$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4259474a-bf94-4fce-960e-600c8e86c25b.roa File: 4259474a-bf94-4fce-960e-600c8e86c25b.roa (raw, json) Hash identifier: LiUO3NiaIqignIyce/l7e6MNZwvO6zWxqK4+2N8kTt0= Subject key identifier: 40:0A:D6:D9:A5:08:1A:E6:73:BA:50:D7:61:E8:7F:21:90:D4:5F:A5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 76E4C61BEFF7EE78FFE0FCEE2FDA90A3B431D82C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4259474a-bf94-4fce-960e-600c8e86c25b.roa Signing time: Sat 28 Jun 2025 00:11:35 +0000 ROA not before: Sat 28 Jun 2025 00:11:35 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 150.102.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:e4:c6:1b:ef:f7:ee:78:ff:e0:fc:ee:2f:da:90:a3:b4:31:d8:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:11:35 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=5b5d4747504b785f1118a3e9e5499d909e3c04c4ea4d5c3bbc64f44b49cfa5eb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:64:46:ad:c2:5e:f9:4e:f8:48:79:b6:78:80: 28:56:c3:58:83:2a:71:1f:87:32:d5:77:a7:c2:57: 91:e1:5c:ca:5b:85:19:68:64:89:e5:c4:0d:4f:41: 20:f3:4b:97:68:6b:75:5b:a6:8e:bf:59:78:3f:fb: 6c:26:13:a2:10:c4:b8:a7:29:4d:81:9a:80:12:43: f8:08:83:dd:98:19:26:59:35:19:3d:c9:27:6e:e2: eb:8d:62:94:cc:8d:53:16:3f:34:c1:b0:36:af:fc: ea:88:8a:0d:a3:c7:a1:09:10:d2:9f:eb:e0:e8:05: a0:0a:7f:34:da:5b:ab:8c:c5:3c:5f:c1:f5:be:19: e1:9c:d5:46:0a:75:55:55:24:25:5b:de:59:80:f4: ad:8b:e2:7c:0c:8a:46:ce:69:6f:15:76:9f:02:5b: a2:44:d5:b2:b8:cd:f2:84:c2:a1:f7:21:ec:a1:02: cd:4f:6b:f0:6b:a1:72:37:c6:7f:d7:e3:22:78:b2: f4:4b:df:e2:6b:bb:a1:9e:10:e3:d1:e6:c0:99:ec: 39:0b:97:8f:30:c9:7b:1b:53:2c:ac:04:6f:f5:4b: 95:9d:54:58:2a:85:fb:df:ac:87:42:c2:5c:98:20: d1:d7:42:0a:96:65:9d:2c:89:77:b0:46:5d:f0:30: 3f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:0A:D6:D9:A5:08:1A:E6:73:BA:50:D7:61:E8:7F:21:90:D4:5F:A5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4259474a-bf94-4fce-960e-600c8e86c25b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.102.0.0/16 Signature Algorithm: sha256WithRSAEncryption 11:3e:6b:cc:17:b5:fc:da:d9:4d:43:b7:f1:65:9e:6b:02:78: 93:d7:a5:de:00:14:a6:1d:9d:ef:c6:0b:ff:8b:14:a8:06:f6: b6:57:6f:29:f2:22:c2:47:a9:2c:5b:e5:9e:80:ed:76:13:ce: 2e:c3:01:d4:f6:e2:88:df:19:a4:d6:42:f6:64:e0:2d:0d:0c: dc:c6:42:8e:5f:a8:31:d4:f0:94:aa:0e:6d:8e:be:b8:2b:d7: 29:45:0d:07:88:c6:eb:8a:b9:93:fb:82:40:ca:eb:01:9c:f1: 61:aa:ca:72:0e:63:5f:f6:1e:1c:e8:db:be:04:e0:c5:b0:cc: 41:bf:b8:d9:86:ce:1f:01:c4:46:f5:d2:b6:e3:a3:74:6f:4d: 23:15:dd:19:a2:d3:48:21:e4:68:1a:c3:a2:df:ed:7c:91:f9: cd:bb:c8:02:36:c5:13:c4:bb:6a:df:ef:f1:cc:a4:e2:b9:49: 4e:2a:a5:c3:9f:2d:f5:53:31:06:ba:c0:ee:f1:99:96:f6:d9: f1:e7:0a:65:0d:54:2b:8c:b3:9d:c8:be:5c:14:e1:4b:82:bc: ea:15:a9:79:2c:39:a5:c2:30:2c:ca:a5:8f:db:ff:c5:90:b4: 8d:4e:2c:85:aa:6f:49:c1:fe:bc:a3:54:52:d2:3d:9d:36:e0: fa:b2:f8:83 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUduTGG+/37nj/4PzuL9qQo7Qx2CwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDAxMTM1WhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YjVkNDc0NzUwNGI3ODVmMTExOGEzZTllNTQ5OWQ5MDll M2MwNGM0ZWE0ZDVjM2JiYzY0ZjQ0YjQ5Y2ZhNWViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKZEatwl75TvhIebZ4gChWw1iDKnEfhzLVd6fCV5HhXMpb hRloZInlxA1PQSDzS5doa3Vbpo6/WXg/+2wmE6IQxLinKU2BmoASQ/gIg92YGSZZ NRk9ySdu4uuNYpTMjVMWPzTBsDav/OqIig2jx6EJENKf6+DoBaAKfzTaW6uMxTxf wfW+GeGc1UYKdVVVJCVb3lmA9K2L4nwMikbOaW8Vdp8CW6JE1bK4zfKEwqH3Ieyh As1Pa/BroXI3xn/X4yJ4svRL3+Jru6GeEOPR5sCZ7DkLl48wyXsbUyysBG/1S5Wd VFgqhfvfrIdCwlyYINHXQgqWZZ0siXewRl3wMD91AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQArW2aUIGuZzulDXYeh/IZDUX6UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyNTk0NzRhLWJmOTQtNGZjZS05NjBlLTYwMGM4ZTg2YzI1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCWZjANBgkqhkiG9w0BAQsFAAOCAQEAET5rzBe1/NrZTUO38WWeawJ4k9el 3gAUph2d78YL/4sUqAb2tldvKfIiwkepLFvlnoDtdhPOLsMB1PbiiN8ZpNZC9mTg LQ0M3MZCjl+oMdTwlKoObY6+uCvXKUUNB4jG64q5k/uCQMrrAZzxYarKcg5jX/Ye HOjbvgTgxbDMQb+42YbOHwHERvXStuOjdG9NIxXdGaLTSCHkaBrDot/tfJH5zbvI AjbFE8S7at/v8cyk4rlJTiqlw58t9VMxBrrA7vGZlvbZ8ecKZQ1UK4yznci+XBTh S4K86hWpeSw5pcIwLMqlj9v/xZC0jU4shapvScH+vKNUUtI9nTbg+rL4gw== -----END CERTIFICATE-----Generated at Tue Jul 1 10:41:53 2025 by rpki-client