$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/694cc990-6ba0-42d8-90f9-1c5d8b78a034.roa File: 694cc990-6ba0-42d8-90f9-1c5d8b78a034.roa (raw, json) Hash identifier: 3SEZkXLQx/aR0ynN2W0UtyNEL/RkfJFPE5pexPTgohE= Subject key identifier: D4:DD:73:B0:0D:29:35:C9:64:78:87:2D:58:FE:78:2F:EE:32:0E:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6763557E98F8C8729164A55D3AAFFBBA54C00BC3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/694cc990-6ba0-42d8-90f9-1c5d8b78a034.roa Signing time: Fri 13 Jun 2025 17:40:14 +0000 ROA not before: Fri 13 Jun 2025 17:40:14 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.81.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:63:55:7e:98:f8:c8:72:91:64:a5:5d:3a:af:fb:ba:54:c0:0b:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 17:40:14 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=a2986c979bf63514e9debe2a10198d0818a13cc5361d15dab8079e1bb564fa3e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:ee:bd:f5:d4:e7:a5:1e:9e:cf:0d:52:52:40: fa:4f:d3:7c:a4:d8:ef:36:40:12:ae:5d:fc:59:39: 08:34:87:38:57:6f:1b:65:35:15:cb:51:4a:42:aa: c5:e3:61:8b:98:1e:95:e3:d3:1c:57:2e:ab:33:39: ba:bb:00:03:d3:ed:e0:ac:d1:5b:90:62:34:d5:92: 75:9c:21:05:0f:57:2f:69:7f:f0:62:8c:2d:9e:7b: 7a:6b:50:65:cf:f9:5d:0d:1b:4b:4f:b9:cd:54:91: 09:2f:bb:bb:b5:78:ce:6e:ca:e6:c5:28:82:c2:1a: 5e:4f:24:0c:06:b2:bd:ea:18:b7:b6:3b:1b:de:e0: 52:c8:e3:5c:e8:13:b5:a9:76:4e:ad:ef:c9:ff:d8: d2:44:a7:47:ff:41:2d:ae:a3:49:c5:7d:dc:69:bf: 26:4e:81:9e:b1:0f:bc:28:63:28:bf:a7:69:37:0f: 18:ab:0d:d7:ea:ad:1a:e1:44:ab:58:2c:06:d0:24: 4e:3d:2d:aa:6c:8e:b3:d3:3b:a1:7f:50:6f:38:52: e1:21:3d:d3:28:56:ec:f5:a8:30:eb:28:d8:b3:b8: c8:a4:80:fb:71:dc:91:d7:12:3d:12:bc:72:1d:66: f9:8d:3b:2d:ed:2d:bd:54:97:20:6e:93:01:3c:f7: e9:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:DD:73:B0:0D:29:35:C9:64:78:87:2D:58:FE:78:2F:EE:32:0E:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/694cc990-6ba0-42d8-90f9-1c5d8b78a034.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.81.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3d:a7:cb:4f:1e:7d:c3:dd:47:73:31:c9:d1:3a:04:d1:2b:24: f8:0a:c2:e9:fa:6e:18:41:f7:32:b2:10:de:c3:47:bc:35:42: 3f:6f:71:86:7a:fb:79:a0:a6:1d:05:e8:58:06:0a:eb:66:98: f1:cf:ea:77:27:16:87:14:1c:26:83:fd:55:7a:cd:86:e8:13: b8:1f:85:16:98:af:75:d7:93:fe:d1:97:b9:a0:8a:35:61:50: 9e:87:12:8c:f6:19:cc:99:17:f1:0f:76:c8:67:8f:4a:2a:e6: a6:ad:ab:c0:0c:d7:44:25:40:95:9f:9c:26:c4:01:cb:74:d4: 43:91:6a:fc:bd:55:60:87:40:db:33:16:c7:59:a0:dd:36:06: b0:bd:03:20:8e:e8:95:e3:f2:ec:00:ef:e9:8a:63:d6:9a:11: 77:1e:41:e0:47:78:92:80:74:2b:03:85:0c:ef:7a:5d:91:0f: 59:13:bd:b5:08:01:0c:ad:46:02:1c:c2:96:97:d3:dd:b3:f5: a2:dc:6a:de:d9:73:84:42:d0:52:32:33:51:20:ec:2b:c4:14: 95:27:1f:8e:3a:fb:f6:12:d4:ba:e9:35:5e:60:09:14:47:13: 45:59:6e:8d:77:fb:21:02:22:2b:ea:3c:a2:e7:83:6e:a0:28: 9f:56:f6:b4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZ2NVfpj4yHKRZKVdOq/7ulTAC8MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTc0MDE0WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMjk4NmM5NzliZjYzNTE0ZTlkZWJlMmExMDE5OGQwODE4 YTEzY2M1MzYxZDE1ZGFiODA3OWUxYmI1NjRmYTNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCS7r311OelHp7PDVJSQPpP03yk2O82QBKuXfxZOQg0hzhX bxtlNRXLUUpCqsXjYYuYHpXj0xxXLqszObq7AAPT7eCs0VuQYjTVknWcIQUPVy9p f/BijC2ee3prUGXP+V0NG0tPuc1UkQkvu7u1eM5uyubFKILCGl5PJAwGsr3qGLe2 Oxve4FLI41zoE7Wpdk6t78n/2NJEp0f/QS2uo0nFfdxpvyZOgZ6xD7woYyi/p2k3 DxirDdfqrRrhRKtYLAbQJE49LapsjrPTO6F/UG84UuEhPdMoVuz1qDDrKNizuMik gPtx3JHXEj0SvHIdZvmNOy3tLb1UlyBukwE89+mXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU1N1zsA0pNclkeIctWP54L+4yDpYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5NGNjOTkwLTZiYTAtNDJkOC05MGY5LTFjNWQ4Yjc4YTAzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBFUTANBgkqhkiG9w0BAQsFAAOCAQEAPafLTx59w91HczHJ0ToE0Ssk+ArC 6fpuGEH3MrIQ3sNHvDVCP29xhnr7eaCmHQXoWAYK62aY8c/qdycWhxQcJoP9VXrN hugTuB+FFpivddeT/tGXuaCKNWFQnocSjPYZzJkX8Q92yGePSirmpq2rwAzXRCVA lZ+cJsQBy3TUQ5Fq/L1VYIdA2zMWx1mg3TYGsL0DII7olePy7ADv6Ypj1poRdx5B 4Ed4koB0KwOFDO96XZEPWRO9tQgBDK1GAhzClpfT3bP1otxq3tlzhELQUjIzUSDs K8QUlScfjjr79hLUuuk1XmAJFEcTRVlujXf7IQIiK+o8oueDbqAon1b2tA== -----END CERTIFICATE-----Generated at Mon Jun 30 18:25:53 2025 by rpki-client