$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c291b4f-86c8-4a6c-9072-9ef46069d3a8.roa File: 0c291b4f-86c8-4a6c-9072-9ef46069d3a8.roa (raw, json) Hash identifier: tByaaxK+yOEL5l6GBw1XbBhwGbhkA8OqC7RbXTFy3j4= Subject key identifier: 1B:A9:A7:69:DD:23:DA:EA:C2:9E:46:96:C1:23:BE:77:26:C3:88:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0DCFC9A5BB1DA001F40395363DF9ECC2CA130F69 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c291b4f-86c8-4a6c-9072-9ef46069d3a8.roa Signing time: Tue 24 Jun 2025 00:31:15 +0000 ROA not before: Tue 24 Jun 2025 00:31:15 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:cf:c9:a5:bb:1d:a0:01:f4:03:95:36:3d:f9:ec:c2:ca:13:0f:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:31:15 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=e73526f1385a0ac7fbcfcc9f9b75dc28ab37be80e700ae25cc1d18faf4ea8cec, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7e:7f:b1:25:ed:08:54:51:6c:dc:39:1f:2c: 49:f1:af:58:9b:12:ee:72:13:67:61:f9:b4:f1:fd: 42:9e:46:6e:04:84:b3:01:97:52:9b:f3:fc:10:c1: fd:14:8e:8b:45:fd:5c:9e:bb:71:83:e1:fb:c0:a7: da:13:23:8d:59:d9:89:b7:85:ac:b7:3a:ca:7d:d6: 84:cc:89:83:25:f9:39:4e:5b:09:f0:67:75:74:1c: 43:4d:62:ec:43:11:79:7f:a1:53:b3:10:1a:2b:5e: f6:56:5d:2b:1e:ef:e0:e2:7f:ec:d4:ba:8c:4d:e6: 29:f9:cf:1e:ea:95:81:3d:43:b6:e7:66:75:b6:ef: f0:9d:b6:d1:be:fc:12:03:d1:39:2d:9a:92:67:2a: 52:b5:68:4b:f8:11:ec:ac:b0:f6:08:da:f2:f0:89: 31:21:52:f4:16:30:fb:df:b4:53:dc:21:d3:49:eb: 8e:83:3b:10:a1:e3:58:e3:3d:21:b6:e9:be:f8:1e: 87:22:18:40:dc:51:d6:46:e9:fb:da:60:40:95:a6: 3a:86:36:17:3c:55:6e:23:ca:e5:96:3a:cf:0d:bf: 0a:de:29:e0:11:62:09:bc:81:d3:ba:7f:dd:d0:e6: f8:4d:57:03:2c:7f:d4:38:27:43:7e:2d:1f:fb:42: 3c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:A9:A7:69:DD:23:DA:EA:C2:9E:46:96:C1:23:BE:77:26:C3:88:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c291b4f-86c8-4a6c-9072-9ef46069d3a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.73.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:34:6f:41:eb:54:d1:cf:6a:2c:f7:af:8d:5c:98:bd:ab:94: 6e:7d:af:73:52:17:a4:39:51:2b:e3:63:a6:b7:2f:22:a2:e4: 65:58:72:54:b3:a7:09:fa:dd:48:e5:90:0e:86:b0:11:f9:ef: 2c:69:d2:9d:4d:92:99:0c:a0:56:28:84:5f:3a:ce:f2:fb:8f: 42:aa:be:1c:a3:7a:67:e4:be:07:f1:4d:10:24:de:e7:98:ed: 5f:22:c8:64:21:34:b7:e2:35:c2:73:cd:eb:f6:60:7a:b1:e0: 8f:40:11:7e:31:6a:b9:2b:d0:c2:df:83:57:1f:12:bb:c4:95: 1e:92:e5:c1:c0:74:f1:2a:d7:ec:f7:7b:87:39:e2:3c:75:e6: c9:f7:eb:84:40:86:96:31:a5:0c:06:f3:ef:f4:6b:d7:2a:3e: 28:82:d6:5a:f0:13:52:26:8a:07:7f:b3:18:81:48:93:26:73: 4c:df:c2:ae:fa:9a:8c:18:83:b8:0b:b4:cc:cc:49:c2:40:0f: ee:1a:86:f7:fa:3b:e5:6a:83:3c:bc:9c:97:bd:97:b7:d1:ad: 5d:e5:00:c9:bd:56:33:53:63:09:01:2a:1a:c1:0f:51:32:c5: cb:84:da:e4:bc:9e:35:24:12:05:33:1f:96:49:6b:9e:53:23: 8d:78:86:3a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDc/JpbsdoAH0A5U2PfnswsoTD2kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAzMTE1WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzM1MjZmMTM4NWEwYWM3ZmJjZmNjOWY5Yjc1ZGMyOGFi MzdiZTgwZTcwMGFlMjVjYzFkMThmYWY0ZWE4Y2VjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYfn+xJe0IVFFs3DkfLEnxr1ibEu5yE2dh+bTx/UKeRm4E hLMBl1Kb8/wQwf0UjotF/Vyeu3GD4fvAp9oTI41Z2Ym3hay3Osp91oTMiYMl+TlO WwnwZ3V0HENNYuxDEXl/oVOzEBorXvZWXSse7+Dif+zUuoxN5in5zx7qlYE9Q7bn ZnW27/CdttG+/BID0TktmpJnKlK1aEv4EeyssPYI2vLwiTEhUvQWMPvftFPcIdNJ 646DOxCh41jjPSG26b74HociGEDcUdZG6fvaYECVpjqGNhc8VW4jyuWWOs8Nvwre KeARYgm8gdO6f93Q5vhNVwMsf9Q4J0N+LR/7QjxNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG6mnad0j2urCnkaWwSO+dybDiDQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjMjkxYjRmLTg2YzgtNGE2Yy05MDcyLTllZjQ2MDY5ZDNhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/EkwDQYJKoZIhvcNAQELBQADggEBAE40b0HrVNHPaiz3r41cmL2rlG59 r3NSF6Q5USvjY6a3LyKi5GVYclSzpwn63UjlkA6GsBH57yxp0p1NkpkMoFYohF86 zvL7j0KqvhyjemfkvgfxTRAk3ueY7V8iyGQhNLfiNcJzzev2YHqx4I9AEX4xarkr 0MLfg1cfErvElR6S5cHAdPEq1+z3e4c54jx15sn364RAhpYxpQwG8+/0a9cqPiiC 1lrwE1Imigd/sxiBSJMmc0zfwq76mowYg7gLtMzMScJAD+4ahvf6O+Vqgzy8nJe9 l7fRrV3lAMm9VjNTYwkBKhrBD1EyxcuE2uS8njUkEgUzH5ZJa55TI414hjo= -----END CERTIFICATE-----Generated at Sun Jun 29 11:32:37 2025 by rpki-client