$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/183b2359-812f-4db8-b13a-b849330f3651.roa File: 183b2359-812f-4db8-b13a-b849330f3651.roa (raw, json) Hash identifier: iJ2ZAWSvbpSEpR9JxNc7FrCHzl7Z2kKbcr1bkDG6jWM= Subject key identifier: 8B:6E:C8:FF:CA:FD:5F:CD:46:3D:B6:68:89:17:F1:C5:23:84:4E:BC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CAC5898AB718A5BE7A9F42A488CE5C0C88F3BDE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/183b2359-812f-4db8-b13a-b849330f3651.roa Signing time: Tue 24 Jun 2025 00:10:57 +0000 ROA not before: Tue 24 Jun 2025 00:10:57 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.254.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:ac:58:98:ab:71:8a:5b:e7:a9:f4:2a:48:8c:e5:c0:c8:8f:3b:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:10:57 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=bb6b7e2faad34ee839603885953794fd2602e7501c00aad27492e1c03d51e045, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:55:81:ab:e3:a5:54:b0:a8:0b:40:db:c8:89: c0:db:7b:df:61:ec:d2:2b:62:78:4e:e7:9b:a0:6d: 1d:db:c3:e5:84:e6:67:c5:5f:59:5f:9f:bb:05:8d: 28:a1:07:4d:bd:0b:d5:4b:ef:db:cf:2c:b3:4c:ae: f1:4e:af:25:44:fa:72:7e:2d:1a:3d:20:56:0b:b4: fd:8a:17:60:ec:b4:63:03:7a:e0:94:9f:fd:0c:28: 1b:0a:b0:b8:ed:33:57:22:17:75:6b:2d:13:09:9f: ce:7e:3c:de:12:11:54:18:99:b8:34:0e:d4:89:8a: 8c:58:6f:36:e4:88:a0:98:f3:65:8e:2b:c8:9c:3f: d1:78:58:56:74:3a:25:65:1b:fa:77:dc:95:ff:0c: 94:83:3c:d9:52:e1:dc:34:71:70:4a:c7:80:6c:49: 51:af:aa:24:7b:c6:2f:5d:65:e1:96:d8:f3:15:91: 31:a8:11:df:58:25:b0:89:c6:f3:3b:d6:4e:fe:f3: e5:b9:a2:74:2f:e5:bf:1b:4d:fb:a1:12:41:1f:ed: 69:e9:31:4e:20:d1:84:ac:f0:a3:34:6a:02:06:16: 58:4a:01:26:7f:d6:24:57:55:c8:c4:f9:99:8e:e7: 83:b5:80:d9:b8:54:75:5e:b9:7c:b1:3d:e2:c1:eb: b8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:6E:C8:FF:CA:FD:5F:CD:46:3D:B6:68:89:17:F1:C5:23:84:4E:BC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/183b2359-812f-4db8-b13a-b849330f3651.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.254.0.0/17 Signature Algorithm: sha256WithRSAEncryption 5f:b5:ef:b7:11:3c:7c:52:7e:ae:2c:75:d0:7c:f9:9e:05:bb: 65:dc:66:bd:8a:ee:e8:0b:ee:2a:7e:68:e3:e4:9e:ac:b1:db: 50:9d:13:6e:65:ea:a5:34:c0:dc:b5:3b:b5:c3:a9:bc:ff:51: aa:c5:9e:53:35:65:2f:12:e7:12:8e:0a:54:5b:e4:3f:88:af: a4:4c:7f:0b:36:63:82:69:57:2a:f1:f2:94:68:d4:15:57:3d: 4f:fe:14:fa:92:34:19:a2:c1:f1:b4:9a:78:85:2f:74:72:e1: 8b:6b:73:8f:82:9d:09:ed:7c:47:40:dd:38:fa:0d:31:ff:73: 36:1a:99:f1:ac:01:19:05:4a:7e:b1:70:3f:e3:b8:82:00:0a: 40:2c:1b:08:52:de:d7:34:cf:8e:15:a8:98:5e:93:f7:9e:16: a7:99:fe:cc:ff:45:0e:97:12:18:43:b6:de:17:3f:22:31:17: 7f:b7:b1:d9:82:0e:94:27:eb:a1:2a:87:33:ca:8c:22:0b:21: 3b:d0:98:50:87:72:fa:d9:f7:df:df:fa:fc:a6:89:de:70:e7: 3d:23:a5:ab:0a:08:b3:9d:bf:5c:b4:2e:e9:e8:ff:73:98:44: ca:2e:e8:8a:c6:b9:98:a6:fd:72:cb:86:58:23:04:82:42:a3: 20:d4:51:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULKxYmKtxilvnqfQqSIzlwMiPO94wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAxMDU3WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYjZiN2UyZmFhZDM0ZWU4Mzk2MDM4ODU5NTM3OTRmZDI2 MDJlNzUwMWMwMGFhZDI3NDkyZTFjMDNkNTFlMDQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBVYGr46VUsKgLQNvIicDbe99h7NIrYnhO55ugbR3bw+WE 5mfFX1lfn7sFjSihB029C9VL79vPLLNMrvFOryVE+nJ+LRo9IFYLtP2KF2DstGMD euCUn/0MKBsKsLjtM1ciF3VrLRMJn85+PN4SEVQYmbg0DtSJioxYbzbkiKCY82WO K8icP9F4WFZ0OiVlG/p33JX/DJSDPNlS4dw0cXBKx4BsSVGvqiR7xi9dZeGW2PMV kTGoEd9YJbCJxvM71k7+8+W5onQv5b8bTfuhEkEf7WnpMU4g0YSs8KM0agIGFlhK ASZ/1iRXVcjE+ZmO54O1gNm4VHVeuXyxPeLB67gVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUi27I/8r9X81GPbZoiRfxxSOETrwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE4M2IyMzU5LTgxMmYtNGRiOC1iMTNhLWI4NDkzMzBmMzY1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcX/gAwDQYJKoZIhvcNAQELBQADggEBAF+177cRPHxSfq4sddB8+Z4Fu2Xc Zr2K7ugL7ip+aOPknqyx21CdE25l6qU0wNy1O7XDqbz/UarFnlM1ZS8S5xKOClRb 5D+Ir6RMfws2Y4JpVyrx8pRo1BVXPU/+FPqSNBmiwfG0mniFL3Ry4Ytrc4+CnQnt fEdA3Tj6DTH/czYamfGsARkFSn6xcD/juIIACkAsGwhS3tc0z44VqJhek/eeFqeZ /sz/RQ6XEhhDtt4XPyIxF3+3sdmCDpQn66EqhzPKjCILITvQmFCHcvrZ99/f+vym id5w5z0jpasKCLOdv1y0Luno/3OYRMou6IrGuZim/XLLhlgjBIJCoyDUUao= -----END CERTIFICATE-----Generated at Tue Jul 1 05:46:44 2025 by rpki-client