$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c024a47-7c98-464a-8556-eaf88725802b.roa File: 3c024a47-7c98-464a-8556-eaf88725802b.roa (raw, json) Hash identifier: c/BKYZYo8OotsJY9S9IUc5iiJiHSvJ5tKLNNB6APWbU= Subject key identifier: EB:0C:02:A7:81:AC:16:26:8E:F1:E2:9B:5C:DA:9E:C1:0E:06:39:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 33F857C7B94070069068B456CD988A9A3A0E234B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c024a47-7c98-464a-8556-eaf88725802b.roa Signing time: Fri 13 Jun 2025 00:30:14 +0000 ROA not before: Fri 13 Jun 2025 00:30:14 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.22.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:f8:57:c7:b9:40:70:06:90:68:b4:56:cd:98:8a:9a:3a:0e:23:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 00:30:14 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=01447b128870da9262af91e0d3e1572278f435f2cefdf7226fcd8ea221b4489e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:bf:de:f0:87:f7:0a:24:cd:52:cf:b3:ab:9a: 51:a0:23:3a:39:4d:7e:84:d6:4f:72:29:a6:35:2a: 77:af:65:7d:37:0c:5f:9f:33:87:50:35:9c:7c:2c: ce:94:32:ed:18:7d:88:fc:57:e2:35:bd:d2:b4:9d: 03:81:94:d2:75:f7:11:9f:c6:98:87:8a:78:f1:ce: a9:82:f1:69:2c:ad:93:93:78:58:f1:82:3f:34:44: 23:33:24:c7:8b:42:0c:8b:81:f4:73:92:93:41:c1: 06:a5:07:4b:c3:3f:05:36:b6:09:be:09:a3:4e:5a: a7:b5:92:32:a8:c4:81:93:53:fc:21:c0:06:43:cc: 2f:53:c0:84:11:0f:bd:cf:0a:df:9c:85:83:57:5c: 08:67:c9:5e:1f:70:4b:89:88:fa:ea:63:20:dc:6a: e6:cf:a5:53:4c:f1:fd:53:12:a6:bb:87:f4:52:da: f1:ae:17:08:67:9f:dc:00:26:98:d0:06:74:b4:44: 2b:d9:47:6f:5f:13:02:8e:93:d9:f8:30:84:b5:40: ba:ae:35:97:5e:d2:08:bd:1c:e7:b0:e7:99:93:6a: e4:3c:7f:cc:7c:55:aa:a5:66:b3:92:cb:c3:b9:e0: 0d:5c:f6:dd:bf:ef:1e:1d:59:e7:65:24:9e:62:f5: d7:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:0C:02:A7:81:AC:16:26:8E:F1:E2:9B:5C:DA:9E:C1:0E:06:39:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c024a47-7c98-464a-8556-eaf88725802b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.22.158.0/24 Signature Algorithm: sha256WithRSAEncryption 42:73:2e:cd:f3:1b:c2:7c:de:0c:39:3d:69:3d:de:9e:07:eb: 15:2c:71:3d:29:33:f3:86:fc:f0:94:88:01:43:e6:f1:1b:92: a7:cd:89:de:51:6c:ef:80:26:14:ff:97:7f:85:85:23:b1:32: 8d:28:20:78:80:d1:99:67:54:ca:b1:d2:e2:24:11:04:bf:d5: b1:12:c1:31:52:c5:36:a7:cb:e6:78:e5:d8:59:b2:ed:a1:80: 67:0e:c0:60:fb:6f:b6:21:22:f5:f5:b7:88:c7:09:16:aa:2d: 5d:ce:28:27:1b:a7:63:cd:9f:3c:c9:cf:88:2e:7f:4b:94:8e: 63:fe:5b:b8:8d:78:85:41:f4:e7:c3:d1:93:d0:8b:85:1f:3a: 01:7c:8c:56:21:be:ea:39:eb:af:23:b4:aa:78:cd:e2:7f:7b: c7:d9:51:1c:0a:86:b6:79:9e:df:73:26:65:52:83:0d:dd:e7: be:75:e3:1b:cf:f1:78:99:a4:0f:39:12:ed:5e:c2:57:45:aa: 21:56:10:55:e2:ba:9b:7f:b3:b5:ad:df:62:fb:f5:37:eb:9f: 8c:22:55:fc:8f:f3:ea:6d:d9:8f:73:60:a5:4f:a0:66:c9:e7: 62:a3:ec:8c:e1:82:32:24:c8:7c:50:8b:78:dd:26:11:ba:ca: 2c:9c:c1:f2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM/hXx7lAcAaQaLRWzZiKmjoOI0swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMDAzMDE0WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMTQ0N2IxMjg4NzBkYTkyNjJhZjkxZTBkM2UxNTcyMjc4 ZjQzNWYyY2VmZGY3MjI2ZmNkOGVhMjIxYjQ0ODllMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTv97wh/cKJM1Sz7OrmlGgIzo5TX6E1k9yKaY1KnevZX03 DF+fM4dQNZx8LM6UMu0YfYj8V+I1vdK0nQOBlNJ19xGfxpiHinjxzqmC8WksrZOT eFjxgj80RCMzJMeLQgyLgfRzkpNBwQalB0vDPwU2tgm+CaNOWqe1kjKoxIGTU/wh wAZDzC9TwIQRD73PCt+chYNXXAhnyV4fcEuJiPrqYyDcaubPpVNM8f1TEqa7h/RS 2vGuFwhnn9wAJpjQBnS0RCvZR29fEwKOk9n4MIS1QLquNZde0gi9HOew55mTauQ8 f8x8VaqlZrOSy8O54A1c9t2/7x4dWedlJJ5i9dfRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6wwCp4GsFiaO8eKbXNqewQ4GOYQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjMDI0YTQ3LTdjOTgtNDY0YS04NTU2LWVhZjg4NzI1ODAyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABrFp4wDQYJKoZIhvcNAQELBQADggEBAEJzLs3zG8J83gw5PWk93p4H6xUs cT0pM/OG/PCUiAFD5vEbkqfNid5RbO+AJhT/l3+FhSOxMo0oIHiA0ZlnVMqx0uIk EQS/1bESwTFSxTany+Z45dhZsu2hgGcOwGD7b7YhIvX1t4jHCRaqLV3OKCcbp2PN nzzJz4guf0uUjmP+W7iNeIVB9OfD0ZPQi4UfOgF8jFYhvuo5668jtKp4zeJ/e8fZ URwKhrZ5nt9zJmVSgw3d57514xvP8XiZpA85Eu1ewldFqiFWEFXiupt/s7Wt32L7 9Tfrn4wiVfyP8+pt2Y9zYKVPoGbJ52Kj7IzhgjIkyHxQi3jdJhG6yiycwfI= -----END CERTIFICATE-----Generated at Thu Jul 3 00:17:58 2025 by rpki-client