$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/199a6fe3-3863-47d9-8092-2b8b5516b0cc.roa File: 199a6fe3-3863-47d9-8092-2b8b5516b0cc.roa (raw, json) Hash identifier: 4+KTSfL68CBIVXUq8mETgzeYppxvnJnjLD/S8ciHPTE= Subject key identifier: 8B:61:92:FF:C5:BB:D6:23:CB:6B:E4:9D:68:1C:5B:BB:B0:F9:28:F3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 39E110D8860BB9E2CF11405449C98128C5539B31 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/199a6fe3-3863-47d9-8092-2b8b5516b0cc.roa Signing time: Wed 25 Jun 2025 00:10:15 +0000 ROA not before: Wed 25 Jun 2025 00:10:15 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.149.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:e1:10:d8:86:0b:b9:e2:cf:11:40:54:49:c9:81:28:c5:53:9b:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 25 00:10:15 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=2dbcf840157738c7a924de21d76ea344d196bb2b5ce759d0836eb0e3885463e5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:01:2e:e2:6b:0a:3e:ca:42:da:af:c4:59:da: 45:55:80:ad:c9:a7:7f:bc:23:c8:52:23:26:ad:71: ef:87:09:7b:da:79:7a:8e:14:82:93:a0:b3:3a:fb: a8:19:f0:6d:6b:16:35:d5:06:98:89:4b:f4:c0:2c: 2c:5b:d6:39:ae:33:02:27:00:0c:a4:37:8e:a2:d9: 0d:d1:3d:b0:d3:73:ac:9f:9b:30:dc:ec:a6:d8:70: 0c:b9:49:4b:3e:ad:74:ed:6c:2f:a8:fd:35:b1:3e: 04:51:14:06:73:66:72:f0:f7:d5:77:90:64:da:7c: fc:26:a1:f1:27:68:86:3c:04:15:37:ee:2c:98:4b: 1b:d1:cf:d6:0d:76:a1:dc:ce:ea:d9:27:f5:54:62: 74:99:9a:55:c4:cb:2c:6c:d5:55:11:18:b6:6d:1e: d9:7f:b1:55:ec:4d:55:2c:f0:f9:35:df:59:5c:f7: cd:ae:99:16:5c:2a:5f:b7:c9:ee:5f:25:6d:a9:a1: e9:46:47:e7:90:11:5a:72:cb:ec:f4:92:e6:84:53: 91:02:a5:e0:86:26:17:d6:c4:55:26:e3:55:53:ff: e7:e2:34:0e:d2:de:ff:7b:60:bb:21:6f:bb:83:76: 4b:88:93:14:30:7a:16:0e:6a:f2:d6:1e:f4:66:49: dd:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:61:92:FF:C5:BB:D6:23:CB:6B:E4:9D:68:1C:5B:BB:B0:F9:28:F3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/199a6fe3-3863-47d9-8092-2b8b5516b0cc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.149.0.0/16 Signature Algorithm: sha256WithRSAEncryption 40:9f:b4:d1:5a:69:0f:39:2d:10:25:62:89:2c:06:8c:32:ea: d4:6d:8d:c6:97:88:fa:ad:99:b4:c1:d3:b3:83:8e:c6:08:81: a9:10:18:0e:61:df:d6:5d:58:aa:78:e4:07:9e:ed:75:26:69: b0:19:5a:b3:f7:9f:48:0f:f6:ac:0b:58:5a:f0:d2:57:07:90: af:ec:a1:70:0e:fe:d9:26:5d:52:18:e3:30:a2:e6:19:d8:de: 26:d6:dd:d6:c2:1f:7f:d6:bc:2d:56:20:e2:11:a3:52:5a:f5: 07:b5:f4:38:96:ce:54:7a:97:00:8d:75:7a:44:16:50:dd:55: d4:a5:c8:68:67:ab:e9:5f:42:69:49:21:56:80:41:96:d5:10: ba:ac:33:20:41:5d:55:0a:4e:49:ae:ad:02:1e:75:73:52:3c: 00:82:5a:ea:d8:d8:8b:5f:90:a2:6a:9c:75:9a:de:f8:07:4c: 55:0e:8f:29:e8:52:fb:95:60:31:1c:00:d7:93:82:47:e8:54: 90:58:3b:28:73:45:38:61:86:c3:6f:72:36:75:d0:85:33:14: 0d:f2:7a:8c:63:45:40:58:64:1d:0f:04:dd:db:cf:82:7f:60: af:31:ed:d9:24:4c:cf:2d:6c:f7:a5:5f:e0:34:14:ba:a1:72: 5f:14:19:39 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOeEQ2IYLueLPEUBUScmBKMVTmzEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI1MDAxMDE1WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZGJjZjg0MDE1NzczOGM3YTkyNGRlMjFkNzZlYTM0NGQx OTZiYjJiNWNlNzU5ZDA4MzZlYjBlMzg4NTQ2M2U1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJAS7iawo+ykLar8RZ2kVVgK3Jp3+8I8hSIyatce+HCXva eXqOFIKToLM6+6gZ8G1rFjXVBpiJS/TALCxb1jmuMwInAAykN46i2Q3RPbDTc6yf mzDc7KbYcAy5SUs+rXTtbC+o/TWxPgRRFAZzZnLw99V3kGTafPwmofEnaIY8BBU3 7iyYSxvRz9YNdqHczurZJ/VUYnSZmlXEyyxs1VURGLZtHtl/sVXsTVUs8Pk131lc 982umRZcKl+3ye5fJW2poelGR+eQEVpyy+z0kuaEU5ECpeCGJhfWxFUm41VT/+fi NA7S3v97YLshb7uDdkuIkxQwehYOavLWHvRmSd3vAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUi2GS/8W71iPLa+SdaBxbu7D5KPMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE5OWE2ZmUzLTM4NjMtNDdkOS04MDkyLTJiOGI1NTE2YjBjYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQlTANBgkqhkiG9w0BAQsFAAOCAQEAQJ+00VppDzktECViiSwGjDLq1G2N xpeI+q2ZtMHTs4OOxgiBqRAYDmHf1l1YqnjkB57tdSZpsBlas/efSA/2rAtYWvDS VweQr+yhcA7+2SZdUhjjMKLmGdjeJtbd1sIff9a8LVYg4hGjUlr1B7X0OJbOVHqX AI11ekQWUN1V1KXIaGer6V9CaUkhVoBBltUQuqwzIEFdVQpOSa6tAh51c1I8AIJa 6tjYi1+QomqcdZre+AdMVQ6PKehS+5VgMRwA15OCR+hUkFg7KHNFOGGGw29yNnXQ hTMUDfJ6jGNFQFhkHQ8E3dvPgn9grzHt2SRMzy1s96Vf4DQUuqFyXxQZOQ== -----END CERTIFICATE-----Generated at Tue Jul 1 13:15:47 2025 by rpki-client