$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a3b4374-0660-49b2-a2a6-13c222d05ebe.roa File: 0a3b4374-0660-49b2-a2a6-13c222d05ebe.roa (raw, json) Hash identifier: Qu4vv+krTOezjaUg6ucm2iDz8EoEmc8rQIrxbBsWxkk= Subject key identifier: B7:15:AC:52:09:A4:6B:07:80:0B:BD:06:9A:35:1A:B1:AF:3B:CF:40 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CFB6525A9563B9B0ECD875D540EB8EC52771C1E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a3b4374-0660-49b2-a2a6-13c222d05ebe.roa Signing time: Fri 20 Jun 2025 00:01:10 +0000 ROA not before: Fri 20 Jun 2025 00:01:10 +0000 ROA not after: Fri 25 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 100.48.0.0/12 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:fb:65:25:a9:56:3b:9b:0e:cd:87:5d:54:0e:b8:ec:52:77:1c:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 20 00:01:10 2025 GMT Not After : Jul 25 23:59:59 2025 GMT Subject: serialNumber=8fba917cfbaf314afba6e1eb16d74431283815f36396ff47b29ebe1a6f953e33, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:64:a0:4c:16:f3:c4:83:6a:95:67:b9:73:27: ce:24:7f:30:08:a2:23:df:12:46:89:7c:0b:0f:c3: 0c:5d:67:ae:cf:6e:2b:0b:cf:c5:80:6e:40:b0:36: ed:01:91:ef:57:2c:86:8b:7f:84:d6:7f:60:21:ed: 5c:de:ea:85:2b:a7:6a:3c:66:0c:b1:37:0a:f0:e4: 57:e6:4a:bb:b9:5e:05:42:7b:6b:d9:e7:1f:2c:80: bd:e1:e4:b1:37:7a:3c:2e:18:2d:b8:4f:79:c4:9c: ce:27:70:3a:1c:f3:f7:3e:1f:10:98:76:88:ab:4a: 8d:8c:0b:60:da:9d:a2:04:db:26:b1:97:ea:1c:73: 5b:25:b0:bc:91:06:fc:f4:8f:12:dd:97:c1:d3:74: 36:9d:2c:bd:61:e1:04:9c:06:a2:aa:e5:10:10:02: 74:7b:17:c5:9b:01:cc:35:dc:22:6a:c0:93:6a:dd: 7b:2c:1f:24:2f:c7:55:e1:95:a2:53:dc:70:e1:44: 52:f4:ab:f2:b6:b9:8a:a3:8e:bf:c3:d9:02:21:6d: 44:70:55:19:24:d0:c1:b9:80:5a:91:8c:e8:a5:d2: 26:63:57:1f:80:86:cb:10:c0:d1:74:57:5c:e4:53: d9:88:b8:16:f1:f0:7e:4d:78:4e:60:02:13:fb:0c: 13:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:15:AC:52:09:A4:6B:07:80:0B:BD:06:9A:35:1A:B1:AF:3B:CF:40 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a3b4374-0660-49b2-a2a6-13c222d05ebe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 100.48.0.0/12 Signature Algorithm: sha256WithRSAEncryption 5e:10:3b:a2:67:85:de:ea:fb:b2:57:90:33:43:52:5f:a2:54: 1a:1e:49:54:04:56:53:12:61:3a:1d:3b:4d:66:0c:fb:52:51: 3d:4a:22:2e:79:92:91:ad:06:e8:04:7d:fe:d6:85:d5:48:74: 92:ec:fa:49:dc:97:da:1a:4e:65:1a:d1:15:92:a5:13:5a:99: 04:a3:13:73:9c:c7:34:72:8d:14:c9:56:66:39:03:c1:cb:30: 52:0f:fa:02:73:14:09:50:29:1a:de:0f:83:df:b6:8f:e1:ff: 5a:7d:94:6d:7b:b6:36:e6:21:41:13:be:b2:12:9e:e5:fe:c2: 7f:9a:26:b6:a5:ca:73:0d:1e:07:25:60:49:d8:7b:a7:2a:91: c1:3a:c9:81:61:a8:65:9c:7e:1d:81:c6:5f:96:3b:43:39:20: d9:c3:a5:fa:8b:c5:fc:c2:b4:3e:44:9f:b7:b0:a4:d0:0f:1b: ef:78:13:9b:75:4a:b1:08:ca:1a:db:fa:a5:15:f9:82:3e:51: 4c:7f:bb:16:fb:82:57:b9:49:51:91:3b:ca:c4:e7:49:a9:4d: c6:67:42:ca:90:06:23:3d:f4:e9:fc:c3:8e:1a:9d:8d:4a:35: 8a:73:07:91:cd:f2:c1:0c:b2:61:4f:71:2f:5e:42:73:39:51: 23:db:84:43 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbPtlJalWO5sOzYddVA647FJ3HB4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIwMDAwMTEwWhcNMjUwNzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZmJhOTE3Y2ZiYWYzMTRhZmJhNmUxZWIxNmQ3NDQzMTI4 MzgxNWYzNjM5NmZmNDdiMjllYmUxYTZmOTUzZTMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPZKBMFvPEg2qVZ7lzJ84kfzAIoiPfEkaJfAsPwwxdZ67P bisLz8WAbkCwNu0Bke9XLIaLf4TWf2Ah7Vze6oUrp2o8ZgyxNwrw5FfmSru5XgVC e2vZ5x8sgL3h5LE3ejwuGC24T3nEnM4ncDoc8/c+HxCYdoirSo2MC2DanaIE2yax l+occ1slsLyRBvz0jxLdl8HTdDadLL1h4QScBqKq5RAQAnR7F8WbAcw13CJqwJNq 3XssHyQvx1XhlaJT3HDhRFL0q/K2uYqjjr/D2QIhbURwVRkk0MG5gFqRjOil0iZj Vx+AhssQwNF0V1zkU9mIuBbx8H5NeE5gAhP7DBNXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtxWsUgmkaweAC70GmjUasa87z0AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBhM2I0Mzc0LTA2NjAtNDliMi1hMmE2LTEzYzIyMmQwNWViZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwRkMDANBgkqhkiG9w0BAQsFAAOCAQEAXhA7omeF3ur7sleQM0NSX6JUGh5J VARWUxJhOh07TWYM+1JRPUoiLnmSka0G6AR9/taF1Uh0kuz6SdyX2hpOZRrRFZKl E1qZBKMTc5zHNHKNFMlWZjkDwcswUg/6AnMUCVApGt4Pg9+2j+H/Wn2UbXu2NuYh QRO+shKe5f7Cf5omtqXKcw0eByVgSdh7pyqRwTrJgWGoZZx+HYHGX5Y7Qzkg2cOl +ovF/MK0PkSft7Ck0A8b73gTm3VKsQjKGtv6pRX5gj5RTH+7FvuCV7lJUZE7ysTn SalNxmdCypAGIz306fzDjhqdjUo1inMHkc3ywQyyYU9xL15CczlRI9uEQw== -----END CERTIFICATE-----Generated at Tue Jul 1 21:06:24 2025 by rpki-client