$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52a2b218-2a29-4964-b153-565ac1d505cf.roa File: 52a2b218-2a29-4964-b153-565ac1d505cf.roa (raw, json) Hash identifier: kU8A03fxHGDQ+g6Om3fucvFoaQ7KW6nHyZB0zoozqnk= Subject key identifier: FD:7B:68:24:A2:05:98:D2:E0:C8:78:66:C9:15:E7:27:EF:7F:07:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1ECEC9745F4D1FD1026D35E908EA954F1DE331C1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52a2b218-2a29-4964-b153-565ac1d505cf.roa Signing time: Mon 30 Jun 2025 15:20:16 +0000 ROA not before: Mon 30 Jun 2025 15:20:16 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.59.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:ce:c9:74:5f:4d:1f:d1:02:6d:35:e9:08:ea:95:4f:1d:e3:31:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 30 15:20:16 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=36f8f55316438636b0c93c25dd51cdeb85f641a7f7b2379b7bff45f47290f755, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5f:50:b0:03:af:32:3e:ee:42:53:0c:97:95: e8:23:78:a6:0b:eb:a1:25:6a:8a:1c:49:1a:b5:01: 67:08:56:10:d0:eb:b1:dd:f4:95:09:fd:e1:7c:66: 3d:55:70:84:6b:51:9a:be:1d:c8:ab:3a:ef:7e:eb: 6a:a7:2a:41:44:c9:01:ad:9d:13:0f:92:64:f6:f1: 66:39:df:84:9e:dd:69:80:01:27:32:b7:5f:80:a4: 2e:53:39:33:b6:b8:24:61:2f:e2:68:13:a6:0a:3e: 82:d2:59:f6:7f:3a:9a:16:2b:11:c0:86:08:d5:01: b2:bc:65:0b:d0:4e:fe:b7:c4:16:78:3d:71:39:2b: 27:44:4e:c5:c8:bd:f3:34:fc:32:04:ac:e4:63:e9: 55:fd:de:2e:ea:3c:36:fe:b6:60:15:2d:fc:80:38: d1:e3:81:69:63:b3:33:a9:00:71:3b:fa:b6:d5:1f: a5:68:28:05:21:3d:a0:62:42:06:9b:5c:2c:2e:98: aa:fe:88:69:a5:87:ea:7a:74:4c:5c:d1:56:28:0d: 26:d7:47:ff:33:65:f9:6d:44:d0:32:cb:86:48:c7: f8:e4:ad:12:9b:a5:d1:b1:d3:0b:8e:7b:bf:e9:25: b6:60:b0:69:df:c6:32:66:40:a2:e0:14:cd:3e:9c: 1f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:7B:68:24:A2:05:98:D2:E0:C8:78:66:C9:15:E7:27:EF:7F:07:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52a2b218-2a29-4964-b153-565ac1d505cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.59.0.0/18 Signature Algorithm: sha256WithRSAEncryption d4:1f:55:ee:0a:a9:8b:41:2e:f8:9d:ed:6c:a6:f0:e6:1e:0e: e3:d8:5e:a6:64:0f:da:54:2d:82:6f:1c:4c:b7:63:5c:d6:44: 6b:e5:09:3a:04:d2:d2:7b:b6:64:58:30:13:59:1a:c0:e2:55: 5f:63:9c:8e:80:0b:7b:16:6f:86:b8:e2:49:e0:09:a9:04:7f: 0d:78:a3:d1:82:38:ef:3f:be:26:8e:0e:92:ef:34:72:fc:f1: c7:7d:ab:f5:4a:03:d5:b9:96:a6:72:16:d2:2e:22:93:f9:87: 06:81:5c:88:f3:b3:49:f3:b0:2b:ed:a7:7e:60:e2:b0:be:ca: 41:a9:cc:a6:2e:7d:08:13:36:70:c6:24:86:27:c4:d8:e3:70: f9:96:62:02:97:75:e7:8f:94:fe:c0:34:47:a0:e9:da:8f:e3: 49:2a:f7:f6:da:93:e4:b9:d4:c3:23:c6:b1:c1:fc:7f:13:cd: db:9c:0e:4d:f6:38:59:c1:fb:8e:c2:b6:c6:ff:10:03:4f:0c: d7:08:e2:49:14:8d:09:17:f9:c5:0c:99:69:8c:41:27:88:8d: b2:ef:d6:8d:83:81:40:8f:e6:4a:4f:df:30:fc:52:f4:99:12: c6:99:33:cd:5a:79:40:7f:60:c8:85:b8:b8:e5:4f:0c:37:d1: 2e:5c:c5:21 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHs7JdF9NH9ECbTXpCOqVTx3jMcEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjMwMTUyMDE2WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmY4ZjU1MzE2NDM4NjM2YjBjOTNjMjVkZDUxY2RlYjg1 ZjY0MWE3ZjdiMjM3OWI3YmZmNDVmNDcyOTBmNzU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWX1CwA68yPu5CUwyXlegjeKYL66ElaoocSRq1AWcIVhDQ 67Hd9JUJ/eF8Zj1VcIRrUZq+HcirOu9+62qnKkFEyQGtnRMPkmT28WY534Se3WmA AScyt1+ApC5TOTO2uCRhL+JoE6YKPoLSWfZ/OpoWKxHAhgjVAbK8ZQvQTv63xBZ4 PXE5KydETsXIvfM0/DIErORj6VX93i7qPDb+tmAVLfyAONHjgWljszOpAHE7+rbV H6VoKAUhPaBiQgabXCwumKr+iGmlh+p6dExc0VYoDSbXR/8zZfltRNAyy4ZIx/jk rRKbpdGx0wuOe7/pJbZgsGnfxjJmQKLgFM0+nB8zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/XtoJKIFmNLgyHhmyRXnJ+9/B+UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyYTJiMjE4LTJhMjktNDk2NC1iMTUzLTU2NWFjMWQ1MDVjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZAOwAwDQYJKoZIhvcNAQELBQADggEBANQfVe4KqYtBLvid7Wym8OYeDuPY XqZkD9pULYJvHEy3Y1zWRGvlCToE0tJ7tmRYMBNZGsDiVV9jnI6AC3sWb4a44kng CakEfw14o9GCOO8/viaODpLvNHL88cd9q/VKA9W5lqZyFtIuIpP5hwaBXIjzs0nz sCvtp35g4rC+ykGpzKYufQgTNnDGJIYnxNjjcPmWYgKXdeePlP7ANEeg6dqP40kq 9/bak+S51MMjxrHB/H8TzducDk32OFnB+47Ctsb/EANPDNcI4kkUjQkX+cUMmWmM QSeIjbLv1o2DgUCP5kpP3zD8UvSZEsaZM81aeUB/YMiFuLjlTww30S5cxSE= -----END CERTIFICATE-----Generated at Thu Jul 3 10:09:04 2025 by rpki-client