$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10e8eaff-a969-4014-aee5-0177cbb5381e.roa File: 10e8eaff-a969-4014-aee5-0177cbb5381e.roa (raw, json) Hash identifier: V1ec7lK6DQCWyhldOxL9f8QfpuT+Ht/oH+Swo+g8Dio= Subject key identifier: 92:64:1F:7E:48:3D:B0:3D:10:16:10:B8:67:3D:66:A2:3B:BE:D6:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4C4D62D6AA600CE2EAAC668EAE06D620AAFDD2A4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10e8eaff-a969-4014-aee5-0177cbb5381e.roa Signing time: Wed 11 Jun 2025 00:01:38 +0000 ROA not before: Wed 11 Jun 2025 00:01:38 +0000 ROA not after: Wed 16 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.162.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:4d:62:d6:aa:60:0c:e2:ea:ac:66:8e:ae:06:d6:20:aa:fd:d2:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 11 00:01:38 2025 GMT Not After : Jul 16 23:59:59 2025 GMT Subject: serialNumber=cad85f8a9fd1b5b6a82e62576e53f512dd8da3f4a55c8a2c7c674c503e62aefc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d5:50:99:ca:b3:81:6b:79:bd:04:fa:b7:f9: 5a:a2:a2:68:10:cf:37:cd:72:07:f1:26:05:61:49: 5a:b3:c5:d4:a1:14:8a:d5:2d:de:6f:58:07:0a:1b: f6:a7:db:0e:53:0d:c5:98:49:f6:a6:6d:e4:80:4e: 2f:56:0c:71:8a:cb:c7:85:ae:3e:a7:4f:73:60:9f: 91:35:49:20:09:f9:03:0d:a9:a8:38:ec:5d:24:7b: 8d:6e:49:30:75:16:a2:4f:09:a4:62:eb:23:30:7f: 2c:73:6e:9f:04:de:52:b3:b5:13:89:7a:8d:4c:4c: 78:5b:8f:32:c5:69:98:86:31:37:a6:d4:9e:56:76: d9:f8:21:da:ab:b6:52:ab:d4:cf:5a:32:6a:c5:42: d8:a1:2a:3d:3c:26:6b:8c:de:3e:02:70:18:9f:c2: 23:db:52:66:7f:05:ca:09:20:4e:58:b6:de:e7:8e: f1:76:c1:47:07:81:0a:0b:08:9d:36:db:8e:2f:45: fa:a8:28:9e:67:b4:97:0f:bd:23:5a:4f:28:36:3d: ae:e7:f8:8f:33:34:e1:8f:c4:f0:89:c9:52:18:2a: 07:3c:ce:b0:ab:b1:44:34:4a:38:2b:5f:3c:3a:36: 63:1c:80:59:38:65:21:b4:f8:62:8b:55:48:2b:e9: 38:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:64:1F:7E:48:3D:B0:3D:10:16:10:B8:67:3D:66:A2:3B:BE:D6:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10e8eaff-a969-4014-aee5-0177cbb5381e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.162.0.0/15 Signature Algorithm: sha256WithRSAEncryption a3:4d:28:d7:0e:51:cd:84:de:b5:9d:f6:33:97:f0:15:c5:95: 79:6a:29:78:d1:ba:19:c0:c2:af:39:ab:81:a2:97:a5:d0:ad: 42:53:44:11:28:51:eb:82:4d:90:5b:35:d1:83:f6:67:e7:7b: d5:37:eb:92:d0:04:a0:e7:cb:79:33:31:16:90:d2:7d:94:68: d8:c0:c2:ca:f9:cc:f4:f4:82:cc:f0:29:9c:1b:45:79:7f:33: 71:94:52:9b:e1:a8:01:be:77:6f:73:00:3a:7e:f0:5a:83:c8: 2b:43:38:93:44:84:52:73:1d:ad:e1:ae:a2:aa:72:26:7a:69: 87:9d:b2:82:c5:e5:23:0c:a6:30:87:26:a8:4b:b7:a5:00:53: a5:1d:e1:b0:bd:49:11:8b:1e:93:f1:c9:75:21:ff:bd:fe:20: 89:d7:d9:14:ae:d4:9f:8b:9c:c9:9e:b0:f6:5b:b9:b5:ed:86: 30:35:bb:fc:11:33:29:11:a4:ca:db:2b:0d:e2:4d:cc:9f:96: af:06:ad:2c:64:91:dc:93:fd:a2:06:44:26:3d:4e:02:df:7c: 1f:07:c5:77:cc:c3:b3:35:08:ea:8e:04:9b:93:36:a9:09:fb: 5e:56:26:da:af:5a:12:38:0d:fe:46:5c:8c:b8:88:84:97:f2: bb:b7:91:1e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTE1i1qpgDOLqrGaOrgbWIKr90qQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjExMDAwMTM4WhcNMjUwNzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWQ4NWY4YTlmZDFiNWI2YTgyZTYyNTc2ZTUzZjUxMmRk OGRhM2Y0YTU1YzhhMmM3YzY3NGM1MDNlNjJhZWZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK1VCZyrOBa3m9BPq3+VqiomgQzzfNcgfxJgVhSVqzxdSh FIrVLd5vWAcKG/an2w5TDcWYSfambeSATi9WDHGKy8eFrj6nT3Ngn5E1SSAJ+QMN qag47F0ke41uSTB1FqJPCaRi6yMwfyxzbp8E3lKztROJeo1MTHhbjzLFaZiGMTem 1J5Wdtn4IdqrtlKr1M9aMmrFQtihKj08JmuM3j4CcBifwiPbUmZ/BcoJIE5Ytt7n jvF2wUcHgQoLCJ02244vRfqoKJ5ntJcPvSNaTyg2Pa7n+I8zNOGPxPCJyVIYKgc8 zrCrsUQ0SjgrXzw6NmMcgFk4ZSG0+GKLVUgr6Th/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUkmQffkg9sD0QFhC4Zz1moju+1lIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwZThlYWZmLWE5NjktNDAxNC1hZWU1LTAxNzdjYmI1MzgxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEQojANBgkqhkiG9w0BAQsFAAOCAQEAo00o1w5RzYTetZ32M5fwFcWVeWop eNG6GcDCrzmrgaKXpdCtQlNEEShR64JNkFs10YP2Z+d71TfrktAEoOfLeTMxFpDS fZRo2MDCyvnM9PSCzPApnBtFeX8zcZRSm+GoAb53b3MAOn7wWoPIK0M4k0SEUnMd reGuoqpyJnpph52ygsXlIwymMIcmqEu3pQBTpR3hsL1JEYsek/HJdSH/vf4gidfZ FK7Un4ucyZ6w9lu5te2GMDW7/BEzKRGkytsrDeJNzJ+WrwatLGSR3JP9ogZEJj1O At98HwfFd8zDszUI6o4Em5M2qQn7XlYm2q9aEjgN/kZcjLiIhJfyu7eRHg== -----END CERTIFICATE-----Generated at Sun Jun 29 03:51:42 2025 by rpki-client