$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298d72e4-354c-46bd-a3f9-9f69844f1676.roa File: 298d72e4-354c-46bd-a3f9-9f69844f1676.roa (raw, json) Hash identifier: AXi/ujmxlMjDdRxXk2fTLp3R3jp12v+EvCsv7A3HBOA= Subject key identifier: C6:ED:95:2D:53:7F:AC:04:08:3F:D5:C5:23:28:68:BB:00:99:9D:7D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6A6DD193BA04AEB8E9FF9D0628E1A766879F8AEA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298d72e4-354c-46bd-a3f9-9f69844f1676.roa Signing time: Mon 23 Jun 2025 15:10:20 +0000 ROA not before: Mon 23 Jun 2025 15:10:20 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.177.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:6d:d1:93:ba:04:ae:b8:e9:ff:9d:06:28:e1:a7:66:87:9f:8a:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:10:20 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=f6a5c6ec01bdbc59adefa331459cc7203ab9942e067a41aab818f0d7a28fd286, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7d:eb:ab:66:9e:ec:0f:11:f3:d5:fe:a1:2e: c1:74:b4:76:fe:b4:c2:8d:d7:26:94:38:14:f4:ba: fc:0c:a4:d1:50:34:cc:51:42:90:c8:68:b6:25:62: 5e:05:3c:9d:0c:67:12:70:c9:51:77:ca:41:0a:0d: 50:0d:39:00:b6:45:45:f7:9b:5f:56:ce:7e:64:91: 22:ef:53:0b:09:24:94:ed:6b:53:d0:9a:10:10:4f: b5:44:f1:1a:1e:c3:dd:8b:3e:49:57:5b:fc:08:46: fd:29:e7:5b:be:06:20:a1:7d:67:34:b6:08:89:67: ee:fc:e5:c6:43:f7:95:69:10:a1:ea:9c:ec:99:f9: 19:f6:46:9b:25:b3:d2:39:e8:44:7c:e2:ce:e9:4d: 3b:88:3b:03:92:e8:a9:7f:b4:09:52:51:c0:18:5f: 22:88:07:df:6f:ae:6c:a7:48:23:f3:37:5f:0f:84: e7:1f:e4:8a:70:96:8f:6d:fc:9a:8f:bf:36:68:ff: 37:ae:a9:ba:9e:a2:3b:b8:64:8a:0c:2d:8c:5c:73: 22:d4:21:40:ef:9d:63:c3:f8:d0:77:4c:7b:27:aa: f3:8d:07:39:38:7d:61:82:e3:84:45:53:61:46:b2: 83:a0:55:7a:52:4a:28:6d:70:f3:8c:d3:25:cb:51: d9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:ED:95:2D:53:7F:AC:04:08:3F:D5:C5:23:28:68:BB:00:99:9D:7D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298d72e4-354c-46bd-a3f9-9f69844f1676.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.177.20.0/22 Signature Algorithm: sha256WithRSAEncryption 26:14:04:5a:90:b4:b5:7e:0a:52:d3:3f:65:92:d1:b8:74:62: 96:cd:f4:b4:60:2b:fa:bc:b0:ea:8e:74:98:bc:08:14:65:1c: e7:8b:ea:72:7f:cf:0a:d4:be:b2:a7:07:61:68:e3:f8:77:ba: 9a:d4:47:5a:4c:5f:5c:0c:df:17:96:9b:6c:dc:c0:5e:3d:2c: 94:63:39:06:af:c9:fa:ff:9e:dc:17:73:3f:b1:85:2c:29:2c: 83:aa:89:58:ff:dc:87:7e:55:28:eb:b3:5a:20:5e:a8:8e:85: 35:24:af:3a:29:94:57:a0:1c:bb:c4:4a:44:6b:23:b5:2d:12: ca:91:99:4c:5a:06:d4:f6:35:9e:14:bd:b3:e4:d3:9b:af:c9: 3c:bd:63:40:82:75:90:1f:98:1f:80:1b:52:17:b0:25:04:55: 18:2e:56:4b:e3:1b:dc:42:44:f8:8e:9a:25:13:38:50:6a:a6: 8e:66:1c:74:b5:ef:5d:a3:0a:5f:35:fc:86:43:83:30:06:b0: 9f:ea:bd:4d:37:4a:51:51:a1:06:0d:54:31:ac:1f:89:7f:4a: 20:7d:a2:4b:af:f6:95:09:da:61:72:de:e0:b8:8c:d0:13:e4: 2f:a5:51:25:99:8d:05:f1:45:68:7c:a1:17:a8:3d:e0:db:c7: ec:80:27:30 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUam3Rk7oErrjp/50GKOGnZoefiuowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUxMDIwWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNmE1YzZlYzAxYmRiYzU5YWRlZmEzMzE0NTljYzcyMDNh Yjk5NDJlMDY3YTQxYWFiODE4ZjBkN2EyOGZkMjg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdfeurZp7sDxHz1f6hLsF0tHb+tMKN1yaUOBT0uvwMpNFQ NMxRQpDIaLYlYl4FPJ0MZxJwyVF3ykEKDVANOQC2RUX3m19Wzn5kkSLvUwsJJJTt a1PQmhAQT7VE8Roew92LPklXW/wIRv0p51u+BiChfWc0tgiJZ+785cZD95VpEKHq nOyZ+Rn2Rpsls9I56ER84s7pTTuIOwOS6Kl/tAlSUcAYXyKIB99vrmynSCPzN18P hOcf5Ipwlo9t/JqPvzZo/zeuqbqeoju4ZIoMLYxccyLUIUDvnWPD+NB3THsnqvON Bzk4fWGC44RFU2FGsoOgVXpSSihtcPOM0yXLUdnDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxu2VLVN/rAQIP9XFIyhouwCZnX0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI5OGQ3MmU0LTM1NGMtNDZiZC1hM2Y5LTlmNjk4NDRmMTY3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALRsRQwDQYJKoZIhvcNAQELBQADggEBACYUBFqQtLV+ClLTP2WS0bh0YpbN 9LRgK/q8sOqOdJi8CBRlHOeL6nJ/zwrUvrKnB2Fo4/h3uprUR1pMX1wM3xeWm2zc wF49LJRjOQavyfr/ntwXcz+xhSwpLIOqiVj/3Id+VSjrs1ogXqiOhTUkrzoplFeg HLvESkRrI7UtEsqRmUxaBtT2NZ4UvbPk05uvyTy9Y0CCdZAfmB+AG1IXsCUEVRgu VkvjG9xCRPiOmiUTOFBqpo5mHHS1712jCl81/IZDgzAGsJ/qvU03SlFRoQYNVDGs H4l/SiB9okuv9pUJ2mFy3uC4jNAT5C+lUSWZjQXxRWh8oReoPeDbx+yAJzA= -----END CERTIFICATE-----Generated at Tue Jul 1 06:03:06 2025 by rpki-client