$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1564f4a-7df0-4932-af96-1ebffff2e421.roa File: b1564f4a-7df0-4932-af96-1ebffff2e421.roa (raw, json) Hash identifier: rVhiQzWJusBP58ewM1oup6o6Crajxkl+WHMakO4SEXc= Subject key identifier: B9:55:86:C6:1A:DA:F9:68:8A:CD:DC:8A:26:C4:5A:6B:C5:BE:02:14 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 110B6CF2AF50F72A95EFD2A8E8977DFCBBBED387 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1564f4a-7df0-4932-af96-1ebffff2e421.roa Signing time: Mon 14 Jul 2025 15:20:22 +0000 ROA not before: Mon 14 Jul 2025 15:20:22 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 72.29.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:0b:6c:f2:af:50:f7:2a:95:ef:d2:a8:e8:97:7d:fc:bb:be:d3:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 14 15:20:22 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=84b771b08e2f6ed04da769b6c56fd9d4944d2c4a853582493a9711a95654ab14, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ef:76:60:56:1f:d8:f1:d7:6e:2b:8b:ae:37: c9:b9:ce:f5:40:d1:52:21:eb:1f:f2:77:f0:ea:46: 34:25:08:7d:8f:09:6c:a5:e8:1d:d8:43:65:ed:b7: 9b:72:cd:97:63:9b:00:f3:ae:09:de:e7:81:17:02: ce:ab:d5:1d:a6:1c:b5:79:98:4d:0e:4c:ed:9e:55: b4:db:9a:df:a4:e8:be:cc:be:41:01:bf:61:85:a4: 34:f3:96:29:f7:31:12:e6:45:4d:d5:be:b9:eb:2d: e6:b2:cd:14:00:6d:30:4d:4b:50:42:92:2c:9a:df: 54:d5:42:75:90:de:8d:6f:6a:21:d9:d2:df:b7:13: 18:63:cd:db:00:bb:1b:c1:0a:47:6a:8e:8f:96:bb: 78:4c:79:13:a9:a6:72:b4:4c:84:73:a0:22:6a:2e: 3f:20:b4:69:95:2a:14:cf:67:c4:9a:1d:a3:27:b7: 88:11:59:c1:03:07:8d:1d:75:5c:bb:6c:26:54:c0: 29:1b:11:58:73:d7:c6:77:26:f6:83:47:63:a1:9e: dc:5f:b9:60:bc:96:3c:0b:63:6e:68:a0:7e:2b:dc: 4c:e0:bd:6d:12:fc:35:9b:57:89:ba:96:b4:d6:03: 15:0b:58:68:5c:d2:59:7b:60:08:b7:ac:15:38:c5: 4a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:55:86:C6:1A:DA:F9:68:8A:CD:DC:8A:26:C4:5A:6B:C5:BE:02:14 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1564f4a-7df0-4932-af96-1ebffff2e421.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.29.0.0/19 Signature Algorithm: sha256WithRSAEncryption 5f:aa:64:da:cf:a4:c3:58:89:8d:ea:37:17:36:a9:2b:a8:f5: 95:db:06:21:9b:da:64:2b:f8:4f:36:ea:bb:88:87:9d:80:c8: 54:e7:d6:2b:ed:d9:b0:91:d2:31:bc:95:4a:05:5d:93:bd:69: e8:83:9b:06:17:dc:b6:8e:30:b6:5d:83:73:7a:a7:a6:24:1b: af:03:d4:ad:4a:87:e1:0b:4f:25:1a:b6:f5:56:0b:c4:b9:23: b4:48:4b:02:42:38:fc:ad:0f:b7:a0:5e:4e:9d:22:ad:eb:e8: b7:79:d3:b7:5b:8f:37:76:04:a0:17:ae:aa:5a:7a:60:7e:c5: 17:de:d2:7d:d1:f8:41:60:1a:d5:04:39:39:da:19:d3:57:83: 36:80:0a:5c:da:d5:d2:df:a2:b9:12:52:82:37:42:8f:89:30: e5:c4:2e:35:c2:8b:31:3f:c7:90:39:2b:e4:12:e1:15:84:01: e5:6c:30:90:49:80:57:95:55:bb:5d:4f:56:44:17:31:11:6a: e7:6b:13:3f:46:b0:45:86:de:e8:15:c8:5c:ec:dd:59:ba:04: 70:a1:8b:ce:10:32:20:6c:d5:9a:ad:22:d3:cb:dc:1a:b6:68: 44:c9:73:06:18:1f:70:39:1a:5c:d3:02:3e:db:4b:c9:23:bd: 37:8a:37:ad -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEQts8q9Q9yqV79Ko6Jd9/Lu+04cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE0MTUyMDIyWhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NGI3NzFiMDhlMmY2ZWQwNGRhNzY5YjZjNTZmZDlkNDk0 NGQyYzRhODUzNTgyNDkzYTk3MTFhOTU2NTRhYjE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK73ZgVh/Y8dduK4uuN8m5zvVA0VIh6x/yd/DqRjQlCH2P CWyl6B3YQ2Xtt5tyzZdjmwDzrgne54EXAs6r1R2mHLV5mE0OTO2eVbTbmt+k6L7M vkEBv2GFpDTzlin3MRLmRU3VvrnrLeayzRQAbTBNS1BCkiya31TVQnWQ3o1vaiHZ 0t+3ExhjzdsAuxvBCkdqjo+Wu3hMeROppnK0TIRzoCJqLj8gtGmVKhTPZ8SaHaMn t4gRWcEDB40ddVy7bCZUwCkbEVhz18Z3JvaDR2OhntxfuWC8ljwLY25ooH4r3Ezg vW0S/DWbV4m6lrTWAxULWGhc0ll7YAi3rBU4xUplAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuVWGxhra+WiKzdyKJsRaa8W+AhQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxNTY0ZjRhLTdkZjAtNDkzMi1hZjk2LTFlYmZmZmYyZTQyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVIHQAwDQYJKoZIhvcNAQELBQADggEBAF+qZNrPpMNYiY3qNxc2qSuo9ZXb BiGb2mQr+E826ruIh52AyFTn1ivt2bCR0jG8lUoFXZO9aeiDmwYX3LaOMLZdg3N6 p6YkG68D1K1Kh+ELTyUatvVWC8S5I7RISwJCOPytD7egXk6dIq3r6Ld507dbjzd2 BKAXrqpaemB+xRfe0n3R+EFgGtUEOTnaGdNXgzaAClza1dLforkSUoI3Qo+JMOXE LjXCizE/x5A5K+QS4RWEAeVsMJBJgFeVVbtdT1ZEFzERaudrEz9GsEWG3ugVyFzs 3Vm6BHChi84QMiBs1ZqtItPL3Bq2aETJcwYYH3A5GlzTAj7bS8kjvTeKN60= -----END CERTIFICATE-----Generated at Thu Aug 7 04:35:43 2025 by rpki-client