$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aedb2d57-360e-4c9a-b5cf-c70a374aa393.roa File: aedb2d57-360e-4c9a-b5cf-c70a374aa393.roa (raw, json) Hash identifier: CbBjHmlsG63Yt4DPGJ4aMygbrYz5o3rVeDt0bg9/h2w= Subject key identifier: EE:57:87:93:85:01:FF:F7:6E:07:C5:34:FA:09:37:D4:9C:42:EA:DB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 21BBA5293DB6B8C4ADFF3FC309F99031FEF62F26 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aedb2d57-360e-4c9a-b5cf-c70a374aa393.roa Signing time: Sat 28 Jun 2025 00:31:12 +0000 ROA not before: Sat 28 Jun 2025 00:31:12 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.51.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:bb:a5:29:3d:b6:b8:c4:ad:ff:3f:c3:09:f9:90:31:fe:f6:2f:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:31:12 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=904502e19b1a9cb5c696f7c6385ad25aab97bbab0864d5d77a0132ad16770cca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:af:b4:d9:81:e6:b5:3f:f7:47:3f:78:03:ef: 63:44:47:fa:7f:46:05:a2:32:cc:23:9b:68:ef:82: ce:8d:3b:23:af:6a:cd:dd:5a:c5:af:f3:c0:3e:a0: 14:72:33:2e:a6:90:75:39:c0:07:84:f7:24:5b:42: a7:8c:03:5f:a9:ed:4a:9e:85:b6:40:84:0b:03:09: 12:b4:81:32:74:3f:38:1c:7f:b0:9e:ba:47:86:0c: f0:f6:1e:47:95:8d:56:b3:59:38:dd:72:9c:d8:e4: e5:d5:e1:16:95:6f:7f:64:f7:17:e9:0f:c4:39:97: 96:c3:8a:aa:b2:54:64:71:c5:8a:55:b0:a0:92:36: ea:8b:3a:43:78:c5:51:b5:cb:7d:80:e9:75:8f:85: 77:23:c4:40:10:91:3c:30:69:84:09:1b:ea:1d:55: 3e:d4:21:c9:b8:e8:88:21:da:83:98:5f:58:12:c7: ed:da:23:bc:96:93:f9:38:a4:a0:aa:ae:6b:38:54: 6c:b3:02:c3:b4:d3:0e:c6:17:af:a7:ea:7c:90:81: 3b:16:a4:8a:7c:e3:d3:a3:27:bf:ce:b0:ec:77:ac: 38:67:59:43:ee:25:a9:b0:98:87:fe:9f:8a:dd:1a: ee:b7:8f:c0:f0:87:f1:de:cc:21:4b:03:a7:f6:bb: 95:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:57:87:93:85:01:FF:F7:6E:07:C5:34:FA:09:37:D4:9C:42:EA:DB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aedb2d57-360e-4c9a-b5cf-c70a374aa393.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.51.224.0/19 Signature Algorithm: sha256WithRSAEncryption 24:be:62:44:57:dd:1a:82:06:27:60:da:ff:1c:47:d8:88:db: 61:c9:0f:59:dd:46:fa:c9:a7:ae:1c:14:3c:11:51:ad:dc:ec: a5:ca:ff:6a:28:76:a9:fe:3e:12:1b:20:e4:51:72:24:ee:f3: ea:55:75:aa:8b:be:71:1b:a1:2d:41:ab:79:a9:a8:df:83:95: 06:8c:d4:c1:99:ff:8a:ea:1a:14:d9:a1:b9:4d:ef:5c:d9:50: e3:cb:6e:29:56:78:1f:b5:ec:8f:06:c0:ce:1b:64:3d:03:b6: 6f:e5:2d:1b:db:a6:62:20:a1:bf:6d:99:06:dd:bd:64:19:fb: 95:0c:ea:28:3c:8e:d6:d0:d6:4f:27:83:07:43:ba:24:29:5a: 8e:ea:41:14:83:44:43:5f:ee:6b:86:38:29:72:5b:27:ea:02: a0:ef:9c:28:18:23:28:45:6e:cf:40:bb:43:b3:1c:dd:14:50: 08:62:56:fb:16:34:a0:4b:29:d7:e3:af:16:82:1c:0e:58:d4: 25:7f:87:e7:b0:10:9c:28:ca:4e:61:76:74:f8:76:50:04:96: aa:f9:9a:bc:82:26:40:f5:db:c9:28:77:4d:b4:a3:ad:56:80: 1b:2a:7b:be:ec:bd:fa:26:18:0c:1c:18:0b:ec:c0:ac:45:93: 81:a8:dd:57 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIbulKT22uMSt/z/DCfmQMf72LyYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDAzMTEyWhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MDQ1MDJlMTliMWE5Y2I1YzY5NmY3YzYzODVhZDI1YWFi OTdiYmFiMDg2NGQ1ZDc3YTAxMzJhZDE2NzcwY2NhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3r7TZgea1P/dHP3gD72NER/p/RgWiMswjm2jvgs6NOyOv as3dWsWv88A+oBRyMy6mkHU5wAeE9yRbQqeMA1+p7UqehbZAhAsDCRK0gTJ0Pzgc f7CeukeGDPD2HkeVjVazWTjdcpzY5OXV4RaVb39k9xfpD8Q5l5bDiqqyVGRxxYpV sKCSNuqLOkN4xVG1y32A6XWPhXcjxEAQkTwwaYQJG+odVT7UIcm46Igh2oOYX1gS x+3aI7yWk/k4pKCqrms4VGyzAsO00w7GF6+n6nyQgTsWpIp849OjJ7/OsOx3rDhn WUPuJamwmIf+n4rdGu63j8Dwh/HezCFLA6f2u5XrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7leHk4UB//duB8U0+gk31JxC6tswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlZGIyZDU3LTM2MGUtNGM5YS1iNWNmLWM3MGEzNzRhYTM5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXRM+AwDQYJKoZIhvcNAQELBQADggEBACS+YkRX3RqCBidg2v8cR9iI22HJ D1ndRvrJp64cFDwRUa3c7KXK/2oodqn+PhIbIORRciTu8+pVdaqLvnEboS1Bq3mp qN+DlQaM1MGZ/4rqGhTZoblN71zZUOPLbilWeB+17I8GwM4bZD0Dtm/lLRvbpmIg ob9tmQbdvWQZ+5UM6ig8jtbQ1k8ngwdDuiQpWo7qQRSDRENf7muGOClyWyfqAqDv nCgYIyhFbs9Au0OzHN0UUAhiVvsWNKBLKdfjrxaCHA5Y1CV/h+ewEJwoyk5hdnT4 dlAElqr5mryCJkD128kod020o61WgBsqe77svfomGAwcGAvswKxFk4Go3Vc= -----END CERTIFICATE-----Generated at Sun Jun 29 08:33:50 2025 by rpki-client