$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6fce6506-820e-4211-b973-b5e5ac9fcd5b.roa File: 6fce6506-820e-4211-b973-b5e5ac9fcd5b.roa (raw, json) Hash identifier: CgNApCXpYZb1fCwKcqUJMwIFKmPdogybgFExj54GguA= Subject key identifier: A5:E6:88:D9:54:25:D6:09:0C:39:A4:0E:D8:4D:CD:69:E4:84:E9:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14E172CAED68CF99A13D5E59F78FBE8822A52CED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6fce6506-820e-4211-b973-b5e5ac9fcd5b.roa Signing time: Tue 01 Jul 2025 00:20:19 +0000 ROA not before: Tue 01 Jul 2025 00:20:19 +0000 ROA not after: Tue 05 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 94.38.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:e1:72:ca:ed:68:cf:99:a1:3d:5e:59:f7:8f:be:88:22:a5:2c:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 1 00:20:19 2025 GMT Not After : Aug 5 23:59:59 2025 GMT Subject: serialNumber=6bbb41ac88ca5b7d8379245c99a42f8cbe1c4ed1dd46372e835a5ad80962d421, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:28:ca:43:c5:d2:25:15:f0:87:e9:15:9e:75: 96:c7:65:72:d1:32:37:44:26:05:89:3e:bc:8a:be: a7:90:da:6e:0b:94:9c:0a:b7:6d:26:93:b0:9c:8a: 2f:6f:00:2c:8f:7d:f8:fd:63:20:d3:62:bb:56:68: c0:5b:04:27:ec:50:79:e6:b4:30:52:74:6f:cc:00: 8e:41:7e:70:c5:18:19:92:0e:f0:2a:de:b6:89:db: b2:2f:d6:44:64:70:e9:07:f8:4f:da:66:5e:d0:ea: 8f:90:e1:ca:8c:7c:1f:62:c9:78:27:ed:dc:7f:12: b1:f5:32:59:2d:8d:09:bc:c4:07:fa:79:a4:87:e1: 8d:eb:80:c3:d5:fa:d2:31:74:1f:c2:df:9f:d3:f7: f0:a3:cb:27:5c:3d:91:aa:a0:2d:08:6f:af:b0:05: e3:9a:aa:ef:7d:23:2e:c6:71:02:c7:63:6b:c2:35: de:c4:6c:92:40:a4:9b:99:38:39:ad:c9:b1:3d:53: 56:fe:65:3f:09:00:1e:07:32:cb:4c:66:5e:46:4a: 2c:02:42:b1:ba:de:57:b8:5c:13:62:7d:f6:ef:0c: 79:75:49:51:58:48:58:55:e1:e3:1a:1b:25:21:c4: 0f:0f:f8:ef:ac:b3:9d:00:b5:82:61:b1:e6:6e:ae: 58:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:E6:88:D9:54:25:D6:09:0C:39:A4:0E:D8:4D:CD:69:E4:84:E9:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6fce6506-820e-4211-b973-b5e5ac9fcd5b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.38.0.0/15 Signature Algorithm: sha256WithRSAEncryption 11:49:fa:bf:d7:7e:a7:a8:b1:4e:26:26:d0:be:14:fb:09:6e: 89:77:f9:d4:3f:ec:54:19:51:fc:d3:3c:a8:f9:40:fe:85:47: b6:be:d1:d4:e4:77:85:97:55:c4:18:b0:79:ef:e9:49:07:ed: 24:98:73:74:d7:78:cc:2d:d4:64:8b:15:5c:5c:f1:a8:14:7d: 28:62:bc:ff:38:5c:db:18:57:a0:cc:ba:33:98:d2:bf:a6:fc: 5e:eb:05:15:72:e3:83:49:a4:fa:57:cc:8d:7b:5f:f6:8f:94: 1d:76:5d:66:7b:90:22:fe:4e:ae:bc:f4:ee:c6:a8:eb:4a:0d: bd:28:fd:7c:8e:b9:36:22:e6:f5:d9:35:30:84:1b:3d:d9:76: b6:74:39:69:ff:42:6e:19:c1:ba:55:c7:1b:1f:4c:80:75:3b: c7:7a:62:db:07:68:48:2e:6e:b8:81:9d:ad:d7:65:55:04:55: 81:30:b4:3b:6d:5f:e2:f5:9a:98:f7:29:d6:d5:87:06:79:5c: 53:7e:32:8f:28:71:4e:06:24:a7:0d:52:33:da:01:d9:64:f5: c4:8b:c3:0e:2c:f1:15:d7:49:46:c2:51:b1:63:47:6d:84:04: 5a:ee:96:58:a0:8d:a5:33:81:bf:ec:b6:1b:03:db:62:66:a8: 7f:84:e5:b3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFOFyyu1oz5mhPV5Z94++iCKlLO0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAxMDAyMDE5WhcNMjUwODA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YmJiNDFhYzg4Y2E1YjdkODM3OTI0NWM5OWE0MmY4Y2Jl MWM0ZWQxZGQ0NjM3MmU4MzVhNWFkODA5NjJkNDIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDtKMpDxdIlFfCH6RWedZbHZXLRMjdEJgWJPryKvqeQ2m4L lJwKt20mk7Ccii9vACyPffj9YyDTYrtWaMBbBCfsUHnmtDBSdG/MAI5BfnDFGBmS DvAq3raJ27Iv1kRkcOkH+E/aZl7Q6o+Q4cqMfB9iyXgn7dx/ErH1MlktjQm8xAf6 eaSH4Y3rgMPV+tIxdB/C35/T9/CjyydcPZGqoC0Ib6+wBeOaqu99Iy7GcQLHY2vC Nd7EbJJApJuZODmtybE9U1b+ZT8JAB4HMstMZl5GSiwCQrG63le4XBNiffbvDHl1 SVFYSFhV4eMaGyUhxA8P+O+ss50AtYJhseZurliHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUpeaI2VQl1gkMOaQO2E3NaeSE6TIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmY2U2NTA2LTgyMGUtNDIxMS1iOTczLWI1ZTVhYzlmY2Q1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFeJjANBgkqhkiG9w0BAQsFAAOCAQEAEUn6v9d+p6ixTiYm0L4U+wluiXf5 1D/sVBlR/NM8qPlA/oVHtr7R1OR3hZdVxBiwee/pSQftJJhzdNd4zC3UZIsVXFzx qBR9KGK8/zhc2xhXoMy6M5jSv6b8XusFFXLjg0mk+lfMjXtf9o+UHXZdZnuQIv5O rrz07sao60oNvSj9fI65NiLm9dk1MIQbPdl2tnQ5af9CbhnBulXHGx9MgHU7x3pi 2wdoSC5uuIGdrddlVQRVgTC0O21f4vWamPcp1tWHBnlcU34yjyhxTgYkpw1SM9oB 2WT1xIvDDizxFddJRsJRsWNHbYQEWu6WWKCNpTOBv+y2GwPbYmaof4Tlsw== -----END CERTIFICATE-----Generated at Tue Jul 1 16:58:36 2025 by rpki-client