$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a62da10-7a91-4f00-8d90-807e784a45e8.roa File: 6a62da10-7a91-4f00-8d90-807e784a45e8.roa (raw, json) Hash identifier: 0JrdNn5rmK5VbcD7MhI6AQ6tkWX8KJW8mM0PIfpp6qo= Subject key identifier: B7:51:7F:A4:74:D4:21:0D:6B:8A:4E:54:9C:93:66:07:4A:C8:D1:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1F6A3E6B0A7CB422E961D459D5194D954EB3BBFC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a62da10-7a91-4f00-8d90-807e784a45e8.roa Signing time: Mon 04 Aug 2025 16:10:26 +0000 ROA not before: Mon 04 Aug 2025 16:10:26 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.23.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:6a:3e:6b:0a:7c:b4:22:e9:61:d4:59:d5:19:4d:95:4e:b3:bb:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:10:26 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=6802351b9817f6fa2178416007ecd29b82e34fe2c2467408563cee7cf96f66a3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a0:bb:f3:26:ee:9e:87:ef:b4:b7:3c:df:fa: fa:a8:7e:5b:0f:29:fe:b0:b0:48:7b:3d:6e:76:46: 96:4e:5f:c0:a2:de:6f:46:31:b9:b6:75:17:9b:3b: 1b:ec:62:50:78:6e:cd:77:b7:e3:1f:73:53:6e:bc: 19:31:58:91:e0:2d:4e:53:df:16:96:aa:48:f8:a5: c7:9a:a2:56:6e:38:05:4b:c5:d7:7d:72:45:f4:08: 62:5b:83:bc:74:5c:ab:6b:fe:97:50:c2:af:8b:18: 43:77:95:b5:0f:47:63:79:d8:61:c2:e6:03:a7:4a: 72:3b:36:86:34:c7:7c:f3:71:59:21:44:dc:8e:ab: c6:68:ac:b1:7e:14:39:c3:50:80:07:27:61:8e:37: 2c:25:53:0b:f1:e7:ab:98:70:63:3e:28:da:5c:84: 78:f9:db:51:cb:d2:70:97:0f:8d:b5:8e:36:f9:3a: d1:00:d1:2d:f7:9a:19:da:b9:41:49:1b:0c:77:1c: d2:05:e6:2f:f6:69:55:e5:1c:16:e7:31:d2:3e:85: 50:d8:7b:40:de:47:88:9f:92:36:b5:95:bc:2a:87: 64:ef:f8:b1:c0:15:7b:ad:fd:91:ab:67:3f:e9:0f: e3:db:86:33:be:50:45:8f:3c:3c:8f:35:c1:9a:71: be:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:51:7F:A4:74:D4:21:0D:6B:8A:4E:54:9C:93:66:07:4A:C8:D1:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a62da10-7a91-4f00-8d90-807e784a45e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.96.0/19 Signature Algorithm: sha256WithRSAEncryption 65:5c:84:43:c6:87:1f:07:a7:9b:19:22:1a:fb:6b:73:bd:a0: 4b:bc:fd:49:db:68:4c:77:31:23:a2:fc:26:67:d6:d4:86:1c: 15:6a:35:d4:b2:54:12:13:4c:13:b7:49:31:06:8c:61:0a:3a: 6a:a4:34:b3:c2:40:cb:3c:4c:1c:b6:19:3d:16:38:79:39:0a: b2:0c:f4:3a:f6:e2:74:7b:83:2a:2a:b0:a3:0f:42:3e:65:55: 0c:c9:1f:6a:6b:a6:6d:e4:01:b9:89:fa:1c:49:de:e2:bc:e0: 0d:26:bb:eb:9f:02:80:fa:11:e5:17:69:23:6c:88:45:0a:19: 73:9a:70:97:98:5f:6c:7c:55:59:ce:97:c2:6c:42:12:08:1e: 66:3a:23:71:bb:53:a3:87:b4:f8:b0:02:b3:16:b9:0b:e6:60: a3:78:f9:6d:00:9d:8d:75:97:35:b5:a4:c1:24:19:20:01:b6: 86:4f:77:2f:9c:8c:11:5d:5a:07:08:b1:0d:ce:23:7a:88:33: 29:ba:7e:d6:1f:e6:77:12:3a:89:a7:09:25:b3:56:c4:d7:b5: d6:16:ac:a2:92:d9:de:d0:3c:60:09:97:b3:e8:f6:47:71:7a: 9d:e4:7d:d6:5f:08:b3:7f:2c:ce:92:ea:09:af:d8:4f:6f:a9: 12:b8:71:f2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH2o+awp8tCLpYdRZ1RlNlU6zu/wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTYxMDI2WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODAyMzUxYjk4MTdmNmZhMjE3ODQxNjAwN2VjZDI5Yjgy ZTM0ZmUyYzI0Njc0MDg1NjNjZWU3Y2Y5NmY2NmEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsoLvzJu6eh++0tzzf+vqoflsPKf6wsEh7PW52RpZOX8Ci 3m9GMbm2dRebOxvsYlB4bs13t+Mfc1NuvBkxWJHgLU5T3xaWqkj4pceaolZuOAVL xdd9ckX0CGJbg7x0XKtr/pdQwq+LGEN3lbUPR2N52GHC5gOnSnI7NoY0x3zzcVkh RNyOq8ZorLF+FDnDUIAHJ2GONywlUwvx56uYcGM+KNpchHj521HL0nCXD421jjb5 OtEA0S33mhnauUFJGwx3HNIF5i/2aVXlHBbnMdI+hVDYe0DeR4ifkja1lbwqh2Tv +LHAFXut/ZGrZz/pD+PbhjO+UEWPPDyPNcGacb7zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUt1F/pHTUIQ1rik5UnJNmB0rI0cAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhNjJkYTEwLTdhOTEtNGYwMC04ZDkwLTgwN2U3ODRhNDVlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUXF2AwDQYJKoZIhvcNAQELBQADggEBAGVchEPGhx8Hp5sZIhr7a3O9oEu8 /UnbaEx3MSOi/CZn1tSGHBVqNdSyVBITTBO3STEGjGEKOmqkNLPCQMs8TBy2GT0W OHk5CrIM9Dr24nR7gyoqsKMPQj5lVQzJH2prpm3kAbmJ+hxJ3uK84A0mu+ufAoD6 EeUXaSNsiEUKGXOacJeYX2x8VVnOl8JsQhIIHmY6I3G7U6OHtPiwArMWuQvmYKN4 +W0AnY11lzW1pMEkGSABtoZPdy+cjBFdWgcIsQ3OI3qIMym6ftYf5ncSOomnCSWz VsTXtdYWrKKS2d7QPGAJl7Po9kdxep3kfdZfCLN/LM6S6gmv2E9vqRK4cfI= -----END CERTIFICATE-----Generated at Fri Aug 8 20:53:46 2025 by rpki-client