$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3189a3e-1053-49b0-891d-b315bf3a899d.roa File: a3189a3e-1053-49b0-891d-b315bf3a899d.roa (raw, json) Hash identifier: krLzT4+2p/ZmQYI/f6ElGDDfmWhaLCjcQIBqpkBMboE= Subject key identifier: C9:0E:C2:EA:1E:4E:34:E5:0D:AD:B6:D1:E2:43:66:5B:F9:F5:B8:D2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05187AB2FB2FE601D76C67AD57094450BE1976CC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3189a3e-1053-49b0-891d-b315bf3a899d.roa Signing time: Mon 23 Jun 2025 15:21:27 +0000 ROA not before: Mon 23 Jun 2025 15:21:27 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.109.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:18:7a:b2:fb:2f:e6:01:d7:6c:67:ad:57:09:44:50:be:19:76:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:21:27 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=a7f33dadd209f681e2190fc90e02c877f79182015e2a1427ff11af68114ee99a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a4:82:b4:9d:e4:7a:02:2d:f6:f5:cd:7e:fa: 50:7e:9c:41:bd:57:a3:00:7b:83:3f:af:4b:63:45: 3c:5f:99:f6:53:10:47:aa:b9:90:34:e5:41:01:0a: a1:8d:1b:69:0f:e7:b6:b7:e9:d6:45:c4:f6:f2:34: f4:1f:cd:f1:67:52:bd:d0:44:2c:47:77:7c:b8:47: 28:02:01:5d:23:04:24:98:7c:88:f7:af:96:27:ff: 4f:4e:6d:7d:fb:55:6f:52:ff:67:d3:0b:02:a5:de: d2:c4:4a:e5:71:2c:ec:84:b1:91:5d:ff:63:27:22: cd:4c:89:5c:c1:30:3b:8c:01:66:d0:9f:3f:72:21: b0:2b:e6:75:c8:c8:fe:ef:10:a0:6b:9c:5f:c4:85: 0c:62:61:ed:c8:ee:44:15:8c:d6:f7:cc:4e:68:68: 95:b8:56:f0:b4:6a:45:7b:10:f9:94:06:bb:65:65: 05:37:12:c4:ee:94:30:e4:76:d8:55:f3:90:c6:85: 8d:b1:00:21:3f:ad:9b:25:6d:58:c5:6d:37:b2:dc: 21:95:7b:25:4b:22:98:ff:0c:88:11:86:80:62:63: 1f:09:98:3c:3b:d1:1a:d3:f7:04:2a:82:4f:b4:49: a5:3c:10:6b:51:f1:08:e1:01:2f:f5:fd:99:6e:c0: 47:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:0E:C2:EA:1E:4E:34:E5:0D:AD:B6:D1:E2:43:66:5B:F9:F5:B8:D2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3189a3e-1053-49b0-891d-b315bf3a899d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.109.0.0/16 Signature Algorithm: sha256WithRSAEncryption 01:46:d5:a8:78:62:a1:fc:48:59:76:46:c3:0e:29:a4:1f:2a: 7f:a7:50:5e:21:df:ea:bc:0d:1e:6a:d8:ba:b5:d3:9c:a0:93: 75:82:9f:c8:aa:8c:04:59:bf:7d:80:1e:87:d2:e2:8f:05:d8: ed:6b:34:7c:fb:c5:d2:59:a3:49:46:b0:09:b7:1d:bb:ed:1f: fd:71:47:cc:b7:ac:59:a8:c6:0d:e8:00:b4:52:51:e5:af:f2: 78:83:32:2a:44:78:00:84:4b:e8:b6:cc:ac:05:6a:3f:fe:f8: a7:6c:90:30:09:76:9a:d4:a1:44:d3:08:50:8f:48:9b:7a:b9: a7:17:19:cc:cc:0e:ae:55:eb:62:ab:1b:4c:c3:21:b2:ea:51: 36:cb:ed:06:39:90:98:e2:ff:18:08:69:ca:10:98:07:77:f8: 23:ff:bf:1a:23:1a:66:5e:c1:a3:39:a2:20:8c:ac:e8:f8:ee: 5a:bb:90:cd:b9:1f:f1:ab:74:93:e6:92:98:ff:72:51:54:16: 26:a6:db:6f:22:74:c6:57:08:35:1e:10:e6:50:81:83:fb:08: 3e:36:85:31:38:9c:f0:90:1d:22:83:b0:d2:73:29:59:d8:13: 10:68:d5:b1:6f:20:d0:c9:52:bb:96:7b:1c:98:0e:20:42:f8: ca:9d:93:04 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBRh6svsv5gHXbGetVwlEUL4ZdswwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUyMTI3WhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhN2YzM2RhZGQyMDlmNjgxZTIxOTBmYzkwZTAyYzg3N2Y3 OTE4MjAxNWUyYTE0MjdmZjExYWY2ODExNGVlOTlhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCepIK0neR6Ai329c1++lB+nEG9V6MAe4M/r0tjRTxfmfZT EEequZA05UEBCqGNG2kP57a36dZFxPbyNPQfzfFnUr3QRCxHd3y4RygCAV0jBCSY fIj3r5Yn/09ObX37VW9S/2fTCwKl3tLESuVxLOyEsZFd/2MnIs1MiVzBMDuMAWbQ nz9yIbAr5nXIyP7vEKBrnF/EhQxiYe3I7kQVjNb3zE5oaJW4VvC0akV7EPmUBrtl ZQU3EsTulDDkdthV85DGhY2xACE/rZslbVjFbTey3CGVeyVLIpj/DIgRhoBiYx8J mDw70RrT9wQqgk+0SaU8EGtR8QjhAS/1/ZluwEcdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyQ7C6h5ONOUNrbbR4kNmW/n1uNIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EzMTg5YTNlLTEwNTMtNDliMC04OTFkLWIzMTViZjNhODk5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2bTANBgkqhkiG9w0BAQsFAAOCAQEAAUbVqHhiofxIWXZGww4ppB8qf6dQ XiHf6rwNHmrYurXTnKCTdYKfyKqMBFm/fYAeh9LijwXY7Ws0fPvF0lmjSUawCbcd u+0f/XFHzLesWajGDegAtFJR5a/yeIMyKkR4AIRL6LbMrAVqP/74p2yQMAl2mtSh RNMIUI9Im3q5pxcZzMwOrlXrYqsbTMMhsupRNsvtBjmQmOL/GAhpyhCYB3f4I/+/ GiMaZl7BozmiIIys6PjuWruQzbkf8at0k+aSmP9yUVQWJqbbbyJ0xlcINR4Q5lCB g/sIPjaFMTic8JAdIoOw0nMpWdgTEGjVsW8g0MlSu5Z7HJgOIEL4yp2TBA== -----END CERTIFICATE-----Generated at Tue Jul 1 18:01:30 2025 by rpki-client