$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8fae85d0-0ec1-4345-89bf-770270ed0eaa.roa File: 8fae85d0-0ec1-4345-89bf-770270ed0eaa.roa (raw, json) Hash identifier: PiLj3t4T6HRR+RL3Zx1Aiz7hBlFcjkuV38BWFMr7PH0= Subject key identifier: 22:65:B3:BE:B0:CD:C7:EF:1A:5B:CD:73:F6:B5:AD:12:A2:CF:00:97 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 268B3036DE2E28D569886F9EAC49167BCE5D6B8B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8fae85d0-0ec1-4345-89bf-770270ed0eaa.roa Signing time: Sat 28 Jun 2025 00:31:06 +0000 ROA not before: Sat 28 Jun 2025 00:31:06 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.163.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:8b:30:36:de:2e:28:d5:69:88:6f:9e:ac:49:16:7b:ce:5d:6b:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:31:06 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=b095d29f727f1a16c84818bf95e6213cfb86b809c68ab2f90ea7e8c8f475b9e3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5f:e8:cc:aa:46:e2:b2:06:72:e4:3f:20:96: 62:5a:1d:0d:f2:66:f3:6f:2d:a8:e4:83:40:d9:35: 51:92:d2:f2:7f:e7:5a:fb:ab:3f:f9:5b:aa:2f:08: ee:6c:dd:8e:ca:10:dc:7a:72:01:79:2f:3f:77:bf: 87:16:a0:b1:0a:8c:25:7b:d8:2d:71:2c:00:99:9f: 9c:ec:a8:42:d5:70:e3:37:40:70:35:e2:fd:45:49: 88:07:cd:00:f0:18:15:6a:2f:73:11:f6:f3:3d:32: a1:c2:a3:fe:03:45:0b:28:b4:e4:ab:61:4e:c7:23: 9d:7d:59:16:3c:8b:16:ee:1a:96:5d:f2:78:9a:7d: 3b:5a:a1:ba:b8:ce:dd:c9:ed:9c:13:17:90:e8:e8: e0:38:bf:ba:7b:e0:34:23:df:0d:f9:c1:10:dd:bf: c9:3d:c0:ab:96:38:f8:8a:bd:94:98:3e:96:c7:7b: 5a:96:af:22:37:82:c4:7d:0f:aa:5e:55:1c:22:e8: 49:a6:cd:a5:20:58:14:0a:da:59:7a:99:d5:8c:37: 44:39:9b:9f:1f:b4:7c:be:87:c9:c3:29:3d:27:fe: 80:4f:a5:a5:0c:aa:28:76:b3:99:d4:e4:ca:a8:70: ed:e5:1e:0c:79:0a:0c:c3:e3:71:4e:4e:0a:1b:74: 16:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:65:B3:BE:B0:CD:C7:EF:1A:5B:CD:73:F6:B5:AD:12:A2:CF:00:97 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8fae85d0-0ec1-4345-89bf-770270ed0eaa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.163.0.0/18 Signature Algorithm: sha256WithRSAEncryption b2:46:2e:4d:9a:cc:fc:84:ed:da:a5:60:2e:46:6c:50:9a:ec: fd:b9:5d:65:d0:b0:34:d8:93:84:40:60:5b:88:89:5e:98:84: 7a:ef:00:c9:a2:d3:1b:ff:0f:92:bc:e1:74:d3:fb:88:f4:41: ec:1e:ca:1f:e4:7e:71:49:2c:72:d6:0c:1d:2c:9c:85:e9:4b: de:ab:9b:b2:8d:6e:6d:ef:d2:41:b5:95:7b:28:b8:5b:63:76: 16:4f:c6:68:34:85:8a:32:58:5f:2d:f4:31:ce:81:d2:de:66: e3:43:bf:d8:a9:06:b9:80:93:f6:4d:5f:db:6c:89:97:6d:95: 8b:69:51:a1:cf:09:ce:23:4d:bf:2c:fe:a4:63:ff:12:48:f0: cc:6b:8d:6f:66:64:84:7e:8a:3b:f2:6a:eb:eb:c1:3a:b3:c9: ff:6a:f1:58:9d:f0:5a:69:eb:6e:5f:47:43:29:e5:5b:43:8f: 14:1a:7b:cf:88:bc:ba:55:13:8b:5a:ab:2b:20:60:2a:be:fb: f9:be:2b:f2:4a:46:01:86:bb:19:9f:93:90:20:93:f5:ef:17: 28:a6:2d:38:1a:18:b2:8c:aa:73:bd:c3:14:f5:0c:f2:d0:70: 0a:06:5d:37:cc:93:31:41:86:3c:2e:60:d8:0f:8a:76:68:63: e2:46:d8:46 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJoswNt4uKNVpiG+erEkWe85da4swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDAzMTA2WhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMDk1ZDI5ZjcyN2YxYTE2Yzg0ODE4YmY5NWU2MjEzY2Zi ODZiODA5YzY4YWIyZjkwZWE3ZThjOGY0NzViOWUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPX+jMqkbisgZy5D8glmJaHQ3yZvNvLajkg0DZNVGS0vJ/ 51r7qz/5W6ovCO5s3Y7KENx6cgF5Lz93v4cWoLEKjCV72C1xLACZn5zsqELVcOM3 QHA14v1FSYgHzQDwGBVqL3MR9vM9MqHCo/4DRQsotOSrYU7HI519WRY8ixbuGpZd 8niafTtaobq4zt3J7ZwTF5Do6OA4v7p74DQj3w35wRDdv8k9wKuWOPiKvZSYPpbH e1qWryI3gsR9D6peVRwi6EmmzaUgWBQK2ll6mdWMN0Q5m58ftHy+h8nDKT0n/oBP paUMqih2s5nU5MqocO3lHgx5CgzD43FOTgobdBaVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUImWzvrDNx+8aW81z9rWtEqLPAJcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmYWU4NWQwLTBlYzEtNDM0NS04OWJmLTc3MDI3MGVkMGVhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbRowAwDQYJKoZIhvcNAQELBQADggEBALJGLk2azPyE7dqlYC5GbFCa7P25 XWXQsDTYk4RAYFuIiV6YhHrvAMmi0xv/D5K84XTT+4j0Qeweyh/kfnFJLHLWDB0s nIXpS96rm7KNbm3v0kG1lXsouFtjdhZPxmg0hYoyWF8t9DHOgdLeZuNDv9ipBrmA k/ZNX9tsiZdtlYtpUaHPCc4jTb8s/qRj/xJI8MxrjW9mZIR+ijvyauvrwTqzyf9q 8Vid8Fpp625fR0Mp5VtDjxQae8+IvLpVE4taqysgYCq++/m+K/JKRgGGuxmfk5Ag k/XvFyimLTgaGLKMqnO9wxT1DPLQcAoGXTfMkzFBhjwuYNgPinZoY+JG2EY= -----END CERTIFICATE-----Generated at Wed Jul 2 12:22:57 2025 by rpki-client