$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c90bc2f-3486-456a-9d24-2194e5e63b08.roa File: 1c90bc2f-3486-456a-9d24-2194e5e63b08.roa (raw, json) Hash identifier: +HtCctd9Zc/uYxsCVaRpyQ7sT6XLDWBXhbgeicrpNTE= Subject key identifier: 55:E8:0C:B5:F0:4B:66:11:2C:CC:B5:8E:BB:50:CE:12:E5:A9:51:4E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36096746DB02A10B9C1621518FFAAF8820523CB7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c90bc2f-3486-456a-9d24-2194e5e63b08.roa Signing time: Mon 23 Jun 2025 15:01:57 +0000 ROA not before: Mon 23 Jun 2025 15:01:57 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 165.81.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:09:67:46:db:02:a1:0b:9c:16:21:51:8f:fa:af:88:20:52:3c:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:01:57 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=02f56c4abcd95dd22a1c6535f6e9f4cb6ab73eb9b955fc8cbad37aab6c19b492, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ad:70:43:19:46:eb:bf:5d:33:83:34:d2:50: 81:37:90:a9:00:10:14:60:f0:61:95:30:af:5c:f6: 94:98:c3:f2:be:ed:9f:93:e5:fc:d3:98:31:7c:0e: 8d:22:bb:42:05:b6:39:77:08:a7:51:e2:c0:3a:db: 6d:22:44:5f:c5:bd:27:f4:8d:c8:1b:ae:84:9b:1c: b7:52:20:44:1b:6d:de:b6:27:07:6d:bc:55:f3:f9: 32:57:fd:22:82:1a:7b:85:95:14:ca:a8:df:d3:b9: 37:06:a9:f0:f4:4a:12:65:41:2c:5f:8c:47:0c:ad: 2d:ed:d6:63:61:50:99:65:8c:2d:b2:ec:2a:93:64: 77:6a:7c:98:47:63:7a:7b:93:e3:b8:25:cc:62:3c: c4:45:90:10:8f:7f:cd:98:9b:f6:06:61:b9:8d:20: 25:17:c2:a4:31:0c:bb:ed:c1:46:25:f0:e3:f9:7d: b5:96:3d:6a:e9:b4:98:db:76:80:70:56:05:c4:a0: 4c:1b:fc:09:00:af:18:02:13:c9:69:b8:b8:a1:f1: 76:28:19:0c:2d:b5:2d:11:d3:65:33:84:11:f2:52: 48:09:bf:16:0e:a6:9e:4a:16:80:fe:eb:96:8a:02: 80:2b:0f:0f:07:49:ee:d5:83:cc:94:8e:0c:60:87: 2d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:E8:0C:B5:F0:4B:66:11:2C:CC:B5:8E:BB:50:CE:12:E5:A9:51:4E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c90bc2f-3486-456a-9d24-2194e5e63b08.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 165.81.0.0/16 Signature Algorithm: sha256WithRSAEncryption c3:86:74:70:7f:7b:a2:76:97:02:45:69:a5:85:90:fe:36:93: 43:2e:32:26:39:aa:c5:10:63:a6:7f:b2:f1:07:3c:dd:d6:6c: 4f:35:4c:55:10:40:4a:c1:b5:51:8c:5d:15:2b:07:7b:ee:04: 05:3f:d1:1a:34:51:65:be:4e:0c:ea:c2:b9:f4:01:07:4c:84: b7:04:6f:c4:91:b3:03:d8:ab:99:c8:6d:9b:0d:3f:2f:7c:92: 6f:37:44:cd:a1:ea:83:c2:4e:2d:0f:59:19:7b:66:d0:b3:69: 68:c2:3d:57:91:60:1c:1a:05:38:48:1b:81:9a:19:8e:09:83: b1:b1:88:b1:45:0a:eb:f8:34:56:25:e8:78:4c:0e:9e:c8:39: 9b:1d:2b:f9:df:bb:d4:f0:41:cd:f5:29:4f:50:5a:06:39:fa: a6:fb:b0:e7:8c:54:e6:31:5a:d2:5f:b4:d3:c2:7a:e4:ab:08: 7e:63:1a:b5:69:23:d5:35:7a:6b:ef:22:98:ed:67:55:3b:05: be:67:62:56:6a:16:be:d8:c5:73:b9:98:bd:5e:86:dd:8e:6f: 66:35:5c:72:28:3f:14:69:7e:58:1b:2b:31:42:e9:b7:65:0c: 9e:ac:7b:6f:b9:47:5a:9d:72:e4:90:64:52:6e:de:3a:5e:c9: 17:c1:2d:98 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNglnRtsCoQucFiFRj/qviCBSPLcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUwMTU3WhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMmY1NmM0YWJjZDk1ZGQyMmExYzY1MzVmNmU5ZjRjYjZh YjczZWI5Yjk1NWZjOGNiYWQzN2FhYjZjMTliNDkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXrXBDGUbrv10zgzTSUIE3kKkAEBRg8GGVMK9c9pSYw/K+ 7Z+T5fzTmDF8Do0iu0IFtjl3CKdR4sA6220iRF/FvSf0jcgbroSbHLdSIEQbbd62 JwdtvFXz+TJX/SKCGnuFlRTKqN/TuTcGqfD0ShJlQSxfjEcMrS3t1mNhUJlljC2y 7CqTZHdqfJhHY3p7k+O4JcxiPMRFkBCPf82Ym/YGYbmNICUXwqQxDLvtwUYl8OP5 fbWWPWrptJjbdoBwVgXEoEwb/AkArxgCE8lpuLih8XYoGQwttS0R02UzhBHyUkgJ vxYOpp5KFoD+65aKAoArDw8HSe7Vg8yUjgxghy2bAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUVegMtfBLZhEszLWOu1DOEuWpUU4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjOTBiYzJmLTM0ODYtNDU2YS05ZDI0LTIxOTRlNWU2M2IwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwClUTANBgkqhkiG9w0BAQsFAAOCAQEAw4Z0cH97onaXAkVppYWQ/jaTQy4y JjmqxRBjpn+y8Qc83dZsTzVMVRBASsG1UYxdFSsHe+4EBT/RGjRRZb5ODOrCufQB B0yEtwRvxJGzA9irmchtmw0/L3ySbzdEzaHqg8JOLQ9ZGXtm0LNpaMI9V5FgHBoF OEgbgZoZjgmDsbGIsUUK6/g0ViXoeEwOnsg5mx0r+d+71PBBzfUpT1BaBjn6pvuw 54xU5jFa0l+008J65KsIfmMatWkj1TV6a+8imO1nVTsFvmdiVmoWvtjFc7mYvV6G 3Y5vZjVccig/FGl+WBsrMULpt2UMnqx7b7lHWp1y5JBkUm7eOl7JF8EtmA== -----END CERTIFICATE-----Generated at Sun Jun 29 09:21:41 2025 by rpki-client