$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/314c7065-54b1-44ae-a830-288d71b28af0.roa File: 314c7065-54b1-44ae-a830-288d71b28af0.roa (raw, json) Hash identifier: Swe18FiCU4ToJwhRFxVgeeQfAanQ2+xFBdmr3fFw+E8= Subject key identifier: 57:10:8E:C9:29:F9:2A:62:57:EC:6D:E5:F5:54:CC:59:44:D8:0C:14 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 261DFC8BFBA9530FF68E5CA1CA9847624992DE30 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/314c7065-54b1-44ae-a830-288d71b28af0.roa Signing time: Sat 14 Jun 2025 00:51:11 +0000 ROA not before: Sat 14 Jun 2025 00:51:11 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.25.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:1d:fc:8b:fb:a9:53:0f:f6:8e:5c:a1:ca:98:47:62:49:92:de:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:51:11 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=30e94c5a7ac691f700834ce025875a5f57bf01d29adfb147a972aebd5ac8a4d8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a7:16:93:fb:98:8a:ba:39:ad:05:09:47:b7: 59:bc:ad:e7:04:d3:43:d0:03:46:7b:bf:3d:52:44: dd:bd:54:39:22:63:b2:6f:43:0b:6b:53:4f:56:8b: 08:22:63:21:a5:67:fe:35:ba:9f:ff:37:13:1b:f7: 59:44:9d:5a:05:1e:e1:e8:09:6e:9d:d8:a4:3e:f7: 44:ed:a2:57:89:a6:a7:b7:8c:2a:6d:81:35:e3:be: d0:ac:51:0a:94:d4:d7:24:f8:69:1b:59:14:c1:b0: 93:1c:d3:fd:8f:60:5c:a5:1a:71:f1:0c:30:b8:62: ef:99:e9:c9:67:37:05:c6:35:98:71:04:c6:91:7c: 4f:a2:20:27:8b:94:8c:07:91:d7:6e:f3:73:62:85: 9a:d4:cd:59:89:c7:6c:16:06:de:e8:97:c0:93:c6: bd:3d:9c:10:23:ba:b4:16:0a:a7:2f:7e:1e:08:06: ae:02:cb:17:b6:ef:2d:08:2b:a9:86:ec:d0:39:a9: 40:3e:c9:cb:62:b4:e8:b8:92:bb:a6:f2:2e:66:38: 5f:a2:9b:fe:02:b9:e1:36:61:67:52:53:8b:ae:83: a8:ab:1d:4b:33:ab:e3:95:df:ec:4d:f8:2b:6f:c1: c8:ee:e7:19:69:7d:dc:06:a0:8b:fe:38:bf:1b:19: 11:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:10:8E:C9:29:F9:2A:62:57:EC:6D:E5:F5:54:CC:59:44:D8:0C:14 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/314c7065-54b1-44ae-a830-288d71b28af0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.67.0/24 Signature Algorithm: sha256WithRSAEncryption 66:e4:53:47:1f:38:9f:38:b2:4b:97:c3:2f:3e:20:76:02:de: 86:3b:ea:8f:9c:1f:92:09:84:44:d9:f7:79:c5:4c:04:cb:8f: a7:2c:17:23:94:ae:66:e2:37:15:ac:51:2e:27:80:6b:c2:e5: eb:c7:4b:ff:3b:39:d2:43:60:b0:8a:67:c0:f7:52:c4:0e:d1: f2:5f:d8:82:82:b9:a9:e9:da:3b:73:ee:ac:6d:06:d9:eb:d5: bc:98:31:6e:41:08:d6:14:de:f4:d4:5f:c7:f4:e3:f6:32:e5: d1:c5:10:89:d4:a0:07:9b:e3:2e:14:19:58:e0:ad:21:39:93: a7:03:6d:e8:2f:c8:31:76:54:ed:a2:17:62:69:2f:63:98:5b: fa:9b:6e:33:2c:8c:cd:ca:04:a4:7d:97:93:1b:b5:ce:b4:75: cf:09:1c:e0:7a:a8:c8:f8:c4:78:39:bc:a1:88:06:67:03:9c: 49:8e:26:59:af:ec:0b:ae:13:7b:d1:32:57:a9:61:f3:3e:ca: f1:e5:21:65:86:86:5e:d0:9c:46:d0:15:75:63:aa:bf:67:0b: 73:4e:a9:57:af:13:e4:3c:f2:ec:13:f5:24:81:cf:d5:1b:d1: ca:b7:10:9d:31:bf:fe:8e:2b:28:64:6f:e0:44:9a:27:46:0f: 40:7e:0f:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJh38i/upUw/2jlyhyphHYkmS3jAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDA1MTExWhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMGU5NGM1YTdhYzY5MWY3MDA4MzRjZTAyNTg3NWE1ZjU3 YmYwMWQyOWFkZmIxNDdhOTcyYWViZDVhYzhhNGQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqpxaT+5iKujmtBQlHt1m8recE00PQA0Z7vz1SRN29VDki Y7JvQwtrU09WiwgiYyGlZ/41up//NxMb91lEnVoFHuHoCW6d2KQ+90TtoleJpqe3 jCptgTXjvtCsUQqU1Nck+GkbWRTBsJMc0/2PYFylGnHxDDC4Yu+Z6clnNwXGNZhx BMaRfE+iICeLlIwHkddu83NihZrUzVmJx2wWBt7ol8CTxr09nBAjurQWCqcvfh4I Bq4Cyxe27y0IK6mG7NA5qUA+yctitOi4krum8i5mOF+im/4CueE2YWdSU4uug6ir HUszq+OV3+xN+Ctvwcju5xlpfdwGoIv+OL8bGRFtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVxCOySn5KmJX7G3l9VTMWUTYDBQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMxNGM3MDY1LTU0YjEtNDRhZS1hODMwLTI4OGQ3MWIyOGFmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA2GUMwDQYJKoZIhvcNAQELBQADggEBAGbkU0cfOJ84skuXwy8+IHYC3oY7 6o+cH5IJhETZ93nFTATLj6csFyOUrmbiNxWsUS4ngGvC5evHS/87OdJDYLCKZ8D3 UsQO0fJf2IKCuanp2jtz7qxtBtnr1byYMW5BCNYU3vTUX8f04/Yy5dHFEInUoAeb 4y4UGVjgrSE5k6cDbegvyDF2VO2iF2JpL2OYW/qbbjMsjM3KBKR9l5Mbtc60dc8J HOB6qMj4xHg5vKGIBmcDnEmOJlmv7AuuE3vRMlepYfM+yvHlIWWGhl7QnEbQFXVj qr9nC3NOqVevE+Q88uwT9SSBz9Ub0cq3EJ0xv/6OKyhkb+BEmidGD0B+Dyo= -----END CERTIFICATE-----Generated at Wed Jul 2 13:40:26 2025 by rpki-client