$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e00517b8-99d8-4957-a0d5-9380af850fc2.roa File: e00517b8-99d8-4957-a0d5-9380af850fc2.roa (raw, json) Hash identifier: VD5CW6galiJp598JXAPqGfw20Pal9MG54kB7g+SsdBk= Subject key identifier: 6F:A4:6A:34:9A:23:8C:99:87:8F:07:80:83:BC:94:4D:0B:01:B0:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 667DBAF1818B7A30D67191E5AB827A0E8F93CDE5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e00517b8-99d8-4957-a0d5-9380af850fc2.roa Signing time: Fri 25 Jul 2025 00:20:25 +0000 ROA not before: Fri 25 Jul 2025 00:20:25 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 66.7.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:7d:ba:f1:81:8b:7a:30:d6:71:91:e5:ab:82:7a:0e:8f:93:cd:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:20:25 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=6aa7163d4182695b879d0326eff55fb0d6fa8a7c264123b493130076ad434e98, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:de:76:70:dc:46:b3:2a:25:f0:10:9c:6b:b6: ed:0e:7c:6c:11:e2:bf:eb:1c:ec:6b:e0:7c:90:87: b8:3c:7d:4e:60:38:df:db:1b:72:5a:49:a6:d2:2f: 7e:0a:a2:fc:93:9a:7a:22:f1:2c:46:f0:98:b3:b9: 9c:63:84:0c:5b:2e:aa:9a:e2:b8:62:b5:6c:d8:cc: f4:e5:53:eb:fc:f3:60:58:2d:11:e7:72:d6:3a:38: ed:d1:d1:cc:37:5c:d3:5e:ca:20:36:28:37:b3:be: f8:c9:e0:b9:e4:98:80:0a:74:63:23:a8:6b:a9:67: 0c:56:d0:a5:99:b2:22:34:52:53:c0:24:be:55:4c: 1b:68:e9:9e:b6:0e:69:c9:9b:4a:6b:7c:41:f1:7d: 57:7f:36:66:21:e7:2d:63:94:b1:a9:8a:27:ff:04: c3:9e:aa:3e:5a:aa:09:4b:57:42:e8:ec:6d:a4:b5: fd:55:15:74:f0:5f:4d:5f:91:c0:8e:c6:3f:48:3d: b5:4c:c2:f0:93:e2:a6:53:bf:a7:30:cd:7e:1b:49: 82:75:48:5a:9e:71:51:27:f9:7c:de:76:58:3d:ce: 48:01:69:c9:e1:0a:98:c5:99:97:82:23:75:10:12: a7:3d:ad:b9:3d:10:08:29:fc:46:01:77:62:65:41: 85:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:A4:6A:34:9A:23:8C:99:87:8F:07:80:83:BC:94:4D:0B:01:B0:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e00517b8-99d8-4957-a0d5-9380af850fc2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.7.0.0/18 Signature Algorithm: sha256WithRSAEncryption 66:a1:0a:04:87:97:d7:6b:8d:72:c4:97:10:3d:5d:d5:47:25: ad:d8:22:a5:e0:61:33:24:37:e2:05:2c:e8:e7:12:2a:ec:83: 3c:27:0a:5a:9d:e5:5f:d4:e3:2e:00:85:20:2e:25:3f:4c:ec: 59:05:fc:79:a0:1d:10:0d:2d:5d:eb:b7:b2:a2:e8:ec:5b:a3: b8:9f:31:13:3a:48:60:8d:36:a7:f9:e1:a2:ae:71:84:6c:2e: 23:bf:00:67:c1:53:89:d3:0b:2c:c9:95:76:48:61:82:7d:8c: 57:c4:4a:9d:0f:56:7e:34:37:f8:30:d2:76:95:1f:c9:70:f2: 1b:a3:20:16:f1:4c:e6:c0:99:48:9f:96:a2:ae:b6:d4:ba:c7: 12:13:4a:51:2f:fa:7b:a3:17:4e:f1:b8:e6:b3:48:ee:bb:b8: c0:ee:6f:94:e4:eb:3e:55:34:10:65:db:66:c3:13:a2:65:5a: 1b:c5:92:c7:67:98:6d:82:6f:20:de:25:fb:c0:15:46:54:e5: 03:22:75:b2:f8:91:a8:23:6c:27:90:e6:6a:aa:59:3d:b9:29: 71:68:98:ad:74:df:b6:50:f1:16:8e:57:36:60:dd:b8:10:d2: 71:66:1b:21:4e:b7:a7:d8:d1:8d:81:bb:eb:54:21:26:eb:10: 9c:cb:92:ad -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZn268YGLejDWcZHlq4J6Do+TzeUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI1MDAyMDI1WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YWE3MTYzZDQxODI2OTViODc5ZDAzMjZlZmY1NWZiMGQ2 ZmE4YTdjMjY0MTIzYjQ5MzEzMDA3NmFkNDM0ZTk4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/3nZw3EazKiXwEJxrtu0OfGwR4r/rHOxr4HyQh7g8fU5g ON/bG3JaSabSL34KovyTmnoi8SxG8JizuZxjhAxbLqqa4rhitWzYzPTlU+v882BY LRHnctY6OO3R0cw3XNNeyiA2KDezvvjJ4LnkmIAKdGMjqGupZwxW0KWZsiI0UlPA JL5VTBto6Z62DmnJm0prfEHxfVd/NmYh5y1jlLGpiif/BMOeqj5aqglLV0Lo7G2k tf1VFXTwX01fkcCOxj9IPbVMwvCT4qZTv6cwzX4bSYJ1SFqecVEn+Xzedlg9zkgB acnhCpjFmZeCI3UQEqc9rbk9EAgp/EYBd2JlQYXXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUb6RqNJojjJmHjweAg7yUTQsBsFowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UwMDUxN2I4LTk5ZDgtNDk1Ny1hMGQ1LTkzODBhZjg1MGZjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZCBwAwDQYJKoZIhvcNAQELBQADggEBAGahCgSHl9drjXLElxA9XdVHJa3Y IqXgYTMkN+IFLOjnEirsgzwnClqd5V/U4y4AhSAuJT9M7FkF/HmgHRANLV3rt7Ki 6Oxbo7ifMRM6SGCNNqf54aKucYRsLiO/AGfBU4nTCyzJlXZIYYJ9jFfESp0PVn40 N/gw0naVH8lw8hujIBbxTObAmUiflqKuttS6xxITSlEv+nujF07xuOazSO67uMDu b5Tk6z5VNBBl22bDE6JlWhvFksdnmG2CbyDeJfvAFUZU5QMidbL4kagjbCeQ5mqq WT25KXFomK1037ZQ8RaOVzZg3bgQ0nFmGyFOt6fY0Y2Bu+tUISbrEJzLkq0= -----END CERTIFICATE-----Generated at Sat Aug 9 22:43:41 2025 by rpki-client