$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2468224a-586c-4b15-b2f7-6aab1f7b768d.roa File: 2468224a-586c-4b15-b2f7-6aab1f7b768d.roa (raw, json) Hash identifier: qaNRJPqqkDxpz7sMtRQIP4gF/gpYWzLxp30Shwe+elk= Subject key identifier: 65:90:E3:74:4D:76:A0:2B:81:5C:42:58:4B:5B:F6:02:FC:37:3F:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 791C5B452544C54503B9D7B45F08A9D8C11125EC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2468224a-586c-4b15-b2f7-6aab1f7b768d.roa Signing time: Tue 17 Jun 2025 00:11:16 +0000 ROA not before: Tue 17 Jun 2025 00:11:16 +0000 ROA not after: Tue 22 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 198.74.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:1c:5b:45:25:44:c5:45:03:b9:d7:b4:5f:08:a9:d8:c1:11:25:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 17 00:11:16 2025 GMT Not After : Jul 22 23:59:59 2025 GMT Subject: serialNumber=d7f3edc041f3adaa8737c01ec3c5fa19763975849adc10d73c2bbc47f545278d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cf:e2:1d:02:d8:6b:5d:f9:f4:82:b8:6f:2d: 80:ce:47:b9:ce:99:8c:7a:0b:6e:54:c2:93:f8:37: da:64:f5:99:1c:b5:5d:d4:d8:e8:9f:05:a0:3c:09: 12:03:b9:3a:ab:db:f0:36:c6:3f:37:a9:cb:a2:ff: c7:78:50:da:7e:f6:8b:c4:b9:ef:c2:a6:c0:a2:6d: a4:f8:2b:82:42:f4:84:11:d5:95:fb:48:fe:62:3b: e0:59:bb:a6:47:56:26:2d:12:7f:ed:69:49:98:04: c3:24:02:40:b8:b6:9e:0e:4c:99:cb:b1:15:ad:2d: a3:04:17:29:4e:e6:da:a8:74:46:48:4f:84:be:60: 8d:16:af:65:25:bf:82:f7:7a:8b:4a:19:7a:3c:1c: cc:c8:6e:db:c9:af:ce:c0:35:6e:80:26:cb:d2:bd: af:a5:53:5d:04:f3:51:14:75:d9:2e:b2:59:6b:65: 12:46:db:46:64:91:19:7c:da:f0:e3:4b:c2:5b:36: 2b:1a:d2:4b:7b:85:70:44:a1:66:9e:3d:c7:a1:2f: f7:60:3e:c9:72:84:09:b9:d4:2f:b3:fb:fe:91:5d: db:ec:61:66:39:83:9a:18:e8:09:84:ce:ec:ce:5a: f7:df:88:f6:f3:88:2d:d4:99:0c:72:a7:da:27:b7: 1b:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:90:E3:74:4D:76:A0:2B:81:5C:42:58:4B:5B:F6:02:FC:37:3F:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2468224a-586c-4b15-b2f7-6aab1f7b768d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.74.96.0/19 Signature Algorithm: sha256WithRSAEncryption c7:29:13:5d:0d:91:c2:eb:fa:2b:0e:ca:a5:02:d8:af:33:6a: b4:eb:52:67:16:ae:7a:cb:af:ee:76:e0:3e:94:56:85:7c:80: 96:9d:ef:54:93:22:4a:12:30:88:d0:89:3e:b3:f6:de:b8:c2: 0c:06:fa:5f:88:c6:5e:36:f8:f6:fe:c3:5c:e8:87:d2:5d:d1: 57:3e:ee:10:3b:c8:60:fb:44:61:e1:f5:2a:c6:3e:e9:cf:c2: 5d:71:cf:bc:34:5d:11:0c:be:51:dd:1d:83:73:c6:b8:31:ca: cc:47:85:15:44:56:b0:70:48:70:c9:2b:b1:7e:3b:05:68:5c: d0:70:3d:44:c3:b5:a2:f2:e2:a0:42:22:56:e3:9d:57:d1:46: 53:b2:eb:6f:bb:8e:9c:85:65:a8:24:13:0e:77:bc:47:39:8d: 63:6c:f3:c8:9c:75:47:1b:a2:e7:aa:dc:76:97:9f:2b:3b:96: 29:99:8f:12:4b:e9:bf:b6:ef:85:4a:e9:6e:eb:47:b0:5a:b7: 69:e2:aa:17:40:dc:0e:e6:62:ab:39:2f:e8:2c:ae:b7:79:72: 12:5d:03:d8:e6:9d:89:40:9e:b4:d9:15:e4:8b:70:a6:11:44: ca:db:ae:8c:98:ac:bd:97:6c:6c:1f:17:3c:c3:06:a8:dd:3a: 28:da:33:96 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeRxbRSVExUUDude0Xwip2MERJewwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE3MDAxMTE2WhcNMjUwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkN2YzZWRjMDQxZjNhZGFhODczN2MwMWVjM2M1ZmExOTc2 Mzk3NTg0OWFkYzEwZDczYzJiYmM0N2Y1NDUyNzhkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0z+IdAthrXfn0grhvLYDOR7nOmYx6C25UwpP4N9pk9Zkc tV3U2OifBaA8CRIDuTqr2/A2xj83qcui/8d4UNp+9ovEue/CpsCibaT4K4JC9IQR 1ZX7SP5iO+BZu6ZHViYtEn/taUmYBMMkAkC4tp4OTJnLsRWtLaMEFylO5tqodEZI T4S+YI0Wr2Ulv4L3eotKGXo8HMzIbtvJr87ANW6AJsvSva+lU10E81EUddkusllr ZRJG20ZkkRl82vDjS8JbNisa0kt7hXBEoWaePcehL/dgPslyhAm51C+z+/6RXdvs YWY5g5oY6AmEzuzOWvffiPbziC3UmQxyp9ontxszAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZZDjdE12oCuBXEJYS1v2Avw3P+AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0NjgyMjRhLTU4NmMtNGIxNS1iMmY3LTZhYWIxZjdiNzY4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGSmAwDQYJKoZIhvcNAQELBQADggEBAMcpE10NkcLr+isOyqUC2K8zarTr UmcWrnrLr+524D6UVoV8gJad71STIkoSMIjQiT6z9t64wgwG+l+Ixl42+Pb+w1zo h9Jd0Vc+7hA7yGD7RGHh9SrGPunPwl1xz7w0XREMvlHdHYNzxrgxysxHhRVEVrBw SHDJK7F+OwVoXNBwPUTDtaLy4qBCIlbjnVfRRlOy62+7jpyFZagkEw53vEc5jWNs 88icdUcboueq3HaXnys7limZjxJL6b+274VK6W7rR7Bat2niqhdA3A7mYqs5L+gs rrd5chJdA9jmnYlAnrTZFeSLcKYRRMrbroyYrL2XbGwfFzzDBqjdOijaM5Y= -----END CERTIFICATE-----Generated at Sun Jun 29 09:31:02 2025 by rpki-client