5:1f:25:f2:7a:1b:eb:7d:7a:3e:d6:39:c9:b7: e9:85:c6:33:b4:c0:63:68:cb:01:e2:b8:28:f9:29: 7e:1d:88:28:1c:27:9b:47:19:8e:ba:40:f3:e6:cb: 93:30:ed:da:ae:68:a7:7a:c3:c3:c9:09:a8:a3:59: b4:f4:52:dd:e3:df:03:74:65:0b:08:75:12:da:14: 42:dc:ea:7d:1c:0a:20:df:0a:86:8c:6b:ae:2d:0f: 19:c0:50:59:2f:27:c4:00:40:7c:de:ba:59:89:97: 39:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:47:80:46:24:B1:62:8A:75:71:33:AA:A1:35:7E:9A:74:32:E6:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07008d8d-f039-461c-be80-d42cb304abe4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.20.0.0/15 Signature Algorithm: sha256WithRSAEncryption d0:5e:50:ca:f4:3d:29:32:cb:40:e7:2e:1c:b3:50:65:72:01: df:93:31:f7:4b:f6:a0:a6:03:5c:a2:14:0c:b9:a6:07:9e:9c: 24:68:ea:7c:5b:94:46:b1:37:30:dd:61:2f:10:cc:4c:6b:30: c2:16:d2:c7:d4:bb:a4:eb:da:83:5f:88:d2:f6:9c:f5:53:3f: 28:81:6a:55:11:e6:5d:2e:59:6d:86:48:45:d6:d1:5a:c8:19: 64:45:76:e4:67:73:24:58:0e:ff:4c:95:10:06:64:91:e4:a0: 77:df:80:c5:89:0c:b3:24:1c:10:7e:6d:d0:ea:58:fc:79:b7: 7d:07:2f:a2:ea:c7:aa:a3:1b:f0:e4:ea:5d:66:cb:eb:d5:06: 0c:6b:7c:33:9d:55:c9:e6:41:c5:7c:74:0c:9c:37:69:de:2e: 60:76:2d:dc:c0:93:9a:57:e4:f0:2c:e5:7b:e4:1e:5e:dc:61: 4f:6d:b6:ac:66:bf:23:f8:03:29:9a:51:99:0a:02:e2:31:c6: 78:0d:13:26:6d:76:0d:1a:c2:24:fb:b4:7a:2e:2c:ec:62:e0: 66:bd:d2:ad:cb:7d:5b:7c:10:01:e2:b2:d9:79:15:46:10:28: 2e:99:c1:a5:f4:f0:b0:c6:92:36:a8:97:0c:8c:a8:83:7b:88: 57:89:8a:6b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUf1dNowJz53gubpQUa/jNMtzocQUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDAyMTE5WhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMWFhMDhiNzIzN2FkNjJiMzJhODc2MzZkYzJhOGE5Nzg5 N2VmNDU0NWRjNjY1ZGIzN2UyZGQxNGRhZTk5M2QyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFJE5r0sNo4rVS2PnFxjKz7yr5NeN4JlPBHD4KIRZcixzH aKxsO+CL79b7YZmmByFQHoETY5dVkeiMoRNsF/4NO4pWr1Muchuh2CujdFpgwnY7 S6sco/+b/itNnzU/ucRMgfZN8wJmQAkXqJ5MPkUJLF9a/UlOs4BN5gHKnREWbaqw 0ifua2zWfie9bZWRtyWy6tG3+PPFHyXyehvrfXo+1jnJt+mFxjO0wGNoywHiuCj5 KX4diCgcJ5tHGY66QPPmy5Mw7dquaKd6w8PJCaijWbT0Ut3j3wN0ZQsIdRLaFELc 6n0cCiDfCoaMa64tDxnAUFkvJ8QAQHzeulmJlzkxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqUeARiSxYop1cTOqoTV+mnQy5qcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3MDA4ZDhkLWYwMzktNDYxYy1iZTgwLWQ0MmNiMzA0YWJlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE2FDANBgkqhkiG9w0BAQsFAAOCAQEA0F5QyvQ9KTLLQOcuHLNQZXIB35Mx 90v2oKYDXKIUDLmmB56cJGjqfFuURrE3MN1hLxDMTGswwhbSx9S7pOvag1+I0vac 9VM/KIFqVRHmXS5ZbYZIRdbRWsgZZEV25GdzJFgO/0yVEAZkkeSgd9+AxYkMsyQc EH5t0OpY/Hm3fQcvourHqqMb8OTqXWbL69UGDGt8M51VyeZBxXx0DJw3ad4uYHYt 3MCTmlfk8Czle+QeXtxhT222rGa/I/gDKZpRmQoC4jHGeA0TJm12DRrCJPu0ei4s 7GLgZr3Srct9W3wQAeKy2XkVRhAoLpnBpfTwsMaSNqiXDIyog3uIV4mKaw== -----END CERTIFICATE-----Generated at Wed Aug 6 05:17:37 2025 by rpki-client