$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b882886f-d8f9-4f8d-9e55-da68a8d482ed.roa File: b882886f-d8f9-4f8d-9e55-da68a8d482ed.roa (raw, json) Hash identifier: JZkeroo4N3XklK3niFzGN6x/Jjpd9HTJLeG971Obwak= Subject key identifier: D7:BC:D1:D9:B7:87:3A:77:EE:8C:89:F2:1C:2C:B8:CF:9E:63:3E:74 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5A23BF5EB13F7EEB65E4F9DB90322DD8C49731D0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b882886f-d8f9-4f8d-9e55-da68a8d482ed.roa Signing time: Sat 21 Jun 2025 00:20:54 +0000 ROA not before: Sat 21 Jun 2025 00:20:54 +0000 ROA not after: Sat 26 Jul 2025 23:59:59 +0000 asID: 21664 IP address blocks: 168.185.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:23:bf:5e:b1:3f:7e:eb:65:e4:f9:db:90:32:2d:d8:c4:97:31:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 21 00:20:54 2025 GMT Not After : Jul 26 23:59:59 2025 GMT Subject: serialNumber=c7ab4de9bbe84bdb91179f99bfbabee58d002a8259b7a4520d7766fdfd2c3d3a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1b:a3:67:8d:c8:19:b9:99:c6:dc:1d:a3:ab: 85:d3:33:a5:d1:10:66:54:76:ce:08:4c:3a:e5:ae: 78:ff:32:6e:77:fa:3c:f4:7c:f5:f6:c9:6a:0e:c3: 3a:4e:de:32:44:2b:d1:bc:83:f2:d3:37:d6:ac:16: 8e:c7:a9:a6:40:c7:94:c4:21:68:d3:c7:02:dd:6b: 91:5e:38:c1:8e:e1:0c:b4:b1:1e:a8:9f:d2:a1:f1: f9:d4:d4:21:51:6e:05:bf:7a:bb:ec:f2:92:52:5e: 3e:67:48:93:d1:90:37:da:e0:01:18:06:8e:62:60: 2a:97:03:33:bc:3f:6a:4f:e9:bd:3f:e5:a6:d0:8e: b4:0f:76:f2:2e:13:6c:9b:38:32:6b:2a:11:42:4d: a2:d7:11:80:ea:49:28:87:84:9a:78:ab:b5:c6:48: 34:50:36:07:22:3c:72:37:66:50:77:04:97:e9:91: 15:c0:e6:31:db:d9:f2:fe:d0:1e:84:90:95:15:91: b3:df:77:cd:d2:9a:ec:5d:24:7e:d7:b0:c3:e0:25: e6:f0:f5:7f:d9:11:65:39:75:5f:39:03:cc:04:cf: 91:9d:a8:2f:b2:81:9b:3b:78:61:42:61:98:1e:fa: 27:13:84:ed:9d:6c:82:56:cb:61:a1:42:e9:26:1b: ff:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:BC:D1:D9:B7:87:3A:77:EE:8C:89:F2:1C:2C:B8:CF:9E:63:3E:74 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b882886f-d8f9-4f8d-9e55-da68a8d482ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.185.4.0/22 Signature Algorithm: sha256WithRSAEncryption 03:8c:b5:ea:88:5b:a4:e1:31:0d:26:23:e3:10:01:4a:df:ef: 5e:df:15:5f:83:57:74:c6:4f:59:4f:5d:ba:d4:4e:31:69:64: 79:d4:b0:e3:97:f4:44:75:e8:d7:90:d4:07:1e:7e:61:a4:5c: 22:5c:aa:1a:96:7a:e9:11:49:5e:ff:00:0c:f2:8e:ca:25:e3: a6:a7:60:8d:c1:d7:5a:7a:11:e7:ba:52:b8:be:19:3d:37:59: 67:3c:67:39:b1:fd:bb:0e:63:cc:87:9d:57:94:7a:e0:75:a7: 19:ab:82:f9:87:8e:99:f9:61:79:d0:34:ae:e8:65:ed:31:c8: fb:26:07:96:8b:65:29:0d:07:03:85:1d:b3:d5:be:af:0e:2d: cd:37:fe:f0:6c:3c:95:2c:24:71:f9:07:76:26:e1:b5:d3:1b: 9a:64:61:b0:25:28:57:f3:8b:88:cd:53:56:a2:9f:c9:45:2c: 85:c4:05:37:7e:fb:1b:ce:0d:2b:db:8d:1e:64:55:80:2c:03: 42:2e:f5:46:fe:28:5c:21:47:4a:02:ca:f5:01:e4:7f:cb:b0: 1d:9f:7a:8e:3f:d6:a3:fc:95:a2:f4:a5:a1:7a:b7:9b:9d:ce: 13:fe:cf:97:3f:0f:a8:40:cf:f1:c2:ad:3e:86:04:d3:49:75: 8c:e7:54:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWiO/XrE/futl5PnbkDIt2MSXMdAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIxMDAyMDU0WhcNMjUwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjN2FiNGRlOWJiZTg0YmRiOTExNzlmOTliZmJhYmVlNThk MDAyYTgyNTliN2E0NTIwZDc3NjZmZGZkMmMzZDNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMG6NnjcgZuZnG3B2jq4XTM6XREGZUds4ITDrlrnj/Mm53 +jz0fPX2yWoOwzpO3jJEK9G8g/LTN9asFo7HqaZAx5TEIWjTxwLda5FeOMGO4Qy0 sR6on9Kh8fnU1CFRbgW/ervs8pJSXj5nSJPRkDfa4AEYBo5iYCqXAzO8P2pP6b0/ 5abQjrQPdvIuE2ybODJrKhFCTaLXEYDqSSiHhJp4q7XGSDRQNgciPHI3ZlB3BJfp kRXA5jHb2fL+0B6EkJUVkbPfd83SmuxdJH7XsMPgJebw9X/ZEWU5dV85A8wEz5Gd qC+ygZs7eGFCYZge+icThO2dbIJWy2GhQukmG//HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU17zR2beHOnfujInyHCy4z55jPnQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4ODI4ODZmLWQ4ZjktNGY4ZC05ZTU1LWRhNjhhOGQ0ODJlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKouQQwDQYJKoZIhvcNAQELBQADggEBAAOMteqIW6ThMQ0mI+MQAUrf717f FV+DV3TGT1lPXbrUTjFpZHnUsOOX9ER16NeQ1AcefmGkXCJcqhqWeukRSV7/AAzy jsol46anYI3B11p6Eee6Uri+GT03WWc8Zzmx/bsOY8yHnVeUeuB1pxmrgvmHjpn5 YXnQNK7oZe0xyPsmB5aLZSkNBwOFHbPVvq8OLc03/vBsPJUsJHH5B3Ym4bXTG5pk YbAlKFfzi4jNU1ain8lFLIXEBTd++xvODSvbjR5kVYAsA0Iu9Ub+KFwhR0oCyvUB 5H/LsB2feo4/1qP8laL0paF6t5udzhP+z5c/D6hAz/HCrT6GBNNJdYznVJU= -----END CERTIFICATE-----Generated at Mon Jun 30 14:51:58 2025 by rpki-client