$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0feab138-4c08-4231-8ce0-8948b0920e06.roa File: 0feab138-4c08-4231-8ce0-8948b0920e06.roa (raw, json) Hash identifier: V/Gk3J336Mxhgwor+qJaYtCE6/v+Q/zwI3bzAtRcpB4= Subject key identifier: 97:19:39:7E:55:AC:57:35:9D:0C:68:E7:7C:60:86:8E:6B:E4:58:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5188EC5FD0AAA1BF235B8BF85DB12CF0FC673C08 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0feab138-4c08-4231-8ce0-8948b0920e06.roa Signing time: Mon 23 Jun 2025 15:10:19 +0000 ROA not before: Mon 23 Jun 2025 15:10:19 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.173.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:88:ec:5f:d0:aa:a1:bf:23:5b:8b:f8:5d:b1:2c:f0:fc:67:3c:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:10:19 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=8d69be63d7b31a1410dbbeda65344a115c338bea3a7d2c97f5fd0039a3986988, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:bd:c1:7a:a4:02:51:ac:9b:18:7e:6e:db:50: 01:9b:38:8c:37:05:57:47:87:64:ac:de:99:39:6a: 36:7e:d2:b9:36:9b:08:95:6c:49:26:40:5a:f4:0f: 67:b8:4a:81:b0:38:9a:6d:a1:1f:20:ef:7a:4b:f2: f9:ec:9c:5d:5e:46:85:5d:15:6c:20:78:af:d5:cc: 7e:98:40:f0:59:4e:a5:6a:57:72:b1:25:5b:2b:f2: 96:2f:a8:34:f4:6c:17:b0:da:e8:5f:a4:de:03:88: 78:c8:bc:cc:cf:b2:3f:2d:e1:f4:19:47:04:49:94: 65:e3:80:85:29:ad:a9:f4:bf:bd:2d:af:ba:79:8c: 89:4f:59:3e:08:ac:7a:f1:f2:54:42:cc:01:69:38: 0b:5c:85:db:ab:d1:58:d6:83:b0:a9:5e:1e:45:0a: 73:31:51:8a:b4:1b:3a:4c:9c:03:17:eb:c5:1e:6f: 0b:82:d4:fe:5f:d3:b2:0d:b5:b1:64:e8:9b:19:ff: 8f:e0:ff:37:11:fc:9a:be:35:97:8b:00:10:2e:f3: 1c:5d:82:8e:c3:a7:a1:9d:f1:5c:85:0a:ae:8c:03: f9:bf:63:3d:e4:f3:4f:79:fc:c4:1d:c9:7e:35:e6: 19:4e:ab:6e:5a:ea:8c:42:1e:f3:ca:d0:20:ce:df: e4:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:19:39:7E:55:AC:57:35:9D:0C:68:E7:7C:60:86:8E:6B:E4:58:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0feab138-4c08-4231-8ce0-8948b0920e06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.173.64.0/18 Signature Algorithm: sha256WithRSAEncryption 29:c1:3f:87:dd:02:bd:4a:10:df:29:27:74:fd:89:61:45:0f: b0:87:d4:b5:fd:f4:6b:46:ea:fa:bf:26:53:8f:57:c1:70:b2: d4:d9:cd:55:e7:2a:d3:93:47:c2:bc:cc:ff:98:f2:6a:00:20: f2:e0:fd:c0:d9:91:6c:c5:28:8b:c8:df:d4:6b:21:8c:e9:5d: 9a:1f:d4:a0:12:3c:b8:27:4f:f4:60:65:3d:d5:cf:a5:51:b5: 6e:e4:50:4d:6c:ff:be:8c:12:ed:42:87:a7:19:17:23:aa:5a: 5c:fb:71:74:86:22:21:9d:46:a9:2f:ff:5d:7d:ab:63:99:d7: 9d:89:35:26:c5:d2:0e:09:11:43:16:7c:18:7c:22:65:c5:50: 7a:b8:20:3d:67:5a:e6:82:89:b6:79:0b:ff:9d:57:87:58:12: e8:a5:50:2d:a8:91:f1:7f:62:02:80:9b:35:e4:f6:e2:2c:19: 62:06:b5:d8:82:9e:e8:43:4f:b9:c2:f8:8d:a1:e5:82:36:85: f9:0a:46:ec:20:ea:28:a3:e6:b3:97:c1:34:88:d8:0a:b4:21: 6c:c0:e5:50:ee:c2:44:c3:33:9c:be:03:22:34:f7:78:32:8a: af:33:9a:2f:2c:18:ae:fa:cf:2a:8d:50:4d:c9:e8:23:91:5c: e7:d8:d5:78 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUYjsX9Cqob8jW4v4XbEs8PxnPAgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUxMDE5WhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDY5YmU2M2Q3YjMxYTE0MTBkYmJlZGE2NTM0NGExMTVj MzM4YmVhM2E3ZDJjOTdmNWZkMDAzOWEzOTg2OTg4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDovcF6pAJRrJsYfm7bUAGbOIw3BVdHh2Ss3pk5ajZ+0rk2 mwiVbEkmQFr0D2e4SoGwOJptoR8g73pL8vnsnF1eRoVdFWwgeK/VzH6YQPBZTqVq V3KxJVsr8pYvqDT0bBew2uhfpN4DiHjIvMzPsj8t4fQZRwRJlGXjgIUpran0v70t r7p5jIlPWT4IrHrx8lRCzAFpOAtchdur0VjWg7CpXh5FCnMxUYq0GzpMnAMX68Ue bwuC1P5f07INtbFk6JsZ/4/g/zcR/Jq+NZeLABAu8xxdgo7Dp6Gd8VyFCq6MA/m/ Yz3k8095/MQdyX415hlOq25a6oxCHvPK0CDO3+TXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlxk5flWsVzWdDGjnfGCGjmvkWN4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmZWFiMTM4LTRjMDgtNDIzMS04Y2UwLTg5NDhiMDkyMGUwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbRrUAwDQYJKoZIhvcNAQELBQADggEBACnBP4fdAr1KEN8pJ3T9iWFFD7CH 1LX99GtG6vq/JlOPV8FwstTZzVXnKtOTR8K8zP+Y8moAIPLg/cDZkWzFKIvI39Rr IYzpXZof1KASPLgnT/RgZT3Vz6VRtW7kUE1s/76MEu1Ch6cZFyOqWlz7cXSGIiGd Rqkv/119q2OZ152JNSbF0g4JEUMWfBh8ImXFUHq4ID1nWuaCibZ5C/+dV4dYEuil UC2okfF/YgKAmzXk9uIsGWIGtdiCnuhDT7nC+I2h5YI2hfkKRuwg6iij5rOXwTSI 2Aq0IWzA5VDuwkTDM5y+AyI093gyiq8zmi8sGK76zyqNUE3J6CORXOfY1Xg= -----END CERTIFICATE-----Generated at Thu Jul 3 10:29:09 2025 by rpki-client