$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2edf8204-bf2c-49e4-b210-cc2b92b584ed.roa File: 2edf8204-bf2c-49e4-b210-cc2b92b584ed.roa (raw, json) Hash identifier: 45qFHEjGBehNW2jPGDAei9g5iHXb4gK6K0MDIyBAeAE= Subject key identifier: 68:4E:98:67:E5:94:89:1A:68:EB:BE:8A:40:F2:58:79:19:F4:7D:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C62301FB7C9B83DA5E195194CF34DEB78756221 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2edf8204-bf2c-49e4-b210-cc2b92b584ed.roa Signing time: Mon 28 Jul 2025 15:32:29 +0000 ROA not before: Mon 28 Jul 2025 15:32:29 +0000 ROA not after: Mon 01 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 207.21.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:62:30:1f:b7:c9:b8:3d:a5:e1:95:19:4c:f3:4d:eb:78:75:62:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 28 15:32:29 2025 GMT Not After : Sep 1 23:59:59 2025 GMT Subject: serialNumber=e2b469ece618ccdc1746103f99aac47eeb7316918976f087a023cc2906906c58, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:2c:00:0a:2d:cc:ec:54:cf:3e:e6:62:b5:f9: 27:42:71:65:35:99:a9:b7:4d:08:4e:84:97:6c:80: 85:c7:67:0c:f3:f5:9c:92:37:e1:f1:73:a9:1f:6c: e1:fb:d4:ce:20:74:04:86:99:77:99:fd:3b:b5:ab: 6e:cb:e3:80:88:2c:44:71:73:48:67:ff:67:65:59: f0:35:c4:73:a6:bc:78:1c:e3:f1:b4:99:d9:8c:0e: 1d:de:0e:a6:92:05:ae:bb:a9:c4:35:31:52:4d:ad: 81:01:be:ff:d0:57:50:63:b3:e7:58:4e:c3:c9:b6: 6e:9c:20:95:fd:1e:da:17:45:61:c6:01:86:15:ae: 14:83:ab:02:5c:12:c6:94:a4:40:44:ef:d0:d2:36: ac:39:fa:ad:c0:94:4b:3f:06:a7:86:e9:99:59:f0: 91:aa:32:19:60:a0:89:07:f0:28:b3:86:63:9b:d9: ef:7b:1a:16:1e:b6:da:61:4b:5e:45:19:a6:24:bf: d2:fc:d3:4b:cf:1d:8f:5f:1d:1f:01:2d:52:15:93: 54:61:78:d9:d1:42:f5:87:5e:4d:12:93:7e:1a:d2: ad:04:58:ef:56:be:4b:ac:a4:79:01:ab:e9:01:ad: 18:d1:03:7f:ec:54:5a:e4:69:c7:5f:34:e0:d0:9b: c8:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:4E:98:67:E5:94:89:1A:68:EB:BE:8A:40:F2:58:79:19:F4:7D:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2edf8204-bf2c-49e4-b210-cc2b92b584ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.21.240.0/22 Signature Algorithm: sha256WithRSAEncryption bd:64:69:38:86:20:91:1d:1d:e9:4f:03:dd:ad:2c:e2:0f:b3: 60:e3:5a:31:a9:4c:ac:05:36:4f:e6:5e:57:52:2b:af:d8:91: 4c:27:12:9c:c7:c5:86:4c:68:3c:51:75:66:d2:ad:a4:61:8f: 50:12:c3:7e:7a:e9:ad:ff:8d:ea:c1:0e:a3:ae:6b:be:eb:56: 4e:e3:a7:57:ca:47:62:01:26:dc:e1:f3:98:89:fb:f1:2d:0d: d7:d9:ff:3f:cd:70:cd:8c:e1:a4:08:29:ec:ad:7e:31:d3:ba: fe:2a:9a:50:86:68:0c:49:20:84:31:d9:64:44:d3:4d:d4:b5: 85:e4:69:b4:b9:c0:c3:21:e8:44:50:09:2e:fb:ef:61:9c:04: 43:26:1c:5a:8a:98:8e:35:c5:20:7d:6b:44:7b:e3:07:a9:38: c2:fc:a8:53:74:e3:69:4c:6f:a0:b4:10:6b:92:97:f4:a8:e3: 32:9c:10:34:81:f5:cf:3d:04:e0:48:2a:e8:3b:7e:43:e6:19: 9c:94:28:d8:08:5f:e7:49:cd:50:4d:78:80:9b:7b:94:4c:b7: e7:3f:de:5c:80:25:7b:18:29:10:82:0b:ec:3d:a0:af:ee:e4: 7f:9b:bd:2d:51:e7:c3:a0:ec:28:f0:16:2f:3b:b9:6f:96:f5: 8f:de:47:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDGIwH7fJuD2l4ZUZTPNN63h1YiEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI4MTUzMjI5WhcNMjUwOTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMmI0NjllY2U2MThjY2RjMTc0NjEwM2Y5OWFhYzQ3ZWVi NzMxNjkxODk3NmYwODdhMDIzY2MyOTA2OTA2YzU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeLAAKLczsVM8+5mK1+SdCcWU1mam3TQhOhJdsgIXHZwzz 9ZySN+Hxc6kfbOH71M4gdASGmXeZ/Tu1q27L44CILERxc0hn/2dlWfA1xHOmvHgc 4/G0mdmMDh3eDqaSBa67qcQ1MVJNrYEBvv/QV1Bjs+dYTsPJtm6cIJX9HtoXRWHG AYYVrhSDqwJcEsaUpEBE79DSNqw5+q3AlEs/BqeG6ZlZ8JGqMhlgoIkH8CizhmOb 2e97GhYettphS15FGaYkv9L800vPHY9fHR8BLVIVk1RheNnRQvWHXk0Sk34a0q0E WO9WvkuspHkBq+kBrRjRA3/sVFrkacdfNODQm8iXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaE6YZ+WUiRpo676KQPJYeRn0fTowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJlZGY4MjA0LWJmMmMtNDllNC1iMjEwLWNjMmI5MmI1ODRlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALPFfAwDQYJKoZIhvcNAQELBQADggEBAL1kaTiGIJEdHelPA92tLOIPs2Dj WjGpTKwFNk/mXldSK6/YkUwnEpzHxYZMaDxRdWbSraRhj1ASw3566a3/jerBDqOu a77rVk7jp1fKR2IBJtzh85iJ+/EtDdfZ/z/NcM2M4aQIKeytfjHTuv4qmlCGaAxJ IIQx2WRE003UtYXkabS5wMMh6ERQCS7772GcBEMmHFqKmI41xSB9a0R74wepOML8 qFN042lMb6C0EGuSl/So4zKcEDSB9c89BOBIKug7fkPmGZyUKNgIX+dJzVBNeICb e5RMt+c/3lyAJXsYKRCCC+w9oK/u5H+bvS1R58Og7CjwFi87uW+W9Y/eR6g= -----END CERTIFICATE-----Generated at Tue Aug 5 23:06:35 2025 by rpki-client