$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/530a77ca-5428-42b4-9c03-adb88573ea2a.roa File: 530a77ca-5428-42b4-9c03-adb88573ea2a.roa (raw, json) Hash identifier: neQWMEu86fGLgWub69Kj0J/1rdF6a7ZhmSda5ukvtL0= Subject key identifier: BB:15:09:CF:54:44:1E:74:6B:15:91:7A:74:72:3E:1C:1B:B2:01:72 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5FC64B1580843F28137F49BA100ECC4281DCD111 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/530a77ca-5428-42b4-9c03-adb88573ea2a.roa Signing time: Fri 25 Jul 2025 00:20:24 +0000 ROA not before: Fri 25 Jul 2025 00:20:24 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 66.7.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:c6:4b:15:80:84:3f:28:13:7f:49:ba:10:0e:cc:42:81:dc:d1:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:20:24 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=fce6074b89d94e17b474746dd6e5b14ba56bf51fe01b57ea952b30faa7062ac8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e3:10:e8:bc:f9:a9:0c:6d:e3:02:ae:dc:04: 29:38:84:12:35:57:88:76:39:51:02:1d:53:ed:3b: 9e:8f:ff:4b:ce:a2:69:e9:a5:fb:b8:22:d0:23:84: e1:b3:14:6d:fe:d4:b3:66:ad:d0:1e:6e:0a:d1:11: a9:89:bb:ce:0f:e7:f6:89:b9:1d:67:2c:4b:7d:1a: ee:53:cf:04:67:23:ac:0b:2d:db:2b:cb:71:cf:ac: ae:af:92:14:29:47:ee:25:a0:aa:48:95:1b:5a:b6: e4:a1:ed:86:da:fb:da:9d:d6:8a:c0:53:c7:b0:73: 28:15:22:5f:2e:4a:f8:71:62:bf:f7:11:1b:f4:59: e8:d7:d1:a8:0e:a5:de:14:7b:31:65:67:f1:db:32: e6:ef:6e:16:ae:e9:95:2f:95:fd:f7:48:3a:ea:d6: b2:73:33:2a:01:9f:0c:3f:68:d3:df:84:32:20:96: 80:5e:81:d2:a8:b9:29:43:a0:6c:ab:48:82:2a:4c: 29:f1:d1:63:7b:e5:3c:a0:53:85:16:2a:f4:aa:15: b0:a8:22:d2:e5:3d:e2:8a:76:40:de:e3:65:30:ff: 39:e7:67:93:b8:17:5f:b7:fd:09:92:0b:fb:b6:63: f1:f9:86:06:10:22:23:8f:0e:65:c0:69:65:a8:f6: 05:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:15:09:CF:54:44:1E:74:6B:15:91:7A:74:72:3E:1C:1B:B2:01:72 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/530a77ca-5428-42b4-9c03-adb88573ea2a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.7.0.0/18 Signature Algorithm: sha256WithRSAEncryption b8:b2:b9:ed:09:3f:ec:4a:db:ed:e6:4b:ba:4b:bf:d8:bd:c6: 75:c7:68:45:de:76:bf:cd:87:b8:55:de:66:a5:9b:14:a0:29: b8:21:6b:3a:38:83:37:41:17:13:50:2c:3d:4c:7f:96:4a:ff: 99:da:6d:b4:01:c0:b6:8f:e8:92:c1:4d:a5:43:f9:c8:bd:4b: f8:8e:b8:17:e5:07:ce:08:77:2e:2b:30:c4:fe:c1:28:b2:87: ad:26:1c:0b:5c:4b:fe:b9:b5:56:88:80:c4:af:96:38:69:fe: 7f:61:4a:58:90:9e:26:50:e6:1d:72:ea:10:42:b6:f3:d5:7f: ae:67:50:2e:c0:e6:82:5a:de:ea:f4:6c:01:50:a8:6a:8f:18: cf:3b:d8:ed:f4:a8:ba:f0:71:0a:9f:fd:04:fe:55:5f:11:d5: a0:83:88:52:6f:97:e9:0e:e6:d6:54:df:72:9e:e3:bc:7b:26: 60:ef:7d:5f:bb:82:c8:e9:ce:27:9e:5e:66:64:2c:bc:48:7a: 87:b3:87:18:d0:da:d4:69:7c:0b:1e:23:ab:b7:df:50:92:43: de:98:fc:8a:8a:6f:cd:e5:3d:5a:3a:5e:01:0a:a1:7a:16:45: 22:06:9a:5d:63:de:31:8c:0e:05:de:40:33:f0:b4:37:8a:60: ae:d0:e6:00 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUX8ZLFYCEPygTf0m6EA7MQoHc0REwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI1MDAyMDI0WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmY2U2MDc0Yjg5ZDk0ZTE3YjQ3NDc0NmRkNmU1YjE0YmE1 NmJmNTFmZTAxYjU3ZWE5NTJiMzBmYWE3MDYyYWM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH4xDovPmpDG3jAq7cBCk4hBI1V4h2OVECHVPtO56P/0vO omnppfu4ItAjhOGzFG3+1LNmrdAebgrREamJu84P5/aJuR1nLEt9Gu5TzwRnI6wL Ldsry3HPrK6vkhQpR+4loKpIlRtatuSh7Yba+9qd1orAU8ewcygVIl8uSvhxYr/3 ERv0WejX0agOpd4UezFlZ/HbMubvbhau6ZUvlf33SDrq1rJzMyoBnww/aNPfhDIg loBegdKouSlDoGyrSIIqTCnx0WN75TygU4UWKvSqFbCoItLlPeKKdkDe42Uw/znn Z5O4F1+3/QmSC/u2Y/H5hgYQIiOPDmXAaWWo9gXnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuxUJz1REHnRrFZF6dHI+HBuyAXIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzMGE3N2NhLTU0MjgtNDJiNC05YzAzLWFkYjg4NTczZWEyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZCBwAwDQYJKoZIhvcNAQELBQADggEBALiyue0JP+xK2+3mS7pLv9i9xnXH aEXedr/Nh7hV3malmxSgKbghazo4gzdBFxNQLD1Mf5ZK/5nabbQBwLaP6JLBTaVD +ci9S/iOuBflB84Idy4rMMT+wSiyh60mHAtcS/65tVaIgMSvljhp/n9hSliQniZQ 5h1y6hBCtvPVf65nUC7A5oJa3ur0bAFQqGqPGM872O30qLrwcQqf/QT+VV8R1aCD iFJvl+kO5tZU33Ke47x7JmDvfV+7gsjpzieeXmZkLLxIeoezhxjQ2tRpfAseI6u3 31CSQ96Y/IqKb83lPVo6XgEKoXoWRSIGml1j3jGMDgXeQDPwtDeKYK7Q5gA= -----END CERTIFICATE-----Generated at Fri Aug 8 12:51:45 2025 by rpki-client