$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68598716-8ef3-4659-8c2a-ea94e7225c46.roa File: 68598716-8ef3-4659-8c2a-ea94e7225c46.roa (raw, json) Hash identifier: G4Yd5QpHXw47TguT8LmO3gGRNIuAHiZxohkHkUOvGtU= Subject key identifier: 63:05:BE:78:5F:1B:AA:CD:99:31:35:1F:D5:69:80:D7:36:13:A5:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2484FCC31C71C168D1EBE7E187335C701817E76C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68598716-8ef3-4659-8c2a-ea94e7225c46.roa Signing time: Tue 17 Jun 2025 00:20:18 +0000 ROA not before: Tue 17 Jun 2025 00:20:18 +0000 ROA not after: Tue 22 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.167.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:84:fc:c3:1c:71:c1:68:d1:eb:e7:e1:87:33:5c:70:18:17:e7:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 17 00:20:18 2025 GMT Not After : Jul 22 23:59:59 2025 GMT Subject: serialNumber=195b52ca2472e03761ef23a9a47dd340b261061516a7b7e3dcb205b4f43816c1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:df:48:da:33:6b:ce:a5:f7:9b:dd:0f:b6:87: 67:21:45:ed:f3:b1:40:c3:b0:ae:47:fb:f8:05:02: f2:55:ba:89:26:8a:14:9b:2a:f5:1c:c7:31:ab:7a: 54:2e:8b:b7:dc:c8:47:06:e0:62:f7:20:31:de:2b: 32:30:4e:93:f5:02:59:66:b7:05:c1:65:32:1b:eb: 32:14:8d:15:1a:46:51:30:58:9b:2a:64:17:3c:95: 53:76:0e:f9:a6:79:45:1b:2f:c3:3f:af:d1:90:9f: 1f:c9:87:6a:88:4e:c0:6d:51:9d:ad:57:86:67:1e: 93:99:67:d7:1a:31:ac:06:68:2c:d8:9c:6b:d5:e8: ef:37:ae:c6:f7:32:52:59:12:43:f4:ff:e9:ab:96: dd:6f:58:21:7e:86:0b:92:4c:74:94:3a:ee:10:8e: a9:ae:c0:bb:88:3b:4d:69:15:ba:bb:38:22:d1:53: 06:e2:df:71:d6:cd:96:f6:c3:e7:a8:04:c8:00:f0: e7:a1:33:e4:64:c0:c0:e3:4b:9e:38:2d:4f:dc:2d: 13:4b:03:9f:08:ff:3a:1b:aa:f2:17:76:51:7c:62: e9:43:bd:9f:a0:78:61:ab:c7:92:81:88:9d:2f:79: 07:76:a4:4a:e9:41:cc:fd:ff:1e:be:2e:a3:99:83: 3f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:05:BE:78:5F:1B:AA:CD:99:31:35:1F:D5:69:80:D7:36:13:A5:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68598716-8ef3-4659-8c2a-ea94e7225c46.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.167.0.0/16 Signature Algorithm: sha256WithRSAEncryption 12:f7:e9:2b:27:4e:aa:2f:fe:92:7c:25:c2:ac:51:a5:55:f5: 0c:24:a0:b5:4c:fb:9a:08:04:43:42:5c:b7:ae:03:b2:b1:90: e9:2a:b2:29:ae:e9:13:25:ab:fa:72:59:3b:b8:1a:e5:8a:f8: 67:23:df:39:d9:34:d1:e0:ba:a5:e4:ec:d3:e6:4d:85:bd:e2: 9d:ef:79:c6:e1:19:bd:2f:65:5c:1f:35:fe:88:6d:06:95:a8: 4d:1c:37:b3:c7:66:30:34:ee:f2:64:1c:15:18:88:16:25:8d: eb:d2:13:a7:dd:b5:48:f1:68:7a:cf:1d:04:06:ca:82:10:b9: 8e:45:da:df:a6:7e:0c:30:d9:f6:e4:da:12:cb:61:61:89:89: 19:0e:31:86:79:0d:00:0a:fa:df:9a:db:59:4b:96:f6:5b:79: 45:28:39:fb:1b:1a:c3:bb:97:79:2a:19:50:b9:90:cd:b4:98: 6d:9c:f6:f7:c8:c2:f7:51:6b:cd:67:66:52:94:ed:f3:d6:ad: 5e:b5:c7:1b:1c:df:e9:30:c9:24:d3:43:c6:73:14:95:cf:28: f3:cc:48:0c:6d:49:e6:b5:60:79:26:46:2a:8c:e6:af:20:9c: a4:75:9a:a4:7b:7c:38:82:07:9f:e8:88:31:e9:ae:5e:50:43: c6:c0:f5:f7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJIT8wxxxwWjR6+fhhzNccBgX52wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE3MDAyMDE4WhcNMjUwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxOTViNTJjYTI0NzJlMDM3NjFlZjIzYTlhNDdkZDM0MGIy NjEwNjE1MTZhN2I3ZTNkY2IyMDViNGY0MzgxNmMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDR30jaM2vOpfeb3Q+2h2chRe3zsUDDsK5H+/gFAvJVuokm ihSbKvUcxzGrelQui7fcyEcG4GL3IDHeKzIwTpP1AllmtwXBZTIb6zIUjRUaRlEw WJsqZBc8lVN2DvmmeUUbL8M/r9GQnx/Jh2qITsBtUZ2tV4ZnHpOZZ9caMawGaCzY nGvV6O83rsb3MlJZEkP0/+mrlt1vWCF+hguSTHSUOu4QjqmuwLuIO01pFbq7OCLR Uwbi33HWzZb2w+eoBMgA8OehM+RkwMDjS544LU/cLRNLA58I/zobqvIXdlF8YulD vZ+geGGrx5KBiJ0veQd2pErpQcz9/x6+LqOZgz+xAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYwW+eF8bqs2ZMTUf1WmA1zYTpSwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY4NTk4NzE2LThlZjMtNDY1OS04YzJhLWVhOTRlNzIyNWM0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAopzANBgkqhkiG9w0BAQsFAAOCAQEAEvfpKydOqi/+knwlwqxRpVX1DCSg tUz7mggEQ0Jct64DsrGQ6SqyKa7pEyWr+nJZO7ga5Yr4ZyPfOdk00eC6peTs0+ZN hb3ine95xuEZvS9lXB81/ohtBpWoTRw3s8dmMDTu8mQcFRiIFiWN69ITp921SPFo es8dBAbKghC5jkXa36Z+DDDZ9uTaEsthYYmJGQ4xhnkNAAr635rbWUuW9lt5RSg5 +xsaw7uXeSoZULmQzbSYbZz298jC91FrzWdmUpTt89atXrXHGxzf6TDJJNNDxnMU lc8o88xIDG1J5rVgeSZGKozmryCcpHWapHt8OIIHn+iIMemuXlBDxsD19w== -----END CERTIFICATE-----Generated at Mon Jun 30 18:26:49 2025 by rpki-client