$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cde0b60f-013f-4194-82b6-b09974b3149a.roa File: cde0b60f-013f-4194-82b6-b09974b3149a.roa (raw, json) Hash identifier: mQYBjCbRUYmP8y8CFGBrH0z2fVoU37J1MaiIGld01W8= Subject key identifier: 88:50:2E:B3:C3:B4:83:AC:EB:C2:09:39:06:85:67:E1:67:C2:83:7B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 418D5C33EEDDE825D214336E1BB35235CA82BBF8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cde0b60f-013f-4194-82b6-b09974b3149a.roa Signing time: Mon 23 Jun 2025 15:41:51 +0000 ROA not before: Mon 23 Jun 2025 15:41:51 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 65.37.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:8d:5c:33:ee:dd:e8:25:d2:14:33:6e:1b:b3:52:35:ca:82:bb:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:41:51 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=6e1c5653fb05fb5eecd8f790a4826520bbbdd07656018da4b5296c07ea91bf82, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6d:20:13:07:80:3b:8b:cb:c3:a0:4b:b0:04: 35:07:57:cb:fc:a4:37:ef:1c:e5:19:1f:92:bb:b2: 04:15:f2:ba:b3:a5:02:76:c3:7b:9f:55:0c:dd:27: 2e:d2:fe:4e:af:07:7f:57:d2:01:99:10:d9:e6:b8: b0:8e:77:a6:eb:2e:30:46:91:20:ff:17:d0:13:65: 65:90:f3:8f:8d:b9:c9:48:71:aa:68:1b:86:c4:7c: e1:3b:75:59:6a:a3:95:11:98:d0:de:ce:44:55:fe: f6:17:fd:e5:f6:ee:c7:35:77:cc:8a:f3:c2:fb:45: 64:2d:d0:7f:2e:c1:97:eb:fa:4d:ea:28:ca:86:5b: 58:62:1b:ba:a6:30:42:51:15:f3:c5:1e:18:ee:be: 70:73:5d:e0:0d:31:b5:9a:e8:80:9d:c0:f3:8a:54: 3b:65:ff:5e:35:43:0f:48:5b:f8:76:7c:b5:e4:8e: 1f:a3:a5:82:c9:5f:03:fb:12:79:50:7c:fd:09:aa: f4:f6:3f:20:9b:93:aa:c7:f2:ca:73:75:80:c8:1e: be:de:05:44:e5:00:7a:59:ca:bd:8d:44:5d:6d:8c: 39:67:40:80:01:85:c0:44:0a:c0:2d:e3:04:7d:82: cb:dc:ed:c5:e4:7a:4b:ee:21:68:84:f0:73:da:37: 60:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:50:2E:B3:C3:B4:83:AC:EB:C2:09:39:06:85:67:E1:67:C2:83:7B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cde0b60f-013f-4194-82b6-b09974b3149a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.37.128.0/18 Signature Algorithm: sha256WithRSAEncryption 53:94:e8:ea:a0:e2:4b:81:d6:df:19:e3:b9:63:40:03:2e:5b: 2c:c7:12:dc:dc:29:2b:dc:eb:2e:9c:52:fc:ae:ff:e0:9a:d5: f2:f4:50:1f:bb:01:c8:98:51:b2:7c:b4:93:5e:8c:2d:9a:fa: df:3f:77:ef:d5:f6:9f:f3:f8:87:bc:77:88:7a:1e:af:e6:ba: 3f:27:44:bd:15:34:b4:12:f4:44:50:c6:8c:41:11:7c:95:d1: 87:6b:2f:4c:14:68:89:a6:79:c5:e9:9f:b2:ac:0a:9b:2c:f7: 1d:5f:2b:e2:73:08:62:ee:51:53:23:b1:3b:d7:45:cd:52:35: 02:52:69:c6:05:0d:98:75:ce:a5:8a:33:8f:fa:c9:0c:03:69: 11:0a:ab:c5:bf:86:d3:79:56:d4:22:4b:fc:57:4d:a1:05:7e: 91:4d:a4:29:48:f5:2f:db:00:92:af:45:8c:e0:98:fb:35:21: fc:37:1f:47:05:15:40:95:f0:d9:d2:d8:8e:8d:38:83:8f:eb: ab:7c:a5:9c:5b:65:37:1e:02:d0:ef:27:e8:72:72:cc:3a:56: 76:4a:41:d9:1c:6c:ea:66:88:92:b7:fa:8a:89:be:07:b5:df: f0:e7:60:bf:50:36:9d:02:1c:3d:2d:6b:1e:23:4c:f6:6e:c2: 76:5b:3b:69 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQY1cM+7d6CXSFDNuG7NSNcqCu/gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTU0MTUxWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTFjNTY1M2ZiMDVmYjVlZWNkOGY3OTBhNDgyNjUyMGJi YmRkMDc2NTYwMThkYTRiNTI5NmMwN2VhOTFiZjgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIbSATB4A7i8vDoEuwBDUHV8v8pDfvHOUZH5K7sgQV8rqz pQJ2w3ufVQzdJy7S/k6vB39X0gGZENnmuLCOd6brLjBGkSD/F9ATZWWQ84+NuclI capoG4bEfOE7dVlqo5URmNDezkRV/vYX/eX27sc1d8yK88L7RWQt0H8uwZfr+k3q KMqGW1hiG7qmMEJRFfPFHhjuvnBzXeANMbWa6ICdwPOKVDtl/141Qw9IW/h2fLXk jh+jpYLJXwP7EnlQfP0JqvT2PyCbk6rH8spzdYDIHr7eBUTlAHpZyr2NRF1tjDln QIABhcBECsAt4wR9gsvc7cXkekvuIWiE8HPaN2AvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiFAus8O0g6zrwgk5BoVn4WfCg3swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkZTBiNjBmLTAxM2YtNDE5NC04MmI2LWIwOTk3NGIzMTQ5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZBJYAwDQYJKoZIhvcNAQELBQADggEBAFOU6Oqg4kuB1t8Z47ljQAMuWyzH EtzcKSvc6y6cUvyu/+Ca1fL0UB+7AciYUbJ8tJNejC2a+t8/d+/V9p/z+Ie8d4h6 Hq/muj8nRL0VNLQS9ERQxoxBEXyV0YdrL0wUaImmecXpn7KsCpss9x1fK+JzCGLu UVMjsTvXRc1SNQJSacYFDZh1zqWKM4/6yQwDaREKq8W/htN5VtQiS/xXTaEFfpFN pClI9S/bAJKvRYzgmPs1Ifw3H0cFFUCV8NnS2I6NOIOP66t8pZxbZTceAtDvJ+hy csw6VnZKQdkcbOpmiJK3+oqJvge13/DnYL9QNp0CHD0tax4jTPZuwnZbO2k= -----END CERTIFICATE-----Generated at Sun Jun 29 04:36:08 2025 by rpki-client