$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e05c00c-2e9b-482c-bbfb-ebd9aebd7cb1.roa File: 3e05c00c-2e9b-482c-bbfb-ebd9aebd7cb1.roa (raw, json) Hash identifier: rx+FxGxmEKjmEB6OYoYRJdIgfaok539WcuTCAju3Hxs= Subject key identifier: 49:1A:1B:68:6F:75:9B:07:A7:F3:B3:63:9E:4D:57:D0:77:DF:F4:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F3E6AD57E336E97E9A3810689E334B88CD4A94F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e05c00c-2e9b-482c-bbfb-ebd9aebd7cb1.roa Signing time: Tue 17 Jun 2025 00:30:32 +0000 ROA not before: Tue 17 Jun 2025 00:30:32 +0000 ROA not after: Tue 22 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.83.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:3e:6a:d5:7e:33:6e:97:e9:a3:81:06:89:e3:34:b8:8c:d4:a9:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 17 00:30:32 2025 GMT Not After : Jul 22 23:59:59 2025 GMT Subject: serialNumber=3e08ac3be693f3b6e75f7d55df5ca2067c2e1c2bc0c900ed0a6ad8e52ffd4e77, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:09:ed:2a:46:20:1a:3f:f4:b4:a0:36:8d:00: 13:7f:f1:da:61:4d:99:db:be:8c:9d:22:f7:e7:ab: 8d:4f:d9:da:67:68:07:81:91:fd:b7:08:b7:9d:a3: 90:66:90:3e:4e:6d:9c:e4:0c:35:45:0c:f5:f5:aa: 17:f0:15:c8:f6:01:09:fc:57:95:7f:4e:1d:e7:9e: 77:f7:d2:b1:d6:3f:85:75:18:21:bd:08:a8:55:92: 46:42:09:b4:b7:09:1a:60:55:ab:43:f6:29:db:41: 09:26:af:d4:c9:03:ac:b6:b4:3a:cd:dc:6a:75:1e: cf:ef:0f:05:80:59:de:77:0a:ff:f5:15:fb:9d:4a: fb:4f:f1:f4:3f:bd:d5:3d:69:05:dc:4a:a0:44:db: dd:77:10:b0:41:75:dc:9b:eb:73:ce:2a:ad:30:03: 8f:d7:a6:e8:59:82:11:a4:07:43:68:a3:54:7c:3d: 09:aa:d4:99:74:2a:87:7c:6c:d2:87:55:95:43:05: bc:36:12:fa:4a:3a:9b:a0:b4:f6:d0:04:6c:98:b8: c3:5e:b0:dc:a6:d9:10:d9:1f:69:97:61:1d:b3:3b: da:13:75:f2:2c:2a:33:93:15:a7:d9:09:8c:89:ed: 3a:54:b3:a1:17:ba:cc:96:0f:a1:67:be:49:ac:7c: 14:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:1A:1B:68:6F:75:9B:07:A7:F3:B3:63:9E:4D:57:D0:77:DF:F4:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e05c00c-2e9b-482c-bbfb-ebd9aebd7cb1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.83.128.0/17 Signature Algorithm: sha256WithRSAEncryption 65:ae:af:79:fd:0c:11:02:80:13:8d:14:b5:98:7c:5a:e1:ba: ae:ac:64:d8:8c:98:e7:d0:f5:68:f5:45:90:8a:98:fd:4e:14: df:b9:d8:10:8f:27:5d:9f:32:20:02:0e:d9:06:f6:e9:b0:07: 8e:4b:b8:d0:82:25:6f:93:b2:1b:1c:1d:92:0b:8b:ea:c4:6d: 19:79:f7:ea:f2:5c:77:f4:97:11:22:bf:33:50:2e:71:5b:10: e9:bc:c3:65:5e:12:f3:84:0e:84:1a:c8:20:c8:21:bf:48:59: e9:98:37:e1:6b:6a:72:cb:ec:26:93:7a:42:41:bd:51:4d:ef: 01:50:86:02:a7:b3:49:78:fb:95:18:c6:f0:27:c5:51:a1:d7: a4:7e:45:21:7c:ef:ac:d8:8b:9f:b0:97:93:a7:a9:d4:94:d3: 1a:25:b5:39:08:e6:79:02:89:43:00:c6:02:65:0e:83:5a:99: 53:30:57:0d:41:d8:b4:33:1b:9d:7c:34:05:42:27:44:27:43: 82:55:3d:ef:4d:50:3a:65:cd:16:26:ee:a1:e0:1e:d0:9d:b5: c1:09:4e:b3:9e:6e:32:3b:e7:da:ce:05:96:02:cd:aa:16:0c: e8:5b:f5:ae:cd:d8:a5:41:16:9c:cf:2e:91:4e:54:35:24:73: 8d:14:d4:21 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbz5q1X4zbpfpo4EGieM0uIzUqU8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE3MDAzMDMyWhcNMjUwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTA4YWMzYmU2OTNmM2I2ZTc1ZjdkNTVkZjVjYTIwNjdj MmUxYzJiYzBjOTAwZWQwYTZhZDhlNTJmZmQ0ZTc3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiCe0qRiAaP/S0oDaNABN/8dphTZnbvoydIvfnq41P2dpn aAeBkf23CLedo5BmkD5ObZzkDDVFDPX1qhfwFcj2AQn8V5V/Th3nnnf30rHWP4V1 GCG9CKhVkkZCCbS3CRpgVatD9inbQQkmr9TJA6y2tDrN3Gp1Hs/vDwWAWd53Cv/1 FfudSvtP8fQ/vdU9aQXcSqBE2913ELBBddyb63POKq0wA4/XpuhZghGkB0Noo1R8 PQmq1Jl0Kod8bNKHVZVDBbw2EvpKOpugtPbQBGyYuMNesNym2RDZH2mXYR2zO9oT dfIsKjOTFafZCYyJ7TpUs6EXusyWD6FnvkmsfBR3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSRobaG91mwen87Njnk1X0Hff9IkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNlMDVjMDBjLTJlOWItNDgyYy1iYmZiLWViZDlhZWJkN2NiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdjU4AwDQYJKoZIhvcNAQELBQADggEBAGWur3n9DBECgBONFLWYfFrhuq6s ZNiMmOfQ9Wj1RZCKmP1OFN+52BCPJ12fMiACDtkG9umwB45LuNCCJW+TshscHZIL i+rEbRl59+ryXHf0lxEivzNQLnFbEOm8w2VeEvOEDoQayCDIIb9IWemYN+FranLL 7CaTekJBvVFN7wFQhgKns0l4+5UYxvAnxVGh16R+RSF876zYi5+wl5OnqdSU0xol tTkI5nkCiUMAxgJlDoNamVMwVw1B2LQzG518NAVCJ0QnQ4JVPe9NUDplzRYm7qHg HtCdtcEJTrOebjI759rOBZYCzaoWDOhb9a7N2KVBFpzPLpFOVDUkc40U1CE= -----END CERTIFICATE-----Generated at Sun Jun 29 07:32:42 2025 by rpki-client