$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/088fd3e6-5013-4c2c-bf46-1eb907f3520c.roa File: 088fd3e6-5013-4c2c-bf46-1eb907f3520c.roa (raw, json) Hash identifier: cvuqN/6gDtInrLT+s//Xlfm1TGLS47XuGl9EbvZB2dk= Subject key identifier: 7E:A5:EA:CA:15:56:6C:C6:11:CA:36:E4:F0:0C:6F:8E:E8:74:A5:56 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68F791ED340AEF0A37E8987C2A1B0893E8B4C1AA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/088fd3e6-5013-4c2c-bf46-1eb907f3520c.roa Signing time: Fri 18 Jul 2025 00:30:31 +0000 ROA not before: Fri 18 Jul 2025 00:30:31 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:f7:91:ed:34:0a:ef:0a:37:e8:98:7c:2a:1b:08:93:e8:b4:c1:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:30:31 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=bf1c591f2946faabb4b55d4c117b150d241050618ce73db0e939b8a0681d5fea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f9:38:61:af:45:2f:7a:d4:b7:5f:2b:39:6f: bc:a3:0c:69:1d:91:38:b4:a7:51:68:fb:fb:fb:e8: d6:35:57:c2:33:36:c8:28:f2:55:7d:2a:b9:41:c3: 65:12:49:d6:3f:6d:c3:50:1b:1f:1b:96:f4:bf:84: 33:de:4a:70:90:66:2d:62:cf:2e:0e:49:d1:31:40: 71:75:23:f3:f0:dc:2c:e4:1e:56:87:65:d8:9a:c3: ca:7f:64:b5:c5:64:3e:c4:38:fc:86:ae:97:c6:e1: 67:29:90:33:0a:ac:c6:d2:a4:65:8b:6a:99:e2:49: ac:0b:7d:52:12:ca:ff:8b:b8:e8:59:4c:03:97:eb: 06:60:7f:16:24:5e:29:3e:71:99:4a:5d:d9:2a:d7: ac:51:65:d5:86:8c:f9:76:4b:8f:3b:64:a5:b0:f6: 7f:22:28:ec:77:1f:4e:30:2b:18:71:5e:63:ec:e0: 72:18:f5:4e:c2:a3:fc:84:55:de:1f:a0:5a:db:4f: 49:16:56:fd:19:41:4e:04:6f:71:ed:f8:b3:4a:a0: 5e:c3:cb:b2:e0:ab:4a:e9:8a:bb:9f:e5:0b:0d:f2: d8:14:e4:11:54:9f:5d:f4:97:bf:70:c0:73:76:be: d2:ab:08:fa:62:13:15:2a:c1:e3:b6:9a:83:72:9a: b2:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:A5:EA:CA:15:56:6C:C6:11:CA:36:E4:F0:0C:6F:8E:E8:74:A5:56 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/088fd3e6-5013-4c2c-bf46-1eb907f3520c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.81.0/24 Signature Algorithm: sha256WithRSAEncryption 24:a2:5c:91:bd:67:25:5c:eb:ec:e0:36:03:93:71:9b:23:37: aa:aa:9b:65:65:4e:87:e7:76:06:b8:4d:2c:15:a8:1a:93:08: 05:24:5c:7b:b4:9c:a2:74:db:5b:20:69:c2:43:57:39:11:2b: 97:5f:61:fd:77:3d:f9:2e:20:b9:3c:1b:94:f1:b2:5f:d0:87: 9f:ad:d0:9a:6a:46:d1:62:4c:5a:a3:5c:a1:03:62:bb:12:36: da:83:22:bc:86:6e:62:c5:15:21:c7:2b:b7:d1:63:14:6b:36: fd:fa:12:bd:d9:7c:27:5b:db:ea:76:db:03:eb:09:ab:87:72: d1:fa:35:e7:38:24:e2:bb:73:34:87:d2:11:17:67:f0:0e:37: 9c:69:b2:77:2e:86:e9:85:c5:ad:86:c1:66:eb:d2:b9:4a:67: 22:b7:62:42:55:af:4e:04:9e:60:f5:91:02:e4:c4:75:6d:4e: 1b:2f:2a:a7:9f:8f:eb:f1:79:8c:54:29:e3:29:7a:9f:3f:9f: df:d8:f0:a6:f9:66:38:21:9f:93:09:66:32:2c:5e:51:56:22: 84:7a:e9:e3:31:3d:c4:11:b2:aa:21:44:18:71:e0:4e:71:c4: b0:c6:3e:85:e3:e0:4e:35:9e:b0:cb:89:29:9c:9c:22:36:a3: 3d:43:a8:7c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaPeR7TQK7wo36Jh8KhsIk+i0waowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDAzMDMxWhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjFjNTkxZjI5NDZmYWFiYjRiNTVkNGMxMTdiMTUwZDI0 MTA1MDYxOGNlNzNkYjBlOTM5YjhhMDY4MWQ1ZmVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD+Thhr0UvetS3Xys5b7yjDGkdkTi0p1Fo+/v76NY1V8Iz Nsgo8lV9KrlBw2USSdY/bcNQGx8blvS/hDPeSnCQZi1izy4OSdExQHF1I/Pw3Czk HlaHZdiaw8p/ZLXFZD7EOPyGrpfG4WcpkDMKrMbSpGWLapniSawLfVISyv+LuOhZ TAOX6wZgfxYkXik+cZlKXdkq16xRZdWGjPl2S487ZKWw9n8iKOx3H04wKxhxXmPs 4HIY9U7Co/yEVd4foFrbT0kWVv0ZQU4Eb3Ht+LNKoF7Dy7Lgq0rpiruf5QsN8tgU 5BFUn130l79wwHN2vtKrCPpiExUqweO2moNymrJfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfqXqyhVWbMYRyjbk8Axvjuh0pVYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA4OGZkM2U2LTUwMTMtNGMyYy1iZjQ2LTFlYjkwN2YzNTIwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/FEwDQYJKoZIhvcNAQELBQADggEBACSiXJG9ZyVc6+zgNgOTcZsjN6qq m2VlTofndga4TSwVqBqTCAUkXHu0nKJ021sgacJDVzkRK5dfYf13PfkuILk8G5Tx sl/Qh5+t0JpqRtFiTFqjXKEDYrsSNtqDIryGbmLFFSHHK7fRYxRrNv36Er3ZfCdb 2+p22wPrCauHctH6Nec4JOK7czSH0hEXZ/AON5xpsncuhumFxa2GwWbr0rlKZyK3 YkJVr04EnmD1kQLkxHVtThsvKqefj+vxeYxUKeMpep8/n9/Y8Kb5Zjghn5MJZjIs XlFWIoR66eMxPcQRsqohRBhx4E5xxLDGPoXj4E41nrDLiSmcnCI2oz1DqHw= -----END CERTIFICATE-----Generated at Wed Aug 6 05:14:44 2025 by rpki-client