$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ac0660d-1ee7-4b52-8e7f-55804ba7f248.roa File: 6ac0660d-1ee7-4b52-8e7f-55804ba7f248.roa (raw, json) Hash identifier: lpg0wx/+19yMjiZYbwFfvXgF9UySVvRRsw/S4T4IPBE= Subject key identifier: C8:C3:20:EB:ED:0B:8E:45:8F:E2:FD:A4:DA:33:82:AF:D4:A5:AD:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 57D2591CF3823E18BB6C9F19B124C877BC28B5DF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ac0660d-1ee7-4b52-8e7f-55804ba7f248.roa Signing time: Tue 17 Jun 2025 00:20:24 +0000 ROA not before: Tue 17 Jun 2025 00:20:24 +0000 ROA not after: Tue 22 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 45.57.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:d2:59:1c:f3:82:3e:18:bb:6c:9f:19:b1:24:c8:77:bc:28:b5:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 17 00:20:24 2025 GMT Not After : Jul 22 23:59:59 2025 GMT Subject: serialNumber=4447ba650296ed63ce86c9d5512c13de105ff5d78872da3ef4e3cc5b4f5b5d7d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:59:26:fb:c2:17:52:1c:b5:e5:36:f8:db:6b: 4a:87:e6:a4:99:68:eb:75:fc:69:03:b2:86:0c:ec: f0:44:62:46:58:a8:c5:ff:ec:76:cb:aa:71:ec:0b: 5b:6e:97:89:d1:86:5d:c5:fd:60:38:1f:d5:d0:69: 08:fd:e1:9f:2e:7d:d1:94:ce:70:13:3a:a2:95:a8: a5:65:f8:c8:20:ea:a9:69:24:00:2b:4e:ea:6c:4a: 31:8a:8c:de:a7:7c:4e:e0:c3:a5:dd:39:25:45:ca: 42:b0:78:cf:a4:45:b0:94:b1:32:5b:2e:fb:f5:2b: bb:5b:0c:c7:d0:c7:bf:2e:74:5d:aa:b5:d6:d5:2a: 80:8d:0f:7b:a3:7c:23:f8:e6:3c:70:32:0a:ef:13: 28:ca:24:20:b5:bf:cb:45:75:b6:ac:9a:42:e7:9e: 82:82:f7:fe:37:d4:3c:c3:07:5e:76:67:a1:49:1c: 62:65:08:c4:63:f4:ce:1f:57:e7:14:43:74:a2:9e: d1:c2:66:1b:2d:cd:ae:ce:38:71:ba:75:fa:7d:aa: 7a:e9:5d:86:69:1e:c9:40:bf:3e:c3:63:5a:e0:3d: 1a:1d:ef:b7:49:fa:b6:f7:d5:a1:25:e4:81:38:bb: e4:79:27:3b:0b:6d:6c:8a:d7:e9:85:20:9c:a5:39: 83:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C3:20:EB:ED:0B:8E:45:8F:E2:FD:A4:DA:33:82:AF:D4:A5:AD:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6ac0660d-1ee7-4b52-8e7f-55804ba7f248.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.57.128.0/19 Signature Algorithm: sha256WithRSAEncryption 6c:a1:41:d5:a2:08:d6:69:0c:2c:b5:1e:bd:9b:05:cf:22:a4: 7e:0d:68:ff:10:3c:93:fd:c4:40:a7:77:c8:d2:a0:03:30:01: 0e:46:e2:90:20:c2:62:cd:ce:d1:17:e0:9c:24:0a:a3:a4:5e: 97:67:87:72:db:cb:db:4a:f8:ca:37:52:d1:7b:f6:c1:43:0c: e4:44:b0:68:f4:39:d7:15:e4:5b:66:45:6e:5c:44:b9:d1:60: 8d:20:e4:87:e4:bc:2e:4c:6a:d9:ad:fe:fa:38:f7:3d:1e:a6: c2:4a:96:fd:d4:fa:c1:64:30:f7:7e:8d:43:e9:5d:49:c5:d8: e4:ec:b6:1d:63:d1:50:b2:bd:f3:22:ec:ab:f6:30:ae:2e:46: ce:87:3d:3f:66:84:69:f8:43:71:b6:ff:ac:be:8b:22:71:4c: ab:62:3f:11:16:35:4b:4c:32:a1:59:68:7a:d7:cb:f9:d9:4c: 43:bb:86:e3:69:2c:20:1b:a8:e6:84:7f:69:91:81:9f:f6:38: 53:f6:3d:e6:34:d5:7e:50:f6:19:64:b1:6f:91:3d:5e:f7:14: f4:6f:46:f4:4c:1c:86:9a:be:ab:8a:cd:63:c3:3d:dc:72:f2: ba:80:63:d9:08:64:c2:db:ea:cb:1e:dc:32:67:82:b6:6d:1a: ad:31:f6:44 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV9JZHPOCPhi7bJ8ZsSTId7wotd8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE3MDAyMDI0WhcNMjUwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDQ3YmE2NTAyOTZlZDYzY2U4NmM5ZDU1MTJjMTNkZTEw NWZmNWQ3ODg3MmRhM2VmNGUzY2M1YjRmNWI1ZDdkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLWSb7whdSHLXlNvjba0qH5qSZaOt1/GkDsoYM7PBEYkZY qMX/7HbLqnHsC1tul4nRhl3F/WA4H9XQaQj94Z8ufdGUznATOqKVqKVl+Mgg6qlp JAArTupsSjGKjN6nfE7gw6XdOSVFykKweM+kRbCUsTJbLvv1K7tbDMfQx78udF2q tdbVKoCND3ujfCP45jxwMgrvEyjKJCC1v8tFdbasmkLnnoKC9/431DzDB152Z6FJ HGJlCMRj9M4fV+cUQ3SintHCZhstza7OOHG6dfp9qnrpXYZpHslAvz7DY1rgPRod 77dJ+rb31aEl5IE4u+R5JzsLbWyK1+mFIJylOYPdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyMMg6+0LjkWP4v2k2jOCr9SlrYQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhYzA2NjBkLTFlZTctNGI1Mi04ZTdmLTU1ODA0YmE3ZjI0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUtOYAwDQYJKoZIhvcNAQELBQADggEBAGyhQdWiCNZpDCy1Hr2bBc8ipH4N aP8QPJP9xECnd8jSoAMwAQ5G4pAgwmLNztEX4JwkCqOkXpdnh3Lby9tK+Mo3UtF7 9sFDDOREsGj0OdcV5FtmRW5cRLnRYI0g5IfkvC5Matmt/vo49z0epsJKlv3U+sFk MPd+jUPpXUnF2OTsth1j0VCyvfMi7Kv2MK4uRs6HPT9mhGn4Q3G2/6y+iyJxTKti PxEWNUtMMqFZaHrXy/nZTEO7huNpLCAbqOaEf2mRgZ/2OFP2PeY01X5Q9hlksW+R PV73FPRvRvRMHIaavquKzWPDPdxy8rqAY9kIZMLb6sse3DJngrZtGq0x9kQ= -----END CERTIFICATE-----Generated at Tue Jul 1 12:37:20 2025 by rpki-client