$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d729aa1c-ba17-4368-947b-9641c99e709e.roa File: d729aa1c-ba17-4368-947b-9641c99e709e.roa (raw, json) Hash identifier: +CFS8S5+2AFKXGkTRNIzns6rkdBAIpnszbOx6flBPWQ= Subject key identifier: E7:EC:60:D8:44:BA:2A:89:44:3A:0F:54:5E:06:DF:0E:DA:21:82:D6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F4CE1FA25B9FC773D06DA021AA80840781D724E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d729aa1c-ba17-4368-947b-9641c99e709e.roa Signing time: Sat 14 Jun 2025 00:51:07 +0000 ROA not before: Sat 14 Jun 2025 00:51:07 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 54.25.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 18 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:4c:e1:fa:25:b9:fc:77:3d:06:da:02:1a:a8:08:40:78:1d:72:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:51:07 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=3dc818b41ab928d0704c06a88835085af01044657bc756736e9b52d437029278, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:72:6f:3d:b3:d2:61:b9:98:02:1c:2b:c5:9e: 92:b6:03:f0:42:f7:64:14:f4:b5:1b:7b:c7:0c:82: 09:8f:c6:a4:f2:a0:2f:71:19:eb:6a:fe:f4:ab:2c: d1:44:d8:b3:af:0e:86:bb:23:a3:0a:96:4b:4d:ed: 35:a1:4f:3f:fb:7d:00:66:c1:89:ea:af:2f:e5:0c: 15:04:75:2e:41:2f:a1:b1:06:3f:08:0b:fc:43:36: fa:6c:c6:1c:85:44:b8:8e:2b:af:58:a9:74:bf:fa: b1:53:5f:b1:88:45:49:91:b4:25:d1:40:44:3a:d8: 62:61:43:d9:3e:2b:e2:a0:75:a3:bf:0b:4e:b4:f3: 9a:2c:37:e2:de:5e:81:43:a6:e4:62:6d:14:01:9f: cc:fc:e8:d9:79:2a:27:ce:8a:13:88:cc:35:f3:1c: e1:c2:cf:41:0e:65:7d:6b:b7:51:c7:54:a2:4e:ac: 69:36:9e:0d:3b:28:f7:55:e6:b4:68:ad:46:50:52: 5e:f2:30:16:b9:75:c8:85:9b:f0:d2:0e:ba:78:c1: 2c:73:ba:ef:5d:3a:8b:0d:d1:2b:1d:1e:71:5c:6b: a7:41:10:c4:04:3f:e7:44:36:de:47:2f:f3:35:66: bb:f4:05:7c:03:84:9e:7e:8b:b6:02:ae:2e:03:ea: eb:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:EC:60:D8:44:BA:2A:89:44:3A:0F:54:5E:06:DF:0E:DA:21:82:D6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d729aa1c-ba17-4368-947b-9641c99e709e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.20.0/24 Signature Algorithm: sha256WithRSAEncryption d0:77:7c:f3:3c:73:60:20:28:66:7c:f9:db:e4:ee:fc:6e:2a: 37:00:03:61:24:13:da:b2:16:d6:af:63:b5:56:fa:44:8e:b5: ee:4f:6b:68:e0:00:12:89:88:dd:07:94:e4:59:c1:70:ce:c4: 5f:54:a0:6d:42:01:25:a9:98:21:b7:b8:8b:13:b2:2f:a2:f4: f5:79:62:46:65:04:0e:25:13:09:0e:3c:5b:72:16:67:c0:5e: 34:71:b4:9a:bd:18:65:67:18:95:4e:31:d5:fb:0e:32:c8:45: ca:39:92:f3:c6:68:07:40:aa:c7:4f:a2:a8:6f:c5:d9:68:9d: c3:3f:52:b2:cd:75:3b:7c:6c:76:10:ce:5f:3c:81:be:f9:53: b1:7f:5b:bc:b1:e9:7f:9a:92:0d:55:04:74:6e:61:69:a6:60: 75:d7:e8:61:69:c1:2e:5b:ce:e5:20:1e:90:91:6c:79:08:57: f5:b0:64:df:52:d1:4b:20:f6:17:40:21:88:6a:0c:70:9b:3d: 3b:82:2d:ee:a5:04:a4:99:91:8b:7c:96:d6:20:e6:84:a9:48: fa:26:da:8c:77:71:0f:a9:36:45:07:eb:e2:ed:05:a7:8c:3f: b8:4b:55:2b:75:f1:5d:5e:95:96:1a:4d:e8:03:79:f2:da:17: 1a:8f:50:27 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb0zh+iW5/Hc9BtoCGqgIQHgdck4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDA1MTA3WhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZGM4MThiNDFhYjkyOGQwNzA0YzA2YTg4ODM1MDg1YWYw MTA0NDY1N2JjNzU2NzM2ZTliNTJkNDM3MDI5Mjc4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQcm89s9JhuZgCHCvFnpK2A/BC92QU9LUbe8cMggmPxqTy oC9xGetq/vSrLNFE2LOvDoa7I6MKlktN7TWhTz/7fQBmwYnqry/lDBUEdS5BL6Gx Bj8IC/xDNvpsxhyFRLiOK69YqXS/+rFTX7GIRUmRtCXRQEQ62GJhQ9k+K+KgdaO/ C06085osN+LeXoFDpuRibRQBn8z86Nl5KifOihOIzDXzHOHCz0EOZX1rt1HHVKJO rGk2ng07KPdV5rRorUZQUl7yMBa5dciFm/DSDrp4wSxzuu9dOosN0SsdHnFca6dB EMQEP+dENt5HL/M1Zrv0BXwDhJ5+i7YCri4D6us1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5+xg2ES6KolEOg9UXgbfDtohgtYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q3MjlhYTFjLWJhMTctNDM2OC05NDdiLTk2NDFjOTllNzA5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2GRQwDQYJKoZIhvcNAQELBQADggEBANB3fPM8c2AgKGZ8+dvk7vxuKjcA A2EkE9qyFtavY7VW+kSOte5Pa2jgABKJiN0HlORZwXDOxF9UoG1CASWpmCG3uIsT si+i9PV5YkZlBA4lEwkOPFtyFmfAXjRxtJq9GGVnGJVOMdX7DjLIRco5kvPGaAdA qsdPoqhvxdloncM/UrLNdTt8bHYQzl88gb75U7F/W7yx6X+akg1VBHRuYWmmYHXX 6GFpwS5bzuUgHpCRbHkIV/WwZN9S0Usg9hdAIYhqDHCbPTuCLe6lBKSZkYt8ltYg 5oSpSPom2ox3cQ+pNkUH6+LtBaeMP7hLVSt18V1elZYaTegDefLaFxqPUCc= -----END CERTIFICATE-----Generated at Mon Jun 16 21:57:25 2025 by rpki-client