$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3a1c600-199e-451d-b216-427176bb5382.roa File: d3a1c600-199e-451d-b216-427176bb5382.roa (raw, json) Hash identifier: boftTQiKqxgLtH2kvRpiLEY4LVMwHZ513INTFyy5qk0= Subject key identifier: C5:01:FC:8A:28:2A:B4:A7:47:E6:99:D7:D9:93:1E:E7:F7:31:04:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01983D5DDB167B68405552E0AC502BC8A4EEEB71 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3a1c600-199e-451d-b216-427176bb5382.roa Signing time: Mon 28 Jul 2025 15:40:19 +0000 ROA not before: Mon 28 Jul 2025 15:40:19 +0000 ROA not after: Mon 01 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:3d:5d:db:16:7b:68:40:55:52:e0:ac:50:2b:c8:a4:ee:eb:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 28 15:40:19 2025 GMT Not After : Sep 1 23:59:59 2025 GMT Subject: serialNumber=069a0be5e1e5183d29f40e1d55ce31f6a9c66bd8a13c236fbbfdb990e3424262, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:e9:ea:78:f7:ef:10:94:0a:c2:d8:d5:a1:94: 9e:3e:e4:d1:f4:27:53:3f:f4:25:70:06:46:1d:47: 3b:ae:af:a3:33:ce:e2:0b:7a:93:c5:24:be:89:dc: 1e:81:e8:b0:21:85:8b:7b:fc:bb:7c:41:f1:3b:58: 14:ca:8d:e9:ba:45:b7:84:1a:d2:17:ae:af:4c:52: b7:8e:8b:38:52:6f:2d:38:5b:9b:d8:2e:18:4a:13: db:63:5a:ff:9c:29:c4:4b:10:f6:9e:fb:fd:28:69: 37:24:19:e3:ef:e9:7b:89:e3:c5:2d:25:38:6a:08: 93:64:a6:4a:a6:fa:7d:b1:35:8c:3e:35:13:af:87: 4d:e4:08:af:cd:5c:33:c5:66:ac:d8:3e:3a:e7:c4: 3d:74:2d:d3:e2:40:c4:d8:3a:0b:f9:25:dd:a8:99: 8d:d0:3d:02:55:d7:29:7f:c8:d0:6c:d3:a0:4b:ad: cf:95:1b:ae:1d:74:e1:ab:99:f5:ed:0a:92:a4:a8: ff:b1:71:3e:12:1e:80:65:da:82:ed:1a:9d:78:91: 81:95:c0:71:2b:e3:82:4f:a7:e2:92:2d:f9:1d:af: 6a:3a:4f:b7:11:27:4f:2e:e3:c2:bc:73:a6:4e:d6: 8e:7b:5c:b1:3c:ce:59:9a:58:c5:0b:bc:58:f5:08: 7e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:01:FC:8A:28:2A:B4:A7:47:E6:99:D7:D9:93:1E:E7:F7:31:04:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3a1c600-199e-451d-b216-427176bb5382.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.220.0/22 Signature Algorithm: sha256WithRSAEncryption bd:9b:5f:45:9b:17:1e:b5:03:bf:6a:69:66:38:ce:d6:8d:b5: 9b:79:65:f6:0f:ea:ac:f8:49:87:8f:29:45:b4:d6:5a:f6:97: 63:4b:5f:40:2f:d7:64:53:5f:44:fd:b0:5d:51:f3:71:cf:1a: 9e:ca:04:e9:39:6b:28:b1:8a:6e:ca:02:e2:65:30:81:0b:67: 72:44:d5:c2:a2:10:36:f3:54:9d:d5:ce:f8:c2:46:15:3d:a2: d7:53:74:53:96:45:d8:bb:21:f6:92:db:7e:00:da:b7:c6:e6: e1:40:0a:99:bf:54:e6:d9:bb:a7:ca:f5:88:d8:32:79:f0:f0: 02:70:e3:97:4f:db:15:d5:1f:cc:07:86:07:e5:e2:1f:d2:71: 07:fa:04:4c:1a:28:f7:3f:57:dc:0f:f8:8f:0f:82:54:fe:c8: e0:66:bf:65:59:8f:1e:df:5d:ed:a6:4e:63:61:3a:77:2c:da: 9b:aa:7c:e6:8d:34:84:e6:c9:91:0c:14:9f:c8:a1:46:05:9f: 75:e8:ae:e2:ac:52:8a:91:d0:4f:93:ce:4a:0a:83:2c:ea:be: f9:2a:ae:94:f1:f2:08:f4:2f:86:0a:47:24:89:65:c5:38:84: b3:43:61:dd:f1:ca:5d:51:13:01:eb:4f:48:0f:6b:6f:03:cb: ec:d4:ae:9e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAZg9XdsWe2hAVVLgrFAryKTu63EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI4MTU0MDE5WhcNMjUwOTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjlhMGJlNWUxZTUxODNkMjlmNDBlMWQ1NWNlMzFmNmE5 YzY2YmQ4YTEzYzIzNmZiYmZkYjk5MGUzNDI0MjYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCM6ep49+8QlArC2NWhlJ4+5NH0J1M/9CVwBkYdRzuur6Mz zuILepPFJL6J3B6B6LAhhYt7/Lt8QfE7WBTKjem6RbeEGtIXrq9MUreOizhSby04 W5vYLhhKE9tjWv+cKcRLEPae+/0oaTckGePv6XuJ48UtJThqCJNkpkqm+n2xNYw+ NROvh03kCK/NXDPFZqzYPjrnxD10LdPiQMTYOgv5Jd2omY3QPQJV1yl/yNBs06BL rc+VG64ddOGrmfXtCpKkqP+xcT4SHoBl2oLtGp14kYGVwHEr44JPp+KSLfkdr2o6 T7cRJ08u48K8c6ZO1o57XLE8zlmaWMULvFj1CH7TAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxQH8iigqtKdH5pnX2ZMe5/cxBAIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzYTFjNjAwLTE5OWUtNDUxZC1iMjE2LTQyNzE3NmJiNTM4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJFANwwDQYJKoZIhvcNAQELBQADggEBAL2bX0WbFx61A79qaWY4ztaNtZt5 ZfYP6qz4SYePKUW01lr2l2NLX0Av12RTX0T9sF1R83HPGp7KBOk5ayixim7KAuJl MIELZ3JE1cKiEDbzVJ3VzvjCRhU9otdTdFOWRdi7IfaS234A2rfG5uFACpm/VObZ u6fK9YjYMnnw8AJw45dP2xXVH8wHhgfl4h/ScQf6BEwaKPc/V9wP+I8PglT+yOBm v2VZjx7fXe2mTmNhOncs2puqfOaNNITmyZEMFJ/IoUYFn3XoruKsUoqR0E+TzkoK gyzqvvkqrpTx8gj0L4YKRySJZcU4hLNDYd3xyl1REwHrT0gPa28Dy+zUrp4= -----END CERTIFICATE-----Generated at Sat Aug 9 03:04:13 2025 by rpki-client