$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5423a80a-be1f-4708-a5ef-17ccc2a1a025.roa File: 5423a80a-be1f-4708-a5ef-17ccc2a1a025.roa (raw, json) Hash identifier: rYwISnWdhRMYUp5wEUJ/6V5iyOP4hgtF2EikbJLsZBQ= Subject key identifier: AE:E6:B3:92:C5:2B:D9:FA:22:52:C4:2A:68:21:94:2C:B8:4B:65:7B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4885AAD4F50FFAC7F213A9C8CE66B055C7397D55 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5423a80a-be1f-4708-a5ef-17ccc2a1a025.roa Signing time: Wed 18 Jun 2025 00:02:17 +0000 ROA not before: Wed 18 Jun 2025 00:02:17 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.228.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:85:aa:d4:f5:0f:fa:c7:f2:13:a9:c8:ce:66:b0:55:c7:39:7d:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:02:17 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=c7f6c7c72fb25eba789fbaf3c21de6740f2879c6fb458d31317e08a691e5a775, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:8d:36:bd:52:03:1f:25:82:04:cf:14:e9:36: e9:3a:95:39:63:17:90:13:93:de:b4:31:7d:4e:b8: 52:43:01:9e:ca:31:a2:e9:57:89:a2:1b:01:91:58: 9a:00:80:cf:b0:f7:e4:04:2f:59:e2:5e:1b:a5:79: 48:08:d2:61:8d:3d:a3:69:ad:36:8e:5a:6a:a5:e5: c0:63:97:98:de:f3:a6:98:26:02:4b:28:18:33:86: 49:11:8d:e3:aa:44:2a:48:98:da:dc:fb:57:57:8d: 25:98:75:bb:0c:0c:17:47:7a:30:16:f5:74:e2:8f: f9:fc:ec:91:21:82:a4:6b:ba:ae:c6:20:0c:e8:7c: 43:a9:66:d6:4c:26:65:58:65:c1:98:08:fe:af:be: 34:87:5e:fd:d3:4f:67:5e:ce:f7:40:e9:d9:15:70: d9:e3:61:85:2b:70:81:bd:37:38:4d:f5:81:5d:9d: f5:a9:f3:5c:b4:5b:b7:84:e1:02:24:03:bc:56:a0: 8d:e9:ec:aa:4a:a9:f1:3c:7f:c6:d3:3a:28:63:da: 0d:7a:fd:7a:34:7c:b2:90:8f:4a:cc:ba:2b:76:63: 6a:3f:5a:0d:d5:c8:cd:5c:cb:66:25:1c:b0:9a:82: 9c:3a:9f:e1:5c:5b:e4:fd:c0:bb:67:1b:e8:8a:b9: f2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:E6:B3:92:C5:2B:D9:FA:22:52:C4:2A:68:21:94:2C:B8:4B:65:7B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5423a80a-be1f-4708-a5ef-17ccc2a1a025.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.228.192.0/18 Signature Algorithm: sha256WithRSAEncryption 98:3b:e4:c3:55:96:2c:be:ee:77:0c:b5:cb:c7:bd:c2:03:b8: fd:e1:d0:57:66:d9:2b:42:b6:bb:f7:aa:15:6a:8f:5f:a5:48: 9b:16:02:fd:a3:de:81:49:73:7a:95:bf:10:1b:48:45:c2:88: df:88:09:bf:a5:c4:7d:2a:10:6c:93:e1:ca:b4:92:a5:29:a1: 4f:c7:85:ba:2b:2a:13:ec:9d:91:15:e0:9f:f7:d8:b9:cf:20: 51:81:29:1d:ac:3a:60:83:2b:27:74:44:34:ce:4e:5d:4b:1d: 35:c9:52:a0:ad:67:f8:e0:9d:61:9a:8a:df:c8:91:5d:dc:93: e8:c7:9c:f8:41:c5:e1:fe:fb:23:18:51:4f:81:4c:11:be:b5: 68:6e:aa:02:3a:38:5e:dd:70:f3:d9:3b:67:5a:0a:81:90:d3: 44:51:51:1d:5f:f9:23:7b:b5:3b:dd:84:bc:47:5e:05:e7:b5: cf:12:92:07:58:09:66:d4:7a:73:bb:cb:29:fd:6d:5d:7e:88: ae:ed:f7:2f:93:ea:45:6c:1e:97:fc:a5:9c:d1:1f:94:d2:b0: f8:93:45:5b:00:39:a4:a8:17:4b:1e:e5:7b:89:d1:22:1c:2f: 17:f5:17:c2:b9:06:4d:c3:5d:ef:38:3d:05:89:c6:b9:ad:be: 6b:66:b1:db -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSIWq1PUP+sfyE6nIzmawVcc5fVUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE4MDAwMjE3WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjN2Y2YzdjNzJmYjI1ZWJhNzg5ZmJhZjNjMjFkZTY3NDBm Mjg3OWM2ZmI0NThkMzEzMTdlMDhhNjkxZTVhNzc1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEjTa9UgMfJYIEzxTpNuk6lTljF5ATk960MX1OuFJDAZ7K MaLpV4miGwGRWJoAgM+w9+QEL1niXhuleUgI0mGNPaNprTaOWmql5cBjl5je86aY JgJLKBgzhkkRjeOqRCpImNrc+1dXjSWYdbsMDBdHejAW9XTij/n87JEhgqRruq7G IAzofEOpZtZMJmVYZcGYCP6vvjSHXv3TT2dezvdA6dkVcNnjYYUrcIG9NzhN9YFd nfWp81y0W7eE4QIkA7xWoI3p7KpKqfE8f8bTOihj2g16/Xo0fLKQj0rMuit2Y2o/ Wg3VyM1cy2YlHLCagpw6n+FcW+T9wLtnG+iKufJHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUruazksUr2foiUsQqaCGULLhLZXswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0MjNhODBhLWJlMWYtNDcwOC1hNWVmLTE3Y2NjMmExYTAyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYX5MAwDQYJKoZIhvcNAQELBQADggEBAJg75MNVliy+7ncMtcvHvcIDuP3h 0Fdm2StCtrv3qhVqj1+lSJsWAv2j3oFJc3qVvxAbSEXCiN+ICb+lxH0qEGyT4cq0 kqUpoU/HhborKhPsnZEV4J/32LnPIFGBKR2sOmCDKyd0RDTOTl1LHTXJUqCtZ/jg nWGait/IkV3ck+jHnPhBxeH++yMYUU+BTBG+tWhuqgI6OF7dcPPZO2daCoGQ00RR UR1f+SN7tTvdhLxHXgXntc8SkgdYCWbUenO7yyn9bV1+iK7t9y+T6kVsHpf8pZzR H5TSsPiTRVsAOaSoF0se5XuJ0SIcLxf1F8K5Bk3DXe84PQWJxrmtvmtmsds= -----END CERTIFICATE-----Generated at Mon Jun 30 17:22:47 2025 by rpki-client