$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54dba2ae-fa55-448d-8286-0b2647236884.roa File: 54dba2ae-fa55-448d-8286-0b2647236884.roa (raw, json) Hash identifier: w0riFmFBKE/UnFSMws6RsMpTvvxEFJW32KsQqyLgxS0= Subject key identifier: AA:BE:2A:BA:AF:1F:80:E9:04:D8:96:50:48:A9:4E:F0:58:B3:A5:36 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A66C91A5880E5F7ADD4D613B061BF6037EE66 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54dba2ae-fa55-448d-8286-0b2647236884.roa Signing time: Fri 13 Jun 2025 15:01:14 +0000 ROA not before: Fri 13 Jun 2025 15:01:14 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 164.152.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:66:c9:1a:58:80:e5:f7:ad:d4:d6:13:b0:61:bf:60:37:ee:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 15:01:14 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=0fbe368c967969dc0bb1dc25f2d135cfa6cf1a790155d3ee95d576db74caab3e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:80:92:92:8f:fc:1a:37:42:c4:ad:55:fd:c1: bc:2d:93:62:34:b2:1a:a0:87:92:d4:65:cb:c7:59: 36:d7:25:06:ed:bb:e7:83:83:e8:bd:99:0f:c3:2e: 59:43:f4:2f:8f:00:23:f4:c1:2a:cb:cc:7e:8d:9d: 7d:a6:30:ed:3b:18:a9:79:6c:08:87:62:c0:60:09: 48:82:fb:3d:3e:36:88:3e:13:fd:9a:c7:2a:de:78: ab:f1:57:80:c8:46:bc:81:94:23:14:4c:a4:0c:2b: 24:e5:24:67:40:ed:a9:03:7c:12:8e:af:22:b3:d6: 38:40:c8:e3:33:f1:57:05:4f:d5:b6:ae:e6:2f:98: 30:de:14:a0:b2:94:f0:ba:ae:70:8b:23:44:75:ab: 9b:8e:05:99:eb:74:1b:27:d4:06:3a:de:c4:e3:1b: 1b:e3:f0:a0:03:cd:b4:8c:c1:47:9e:0e:2d:7a:d1: 2f:0c:91:56:ce:c6:49:db:2f:c5:56:72:f6:1f:b2: 96:96:26:37:bc:25:a3:6f:0b:44:7b:56:71:d3:8c: 1a:31:49:74:74:96:16:a9:d8:ec:0c:1e:af:c4:e7: a3:0a:67:50:e9:b3:5c:24:23:32:2d:27:56:ef:f0: 78:d1:06:d8:5f:8f:a5:e9:aa:cd:b9:1c:19:01:cd: 6c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:BE:2A:BA:AF:1F:80:E9:04:D8:96:50:48:A9:4E:F0:58:B3:A5:36 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54dba2ae-fa55-448d-8286-0b2647236884.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.152.168.0/21 Signature Algorithm: sha256WithRSAEncryption a7:d6:23:c3:38:d7:30:87:78:dc:ff:a3:c5:3f:4e:5e:70:77: a8:fb:1e:63:c4:4d:be:35:68:e2:eb:33:f9:d1:17:34:52:aa: ac:51:c4:56:04:c2:35:da:2e:ab:96:59:bb:70:8e:5e:95:f4: 9a:87:03:30:32:6f:71:e3:c0:8f:c2:a4:ce:e9:3f:72:60:ae: 0b:5a:35:15:96:eb:ab:f2:22:c1:42:b7:01:33:b5:93:06:b3: a6:0e:1a:51:9b:dc:49:f7:dc:d1:ab:f8:dd:ef:de:03:c3:07: 07:0a:ca:4e:a7:f2:87:48:6f:3e:b9:b7:4b:50:54:ff:4b:e9: 76:d0:2e:81:18:04:29:df:6b:26:37:8d:92:e4:27:c8:d2:98: c5:e8:3a:b0:27:ac:4d:f3:d1:48:52:e8:41:20:ca:ff:f8:a1: 11:1f:0c:58:42:5e:e6:06:44:32:ca:2c:06:19:7f:92:93:01: d0:ed:44:a0:8d:1d:80:a3:02:df:59:01:30:88:7e:9c:e4:6a: c8:c9:1d:c1:03:ad:7e:54:0d:77:6b:1a:ad:ab:b5:b3:52:79: f0:e2:9d:ba:80:dc:ff:c5:92:d3:4f:d7:bd:aa:57:dc:e7:3f: 5e:32:4c:50:b3:58:6f:52:c4:cb:82:86:27:87:f3:41:75:e7: 1d:b7:32:20 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITCmbJGliA5fet1NYTsGG/YDfuZjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA2MTMxNTAxMTRaFw0yNTA3MTgyMzU5NTla MHoxSTBHBgNVBAUTQDBmYmUzNjhjOTY3OTY5ZGMwYmIxZGMyNWYyZDEzNWNmYTZj ZjFhNzkwMTU1ZDNlZTk1ZDU3NmRiNzRjYWFiM2UxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAOGAkpKP/Bo3QsStVf3BvC2TYjSyGqCHktRly8dZNtclBu27 54OD6L2ZD8MuWUP0L48AI/TBKsvMfo2dfaYw7TsYqXlsCIdiwGAJSIL7PT42iD4T /ZrHKt54q/FXgMhGvIGUIxRMpAwrJOUkZ0DtqQN8Eo6vIrPWOEDI4zPxVwVP1bau 5i+YMN4UoLKU8LqucIsjRHWrm44Fmet0GyfUBjrexOMbG+PwoAPNtIzBR54OLXrR LwyRVs7GSdsvxVZy9h+ylpYmN7wlo28LRHtWcdOMGjFJdHSWFqnY7Awer8Tnowpn UOmzXCQjMi0nVu/weNEG2F+PpemqzbkcGQHNbC0CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBSqviq6rx+A6QTYllBIqU7wWLOlNjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvNTRkYmEyYWUtZmE1NS00NDhkLTgyODYtMGIyNjQ3MjM2ODg0LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEA6SYqDANBgkqhkiG9w0BAQsFAAOCAQEAp9YjwzjXMId43P+jxT9OXnB3qPse Y8RNvjVo4usz+dEXNFKqrFHEVgTCNdouq5ZZu3COXpX0mocDMDJvcePAj8Kkzuk/ cmCuC1o1FZbrq/IiwUK3ATO1kwazpg4aUZvcSffc0av43e/eA8MHBwrKTqfyh0hv Prm3S1BU/0vpdtAugRgEKd9rJjeNkuQnyNKYxeg6sCesTfPRSFLoQSDK//ihER8M WEJe5gZEMsosBhl/kpMB0O1EoI0dgKMC31kBMIh+nORqyMkdwQOtflQNd2sarau1 s1J58OKduoDc/8WS00/XvapX3Oc/XjJMULNYb1LEy4KGJ4fzQXXnHbcyIA== -----END CERTIFICATE-----Generated at Tue Jul 1 17:05:53 2025 by rpki-client