$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a90b50e7-2729-47d9-b938-a8bafbfa8fdc.roa File: a90b50e7-2729-47d9-b938-a8bafbfa8fdc.roa (raw, json) Hash identifier: 0NEAFZEGA39F6ZLX4ISFQvCBHsBjL6L6vpQQ74d9o+w= Subject key identifier: FB:3E:F2:25:7C:8A:8A:29:3E:6F:49:02:00:08:00:0C:7E:7B:CF:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 029FFD96AC09FC9E3592E1F7A64ADEA6DBFF35E5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a90b50e7-2729-47d9-b938-a8bafbfa8fdc.roa Signing time: Sat 21 Jun 2025 00:20:58 +0000 ROA not before: Sat 21 Jun 2025 00:20:58 +0000 ROA not after: Sat 26 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 173.83.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:9f:fd:96:ac:09:fc:9e:35:92:e1:f7:a6:4a:de:a6:db:ff:35:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 21 00:20:58 2025 GMT Not After : Jul 26 23:59:59 2025 GMT Subject: serialNumber=f2e742f204c15cbc4135862d45b58b47f100c44cef804ffd263b2cf820fccc28, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:44:ab:bc:21:34:7e:19:56:53:20:96:67:a3: 22:cb:01:09:b2:7e:11:11:59:d5:0d:f1:97:50:dd: c7:10:ca:04:e3:f6:fa:65:3c:eb:52:49:08:75:27: 70:77:24:91:79:56:a6:8d:00:b7:33:9c:5f:9f:c5: 3a:92:0d:fd:8f:e9:37:6b:55:c9:55:b5:19:f4:a7: fa:a3:e0:91:da:48:d3:db:25:ea:54:b2:9b:a8:b3: f8:86:84:66:18:3b:a2:8c:58:ed:c8:13:6e:b1:29: 33:a7:6a:67:36:7d:15:eb:1f:c9:5b:21:99:ea:da: ff:38:65:e6:a7:da:26:68:16:aa:45:d9:74:42:12: 93:3e:c0:86:7e:00:b7:ee:30:96:1b:51:61:d0:a7: 0c:ac:b0:52:cd:07:1a:dd:e1:99:8f:b8:05:7f:6b: 0a:7a:89:e9:ed:d4:65:85:d6:52:d9:91:f4:10:30: 27:ee:5e:4c:cb:72:43:be:3b:5c:fd:59:25:6f:d1: c9:e2:9a:c1:74:72:b4:7f:85:2e:0b:5f:2d:b5:a6: f4:30:e7:5b:b8:80:5f:88:c6:0f:ae:85:9c:c7:11: a4:bc:fc:83:fe:07:34:0b:01:51:81:02:93:96:8d: 2d:69:4c:e5:b6:0c:f4:76:f9:b6:98:4e:80:c3:98: dd:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:3E:F2:25:7C:8A:8A:29:3E:6F:49:02:00:08:00:0C:7E:7B:CF:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a90b50e7-2729-47d9-b938-a8bafbfa8fdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 173.83.200.0/22 Signature Algorithm: sha256WithRSAEncryption 48:6f:9c:e4:0a:ee:bb:db:40:a4:9d:ac:62:61:31:75:f6:45: 6b:24:42:3f:8e:fa:e5:1f:4c:32:0a:8c:97:43:5e:cd:f4:07: f6:b8:5d:7f:75:6e:5b:91:ff:e3:45:53:21:0e:c5:95:11:f7: b7:42:ac:fd:d4:5c:8a:47:30:87:61:8c:ff:58:21:88:31:02: 9a:c9:9d:3d:df:42:fb:a3:86:18:63:48:60:5e:5f:ef:ff:91: 39:72:2c:22:33:60:26:42:5a:59:9f:14:97:d5:5b:15:4a:f7: f7:61:3c:55:98:b7:0a:d0:77:ce:d0:df:35:16:db:79:e9:58: 26:dd:85:d4:41:14:11:06:ff:fe:ff:d1:90:66:e4:8a:2c:66: f8:c2:51:bb:01:04:f5:7e:72:01:26:ca:06:c8:f0:d4:b9:e1: 49:e7:cd:3d:7d:c8:e5:db:49:24:40:1f:72:2c:c3:5f:4a:3a: 2f:57:98:56:27:05:fa:0f:97:8a:ce:7e:09:cf:1a:0e:e1:50: 94:61:0b:dc:bf:8e:43:8d:16:cf:e5:e2:6b:fc:2c:b8:02:01: 1f:f1:f3:88:73:4a:fe:8f:2a:cc:0c:d1:0b:4f:c4:79:17:3d: 20:69:0d:48:7d:1c:ef:73:d3:6c:b6:f8:a6:9f:be:c4:95:e0: 31:69:48:80 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAp/9lqwJ/J41kuH3pkreptv/NeUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIxMDAyMDU4WhcNMjUwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMmU3NDJmMjA0YzE1Y2JjNDEzNTg2MmQ0NWI1OGI0N2Yx MDBjNDRjZWY4MDRmZmQyNjNiMmNmODIwZmNjYzI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSRKu8ITR+GVZTIJZnoyLLAQmyfhERWdUN8ZdQ3ccQygTj 9vplPOtSSQh1J3B3JJF5VqaNALcznF+fxTqSDf2P6TdrVclVtRn0p/qj4JHaSNPb JepUspuos/iGhGYYO6KMWO3IE26xKTOnamc2fRXrH8lbIZnq2v84Zean2iZoFqpF 2XRCEpM+wIZ+ALfuMJYbUWHQpwyssFLNBxrd4ZmPuAV/awp6ient1GWF1lLZkfQQ MCfuXkzLckO+O1z9WSVv0cnimsF0crR/hS4LXy21pvQw51u4gF+Ixg+uhZzHEaS8 /IP+BzQLAVGBApOWjS1pTOW2DPR2+baYToDDmN2/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+z7yJXyKiik+b0kCAAgADH57z6IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E5MGI1MGU3LTI3MjktNDdkOS1iOTM4LWE4YmFmYmZhOGZkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKtU8gwDQYJKoZIhvcNAQELBQADggEBAEhvnOQK7rvbQKSdrGJhMXX2RWsk Qj+O+uUfTDIKjJdDXs30B/a4XX91bluR/+NFUyEOxZUR97dCrP3UXIpHMIdhjP9Y IYgxAprJnT3fQvujhhhjSGBeX+//kTlyLCIzYCZCWlmfFJfVWxVK9/dhPFWYtwrQ d87Q3zUW23npWCbdhdRBFBEG//7/0ZBm5IosZvjCUbsBBPV+cgEmygbI8NS54Unn zT19yOXbSSRAH3Isw19KOi9XmFYnBfoPl4rOfgnPGg7hUJRhC9y/jkONFs/l4mv8 LLgCAR/x84hzSv6PKswM0QtPxHkXPSBpDUh9HO9z02y2+KafvsSV4DFpSIA= -----END CERTIFICATE-----Generated at Sun Jun 29 03:58:14 2025 by rpki-client