$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c3b9896d-fe24-4be4-8de9-1739a2278787.roa File: c3b9896d-fe24-4be4-8de9-1739a2278787.roa (raw, json) Hash identifier: WpAt6+7iUHqpcBDqhrL0fB31pHROSnAly1VQe/3Dg5U= Subject key identifier: 51:14:52:15:89:5B:FB:5C:EB:16:27:A3:9C:01:7E:17:EF:B4:80:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C8A31609D8CF8C994FD3FF2037059EDB92F6103 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c3b9896d-fe24-4be4-8de9-1739a2278787.roa Signing time: Fri 27 Jun 2025 00:20:25 +0000 ROA not before: Fri 27 Jun 2025 00:20:25 +0000 ROA not after: Fri 01 Aug 2025 23:59:59 +0000 asID: 7224 IP address blocks: 24.110.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:8a:31:60:9d:8c:f8:c9:94:fd:3f:f2:03:70:59:ed:b9:2f:61:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 27 00:20:25 2025 GMT Not After : Aug 1 23:59:59 2025 GMT Subject: serialNumber=375747985b74a28a71486d46a621868584aea66516667bf6024ada58ae1fff0f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:d1:8c:58:2d:56:c4:fe:62:d4:56:55:b4:a3: 28:07:be:88:05:19:d1:d3:f8:dc:61:8a:b3:ca:fa: f2:0d:90:73:d9:60:1c:7a:41:05:81:77:a9:fc:e7: 41:0c:41:cf:40:00:35:0b:d9:98:eb:da:81:0e:70: 06:62:34:22:a7:3f:6f:e9:50:1f:35:f6:68:2e:f3: 2a:f8:57:20:ae:c6:be:ac:cf:e6:08:db:f9:a7:74: 59:75:36:ef:12:cf:f3:67:6e:cf:01:95:67:9d:bb: 48:8f:39:17:a3:0c:b0:cd:ba:8f:0a:f1:40:00:16: 5b:80:7f:ec:1c:48:a6:42:94:a8:56:29:75:a1:e9: 7a:48:6c:20:c4:51:b2:c4:70:13:9c:98:73:38:ab: 7d:42:21:dc:af:4a:78:1b:e4:33:3c:85:3d:8f:82: 3e:06:38:cc:ff:a0:e0:6d:6c:03:82:1d:e0:4b:e9: ca:57:fa:c9:4c:06:09:44:47:ab:7e:29:f8:21:36: cb:c9:80:b4:b9:f3:fa:86:9f:78:ab:38:31:e2:7f: f5:b2:78:d1:d6:35:71:7f:38:d3:19:a0:eb:59:f8: e8:92:f1:e8:4c:af:d6:bd:bf:bc:7e:20:c7:b1:00: 30:2d:98:99:87:81:75:de:97:d9:4c:e4:bd:fc:e8: f6:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:14:52:15:89:5B:FB:5C:EB:16:27:A3:9C:01:7E:17:EF:B4:80:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c3b9896d-fe24-4be4-8de9-1739a2278787.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 24.110.12.0/22 Signature Algorithm: sha256WithRSAEncryption 38:e3:cf:f1:d4:58:f4:57:87:1f:8f:71:81:cd:c8:e7:5d:17: b8:49:2d:36:63:ad:3b:63:70:2f:0e:36:af:db:a6:bf:8b:45: 84:2f:a2:af:44:fe:51:ab:91:13:94:ed:63:16:8d:62:1b:0f: 83:c6:a9:72:56:4e:5e:39:85:be:9c:31:5d:f4:c1:ce:d3:cd: 7d:bf:08:2c:5b:f8:4b:06:68:1c:22:1e:ca:64:a0:11:37:32: ff:ce:90:4b:2d:05:be:df:81:11:c7:a7:7f:d1:6b:c5:59:70: f9:fb:19:f4:9f:ff:47:c2:e9:9b:ef:64:d2:9c:b1:5b:f1:d8: d1:f6:a8:68:d8:5e:69:ad:b2:0b:cf:7a:bb:23:7d:11:49:e6: a2:27:58:92:01:9a:45:c6:30:92:9c:2d:0e:3a:ed:64:2a:63: 7d:c5:2c:7b:df:4c:96:29:32:ac:0b:93:02:81:83:0f:87:2e: a2:bd:96:e8:fe:04:3c:23:87:16:f7:43:ea:cf:8c:24:33:f2: 57:ee:c7:2d:af:4e:f3:ac:e9:d1:61:f9:2d:e1:a6:3d:f2:7d: 90:1f:12:07:a3:c6:a3:e4:25:4e:22:44:13:09:05:9e:3a:42: 80:13:86:93:ba:f5:f2:49:a2:90:08:df:6e:78:0b:84:ad:66: 3a:32:12:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbIoxYJ2M+MmU/T/yA3BZ7bkvYQMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI3MDAyMDI1WhcNMjUwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNzU3NDc5ODViNzRhMjhhNzE0ODZkNDZhNjIxODY4NTg0 YWVhNjY1MTY2NjdiZjYwMjRhZGE1OGFlMWZmZjBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCO0YxYLVbE/mLUVlW0oygHvogFGdHT+NxhirPK+vINkHPZ YBx6QQWBd6n850EMQc9AADUL2Zjr2oEOcAZiNCKnP2/pUB819mgu8yr4VyCuxr6s z+YI2/mndFl1Nu8Sz/Nnbs8BlWedu0iPORejDLDNuo8K8UAAFluAf+wcSKZClKhW KXWh6XpIbCDEUbLEcBOcmHM4q31CIdyvSngb5DM8hT2Pgj4GOMz/oOBtbAOCHeBL 6cpX+slMBglER6t+KfghNsvJgLS58/qGn3irODHif/WyeNHWNXF/ONMZoOtZ+OiS 8ehMr9a9v7x+IMexADAtmJmHgXXel9lM5L386PYVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUURRSFYlb+1zrFiejnAF+F++0gFAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MzYjk4OTZkLWZlMjQtNGJlNC04ZGU5LTE3MzlhMjI3ODc4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIYbgwwDQYJKoZIhvcNAQELBQADggEBADjjz/HUWPRXhx+PcYHNyOddF7hJ LTZjrTtjcC8ONq/bpr+LRYQvoq9E/lGrkROU7WMWjWIbD4PGqXJWTl45hb6cMV30 wc7TzX2/CCxb+EsGaBwiHspkoBE3Mv/OkEstBb7fgRHHp3/Ra8VZcPn7GfSf/0fC 6ZvvZNKcsVvx2NH2qGjYXmmtsgvPersjfRFJ5qInWJIBmkXGMJKcLQ467WQqY33F LHvfTJYpMqwLkwKBgw+HLqK9luj+BDwjhxb3Q+rPjCQz8lfuxy2vTvOs6dFh+S3h pj3yfZAfEgejxqPkJU4iRBMJBZ46QoAThpO69fJJopAI3254C4StZjoyElg= -----END CERTIFICATE-----Generated at Tue Jul 1 10:34:59 2025 by rpki-client