$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59965eb9-a645-4fb7-a6d9-bdde9e726d3f.roa File: 59965eb9-a645-4fb7-a6d9-bdde9e726d3f.roa (raw, json) Hash identifier: DXZ9821jx2qiDvb3llt2E7D5e/T5LGM6X+1T+FhDT3E= Subject key identifier: 05:40:DD:E7:07:9E:00:E7:D0:D7:CB:6B:52:27:B6:40:94:26:B1:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B342DE199972F6801DCF4B20F0C2FA8F9DFCF08 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59965eb9-a645-4fb7-a6d9-bdde9e726d3f.roa Signing time: Mon 28 Jul 2025 15:40:54 +0000 ROA not before: Mon 28 Jul 2025 15:40:54 +0000 ROA not after: Mon 01 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.226.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:34:2d:e1:99:97:2f:68:01:dc:f4:b2:0f:0c:2f:a8:f9:df:cf:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 28 15:40:54 2025 GMT Not After : Sep 1 23:59:59 2025 GMT Subject: serialNumber=f5cb4f32891c34f9268810a6072b77bd415d1994bcfe665febd1b8eca95177bb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0b:91:9a:54:7c:d3:d6:3e:1c:3d:40:0f:e3: ff:e6:46:e2:16:7d:00:6a:e4:d8:11:01:b8:d9:c4: 9a:63:f1:7a:07:35:37:a3:fa:c4:4c:a0:ce:89:6b: 87:6b:1e:4d:d6:19:36:70:da:b5:a7:47:24:4d:08: 1e:a1:7e:63:93:7f:94:0f:dc:cb:57:b6:02:09:d5: 45:8f:a0:81:ff:52:86:df:27:d6:68:80:d5:72:74: 73:3d:70:09:6d:f7:1d:90:8f:a1:d4:ac:b8:ef:42: 8c:0b:fc:14:38:6b:d1:fc:27:c2:26:51:8c:04:f7: 57:9e:b0:7e:32:26:ca:90:c4:e9:8c:e1:d1:9b:91: fb:37:9a:81:ea:a8:3c:e7:8f:30:45:7e:c4:61:fa: 30:1a:f7:13:33:3e:4d:d5:f0:ed:34:d8:6f:24:cc: 2a:bc:df:41:08:24:4b:28:0d:ed:79:78:42:54:2f: 5c:c7:f8:a2:6d:26:6c:4a:ce:42:c5:ea:cb:be:dc: 4b:64:bd:58:9a:39:a0:3f:69:59:54:f0:c4:3a:a0: 75:9c:2a:0a:ec:4d:e1:40:d3:81:ac:09:b4:84:63: d1:44:4f:36:1b:77:56:60:ee:e5:60:3d:e2:00:f2: 16:62:f2:29:a6:5b:39:72:9c:4a:9c:52:22:02:87: 87:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:40:DD:E7:07:9E:00:E7:D0:D7:CB:6B:52:27:B6:40:94:26:B1:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59965eb9-a645-4fb7-a6d9-bdde9e726d3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.226.216.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:85:2e:69:3d:cc:4d:00:00:19:87:de:7f:b2:87:9e:3c:c4: 2c:58:12:9c:fc:99:27:49:01:97:65:ed:fe:7e:18:aa:79:8a: 1c:38:bb:33:e2:d4:64:3b:2e:57:83:06:61:6a:58:fb:7e:84: bd:02:fd:40:00:d6:2f:ee:e5:a2:3f:51:6a:49:d1:76:45:02: d2:bc:ec:5f:9f:24:25:03:4a:5e:31:a3:f1:a5:f6:17:8c:fb: 22:0a:b1:5b:f1:8c:65:e5:7b:66:09:c5:c4:78:ae:db:2d:07: f1:71:36:87:2e:a6:b7:58:c3:b5:85:2a:2b:c1:11:d7:4b:c0: d8:84:29:f3:25:36:ca:8c:63:69:7d:26:c2:f2:58:59:a5:e2: 52:79:b8:81:0f:25:de:14:bf:bb:99:cc:c1:fc:29:00:eb:6a: 4c:54:3b:9c:df:b1:bd:02:22:5b:85:ba:89:a2:38:61:a0:60: bb:da:da:f0:71:41:b0:7d:aa:f2:5e:82:2d:03:a4:15:0f:98: 88:3a:bf:49:d4:cc:ed:3b:6d:d2:c9:f2:60:bd:73:a1:58:f7: 1c:9e:ac:ce:9f:28:8c:22:ff:11:0f:1f:a0:e8:74:96:7d:40: f0:86:10:f9:66:69:6b:ec:15:e3:d3:72:90:96:8d:7c:f3:21: 73:81:2d:02 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGzQt4ZmXL2gB3PSyDwwvqPnfzwgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI4MTU0MDU0WhcNMjUwOTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNWNiNGYzMjg5MWMzNGY5MjY4ODEwYTYwNzJiNzdiZDQx NWQxOTk0YmNmZTY2NWZlYmQxYjhlY2E5NTE3N2JiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvC5GaVHzT1j4cPUAP4//mRuIWfQBq5NgRAbjZxJpj8XoH NTej+sRMoM6Ja4drHk3WGTZw2rWnRyRNCB6hfmOTf5QP3MtXtgIJ1UWPoIH/Uobf J9ZogNVydHM9cAlt9x2Qj6HUrLjvQowL/BQ4a9H8J8ImUYwE91eesH4yJsqQxOmM 4dGbkfs3moHqqDznjzBFfsRh+jAa9xMzPk3V8O002G8kzCq830EIJEsoDe15eEJU L1zH+KJtJmxKzkLF6su+3EtkvViaOaA/aVlU8MQ6oHWcKgrsTeFA04GsCbSEY9FE TzYbd1Zg7uVgPeIA8hZi8immWzlynEqcUiICh4eVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBUDd5weeAOfQ18trUie2QJQmsYEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5OTY1ZWI5LWE2NDUtNGZiNy1hNmQ5LWJkZGU5ZTcyNmQzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJA4tgwDQYJKoZIhvcNAQELBQADggEBAHuFLmk9zE0AABmH3n+yh548xCxY Epz8mSdJAZdl7f5+GKp5ihw4uzPi1GQ7LleDBmFqWPt+hL0C/UAA1i/u5aI/UWpJ 0XZFAtK87F+fJCUDSl4xo/Gl9heM+yIKsVvxjGXle2YJxcR4rtstB/FxNocuprdY w7WFKivBEddLwNiEKfMlNsqMY2l9JsLyWFml4lJ5uIEPJd4Uv7uZzMH8KQDrakxU O5zfsb0CIluFuomiOGGgYLva2vBxQbB9qvJegi0DpBUPmIg6v0nUzO07bdLJ8mC9 c6FY9xyerM6fKIwi/xEPH6DodJZ9QPCGEPlmaWvsFePTcpCWjXzzIXOBLQI= -----END CERTIFICATE-----Generated at Tue Aug 5 20:15:52 2025 by rpki-client