$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d69d305c-a658-4c39-8075-c28e2b201286.roa File: d69d305c-a658-4c39-8075-c28e2b201286.roa (raw, json) Hash identifier: MREzUBTwElxKfr8GjIJfXRYDEyn1pOO7YGNlQqzyEZY= Subject key identifier: 84:F5:69:FA:01:4C:36:E5:E6:B6:B4:EB:12:A4:AF:05:33:CB:37:54 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D07D1C390EB43B5674AB80C957B6C6AF4631A46 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d69d305c-a658-4c39-8075-c28e2b201286.roa Signing time: Mon 23 Jun 2025 15:00:50 +0000 ROA not before: Mon 23 Jun 2025 15:00:50 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 208.115.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:07:d1:c3:90:eb:43:b5:67:4a:b8:0c:95:7b:6c:6a:f4:63:1a:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:00:50 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=66ec399ee6c8d017d9c19c4785447c0ddeb1d480afea762729666f8336a1a427, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a5:ee:97:a4:a0:99:fc:9b:55:96:d0:87:8f: ce:a5:2d:42:4f:e2:a7:62:10:4c:de:89:a3:11:75: 0d:8e:fb:ef:f4:34:c9:46:45:4d:76:77:d2:04:80: 7b:49:40:e2:f0:3c:43:36:dd:8c:f5:c4:7a:6a:83: ed:71:62:bc:b8:11:b5:42:2d:15:81:01:08:c9:8c: 3d:b6:64:94:47:e5:c1:97:22:5e:4b:fb:2a:bc:f9: 68:89:78:4a:d1:2b:ec:35:73:af:61:2e:d2:b8:19: 7a:71:8d:21:93:33:b2:09:cb:60:85:3a:35:aa:80: b6:a2:ae:ea:18:10:1a:7c:a8:04:19:a5:35:2b:6f: 19:11:f9:22:dc:78:22:60:04:11:15:4e:b1:39:0e: c2:51:04:7b:2d:fb:8d:cf:e9:bb:99:cf:fe:8c:f0: 8e:78:e7:5e:7c:60:b5:6e:fd:1d:ae:db:57:d6:46: ff:34:c1:9c:20:f7:ae:92:8d:a2:86:a4:ab:81:dc: a6:01:a4:23:e4:d0:51:7f:81:f9:fb:8c:45:da:23: 49:65:a7:56:7b:4e:c1:42:7a:d8:14:71:9f:75:f9: 4a:0f:65:46:5e:fc:14:83:6a:f2:1a:9b:42:e0:f6: bf:4c:5f:89:30:56:27:0b:43:11:e2:07:b7:dd:62: 99:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:F5:69:FA:01:4C:36:E5:E6:B6:B4:EB:12:A4:AF:05:33:CB:37:54 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d69d305c-a658-4c39-8075-c28e2b201286.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.115.0.0/19 Signature Algorithm: sha256WithRSAEncryption d2:8c:5d:b7:1e:73:cc:1a:ae:63:40:b2:25:b4:4b:b9:b0:eb: 07:8d:d8:0e:ac:8a:9a:77:81:74:3e:2a:af:60:ab:42:bf:14: 14:e5:34:d2:b3:a8:d2:7d:e5:5f:27:d3:e7:0d:a1:61:5b:cd: df:5e:5e:54:26:46:5e:df:49:1e:57:91:59:cd:91:df:04:98: 4c:e6:b7:85:1d:2a:71:e8:3d:aa:4a:01:c2:94:df:df:e6:de: 04:3d:79:f4:12:2e:81:3e:78:a8:be:0b:27:5a:3e:d4:63:cd: 8d:c0:ee:9b:e8:84:6e:d0:6f:c3:0a:50:f5:52:77:99:b5:68: 67:7d:b9:88:05:98:f0:24:65:b3:75:ce:d7:22:4f:cc:aa:bc: 0e:a8:68:7b:51:0c:eb:76:cc:e2:98:9b:bf:df:0f:cd:4b:0f: ef:72:cf:79:2e:57:88:0a:e8:2d:4a:2d:66:61:90:5c:9b:40: 9b:bf:90:cd:23:a9:55:1e:09:a5:b5:2c:2e:3e:b7:11:4e:65: a3:d6:ee:57:15:fd:74:a5:a5:67:76:ab:10:b0:83:1e:1d:0d: 6f:8f:1e:47:2d:5c:24:e5:be:8c:f9:a8:50:3a:29:95:23:fa: fd:db:9d:3d:af:28:12:e8:0e:fd:10:0e:62:b8:b2:40:28:4e: 23:85:3f:4a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfQfRw5DrQ7VnSrgMlXtsavRjGkYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUwMDUwWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NmVjMzk5ZWU2YzhkMDE3ZDljMTljNDc4NTQ0N2MwZGRl YjFkNDgwYWZlYTc2MjcyOTY2NmY4MzM2YTFhNDI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHpe6XpKCZ/JtVltCHj86lLUJP4qdiEEzeiaMRdQ2O++/0 NMlGRU12d9IEgHtJQOLwPEM23Yz1xHpqg+1xYry4EbVCLRWBAQjJjD22ZJRH5cGX Il5L+yq8+WiJeErRK+w1c69hLtK4GXpxjSGTM7IJy2CFOjWqgLairuoYEBp8qAQZ pTUrbxkR+SLceCJgBBEVTrE5DsJRBHst+43P6buZz/6M8I545158YLVu/R2u21fW Rv80wZwg966SjaKGpKuB3KYBpCPk0FF/gfn7jEXaI0llp1Z7TsFCetgUcZ91+UoP ZUZe/BSDavIam0Lg9r9MX4kwVicLQxHiB7fdYplfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhPVp+gFMNuXmtrTrEqSvBTPLN1QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q2OWQzMDVjLWE2NTgtNGMzOS04MDc1LWMyOGUyYjIwMTI4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXQcwAwDQYJKoZIhvcNAQELBQADggEBANKMXbcec8warmNAsiW0S7mw6weN 2A6sipp3gXQ+Kq9gq0K/FBTlNNKzqNJ95V8n0+cNoWFbzd9eXlQmRl7fSR5XkVnN kd8EmEzmt4UdKnHoPapKAcKU39/m3gQ9efQSLoE+eKi+CydaPtRjzY3A7pvohG7Q b8MKUPVSd5m1aGd9uYgFmPAkZbN1ztciT8yqvA6oaHtRDOt2zOKYm7/fD81LD+9y z3kuV4gK6C1KLWZhkFybQJu/kM0jqVUeCaW1LC4+txFOZaPW7lcV/XSlpWd2qxCw gx4dDW+PHkctXCTlvoz5qFA6KZUj+v3bnT2vKBLoDv0QDmK4skAoTiOFP0o= -----END CERTIFICATE-----Generated at Sun Jun 29 04:48:00 2025 by rpki-client