$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e371c97-5a9d-48b3-9a69-9ee6e8904529.roa File: 3e371c97-5a9d-48b3-9a69-9ee6e8904529.roa (raw, json) Hash identifier: rBakA4qYUk/Vi1ppGslPXbYN2Er02Rp/WFhFVepuV9M= Subject key identifier: 67:4A:89:06:64:CC:6B:D0:23:07:4B:D9:D8:CE:10:B8:C3:FA:48:6A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0226ABE60E6383927F4CCB0C6323BDE71CBAE59F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e371c97-5a9d-48b3-9a69-9ee6e8904529.roa Signing time: Sat 21 Jun 2025 00:20:53 +0000 ROA not before: Sat 21 Jun 2025 00:20:53 +0000 ROA not after: Sat 26 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 168.157.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:26:ab:e6:0e:63:83:92:7f:4c:cb:0c:63:23:bd:e7:1c:ba:e5:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 21 00:20:53 2025 GMT Not After : Jul 26 23:59:59 2025 GMT Subject: serialNumber=dd0f706749ec878ab392102a747e466ae59eba3f24b2bc6213c68699b13ec2ae, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2b:43:f1:bf:52:42:9b:04:cd:f2:f1:a5:b6: 3b:6c:98:84:ee:18:1c:77:eb:fe:98:3f:90:05:42: f4:8d:28:39:03:31:49:02:3d:f3:18:36:af:42:57: b0:c0:fd:6f:29:42:2b:46:62:30:a9:cc:45:2a:fa: 27:65:aa:38:67:f2:c4:81:ea:11:49:e5:bb:dd:a9: cd:15:83:a3:ba:a1:c9:11:91:06:f3:dc:f9:2e:a9: 0f:61:9a:8c:60:00:45:ed:ea:8c:cf:e6:09:8d:fd: 87:fb:6b:6f:c3:56:3b:df:f9:b9:fd:7b:09:97:5a: a5:e2:17:26:ad:f7:ea:79:d5:13:02:16:50:1b:b8: 35:b3:ee:fd:a6:8b:c4:55:d4:e2:66:0c:14:60:3a: c6:b5:b4:12:2f:13:f6:01:98:4b:fc:e2:5e:1c:78: d2:73:5b:7a:7f:09:61:af:4c:c0:d1:d7:3b:75:96: 7c:46:ec:02:31:59:64:30:1a:45:2b:01:7d:16:8c: f5:99:34:c7:64:8f:97:62:f7:32:e3:70:52:e3:5c: f2:49:c2:18:1b:6a:86:06:96:46:8a:35:9e:e3:91: de:cb:88:a1:a9:b0:5f:58:d2:c5:fb:14:d1:dc:7d: b0:34:b7:16:7d:5c:15:eb:d0:e3:23:3d:70:76:6b: 50:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:4A:89:06:64:CC:6B:D0:23:07:4B:D9:D8:CE:10:B8:C3:FA:48:6A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e371c97-5a9d-48b3-9a69-9ee6e8904529.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.157.0.0/16 Signature Algorithm: sha256WithRSAEncryption 23:ba:85:42:34:cb:0c:50:11:24:8c:20:ff:6f:c4:2a:63:19: 29:cf:17:cd:18:13:de:c3:7c:2f:47:54:35:5d:fe:00:03:f6: 65:19:d8:e1:21:ec:40:da:bb:a9:71:cb:06:c0:5b:3e:13:9e: 9e:2a:23:d7:2d:1d:6f:0a:bb:eb:f7:4e:b9:11:14:fc:f4:54: 09:35:9a:6c:37:2c:ea:56:36:f4:b0:39:f6:64:64:98:a0:8a: 65:ca:57:b3:e7:f9:16:22:b9:9e:63:38:4e:45:43:49:26:0e: f3:f2:39:8d:22:ca:31:9c:7e:a4:c3:6b:8c:1c:31:34:83:79: 1f:d3:10:d9:c0:c2:0e:bc:f1:cd:0c:b4:ed:37:f0:ab:c7:f9: 8e:8a:02:f0:13:82:fb:99:06:8a:de:4e:b3:8c:27:ee:bb:18: 10:80:64:5b:6d:3f:be:c9:63:c8:20:4a:47:ef:7b:0e:98:30: 26:37:d1:26:68:39:e4:28:54:a5:07:e1:89:e0:75:4a:21:d2: 6a:7e:9a:e4:18:8a:19:7b:06:2f:74:3f:3f:6c:f7:be:ba:71: ba:4e:dd:f9:8e:92:b2:f0:fc:72:f4:31:5c:89:54:27:82:ee: 42:f1:3e:ae:0b:4b:a3:c1:78:9e:9a:01:c0:25:fc:54:c4:4e: 1f:e8:3c:89 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAiar5g5jg5J/TMsMYyO95xy65Z8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIxMDAyMDUzWhcNMjUwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDBmNzA2NzQ5ZWM4NzhhYjM5MjEwMmE3NDdlNDY2YWU1 OWViYTNmMjRiMmJjNjIxM2M2ODY5OWIxM2VjMmFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0K0Pxv1JCmwTN8vGltjtsmITuGBx36/6YP5AFQvSNKDkD MUkCPfMYNq9CV7DA/W8pQitGYjCpzEUq+idlqjhn8sSB6hFJ5bvdqc0Vg6O6ockR kQbz3PkuqQ9hmoxgAEXt6ozP5gmN/Yf7a2/DVjvf+bn9ewmXWqXiFyat9+p51RMC FlAbuDWz7v2mi8RV1OJmDBRgOsa1tBIvE/YBmEv84l4ceNJzW3p/CWGvTMDR1zt1 lnxG7AIxWWQwGkUrAX0WjPWZNMdkj5di9zLjcFLjXPJJwhgbaoYGlkaKNZ7jkd7L iKGpsF9Y0sX7FNHcfbA0txZ9XBXr0OMjPXB2a1DPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZ0qJBmTMa9AjB0vZ2M4QuMP6SGowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNlMzcxYzk3LTVhOWQtNDhiMy05YTY5LTllZTZlODkwNDUyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwConTANBgkqhkiG9w0BAQsFAAOCAQEAI7qFQjTLDFARJIwg/2/EKmMZKc8X zRgT3sN8L0dUNV3+AAP2ZRnY4SHsQNq7qXHLBsBbPhOenioj1y0dbwq76/dOuREU /PRUCTWabDcs6lY29LA59mRkmKCKZcpXs+f5FiK5nmM4TkVDSSYO8/I5jSLKMZx+ pMNrjBwxNIN5H9MQ2cDCDrzxzQy07Tfwq8f5jooC8BOC+5kGit5Os4wn7rsYEIBk W20/vsljyCBKR+97DpgwJjfRJmg55ChUpQfhieB1SiHSan6a5BiKGXsGL3Q/P2z3 vrpxuk7d+Y6SsvD8cvQxXIlUJ4LuQvE+rgtLo8F4npoBwCX8VMROH+g8iQ== -----END CERTIFICATE-----Generated at Sun Jun 29 09:10:32 2025 by rpki-client