$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957ea7c6-3090-4382-9ef5-24bfb9390cf9.roa File: 957ea7c6-3090-4382-9ef5-24bfb9390cf9.roa (raw, json) Hash identifier: BfHxjPaVGtV8ARhLY7bFPpGH+Yjk1Z/x8xDjDX8UZCg= Subject key identifier: B4:32:8F:BE:08:92:F4:F7:AC:80:EF:D9:C3:FD:7F:1D:E0:9B:2F:E4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 37728248E07342F29CFAD4336B272CCCC8C47FB4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957ea7c6-3090-4382-9ef5-24bfb9390cf9.roa Signing time: Mon 23 Jun 2025 15:10:17 +0000 ROA not before: Mon 23 Jun 2025 15:10:17 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.164.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:72:82:48:e0:73:42:f2:9c:fa:d4:33:6b:27:2c:cc:c8:c4:7f:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:10:17 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=35c73dffb124a2dc9e8f90093b52d8cc76cd5038578f5d9d7f3c010a345725fc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:03:11:dd:f0:c1:8b:1f:90:72:69:2c:30:79: d7:29:87:23:6f:b0:67:80:cf:79:22:8c:c2:c1:d2: 85:c5:e8:36:bd:d7:1f:62:0a:40:f4:45:ca:b8:1e: 60:46:e9:8f:c4:4d:d0:76:66:af:23:2d:ee:71:74: 3d:0e:9f:46:2e:ed:dd:94:9a:1f:1e:e0:69:be:d4: 9a:4e:f6:de:73:29:86:2b:eb:43:2a:57:7d:fc:47: c8:81:0b:aa:b0:fd:18:5e:19:28:d5:8b:9d:28:d3: fa:a5:c5:e0:5e:f5:66:ed:70:6f:58:42:d7:d4:e2: f2:a9:c4:4f:36:87:99:8f:a2:f7:c1:46:6f:b0:cc: 0e:08:5d:fd:41:5f:2b:c3:5c:8f:6b:41:ee:63:9e: 25:ee:2b:e7:7d:2c:62:0c:0a:09:41:7c:45:39:8b: 88:a9:6d:86:8e:86:13:a0:47:98:7f:17:81:39:23: d2:c2:2f:2a:da:1f:2e:a8:69:ce:80:14:54:f9:9e: 34:34:79:69:a1:65:74:35:d9:72:da:bf:e9:3a:c2: e7:f8:b0:54:e4:e8:6d:8b:24:a8:f7:72:35:d9:f4: 9a:65:64:f0:aa:cc:1b:f7:d8:99:d8:bd:ae:ce:3b: 53:f0:ef:ad:51:8f:80:24:fe:ac:c5:ae:55:60:28: ec:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:32:8F:BE:08:92:F4:F7:AC:80:EF:D9:C3:FD:7F:1D:E0:9B:2F:E4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957ea7c6-3090-4382-9ef5-24bfb9390cf9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.164.64.0/18 Signature Algorithm: sha256WithRSAEncryption 58:b3:3c:5a:b1:af:bc:21:77:d5:81:29:f0:ee:ea:f7:42:31: c7:5d:b0:51:77:7e:be:ea:a5:5b:eb:da:b4:64:a8:9b:22:47: 0e:8c:21:ce:a9:d6:67:ae:2e:ca:7f:7b:13:68:0d:87:58:d7: 3b:d6:77:41:d0:af:2a:99:c5:12:54:bd:0b:40:1f:70:b8:98: 6f:a9:63:d8:25:1d:2e:7e:38:0a:67:ea:2b:0b:6c:eb:9c:fb: 06:ec:06:ec:61:67:e1:db:66:11:73:f1:fa:d6:9a:8f:4f:ec: b1:6d:4b:d3:36:3e:99:7b:f8:61:61:ac:c5:89:49:d4:3b:1c: 78:d1:3e:42:cf:a8:a3:dd:26:bd:77:58:87:9d:4a:e6:0f:6c: af:0a:2f:54:fd:25:74:94:c0:8d:28:e1:3b:5b:1d:42:1f:27: b2:fa:78:6e:10:22:6a:40:b0:e4:18:07:29:65:fb:69:75:7c: c1:70:66:66:ad:01:27:10:b1:54:fe:cf:d0:22:4f:79:e5:4d: 37:f8:17:ef:e7:49:09:d9:65:c1:af:26:dd:f5:33:95:ae:ce: ad:c6:18:c4:17:d4:18:22:92:88:9c:9f:d6:fd:2c:f9:f9:e5: 31:12:3e:1c:d5:84:c6:42:39:d9:f5:e7:17:31:68:94:2a:ef: d2:2c:2d:6a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUN3KCSOBzQvKc+tQzaycszMjEf7QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUxMDE3WhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNWM3M2RmZmIxMjRhMmRjOWU4ZjkwMDkzYjUyZDhjYzc2 Y2Q1MDM4NTc4ZjVkOWQ3ZjNjMDEwYTM0NTcyNWZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWAxHd8MGLH5ByaSwwedcphyNvsGeAz3kijMLB0oXF6Da9 1x9iCkD0Rcq4HmBG6Y/ETdB2Zq8jLe5xdD0On0Yu7d2Umh8e4Gm+1JpO9t5zKYYr 60MqV338R8iBC6qw/RheGSjVi50o0/qlxeBe9WbtcG9YQtfU4vKpxE82h5mPovfB Rm+wzA4IXf1BXyvDXI9rQe5jniXuK+d9LGIMCglBfEU5i4ipbYaOhhOgR5h/F4E5 I9LCLyraHy6oac6AFFT5njQ0eWmhZXQ12XLav+k6wuf4sFTk6G2LJKj3cjXZ9Jpl ZPCqzBv32JnYva7OO1Pw761Rj4Ak/qzFrlVgKOxjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtDKPvgiS9PesgO/Zw/1/HeCbL+QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1N2VhN2M2LTMwOTAtNDM4Mi05ZWY1LTI0YmZiOTM5MGNmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbRpEAwDQYJKoZIhvcNAQELBQADggEBAFizPFqxr7whd9WBKfDu6vdCMcdd sFF3fr7qpVvr2rRkqJsiRw6MIc6p1meuLsp/exNoDYdY1zvWd0HQryqZxRJUvQtA H3C4mG+pY9glHS5+OApn6isLbOuc+wbsBuxhZ+HbZhFz8frWmo9P7LFtS9M2Ppl7 +GFhrMWJSdQ7HHjRPkLPqKPdJr13WIedSuYPbK8KL1T9JXSUwI0o4TtbHUIfJ7L6 eG4QImpAsOQYByll+2l1fMFwZmatAScQsVT+z9AiT3nlTTf4F+/nSQnZZcGvJt31 M5Wuzq3GGMQX1Bgikoicn9b9LPn55TESPhzVhMZCOdn15xcxaJQq79IsLWo= -----END CERTIFICATE-----Generated at Wed Jul 2 05:24:30 2025 by rpki-client