$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bcb0304-f139-4662-bb87-35c5c7564fa0.roa File: 5bcb0304-f139-4662-bb87-35c5c7564fa0.roa (raw, json) Hash identifier: 2VErk1o3lDEZew8ZYomLIbQL5m72eXsVdZ//tvsff9I= Subject key identifier: B9:61:7A:EB:8A:24:4E:DF:C9:2C:5B:D2:9B:7E:74:74:80:AD:9D:0F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4070BE055DDF039769C16A6DB22C651C5083AF5C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bcb0304-f139-4662-bb87-35c5c7564fa0.roa Signing time: Tue 05 Aug 2025 00:41:23 +0000 ROA not before: Tue 05 Aug 2025 00:41:23 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:70:be:05:5d:df:03:97:69:c1:6a:6d:b2:2c:65:1c:50:83:af:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:41:23 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=5062e1a0d1587e358ca431e9f4d90d0ae94dedd93d3606a69b7a100627f8ee5f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:38:f2:83:b2:93:c6:58:72:31:57:0e:71:62: e5:9c:9a:73:35:d2:76:0f:e3:a7:a4:36:5e:c9:b1: c4:02:bf:0b:b9:5f:ae:cc:bb:5b:a3:8a:62:59:13: cf:fc:7e:c7:e6:99:a1:5f:0e:94:01:5a:ee:61:83: e0:c2:f9:96:2e:c8:62:02:79:04:e6:42:0c:74:51: 86:5a:dc:dc:c6:31:1e:7c:81:55:3d:ab:8e:9a:89: 61:bc:e2:54:fc:a2:ae:f1:a2:31:ca:71:66:58:c1: d2:4a:ba:ce:7d:a8:e8:3b:4a:d4:3f:c3:04:e8:79: b6:c4:98:03:5a:d9:84:f7:dc:ad:84:9d:c9:99:e4: e9:96:4c:90:f7:16:de:c9:e9:44:b4:cb:ef:56:81: 53:34:82:76:c4:8d:35:a8:eb:b9:83:ed:dd:95:71: 01:23:b5:17:29:2d:17:82:b7:86:bf:fa:e9:21:93: 45:7e:a8:e9:ac:90:97:d1:e5:11:20:0e:e1:45:63: ec:ba:c4:ce:56:dd:6c:be:ab:75:18:6f:a3:18:85: b2:92:c1:f0:ae:7c:7a:10:36:0a:6a:d4:12:7c:73: cd:aa:e6:3e:5e:95:1a:f3:2a:ec:22:8f:6e:ca:07: a1:10:68:61:14:c6:c6:bf:09:ca:a5:44:59:c0:f6: c5:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:61:7A:EB:8A:24:4E:DF:C9:2C:5B:D2:9B:7E:74:74:80:AD:9D:0F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bcb0304-f139-4662-bb87-35c5c7564fa0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.175.0/24 Signature Algorithm: sha256WithRSAEncryption 67:c1:c7:b0:c9:16:2f:f5:29:c1:bd:f3:43:be:1e:15:b9:ee: 5d:28:d8:00:81:28:4e:6d:96:80:33:7e:31:3a:db:9c:6f:38: 14:d6:5a:bd:1c:3e:91:e5:4c:dd:f3:af:f4:82:31:0e:b2:65: f2:cf:39:b3:3c:bf:7a:51:02:76:21:5d:06:de:58:f6:2f:fc: a6:1c:da:66:e1:e0:ea:6a:78:b1:56:d2:38:d8:52:48:30:38: 45:a8:39:25:a6:20:3b:77:82:1c:3d:34:49:58:2b:17:7f:8c: c9:13:c9:d7:66:40:96:4c:29:35:d9:7a:7f:9b:22:2c:fe:40: 94:35:e1:68:bc:83:0b:b7:71:2f:7e:35:c6:f5:d3:4c:a7:40: 22:91:e0:64:f9:a1:8c:65:03:b2:23:fb:71:31:60:59:c5:13: 30:ee:e7:f5:f0:13:26:f1:8f:39:86:35:28:2a:5d:7c:9e:3b: 3b:5c:39:aa:8c:f6:6f:e0:a3:5a:d4:45:a3:65:80:7a:d9:6d: 97:4b:d5:3f:ab:14:2f:af:24:c9:46:c5:b0:9b:0a:81:98:01: 08:f7:17:2b:3e:bd:1c:4d:6d:50:12:2d:20:03:5f:c0:3e:d5: ed:de:98:81:17:47:37:24:f3:7b:cd:5a:d4:a8:6f:b0:17:ba: f3:d9:06:9f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQHC+BV3fA5dpwWptsixlHFCDr1wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDA0MTIzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MDYyZTFhMGQxNTg3ZTM1OGNhNDMxZTlmNGQ5MGQwYWU5 NGRlZGQ5M2QzNjA2YTY5YjdhMTAwNjI3ZjhlZTVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSOPKDspPGWHIxVw5xYuWcmnM10nYP46ekNl7JscQCvwu5 X67Mu1ujimJZE8/8fsfmmaFfDpQBWu5hg+DC+ZYuyGICeQTmQgx0UYZa3NzGMR58 gVU9q46aiWG84lT8oq7xojHKcWZYwdJKus59qOg7StQ/wwToebbEmANa2YT33K2E ncmZ5OmWTJD3Ft7J6US0y+9WgVM0gnbEjTWo67mD7d2VcQEjtRcpLReCt4a/+ukh k0V+qOmskJfR5REgDuFFY+y6xM5W3Wy+q3UYb6MYhbKSwfCufHoQNgpq1BJ8c82q 5j5elRrzKuwij27KB6EQaGEUxsa/CcqlRFnA9sUrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuWF664okTt/JLFvSm350dICtnQ8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzViY2IwMzA0LWYxMzktNDY2Mi1iYjg3LTM1YzVjNzU2NGZhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFAK8wDQYJKoZIhvcNAQELBQADggEBAGfBx7DJFi/1KcG980O+HhW57l0o 2ACBKE5tloAzfjE625xvOBTWWr0cPpHlTN3zr/SCMQ6yZfLPObM8v3pRAnYhXQbe WPYv/KYc2mbh4OpqeLFW0jjYUkgwOEWoOSWmIDt3ghw9NElYKxd/jMkTyddmQJZM KTXZen+bIiz+QJQ14Wi8gwu3cS9+Ncb100ynQCKR4GT5oYxlA7Ij+3ExYFnFEzDu 5/XwEybxjzmGNSgqXXyeOztcOaqM9m/go1rURaNlgHrZbZdL1T+rFC+vJMlGxbCb CoGYAQj3Fys+vRxNbVASLSADX8A+1e3emIEXRzck83vNWtSob7AXuvPZBp8= -----END CERTIFICATE-----Generated at Sat Aug 9 01:07:27 2025 by rpki-client