$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4424f1-a154-4dc3-838e-553cde0d6d3a.roa File: 6f4424f1-a154-4dc3-838e-553cde0d6d3a.roa (raw, json) Hash identifier: Z9sbYMPCR4Xf9Gm57b2RxwxT46XSjljiX9kGtxKLOHc= Subject key identifier: 09:93:B0:7B:CE:97:1D:62:D2:48:19:6C:FE:04:03:56:74:2E:F9:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 023160BB832BD8DFA596551FD20A906E82DF05A6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4424f1-a154-4dc3-838e-553cde0d6d3a.roa Signing time: Wed 18 Jun 2025 00:01:15 +0000 ROA not before: Wed 18 Jun 2025 00:01:15 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.11.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:31:60:bb:83:2b:d8:df:a5:96:55:1f:d2:0a:90:6e:82:df:05:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:01:15 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=f9e3d82a9a1be52eb6d0ae56d16a2f24c7f6b1eaa1a10863e3a39674e0c8758c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f8:ef:69:fd:2b:60:e7:50:f8:96:c5:df:34: a5:49:da:c1:f8:4a:04:57:1c:b1:3d:bd:dc:97:ec: e3:82:6b:0a:8c:5b:e7:f9:a9:60:4e:03:5a:e2:0e: 59:5a:94:15:13:95:18:14:86:03:90:cb:2f:fd:b4: fa:b6:60:62:fc:98:28:0a:38:84:9a:33:54:42:4a: b6:06:a6:e2:e4:9a:03:5f:21:db:8f:c8:ad:54:fc: f1:d6:3d:f4:45:be:ab:6c:d9:3e:0f:61:3b:5e:46: cb:ff:9b:42:67:65:2b:0a:02:83:8e:c9:30:7f:8e: a1:ba:6e:d6:52:9c:34:fa:58:b0:f6:62:9e:64:01: 98:16:70:81:8e:33:03:5a:de:f7:8d:28:88:7a:31: 79:f7:c3:33:1d:59:52:b1:97:e2:07:32:ca:2f:53: 55:50:43:95:58:cc:e9:b0:e0:09:2c:35:a1:5d:46: b2:80:74:63:09:a0:d7:a5:0d:35:53:12:f2:97:b1: 3e:b9:3e:f5:56:3b:8f:a3:37:d7:78:7c:4f:a8:91: ca:4d:22:c4:6e:b0:b7:a7:69:6b:ab:da:3e:30:69: 94:08:91:a9:a1:6d:e4:f9:d6:1a:21:59:08:fc:0a: 66:eb:c9:d9:97:bc:9f:49:e4:34:ba:72:ad:86:bd: 4e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:93:B0:7B:CE:97:1D:62:D2:48:19:6C:FE:04:03:56:74:2E:F9:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4424f1-a154-4dc3-838e-553cde0d6d3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.11.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0a:26:33:bd:28:83:39:ec:b7:2f:7d:18:cc:53:ae:d5:28:a5: 75:04:24:ad:99:1d:ac:11:1e:78:b8:99:70:cc:7c:4d:d3:2f: 6a:cb:21:ab:d2:f5:6c:c4:12:91:d2:cc:d6:19:70:d8:0b:cf: cb:e6:61:8a:c8:ae:8d:a1:41:e0:4c:d8:3d:60:27:53:39:42: 96:ad:c8:0f:94:82:7e:c4:eb:ab:46:0b:d8:8f:88:a2:2e:6c: 8c:0b:d5:94:93:44:db:48:34:98:a6:b3:f6:2f:4d:16:9c:e7: 2e:2d:cc:4b:8c:a0:7a:ad:0e:5b:2e:26:13:c8:b8:6e:be:22: ed:22:c1:ba:c9:21:62:55:05:4f:24:0c:bd:4d:f9:0a:6c:38: 91:cc:51:88:8f:0d:d8:7e:3e:5b:cf:a1:05:d1:78:0a:50:83: aa:83:15:19:fc:9d:d1:28:fb:6e:9d:7f:d2:32:da:f1:50:df: af:ca:18:a0:12:a3:dd:c9:59:85:f7:3d:00:7f:fd:61:0d:5e: 52:bf:59:95:a4:d5:b0:2b:00:12:16:e8:25:7f:52:ad:0a:f2: 01:e1:39:bc:f4:a0:42:13:25:f7:be:e3:57:15:0e:93:f2:d7: e8:6c:87:35:32:81:c4:3e:15:d4:c5:9f:ed:44:f4:cf:13:0a: 19:9e:aa:41 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAjFgu4Mr2N+lllUf0gqQboLfBaYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE4MDAwMTE1WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmOWUzZDgyYTlhMWJlNTJlYjZkMGFlNTZkMTZhMmYyNGM3 ZjZiMWVhYTFhMTA4NjNlM2EzOTY3NGUwYzg3NThjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDP+O9p/Stg51D4lsXfNKVJ2sH4SgRXHLE9vdyX7OOCawqM W+f5qWBOA1riDllalBUTlRgUhgOQyy/9tPq2YGL8mCgKOISaM1RCSrYGpuLkmgNf IduPyK1U/PHWPfRFvqts2T4PYTteRsv/m0JnZSsKAoOOyTB/jqG6btZSnDT6WLD2 Yp5kAZgWcIGOMwNa3veNKIh6MXn3wzMdWVKxl+IHMsovU1VQQ5VYzOmw4AksNaFd RrKAdGMJoNelDTVTEvKXsT65PvVWO4+jN9d4fE+okcpNIsRusLenaWur2j4waZQI kamhbeT51hohWQj8CmbrydmXvJ9J5DS6cq2GvU45AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUCZOwe86XHWLSSBls/gQDVnQu+cUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmNDQyNGYxLWExNTQtNGRjMy04MzhlLTU1M2NkZTBkNmQzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQCzANBgkqhkiG9w0BAQsFAAOCAQEACiYzvSiDOey3L30YzFOu1SildQQk rZkdrBEeeLiZcMx8TdMvasshq9L1bMQSkdLM1hlw2AvPy+ZhisiujaFB4EzYPWAn UzlClq3ID5SCfsTrq0YL2I+Ioi5sjAvVlJNE20g0mKaz9i9NFpznLi3MS4ygeq0O Wy4mE8i4br4i7SLBuskhYlUFTyQMvU35Cmw4kcxRiI8N2H4+W8+hBdF4ClCDqoMV Gfyd0Sj7bp1/0jLa8VDfr8oYoBKj3clZhfc9AH/9YQ1eUr9ZlaTVsCsAEhboJX9S rQryAeE5vPSgQhMl977jVxUOk/LX6GyHNTKBxD4V1MWf7UT0zxMKGZ6qQQ== -----END CERTIFICATE-----Generated at Sun Jun 29 04:01:22 2025 by rpki-client