$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17721a9e-0a8f-4b71-a56e-234b61d375d3.roa File: 17721a9e-0a8f-4b71-a56e-234b61d375d3.roa (raw, json) Hash identifier: 8vWkF3B+OqcLocBdm5ozLUpcysTaGhoUEYD6e/0aXM0= Subject key identifier: 97:B5:87:10:87:FC:58:47:88:AF:6A:58:09:AE:59:C3:10:7D:15:C3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 48361C067248BFA7A340ED1F2AEA11C601BC7DD1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17721a9e-0a8f-4b71-a56e-234b61d375d3.roa Signing time: Sat 21 Jun 2025 00:11:06 +0000 ROA not before: Sat 21 Jun 2025 00:11:06 +0000 ROA not after: Sat 26 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.142.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:36:1c:06:72:48:bf:a7:a3:40:ed:1f:2a:ea:11:c6:01:bc:7d:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 21 00:11:06 2025 GMT Not After : Jul 26 23:59:59 2025 GMT Subject: serialNumber=e2bbc26d15e9d4c5a8695e2415326dff4c271265963649a6a00131e62a70d6df, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c3:80:68:ca:bb:0c:1a:46:5f:5f:dd:f3:0e: bc:0a:07:9a:db:ac:06:39:e6:17:f0:61:37:6b:f4: 4b:81:31:e8:05:00:53:44:60:6d:7a:88:85:d6:97: bd:a5:b3:e1:c6:56:ce:fa:a7:d2:c9:db:26:29:26: 9d:af:cb:91:76:64:56:34:2d:8c:95:d6:6d:f0:f5: 10:4b:aa:fc:81:7f:40:d9:df:95:7c:e1:69:9e:74: 88:ae:9b:b1:01:91:21:df:00:a2:21:d5:ed:8e:4c: 2c:54:90:46:1a:98:0d:32:24:06:53:5b:e7:d0:6f: fc:6d:79:a2:03:80:35:70:3b:62:5d:ed:50:44:83: b5:45:01:58:cb:3a:b1:2f:a3:ce:fc:4c:ad:9b:94: 8d:1b:3c:e9:b0:56:16:36:19:50:ce:70:d6:04:37: 17:d4:d7:56:81:fb:e5:8d:f4:62:66:48:84:7d:e6: f2:c0:b2:ba:d8:df:f6:1c:f0:da:db:ba:3c:f1:68: ad:e8:b6:82:16:fd:5e:54:94:2d:36:ce:ab:13:c3: 9c:9c:5e:e2:9b:a8:85:7b:5b:d6:5c:c8:72:dc:12: 8c:8f:38:f3:16:70:fa:06:0b:2e:83:d2:76:ee:5c: b9:ce:92:40:10:aa:15:8a:27:89:50:92:e0:6e:53: bd:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B5:87:10:87:FC:58:47:88:AF:6A:58:09:AE:59:C3:10:7D:15:C3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17721a9e-0a8f-4b71-a56e-234b61d375d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.142.0.0/16 Signature Algorithm: sha256WithRSAEncryption 71:f0:00:53:2f:e9:12:61:7f:7f:de:0e:52:4d:d9:e8:61:ea: 27:a6:4e:34:0a:14:2a:cc:be:90:b2:1d:d7:25:f0:3f:49:88: 76:e4:a3:22:d7:f3:de:25:dd:9e:97:5d:09:ac:0a:87:16:a5: ae:bf:a8:74:28:42:c5:5f:be:1b:7b:d7:0e:e7:4f:23:7e:11: 0e:50:0a:56:d4:c5:34:b9:98:a5:d2:28:22:8e:77:4c:99:7b: e6:09:55:2c:e3:b6:11:28:b1:de:9b:12:fa:92:97:94:9d:c9: 31:13:9d:93:b4:4f:f3:42:ec:e3:2e:fe:4f:25:72:a9:24:82: 1f:2b:f8:53:9d:8b:6f:c3:49:30:45:da:ba:d4:3e:3f:ef:1b: b3:21:99:7b:ad:05:4a:09:4e:66:50:7c:ca:d2:36:a8:a5:0a: a4:cd:ac:95:69:62:88:de:21:a5:62:68:95:0e:fa:7a:6e:c0: 9a:18:9e:3a:5c:18:5b:10:0b:0e:ef:53:92:54:25:d6:7b:f5: 16:0e:25:dd:4e:f5:f6:a9:24:60:74:a8:a6:fc:5f:b3:c8:f1: cc:a7:c5:28:f7:9f:22:79:57:40:87:3c:a0:fa:c8:5f:d2:95: 3a:39:1f:25:c1:c2:92:a2:d6:b6:01:8c:89:41:2c:53:6a:61: 70:b9:64:0a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSDYcBnJIv6ejQO0fKuoRxgG8fdEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIxMDAxMTA2WhcNMjUwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMmJiYzI2ZDE1ZTlkNGM1YTg2OTVlMjQxNTMyNmRmZjRj MjcxMjY1OTYzNjQ5YTZhMDAxMzFlNjJhNzBkNmRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuw4BoyrsMGkZfX93zDrwKB5rbrAY55hfwYTdr9EuBMegF AFNEYG16iIXWl72ls+HGVs76p9LJ2yYpJp2vy5F2ZFY0LYyV1m3w9RBLqvyBf0DZ 35V84WmedIium7EBkSHfAKIh1e2OTCxUkEYamA0yJAZTW+fQb/xteaIDgDVwO2Jd 7VBEg7VFAVjLOrEvo878TK2blI0bPOmwVhY2GVDOcNYENxfU11aB++WN9GJmSIR9 5vLAsrrY3/Yc8NrbujzxaK3otoIW/V5UlC02zqsTw5ycXuKbqIV7W9ZcyHLcEoyP OPMWcPoGCy6D0nbuXLnOkkAQqhWKJ4lQkuBuU72pAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUl7WHEIf8WEeIr2pYCa5ZwxB9FcMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE3NzIxYTllLTBhOGYtNGI3MS1hNTZlLTIzNGI2MWQzNzVkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQjjANBgkqhkiG9w0BAQsFAAOCAQEAcfAAUy/pEmF/f94OUk3Z6GHqJ6ZO NAoUKsy+kLId1yXwP0mIduSjItfz3iXdnpddCawKhxalrr+odChCxV++G3vXDudP I34RDlAKVtTFNLmYpdIoIo53TJl75glVLOO2ESix3psS+pKXlJ3JMROdk7RP80Ls 4y7+TyVyqSSCHyv4U52Lb8NJMEXautQ+P+8bsyGZe60FSglOZlB8ytI2qKUKpM2s lWliiN4hpWJolQ76em7AmhieOlwYWxALDu9TklQl1nv1Fg4l3U719qkkYHSopvxf s8jxzKfFKPefInlXQIc8oPrIX9KVOjkfJcHCkqLWtgGMiUEsU2phcLlkCg== -----END CERTIFICATE-----Generated at Sun Jun 29 04:34:51 2025 by rpki-client