$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f6d0499-6523-42dc-96f7-6d729660d8b6.roa File: 9f6d0499-6523-42dc-96f7-6d729660d8b6.roa (raw, json) Hash identifier: cfh1JKq0kBEusW8M3H1EaXKlWICLPrcm3GMfSXrj0rI= Subject key identifier: 7B:45:DD:33:3F:78:1E:4A:4B:D5:92:33:1B:AB:2A:90:38:D3:B5:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 27451C306945DC1F09DB951DF0EB3B93D5F627A0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f6d0499-6523-42dc-96f7-6d729660d8b6.roa Signing time: Fri 27 Jun 2025 00:20:20 +0000 ROA not before: Fri 27 Jun 2025 00:20:20 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.238.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:45:1c:30:69:45:dc:1f:09:db:95:1d:f0:eb:3b:93:d5:f6:27:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:20:20 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=6227e418f85e386797d495f245d5a40bc69177f7d81743915e43f337a7ce8bb0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:49:05:a1:b9:ee:57:b7:fa:8c:93:d4:cc:ec: ba:3b:f1:e5:85:b4:b7:af:7f:1b:da:7e:7f:cd:89: 31:ee:06:17:b1:42:44:c6:89:24:fb:83:3a:c7:75: ed:3c:cc:2a:e6:48:01:6d:9f:bd:16:6d:40:e4:81: 88:f0:d0:f0:51:c4:31:5d:e2:06:70:3a:bf:ac:77: 66:db:07:49:0d:9e:8a:ec:cf:7d:c1:2c:34:30:84: c2:c0:8e:84:ee:eb:9c:8a:bf:6a:b3:68:ed:0c:fd: 9f:41:41:cf:a7:42:7a:d1:38:81:21:ce:9d:8a:75: 44:41:45:6d:14:af:9e:f5:f3:bd:ff:02:c2:9d:b0: e0:61:a4:58:4f:ab:17:97:79:dd:e4:2a:26:48:e4: 7e:42:83:63:ef:2d:33:3e:16:1a:fd:fa:2c:0c:46: 51:fa:74:a5:fb:a3:32:5f:6e:c0:cc:a0:ce:42:43: 19:c4:30:bc:71:91:f1:68:c4:d7:3d:68:89:c2:52: d4:ff:c7:f9:3e:e4:42:84:ef:d4:f8:28:0a:b5:52: 2c:6f:43:8a:ba:cf:56:b6:25:e4:6d:9c:42:06:b7: 7a:0f:fb:ff:3d:75:d1:59:8f:19:ee:77:13:d4:6c: 5a:99:f6:ea:e4:d1:f4:cf:a8:38:fc:43:bc:60:93: 78:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:45:DD:33:3F:78:1E:4A:4B:D5:92:33:1B:AB:2A:90:38:D3:B5:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f6d0499-6523-42dc-96f7-6d729660d8b6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.238.128.0/17 Signature Algorithm: sha256WithRSAEncryption 88:48:07:9b:41:97:03:9b:d2:fc:e8:86:54:7d:a8:b2:70:16: af:fe:bd:e6:7f:24:6c:1c:83:a2:89:ac:03:b1:b9:d7:a2:0e: 74:35:c1:66:f6:ba:9f:0d:aa:1f:f5:72:62:f9:23:9a:bf:35: b0:b0:a8:74:ab:a6:d0:f8:86:d2:fe:fd:0c:84:27:71:2d:7b: 95:2d:42:07:f2:f1:d1:0e:59:e5:cc:50:bf:f6:8a:85:91:fd: d9:e7:22:d7:23:3a:ed:fa:37:bf:e4:d1:c3:f0:43:37:47:dd: 1f:78:7b:f2:af:3d:84:fb:fd:56:73:92:b4:21:5c:8f:12:14: ca:b2:a2:0a:a2:a9:16:53:a6:e2:95:09:14:1d:65:50:94:45: 4a:87:aa:99:9a:d6:59:7d:7d:89:48:f8:8e:48:8b:ed:b0:a8: fd:f5:88:61:7d:53:e7:79:54:09:05:4e:a1:69:0a:13:ce:c8: be:13:9d:51:47:e9:4c:4b:81:47:41:46:1f:30:8e:ac:58:12: 83:ab:a9:12:e5:d0:c5:80:c0:78:c5:ee:2d:1d:fe:53:f8:27: 57:50:f3:32:0a:62:3a:d5:f1:07:22:fc:70:2d:c7:82:1c:78: 5c:12:79:c5:92:6e:33:fb:07:f5:fd:ef:2d:3b:3c:1d:7d:a7: e1:37:17:0f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJ0UcMGlF3B8J25Ud8Os7k9X2J6AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MDAyMDIwWhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MjI3ZTQxOGY4NWUzODY3OTdkNDk1ZjI0NWQ1YTQwYmM2 OTE3N2Y3ZDgxNzQzOTE1ZTQzZjMzN2E3Y2U4YmIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSSQWhue5Xt/qMk9TM7Lo78eWFtLevfxvafn/NiTHuBhex QkTGiST7gzrHde08zCrmSAFtn70WbUDkgYjw0PBRxDFd4gZwOr+sd2bbB0kNnors z33BLDQwhMLAjoTu65yKv2qzaO0M/Z9BQc+nQnrROIEhzp2KdURBRW0Ur571873/ AsKdsOBhpFhPqxeXed3kKiZI5H5Cg2PvLTM+Fhr9+iwMRlH6dKX7ozJfbsDMoM5C QxnEMLxxkfFoxNc9aInCUtT/x/k+5EKE79T4KAq1UixvQ4q6z1a2JeRtnEIGt3oP +/89ddFZjxnudxPUbFqZ9urk0fTPqDj8Q7xgk3hTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUe0XdMz94HkpL1ZIzG6sqkDjTtZswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmNmQwNDk5LTY1MjMtNDJkYy05NmY3LTZkNzI5NjYwZDhiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcX7oAwDQYJKoZIhvcNAQELBQADggEBAIhIB5tBlwOb0vzohlR9qLJwFq/+ veZ/JGwcg6KJrAOxudeiDnQ1wWb2up8Nqh/1cmL5I5q/NbCwqHSrptD4htL+/QyE J3Ete5UtQgfy8dEOWeXMUL/2ioWR/dnnItcjOu36N7/k0cPwQzdH3R94e/KvPYT7 /VZzkrQhXI8SFMqyogqiqRZTpuKVCRQdZVCURUqHqpma1ll9fYlI+I5Ii+2wqP31 iGF9U+d5VAkFTqFpChPOyL4TnVFH6UxLgUdBRh8wjqxYEoOrqRLl0MWAwHjF7i0d /lP4J1dQ8zIKYjrV8Qci/HAtx4IceFwSecWSbjP7B/X97y07PB19p+E3Fw8= -----END CERTIFICATE-----Generated at Tue Jul 1 16:10:22 2025 by rpki-client