$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e449706c-f72a-49ad-b65d-3cc66fcb72b4.roa File: e449706c-f72a-49ad-b65d-3cc66fcb72b4.roa (raw, json) Hash identifier: NNOEEGnWsjPx1NhUoC9qIe5NP3j5Z5gxCYCMbry6FyE= Subject key identifier: C0:EF:D2:55:3D:23:83:2F:0D:94:1E:53:A7:57:FC:1B:2B:58:11:19 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3005957748B30D92A7E7860CBFE527BF25CCE45C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e449706c-f72a-49ad-b65d-3cc66fcb72b4.roa Signing time: Sat 26 Jul 2025 00:11:33 +0000 ROA not before: Sat 26 Jul 2025 00:11:33 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.146.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:05:95:77:48:b3:0d:92:a7:e7:86:0c:bf:e5:27:bf:25:cc:e4:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 26 00:11:33 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=fae7f15454a3f8b2c26799c4d6603ebd3e49168abd61f20f83daf3a562eec7e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:7f:25:64:87:3f:c6:e2:ee:75:9b:c4:d7:3a: 7d:a6:74:b9:45:9a:e2:f0:59:05:17:96:27:4c:3b: 6c:ca:e2:6f:52:4f:18:4f:1a:16:63:e8:05:ca:c5: 06:ac:23:6c:29:08:19:ce:43:b6:43:cd:9b:d6:11: ac:6a:03:0e:93:f9:3c:75:37:a0:d4:6f:44:53:00: 35:8b:d3:80:46:36:ae:f5:46:e2:1a:c9:8e:df:52: 91:3e:f6:86:9b:60:1e:fd:5b:12:f1:23:37:d1:c5: c5:8a:56:21:41:ec:69:e7:2b:07:25:1d:14:f5:02: 73:e7:44:c0:d6:41:db:b8:44:04:48:fe:00:fb:17: eb:17:d8:49:f3:6d:11:74:23:ed:ae:73:43:1f:3e: 19:d1:58:2a:fb:4a:20:34:72:b9:04:6a:ab:85:ea: 53:65:3d:a6:42:a3:5a:01:e3:3c:7e:09:15:f0:ca: 40:23:7e:b6:f1:0f:f0:2c:6e:a7:ab:53:9b:b0:e6: 97:cf:f5:6b:0e:e8:d0:d5:1f:11:0a:b3:ba:3a:60: a9:c0:6a:bc:cd:34:ae:1f:2e:05:5a:85:f2:04:62: 5d:f7:6a:08:95:46:82:e6:e4:e0:90:ff:c9:6a:c3: 71:5a:54:21:71:92:b3:37:81:3b:3d:5e:bb:88:e8: 30:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:EF:D2:55:3D:23:83:2F:0D:94:1E:53:A7:57:FC:1B:2B:58:11:19 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e449706c-f72a-49ad-b65d-3cc66fcb72b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.146.0.0/17 Signature Algorithm: sha256WithRSAEncryption b9:4e:c9:55:a6:e0:30:a9:c7:31:27:e7:c0:78:b1:4c:1e:06: 96:15:e8:a7:99:6a:2e:51:31:b1:9d:e5:fa:fd:60:bf:70:f8: 7d:fc:16:2e:a0:25:d1:a2:3f:df:17:bb:34:16:97:89:b4:d3: d2:04:9f:9f:ef:09:e9:a5:89:46:f0:ad:37:08:a0:ed:4d:de: db:83:67:60:21:d6:0e:c7:51:63:95:42:49:99:6a:e3:03:2c: a7:28:81:39:f0:f1:1a:be:f5:eb:a7:35:0c:09:84:6d:43:7f: 8f:b4:9b:ac:70:86:a9:60:94:62:c3:91:9d:e1:65:50:f8:1b: f6:3c:d6:8d:d2:2c:5e:8a:07:56:4d:4e:10:78:aa:3e:12:9a: a0:d2:fc:e2:c9:f6:d3:93:21:31:cc:2c:c8:da:bc:26:7f:17: 7f:fe:d9:fa:ac:24:66:e7:69:31:68:4b:df:8c:31:a8:cc:e4: d3:42:d6:2c:72:72:57:80:10:e2:0a:cc:dd:71:3c:67:c4:41: 86:4e:41:19:7f:e6:ea:08:4f:89:b5:4e:71:8c:db:98:7e:8b: fd:4c:b4:95:19:be:c4:0c:74:4e:f5:03:37:76:43:6d:e6:82: 16:64:83:ac:7e:70:f0:22:33:80:13:f0:28:c8:de:5a:4c:ce: dc:57:34:45 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMAWVd0izDZKn54YMv+UnvyXM5FwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI2MDAxMTMzWhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYWU3ZjE1NDU0YTNmOGIyYzI2Nzk5YzRkNjYwM2ViZDNl NDkxNjhhYmQ2MWYyMGY4M2RhZjNhNTYyZWVjN2U0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3fyVkhz/G4u51m8TXOn2mdLlFmuLwWQUXlidMO2zK4m9S TxhPGhZj6AXKxQasI2wpCBnOQ7ZDzZvWEaxqAw6T+Tx1N6DUb0RTADWL04BGNq71 RuIayY7fUpE+9oabYB79WxLxIzfRxcWKViFB7GnnKwclHRT1AnPnRMDWQdu4RARI /gD7F+sX2EnzbRF0I+2uc0MfPhnRWCr7SiA0crkEaquF6lNlPaZCo1oB4zx+CRXw ykAjfrbxD/AsbqerU5uw5pfP9WsO6NDVHxEKs7o6YKnAarzNNK4fLgVahfIEYl33 agiVRoLm5OCQ/8lqw3FaVCFxkrM3gTs9XruI6DCRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwO/SVT0jgy8NlB5Tp1f8GytYERkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U0NDk3MDZjLWY3MmEtNDlhZC1iNjVkLTNjYzY2ZmNiNzJiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdAkgAwDQYJKoZIhvcNAQELBQADggEBALlOyVWm4DCpxzEn58B4sUweBpYV 6KeZai5RMbGd5fr9YL9w+H38Fi6gJdGiP98XuzQWl4m009IEn5/vCemliUbwrTcI oO1N3tuDZ2Ah1g7HUWOVQkmZauMDLKcogTnw8Rq+9eunNQwJhG1Df4+0m6xwhqlg lGLDkZ3hZVD4G/Y81o3SLF6KB1ZNThB4qj4SmqDS/OLJ9tOTITHMLMjavCZ/F3/+ 2fqsJGbnaTFoS9+MMajM5NNC1ixycleAEOIKzN1xPGfEQYZOQRl/5uoIT4m1TnGM 25h+i/1MtJUZvsQMdE71Azd2Q23mghZkg6x+cPAiM4AT8CjI3lpMztxXNEU= -----END CERTIFICATE-----Generated at Tue Aug 5 17:24:00 2025 by rpki-client