$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2bf6a79d-e7fb-4b23-b878-c49ed99191e3.roa File: 2bf6a79d-e7fb-4b23-b878-c49ed99191e3.roa (raw, json) Hash identifier: VEf0XRHWwd9eLBcL9lVGuamBdZhdu8RicWN2sG1wiZI= Subject key identifier: 61:DC:18:80:A5:55:10:55:BD:9C:4F:27:F9:42:7D:03:7E:92:51:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 641BD37A24ED6A0939A5C3B04C5B6539D79C6650 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2bf6a79d-e7fb-4b23-b878-c49ed99191e3.roa Signing time: Mon 23 Jun 2025 15:40:31 +0000 ROA not before: Mon 23 Jun 2025 15:40:31 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:1b:d3:7a:24:ed:6a:09:39:a5:c3:b0:4c:5b:65:39:d7:9c:66:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:40:31 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=dcc7d2f3b3e0783aaddcd6b8bea4d9d93b91b5f7deb46cca6f9fe2fbc154b78d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1b:e2:d0:78:e2:dd:ab:99:7e:50:6d:b0:e2: 28:4a:dc:06:66:b6:40:17:60:f6:62:c9:8b:4e:55: 8e:df:0a:09:10:1b:28:8a:30:a7:e1:7a:d4:30:82: 69:3c:7a:bb:a5:82:92:9d:e6:ae:e0:f6:a0:22:0d: 92:c4:89:7e:29:b3:6c:7c:b7:b0:9f:48:7a:59:3b: 09:28:13:2a:68:e9:48:00:94:22:0e:25:66:0c:af: 1c:35:7a:e8:54:1f:cf:0d:00:a1:bf:06:c2:c0:40: 71:ef:2d:6e:45:9e:c8:63:ee:5e:0a:93:40:8c:6c: 7d:6e:0a:c7:27:aa:d3:03:98:e4:c6:d9:f3:7b:b2: 63:95:19:a4:a5:86:94:1d:e4:4a:f0:db:99:7b:28: 8d:e4:96:bf:86:80:a4:44:0f:56:ab:17:41:6e:77: a7:80:a8:fc:67:55:c4:cd:37:1a:6c:c9:33:95:4d: 41:92:ba:9d:03:ba:8d:e3:06:32:0c:c2:f0:a6:db: d4:5e:84:b7:f5:c6:b5:67:1c:9e:56:e5:9c:25:91: e7:6a:ca:9e:15:88:0c:9f:17:4c:15:5c:2c:55:6c: 9e:09:64:33:18:b3:4f:ed:1e:e4:20:c3:2c:86:30: 96:f7:9b:13:51:29:05:f3:a5:37:65:cc:b3:0b:ee: a2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:DC:18:80:A5:55:10:55:BD:9C:4F:27:F9:42:7D:03:7E:92:51:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2bf6a79d-e7fb-4b23-b878-c49ed99191e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.162.0/24 Signature Algorithm: sha256WithRSAEncryption 96:a1:3e:14:21:f0:36:3c:ec:aa:fe:85:42:b5:00:6b:89:c9: 35:06:a6:6b:2b:aa:e5:a0:b6:4e:54:5a:76:2f:53:62:d0:af: 6b:7a:0c:34:81:30:4e:70:26:b9:7a:43:26:1e:02:a8:cb:aa: 4d:1a:87:62:58:1c:c9:bd:c0:32:6e:ed:7f:5c:75:58:47:5d: 72:cd:70:a1:c5:37:c8:16:7d:1a:c1:c4:0f:5a:8f:d5:e0:53: 30:3e:ad:d0:41:22:9e:9e:b3:1a:77:65:9f:d3:4b:f8:d1:77: d7:ee:af:ed:5a:ea:1b:28:05:a2:3c:34:0e:6b:e9:67:11:86: 2a:41:de:e4:e2:ae:d5:38:e7:3d:e4:15:e8:cb:f8:8f:6c:45: fe:70:22:54:3a:df:99:d7:18:17:29:ea:72:28:48:31:aa:a9: 7b:77:a8:1e:67:e4:00:7f:5c:f7:52:16:65:71:e5:b4:fa:b5: 20:5e:69:5b:14:68:0b:c0:c7:c2:c2:2f:60:24:29:b8:64:81: e7:3c:27:39:e3:ad:20:a3:b5:af:0e:9e:35:e3:bb:ef:fc:ad: ed:89:24:f1:6f:60:f7:b3:bf:94:d0:78:75:f1:73:de:85:e3: 86:a5:ac:08:4e:81:c1:65:83:52:36:5a:b0:68:55:12:26:41: 28:7c:8c:12 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZBvTeiTtagk5pcOwTFtlOdecZlAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTU0MDMxWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkY2M3ZDJmM2IzZTA3ODNhYWRkY2Q2YjhiZWE0ZDlkOTNi OTFiNWY3ZGViNDZjY2E2ZjlmZTJmYmMxNTRiNzhkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6G+LQeOLdq5l+UG2w4ihK3AZmtkAXYPZiyYtOVY7fCgkQ GyiKMKfhetQwgmk8erulgpKd5q7g9qAiDZLEiX4ps2x8t7CfSHpZOwkoEypo6UgA lCIOJWYMrxw1euhUH88NAKG/BsLAQHHvLW5Fnshj7l4Kk0CMbH1uCscnqtMDmOTG 2fN7smOVGaSlhpQd5Erw25l7KI3klr+GgKRED1arF0Fud6eAqPxnVcTNNxpsyTOV TUGSup0Duo3jBjIMwvCm29RehLf1xrVnHJ5W5Zwlkedqyp4ViAyfF0wVXCxVbJ4J ZDMYs0/tHuQgwyyGMJb3mxNRKQXzpTdlzLML7qLHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYdwYgKVVEFW9nE8n+UJ9A36SUYQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJiZjZhNzlkLWU3ZmItNGIyMy1iODc4LWM0OWVkOTkxOTFlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36IwDQYJKoZIhvcNAQELBQADggEBAJahPhQh8DY87Kr+hUK1AGuJyTUG pmsrquWgtk5UWnYvU2LQr2t6DDSBME5wJrl6QyYeAqjLqk0ah2JYHMm9wDJu7X9c dVhHXXLNcKHFN8gWfRrBxA9aj9XgUzA+rdBBIp6esxp3ZZ/TS/jRd9fur+1a6hso BaI8NA5r6WcRhipB3uTirtU45z3kFejL+I9sRf5wIlQ635nXGBcp6nIoSDGqqXt3 qB5n5AB/XPdSFmVx5bT6tSBeaVsUaAvAx8LCL2AkKbhkgec8JznjrSCjta8OnjXj u+/8re2JJPFvYPezv5TQeHXxc96F44alrAhOgcFlg1I2WrBoVRImQSh8jBI= -----END CERTIFICATE-----Generated at Sun Jun 29 04:01:14 2025 by rpki-client