$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51f566ba-b5cc-4528-8df7-1206338b802a.roa File: 51f566ba-b5cc-4528-8df7-1206338b802a.roa (raw, json) Hash identifier: L3yW2PY6TL+bWZOKXuwhH8eUcOsh1yzVd/DrVc79kp4= Subject key identifier: 16:49:7F:3E:8B:B0:74:5C:20:DC:42:3D:DD:F8:12:98:D5:BA:C1:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7571A85DE2266B4139E7ADA826FCA3843F49848F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51f566ba-b5cc-4528-8df7-1206338b802a.roa Signing time: Tue 24 Jun 2025 00:00:31 +0000 ROA not before: Tue 24 Jun 2025 00:00:31 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.92.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:71:a8:5d:e2:26:6b:41:39:e7:ad:a8:26:fc:a3:84:3f:49:84:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:00:31 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=6b09f2e47b74d5bfc7da42abc9c5585dfaadcb570ca3d8cd2c380cc2b4e5fcbf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:6e:16:51:76:6f:a2:5a:3a:36:ad:83:a0:98: f5:76:31:a1:aa:6a:9d:d6:4b:18:67:5b:7b:f5:cf: 5e:7e:85:b8:db:62:d0:dd:f1:15:e8:08:04:ef:90: 55:64:79:20:90:5e:19:15:ec:59:2b:de:7f:e6:ee: ca:1e:0c:1b:c9:a5:a7:9a:be:a5:fc:54:ba:6c:d7: 79:7c:c4:0d:e0:f3:63:bc:2a:5b:a6:f3:d2:a5:b1: 3e:d1:b4:e6:58:e1:55:b6:69:ab:29:70:c6:2b:08: f3:12:74:d9:35:64:ca:79:8c:9c:68:aa:77:1d:94: d8:cb:02:79:a9:e3:8f:f2:12:0f:01:17:4d:1c:f0: 3d:ad:87:a3:d5:c2:ee:2d:4f:f6:97:31:1b:56:e7: 34:60:15:3b:f9:8e:00:7d:cd:11:5c:f5:a5:9f:69: f5:1e:c2:e4:67:d5:bb:a1:30:2c:5d:16:51:61:4f: f6:67:1d:d2:08:1a:68:77:46:c2:4d:74:da:84:10: b8:f2:d6:a0:98:90:e8:9e:6d:e1:49:98:9f:fc:41: 76:de:29:59:93:35:6a:36:49:16:61:96:c4:89:3e: 31:b0:e1:75:3b:a3:4f:ea:90:ad:65:81:b7:1b:dd: c0:ee:8c:68:05:f9:26:ee:60:79:64:75:6a:ca:7f: 4d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:49:7F:3E:8B:B0:74:5C:20:DC:42:3D:DD:F8:12:98:D5:BA:C1:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51f566ba-b5cc-4528-8df7-1206338b802a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.92.69.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:aa:2d:43:1d:c2:78:23:bd:4f:31:d7:4a:1f:0e:06:87:db: be:20:ae:15:7e:55:d8:ec:06:d9:8a:65:6d:1c:32:38:e3:9a: 94:e0:7f:0d:72:9f:a6:ba:3a:8f:b2:fe:f3:50:65:27:4b:6b: 33:ce:69:bb:28:4b:53:81:ce:1d:f9:02:a1:2c:f7:58:37:3b: 5a:1d:c9:b1:24:35:14:cc:8b:d1:ad:48:db:de:2e:ef:12:00: 0d:05:a9:54:79:67:15:cc:a3:a2:46:b5:10:88:3d:01:51:41: d9:4d:94:e0:e2:d2:4b:72:f3:55:86:43:6d:fe:fc:76:5c:21: 23:b4:6f:ff:0e:39:7d:91:c3:16:a4:f3:be:8a:1a:45:61:3e: 3f:08:bb:a1:52:a9:7e:f2:13:2e:d5:4d:d7:0c:a4:62:b2:d0: e7:49:5b:59:96:ba:81:ff:5e:3e:b0:77:11:43:88:5c:76:2b: e9:90:41:fe:93:34:de:70:6a:7c:df:9a:c7:3f:20:1e:e5:43: a2:fe:cc:0e:2a:93:2b:7a:18:fc:8d:88:c0:5d:4f:9a:c5:0b: 14:4c:1f:bf:67:b4:65:2a:51:24:c4:b5:92:7f:a5:7a:f7:fd: e2:a4:a5:f4:36:2d:60:23:a3:e7:9a:98:97:8a:50:d7:fc:95: 8a:7e:02:e9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdXGoXeIma0E5562oJvyjhD9JhI8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAwMDMxWhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjA5ZjJlNDdiNzRkNWJmYzdkYTQyYWJjOWM1NTg1ZGZh YWRjYjU3MGNhM2Q4Y2QyYzM4MGNjMmI0ZTVmY2JmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQbhZRdm+iWjo2rYOgmPV2MaGqap3WSxhnW3v1z15+hbjb YtDd8RXoCATvkFVkeSCQXhkV7Fkr3n/m7soeDBvJpaeavqX8VLps13l8xA3g82O8 Klum89KlsT7RtOZY4VW2aaspcMYrCPMSdNk1ZMp5jJxoqncdlNjLAnmp44/yEg8B F00c8D2th6PVwu4tT/aXMRtW5zRgFTv5jgB9zRFc9aWfafUewuRn1buhMCxdFlFh T/ZnHdIIGmh3RsJNdNqEELjy1qCYkOiebeFJmJ/8QXbeKVmTNWo2SRZhlsSJPjGw 4XU7o0/qkK1lgbcb3cDujGgF+SbuYHlkdWrKf00VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFkl/PouwdFwg3EI93fgSmNW6wWIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUxZjU2NmJhLWI1Y2MtNDUyOC04ZGY3LTEyMDYzMzhiODAyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADRXEUwDQYJKoZIhvcNAQELBQADggEBAGqqLUMdwngjvU8x10ofDgaH274g rhV+VdjsBtmKZW0cMjjjmpTgfw1yn6a6Oo+y/vNQZSdLazPOabsoS1OBzh35AqEs 91g3O1odybEkNRTMi9GtSNveLu8SAA0FqVR5ZxXMo6JGtRCIPQFRQdlNlODi0kty 81WGQ23+/HZcISO0b/8OOX2Rwxak876KGkVhPj8Iu6FSqX7yEy7VTdcMpGKy0OdJ W1mWuoH/Xj6wdxFDiFx2K+mQQf6TNN5wanzfmsc/IB7lQ6L+zA4qkyt6GPyNiMBd T5rFCxRMH79ntGUqUSTEtZJ/pXr3/eKkpfQ2LWAjo+eamJeKUNf8lYp+Auk= -----END CERTIFICATE-----Generated at Tue Jul 1 18:20:41 2025 by rpki-client