$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52a2b218-2a29-4964-b153-565ac1d505cf.roa File: 52a2b218-2a29-4964-b153-565ac1d505cf.roa (raw, json) Hash identifier: W+TgXj0WMZ9pM197YOYYwXf5BSUoQvpdoj/5pAKj9o0= Subject key identifier: D1:C7:79:3D:AF:A2:FB:2D:44:DF:B1:7C:1D:E6:CA:3D:C6:6B:0B:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7722F2EB7B00BB1378AC7227F3D67429F1839EFF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52a2b218-2a29-4964-b153-565ac1d505cf.roa Signing time: Fri 25 Jul 2025 00:20:16 +0000 ROA not before: Fri 25 Jul 2025 00:20:16 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.59.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:22:f2:eb:7b:00:bb:13:78:ac:72:27:f3:d6:74:29:f1:83:9e:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:20:16 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=87836a8e27412cdecec8ef1ce320a6e48b461e05e283c8c3895bb1e5236ac21f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:db:cd:a4:43:3f:ec:be:04:e5:26:54:f3:f5: fa:94:9e:a4:65:53:37:50:f0:30:68:4a:50:df:d0: d3:65:fe:7e:c0:a9:68:70:c8:0a:96:dd:d9:62:fc: c2:29:d8:91:55:04:4b:00:84:fd:0b:69:0e:40:f9: bc:b1:0f:2c:53:7f:a8:5c:86:fb:2c:b3:69:e8:a0: 80:1c:d7:29:25:7a:91:14:4a:d9:df:03:d6:6d:fb: 99:d7:b5:d0:a8:7e:50:7c:94:52:e3:8d:14:3e:6b: 3c:30:43:cf:21:20:6a:21:4b:bd:22:a9:a7:17:95: 14:85:ec:54:dc:5d:28:21:dd:36:a8:6c:0c:88:3c: a2:64:c3:c4:5d:22:d0:e1:56:2c:74:f5:50:1a:00: 67:3a:6d:f1:7a:77:b7:d7:80:c3:35:7d:3b:75:1a: fc:0d:dc:64:23:7f:3b:cc:a0:da:44:70:ad:2a:c0: 62:ce:f3:8a:ed:d7:6d:0a:4f:03:e6:75:ac:b1:85: 8f:db:e1:5c:16:de:b9:89:a2:37:f0:13:c4:27:07: 3e:86:b3:e8:7f:4b:d7:b9:27:56:cc:a1:b6:88:12: b5:cf:11:98:97:af:a0:4d:1c:fa:fe:fd:71:1b:4c: 69:4d:0e:d0:a1:d8:64:49:98:15:62:52:77:3b:15: d2:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:C7:79:3D:AF:A2:FB:2D:44:DF:B1:7C:1D:E6:CA:3D:C6:6B:0B:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52a2b218-2a29-4964-b153-565ac1d505cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.59.0.0/18 Signature Algorithm: sha256WithRSAEncryption d7:1e:1c:07:ca:9b:dd:8a:7b:28:e7:32:93:25:b8:8d:e0:ca: f2:01:1e:b6:7a:39:a3:df:1a:86:ed:d8:9b:51:11:dd:bf:b7: 3b:de:9a:3d:76:be:32:36:71:b6:39:e5:65:ff:15:43:5b:0e: 55:3e:39:5e:b1:ed:16:96:71:b6:f6:cc:59:5a:d2:f3:22:97: ed:55:c7:bb:af:92:47:98:d0:93:d8:ef:8f:dc:f3:0a:c2:49: f3:bf:df:05:e9:e6:15:be:9c:f8:3e:c3:74:e8:87:6b:db:ce: fd:8d:ac:c1:f5:5b:73:ce:0b:99:63:ae:bb:17:7d:f5:11:73: e9:9f:64:6f:56:7a:0d:51:cf:b2:aa:aa:fc:19:1a:c7:f3:13: 31:fe:0c:52:f0:d5:12:c2:1e:13:6a:ae:a8:cd:0e:62:b5:16: 9d:38:14:94:94:74:20:8d:41:f3:56:e4:9b:23:3b:34:44:30: 2f:89:6c:d2:4a:4e:2f:fd:2d:27:b2:13:88:e2:43:1a:4b:f1: 14:c7:ce:97:a6:4d:34:a2:2a:53:7d:d7:48:d5:5b:48:14:21: 6e:d6:5b:4f:49:d8:56:3e:18:56:99:04:ef:a0:9a:a7:23:3c: f7:6e:aa:1f:e6:d3:b4:a6:0f:b1:b2:ff:3f:47:b4:09:df:45: d1:3b:a5:05 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdyLy63sAuxN4rHIn89Z0KfGDnv8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI1MDAyMDE2WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NzgzNmE4ZTI3NDEyY2RlY2VjOGVmMWNlMzIwYTZlNDhi NDYxZTA1ZTI4M2M4YzM4OTViYjFlNTIzNmFjMjFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl282kQz/svgTlJlTz9fqUnqRlUzdQ8DBoSlDf0NNl/n7A qWhwyAqW3dli/MIp2JFVBEsAhP0LaQ5A+byxDyxTf6hchvsss2nooIAc1yklepEU StnfA9Zt+5nXtdCoflB8lFLjjRQ+azwwQ88hIGohS70iqacXlRSF7FTcXSgh3Tao bAyIPKJkw8RdItDhVix09VAaAGc6bfF6d7fXgMM1fTt1GvwN3GQjfzvMoNpEcK0q wGLO84rt120KTwPmdayxhY/b4VwW3rmJojfwE8QnBz6Gs+h/S9e5J1bMobaIErXP EZiXr6BNHPr+/XEbTGlNDtCh2GRJmBViUnc7FdJxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0cd5Pa+i+y1E37F8HebKPcZrC1IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyYTJiMjE4LTJhMjktNDk2NC1iMTUzLTU2NWFjMWQ1MDVjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZAOwAwDQYJKoZIhvcNAQELBQADggEBANceHAfKm92KeyjnMpMluI3gyvIB HrZ6OaPfGobt2JtREd2/tzvemj12vjI2cbY55WX/FUNbDlU+OV6x7RaWcbb2zFla 0vMil+1Vx7uvkkeY0JPY74/c8wrCSfO/3wXp5hW+nPg+w3Toh2vbzv2NrMH1W3PO C5ljrrsXffURc+mfZG9Weg1Rz7KqqvwZGsfzEzH+DFLw1RLCHhNqrqjNDmK1Fp04 FJSUdCCNQfNW5JsjOzREMC+JbNJKTi/9LSeyE4jiQxpL8RTHzpemTTSiKlN910jV W0gUIW7WW09J2FY+GFaZBO+gmqcjPPduqh/m07SmD7Gy/z9HtAnfRdE7pQU= -----END CERTIFICATE-----Generated at Sat Aug 9 23:16:46 2025 by rpki-client