$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/63a9fdb9-203f-44fc-be57-4c4b2236e6c1.roa File: 63a9fdb9-203f-44fc-be57-4c4b2236e6c1.roa (raw, json) Hash identifier: JqzdJ5v0LfhGb4xPpQuRQP/B+4nU1j02kRLlf2JZOZE= Subject key identifier: 93:03:4A:1C:0F:FB:E8:1E:11:E9:74:39:8D:E0:F5:87:3D:6E:3A:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 61253B7FBE55006CC1A8E9D715A9545B9AA97A48 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/63a9fdb9-203f-44fc-be57-4c4b2236e6c1.roa Signing time: Sat 02 Aug 2025 00:31:04 +0000 ROA not before: Sat 02 Aug 2025 00:31:04 +0000 ROA not after: Sat 06 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.24.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:25:3b:7f:be:55:00:6c:c1:a8:e9:d7:15:a9:54:5b:9a:a9:7a:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 2 00:31:04 2025 GMT Not After : Sep 6 23:59:59 2025 GMT Subject: serialNumber=b6b60334385999c10622eb2ef02561ca9edf9efad0fc12497cad309f821f366d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:67:04:c7:d2:bf:cd:a2:83:a1:f1:55:d6:4b: 3f:99:35:5c:61:86:f9:f0:4b:fd:7f:2e:5c:ff:68: c8:9b:af:9c:fd:8f:57:63:ce:7f:88:3b:e3:83:ec: 6c:3d:16:15:be:de:03:86:81:57:52:c8:5d:a3:b4: 69:9a:66:56:78:3f:ab:f0:a3:c0:e6:7d:10:ac:51: f6:b9:37:8b:0e:1c:f9:2e:f5:39:0b:0a:8c:6d:70: 50:99:71:65:32:ab:81:b1:df:6d:86:4b:4d:29:13: 38:be:66:0c:b0:c7:2e:87:41:50:ca:32:a4:38:e5: e0:cb:0a:9e:af:44:fc:f6:0c:cc:5e:8f:2a:87:25: e6:3d:6b:f1:5b:d6:57:04:f1:54:61:d4:22:7c:5b: 5f:b9:9e:b4:c0:76:3b:e4:16:c6:3d:54:1c:03:19: c8:30:00:c0:67:6a:f2:e4:95:77:76:06:78:7d:c8: 8c:4e:2b:63:bb:c8:29:a1:68:2a:f1:00:de:2f:47: 00:ec:d6:ee:35:4b:89:3c:59:f4:99:7b:72:9d:2a: f8:19:0b:c4:f2:8d:fd:d6:2b:b8:a5:68:ab:85:8a: dc:cc:f9:00:93:e3:b4:fd:e9:c8:47:92:1a:5b:6c: 8d:21:9e:67:ac:35:95:df:4b:58:f6:48:bd:9b:f5: 75:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:03:4A:1C:0F:FB:E8:1E:11:E9:74:39:8D:E0:F5:87:3D:6E:3A:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/63a9fdb9-203f-44fc-be57-4c4b2236e6c1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.24.32.0/22 Signature Algorithm: sha256WithRSAEncryption 09:ad:33:03:56:bd:a4:35:7c:34:be:51:b0:93:f9:fe:c2:b4: d4:c5:c2:69:17:39:52:e3:f1:54:4c:b0:ea:b1:c0:c2:15:68: 02:6c:95:0c:82:8a:23:5b:db:f4:aa:59:d0:ad:91:aa:ec:9d: 7a:15:2d:3e:6d:1c:30:2a:ae:5d:cd:68:04:3f:b4:f2:77:c8: 17:16:d2:ab:8a:89:90:e1:a7:81:bc:52:93:0e:c3:5d:0a:a9: 35:41:bd:ee:16:74:ca:a7:21:29:18:b1:95:2c:93:08:27:7e: 97:1e:7d:bb:7c:cf:24:c8:91:dd:84:61:2a:da:b4:1f:9e:56: ed:e9:fd:fe:60:47:4b:76:a9:96:fe:d1:c9:b5:a7:3f:51:af: 6b:05:11:36:e9:63:04:47:11:98:32:99:9b:6c:fa:df:23:38: 3d:ce:a5:0c:f4:15:25:34:d1:7d:42:ba:ae:62:b0:04:23:06: e5:66:1d:b4:e1:6f:62:bd:c8:19:94:96:94:c7:95:50:a0:94: 7e:d2:00:b5:9e:88:68:c9:5c:51:0e:55:c4:91:78:ab:3f:d6: df:b5:c2:41:9e:ab:7e:21:71:0a:9b:07:78:89:1e:83:ba:c2: 67:70:54:c6:da:31:70:56:35:02:8b:ba:a6:4c:c3:62:3a:14: bf:69:c1:b1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYSU7f75VAGzBqOnXFalUW5qpekgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAyMDAzMTA0WhcNMjUwOTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNmI2MDMzNDM4NTk5OWMxMDYyMmViMmVmMDI1NjFjYTll ZGY5ZWZhZDBmYzEyNDk3Y2FkMzA5ZjgyMWYzNjZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeZwTH0r/NooOh8VXWSz+ZNVxhhvnwS/1/Llz/aMibr5z9 j1djzn+IO+OD7Gw9FhW+3gOGgVdSyF2jtGmaZlZ4P6vwo8DmfRCsUfa5N4sOHPku 9TkLCoxtcFCZcWUyq4Gx322GS00pEzi+Zgywxy6HQVDKMqQ45eDLCp6vRPz2DMxe jyqHJeY9a/Fb1lcE8VRh1CJ8W1+5nrTAdjvkFsY9VBwDGcgwAMBnavLklXd2Bnh9 yIxOK2O7yCmhaCrxAN4vRwDs1u41S4k8WfSZe3KdKvgZC8Tyjf3WK7ilaKuFitzM +QCT47T96chHkhpbbI0hnmesNZXfS1j2SL2b9XVzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkwNKHA/76B4R6XQ5jeD1hz1uOjcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYzYTlmZGI5LTIwM2YtNDRmYy1iZTU3LTRjNGIyMjM2ZTZjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIQGCAwDQYJKoZIhvcNAQELBQADggEBAAmtMwNWvaQ1fDS+UbCT+f7CtNTF wmkXOVLj8VRMsOqxwMIVaAJslQyCiiNb2/SqWdCtkarsnXoVLT5tHDAqrl3NaAQ/ tPJ3yBcW0quKiZDhp4G8UpMOw10KqTVBve4WdMqnISkYsZUskwgnfpcefbt8zyTI kd2EYSratB+eVu3p/f5gR0t2qZb+0cm1pz9Rr2sFETbpYwRHEZgymZts+t8jOD3O pQz0FSU00X1Cuq5isAQjBuVmHbThb2K9yBmUlpTHlVCglH7SALWeiGjJXFEOVcSR eKs/1t+1wkGeq34hcQqbB3iJHoO6wmdwVMbaMXBWNQKLuqZMw2I6FL9pwbE= -----END CERTIFICATE-----Generated at Wed Aug 6 10:10:42 2025 by rpki-client