$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ba48806-c985-4d6d-bd00-180947f864e0.roa File: 2ba48806-c985-4d6d-bd00-180947f864e0.roa (raw, json) Hash identifier: 323I2dL7JZEwR5PLosKEjs6ZtUdg/JLXdEvdor0bbNo= Subject key identifier: 93:D2:89:5D:56:5A:A0:B0:C4:2F:31:AE:59:C5:4B:A6:C6:DB:E7:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 117D1EB2D3B219E9CF40A916C6B33E63A66B7AA6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ba48806-c985-4d6d-bd00-180947f864e0.roa Signing time: Wed 02 Jul 2025 00:41:10 +0000 ROA not before: Wed 02 Jul 2025 00:41:10 +0000 ROA not after: Wed 06 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.190.92.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:7d:1e:b2:d3:b2:19:e9:cf:40:a9:16:c6:b3:3e:63:a6:6b:7a:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 2 00:41:10 2025 GMT Not After : Aug 6 23:59:59 2025 GMT Subject: serialNumber=b4c61f40ade020a092856e136bbbf5f6e7252c143a39c32b343724d5f61ff2f3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e9:68:ef:c2:b6:e5:c2:29:85:48:f9:bb:5b: bb:9e:32:53:c1:2a:1e:be:fd:a6:fd:f3:2b:83:7b: e6:e5:96:32:a7:cd:5f:42:9b:56:54:ef:08:e5:45: 56:d2:43:e4:0f:98:89:4b:d7:24:0b:1c:f9:81:e5: 3d:24:ab:9e:66:84:c4:95:8b:49:b8:38:20:89:16: 0d:13:11:7c:83:e0:eb:bb:a5:b8:4d:b9:63:bf:19: 2c:c6:6e:e5:9d:f6:58:99:2a:71:6d:37:24:3e:86: 80:0c:42:e7:b0:e0:ce:8c:76:ae:56:48:f2:22:7b: 92:33:81:1b:5c:80:be:e3:e5:a7:23:e5:58:53:d1: f7:b9:33:ea:53:77:4b:05:81:05:aa:95:2e:67:59: be:c4:f4:b6:0c:78:e3:5c:2f:8e:a3:1d:51:a5:30: d5:83:c5:62:31:c3:38:67:b2:93:42:03:27:d3:d7: 24:44:92:15:22:46:2b:c6:ff:1e:79:40:0e:b7:b5: 6e:6e:95:0f:c2:c9:30:ad:91:59:0b:88:ba:f9:0c: 85:f4:48:ce:aa:aa:7d:2f:d6:b1:1b:67:2a:52:6b: a9:d3:38:f2:9b:c4:6c:e2:1b:24:6f:48:11:a6:e7: 55:19:29:67:bd:d2:03:53:d0:74:83:bf:28:b5:b8: 94:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:D2:89:5D:56:5A:A0:B0:C4:2F:31:AE:59:C5:4B:A6:C6:DB:E7:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ba48806-c985-4d6d-bd00-180947f864e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.190.92.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:fe:61:7b:ef:bf:f1:48:a6:0c:20:89:a7:ca:c3:90:f3:e7: 7c:e6:b9:70:28:69:d7:c8:c2:6b:76:1e:b7:9f:91:b5:5a:7d: 02:ab:c3:70:ec:27:32:8e:27:b3:77:26:f8:e0:9f:99:ec:7b: ee:22:3e:fd:4a:a4:84:3f:c6:c6:c3:c4:1e:ea:19:a5:10:17: 1a:f5:44:e7:4c:12:6d:dd:82:78:b4:dc:1c:4e:e9:a5:00:72: 49:11:19:8e:26:10:14:a7:95:ae:56:e3:6b:cd:6c:83:4f:68: 69:be:02:d0:e1:af:7d:c7:d9:22:4c:77:ed:49:cd:d9:8b:25: 0e:c4:e5:7f:46:9c:af:eb:7d:96:71:b8:df:27:e9:99:9f:4d: f3:68:41:73:6b:d4:2b:d7:02:c9:bc:e4:77:2a:0c:08:dc:d1: 97:ac:d2:1f:8b:65:05:d5:d4:97:12:03:95:48:78:0c:07:f3: aa:e6:0b:1a:9f:24:b3:7c:da:18:15:91:75:89:42:d9:6a:5b: 8b:9c:c3:ec:82:2c:89:c6:9a:d1:79:b3:76:1a:12:f6:32:a3: 9a:f9:f3:21:39:95:96:08:fe:ee:26:a6:7e:a7:9f:c7:ca:58: 11:26:b0:6f:91:80:e1:93:e8:41:44:48:62:90:0d:81:a1:4a: 43:2c:16:06 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEX0estOyGenPQKkWxrM+Y6ZreqYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAyMDA0MTEwWhcNMjUwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNGM2MWY0MGFkZTAyMGEwOTI4NTZlMTM2YmJiZjVmNmU3 MjUyYzE0M2EzOWMzMmIzNDM3MjRkNWY2MWZmMmYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO6WjvwrblwimFSPm7W7ueMlPBKh6+/ab98yuDe+blljKn zV9Cm1ZU7wjlRVbSQ+QPmIlL1yQLHPmB5T0kq55mhMSVi0m4OCCJFg0TEXyD4Ou7 pbhNuWO/GSzGbuWd9liZKnFtNyQ+hoAMQuew4M6Mdq5WSPIie5IzgRtcgL7j5acj 5VhT0fe5M+pTd0sFgQWqlS5nWb7E9LYMeONcL46jHVGlMNWDxWIxwzhnspNCAyfT 1yREkhUiRivG/x55QA63tW5ulQ/CyTCtkVkLiLr5DIX0SM6qqn0v1rEbZypSa6nT OPKbxGziGyRvSBGm51UZKWe90gNT0HSDvyi1uJSZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUk9KJXVZaoLDELzGuWcVLpsbb5yQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJiYTQ4ODA2LWM5ODUtNGQ2ZC1iZDAwLTE4MDk0N2Y4NjRlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJAvlwwDQYJKoZIhvcNAQELBQADggEBAIv+YXvvv/FIpgwgiafKw5Dz53zm uXAoadfIwmt2HrefkbVafQKrw3DsJzKOJ7N3Jvjgn5nse+4iPv1KpIQ/xsbDxB7q GaUQFxr1ROdMEm3dgni03BxO6aUAckkRGY4mEBSnla5W42vNbINPaGm+AtDhr33H 2SJMd+1JzdmLJQ7E5X9GnK/rfZZxuN8n6ZmfTfNoQXNr1CvXAsm85HcqDAjc0Zes 0h+LZQXV1JcSA5VIeAwH86rmCxqfJLN82hgVkXWJQtlqW4ucw+yCLInGmtF5s3Ya EvYyo5r58yE5lZYI/u4mpn6nn8fKWBEmsG+RgOGT6EFESGKQDYGhSkMsFgY= -----END CERTIFICATE-----Generated at Wed Jul 2 15:53:12 2025 by rpki-client