$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a3a05cb-960b-4688-8311-ee8f2b959d5c.roa File: 9a3a05cb-960b-4688-8311-ee8f2b959d5c.roa (raw, json) Hash identifier: G51nNoLefD67YJzJzYGgVKdAV1+E0EAfVKLqgLYlh24= Subject key identifier: 48:AF:8C:A4:BD:E6:6F:FC:B3:F9:6E:F6:C8:E8:28:5D:39:62:23:53 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 74770D3FFC9426D917C5B2E5936B8F8A3AF82BE6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a3a05cb-960b-4688-8311-ee8f2b959d5c.roa Signing time: Mon 23 Jun 2025 15:41:54 +0000 ROA not before: Mon 23 Jun 2025 15:41:54 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 66.165.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:77:0d:3f:fc:94:26:d9:17:c5:b2:e5:93:6b:8f:8a:3a:f8:2b:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:41:54 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=aa9ff637b0e4e603b5d8e4062b60e1dfe1778594c37e67c61e659d9ba7ac7b56, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c2:ce:49:e1:51:90:cc:d3:51:48:5f:bf:66: 2f:fc:11:81:65:9d:79:5e:17:94:9e:67:c1:f5:85: 2d:04:f5:db:2a:1c:19:bf:b7:89:81:c6:ce:a2:a8: 66:ae:23:ea:d6:6f:e2:c3:d8:6a:ac:33:14:84:aa: 8b:b6:a8:8b:a4:05:f5:6b:14:b7:9e:67:20:39:c0: e3:7b:41:e9:8e:db:21:a4:5b:c1:cd:5e:23:1e:a7: ad:f6:2b:ea:77:38:21:a2:c8:05:7c:77:8f:92:8a: 6a:b0:06:86:e1:a6:f2:6f:31:f6:f2:05:2d:ee:04: f8:89:10:7f:0d:6e:22:00:98:2f:0c:a2:6e:b2:66: 00:80:07:af:5f:88:c1:2d:96:b9:3b:9b:5a:bc:64: 53:3d:6e:cb:4e:cb:c7:85:6e:d3:b8:66:a3:e0:a3: 17:fd:63:23:da:15:b5:10:cb:e6:b3:1d:0c:24:d3: 8b:fa:52:50:7d:ea:c7:45:2e:7c:81:54:19:96:bd: c1:1c:71:67:d1:f0:de:a0:6b:e3:87:fd:f0:96:92: be:f4:eb:b4:85:9f:8d:b7:db:e2:e6:cc:96:38:f2: 64:3f:6d:92:bd:db:95:1b:63:d6:ae:a4:72:b6:0a: 5d:a5:f2:3f:54:d4:65:1b:3a:35:a0:98:2e:06:ee: 68:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:AF:8C:A4:BD:E6:6F:FC:B3:F9:6E:F6:C8:E8:28:5D:39:62:23:53 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a3a05cb-960b-4688-8311-ee8f2b959d5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.165.64.0/18 Signature Algorithm: sha256WithRSAEncryption 93:9d:95:b4:36:03:1d:a7:cd:13:f4:c8:f0:95:c9:bb:8c:9f: 05:db:9b:32:dc:ad:61:78:98:17:d3:5f:8d:01:9c:e8:23:09: bd:12:4d:6b:55:b2:3e:2b:4f:bf:2e:36:dd:b3:c8:79:b4:ee: 19:9c:c6:c1:33:cb:81:48:4e:ca:25:eb:95:84:f0:81:91:35: 10:91:de:65:ae:98:89:3a:e0:3b:58:1b:e3:3e:fd:02:3d:4c: 54:f4:3b:d8:f8:97:93:c4:95:2f:4c:0c:e4:69:b9:fb:94:6f: 43:38:3f:cd:3a:64:73:50:39:c1:8b:dc:71:db:bf:01:c6:85: ad:82:f9:f7:b6:f2:5d:f6:a2:fe:d0:d3:fa:4f:a0:58:61:eb: 2e:60:4e:ed:2f:37:d6:03:17:e4:26:de:17:30:f6:28:24:9f: c0:18:b8:26:8e:5e:f2:1d:3b:14:ca:61:22:52:4c:72:a6:d7: 9f:ea:a8:93:e0:3e:67:b9:50:5e:e2:72:39:c4:6b:fa:94:78: 21:28:b7:32:95:85:a6:7d:0b:76:b3:80:b3:d7:37:64:8b:0d: e3:2a:a0:d0:31:2f:d6:d1:d4:bb:84:c6:ff:55:94:77:20:4b: ed:2b:cf:81:86:bf:75:44:5e:26:e4:4e:93:32:b2:b6:84:a8: 05:00:b8:1a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdHcNP/yUJtkXxbLlk2uPijr4K+YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTU0MTU0WhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTlmZjYzN2IwZTRlNjAzYjVkOGU0MDYyYjYwZTFkZmUx Nzc4NTk0YzM3ZTY3YzYxZTY1OWQ5YmE3YWM3YjU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbws5J4VGQzNNRSF+/Zi/8EYFlnXleF5SeZ8H1hS0E9dsq HBm/t4mBxs6iqGauI+rWb+LD2GqsMxSEqou2qIukBfVrFLeeZyA5wON7QemO2yGk W8HNXiMep632K+p3OCGiyAV8d4+SimqwBobhpvJvMfbyBS3uBPiJEH8NbiIAmC8M om6yZgCAB69fiMEtlrk7m1q8ZFM9bstOy8eFbtO4ZqPgoxf9YyPaFbUQy+azHQwk 04v6UlB96sdFLnyBVBmWvcEccWfR8N6ga+OH/fCWkr7067SFn4232+LmzJY48mQ/ bZK925UbY9aupHK2Cl2l8j9U1GUbOjWgmC4G7mh3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSK+MpL3mb/yz+W72yOgoXTliI1MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhM2EwNWNiLTk2MGItNDY4OC04MzExLWVlOGYyYjk1OWQ1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZCpUAwDQYJKoZIhvcNAQELBQADggEBAJOdlbQ2Ax2nzRP0yPCVybuMnwXb mzLcrWF4mBfTX40BnOgjCb0STWtVsj4rT78uNt2zyHm07hmcxsEzy4FITsol65WE 8IGRNRCR3mWumIk64DtYG+M+/QI9TFT0O9j4l5PElS9MDORpufuUb0M4P806ZHNQ OcGL3HHbvwHGha2C+fe28l32ov7Q0/pPoFhh6y5gTu0vN9YDF+Qm3hcw9igkn8AY uCaOXvIdOxTKYSJSTHKm15/qqJPgPme5UF7icjnEa/qUeCEotzKVhaZ9C3azgLPX N2SLDeMqoNAxL9bR1LuExv9VlHcgS+0rz4GGv3VEXibkTpMysraEqAUAuBo= -----END CERTIFICATE-----Generated at Mon Jun 30 21:44:36 2025 by rpki-client