$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/83e5f62a-715e-4a96-9bf3-8b5162e078d4.roa File: 83e5f62a-715e-4a96-9bf3-8b5162e078d4.roa (raw, json) Hash identifier: EVOJjYsLdneegsB3Dx9A0FL2pybMBD4x4ZTipshtan4= Subject key identifier: A9:54:B9:9A:C5:24:8C:13:08:B8:F3:8C:A1:82:35:24:0B:9C:5C:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 18AB5E3E81715C2E0846C78822961DEB851A7AD7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/83e5f62a-715e-4a96-9bf3-8b5162e078d4.roa Signing time: Sat 14 Jun 2025 00:21:19 +0000 ROA not before: Sat 14 Jun 2025 00:21:19 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 216.182.224.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:ab:5e:3e:81:71:5c:2e:08:46:c7:88:22:96:1d:eb:85:1a:7a:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:21:19 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=80299074c49c81add32c09caac774e2a34d19f9030553a59afebde49e6547c19, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:bd:b7:8a:3f:c8:34:11:f7:db:1a:8c:00:3c: 59:b2:74:ca:46:44:6c:0f:00:f4:24:21:95:83:2c: 9d:60:ae:f0:de:a4:50:36:41:06:a9:4d:ec:51:2c: ed:91:cf:9e:65:c1:b2:49:fb:8b:e1:b9:1c:c7:06: f3:e0:6d:58:55:17:15:1e:14:6b:a7:f9:76:50:39: f6:d4:31:76:57:ae:72:55:83:08:48:db:60:71:74: 56:b9:a3:5c:b8:b4:3a:4a:99:d9:cc:0b:b7:3d:4d: e2:16:f3:39:df:6a:ab:9a:e5:17:36:b0:a6:0c:77: a8:50:25:5e:5b:79:cb:a1:7e:b5:d0:c8:f5:50:4e: 5f:80:91:3f:67:4f:c2:f5:75:ab:cd:8e:41:8f:e4: 63:cd:02:4e:68:73:e2:dd:5c:f1:97:69:35:20:2e: 50:a0:8d:00:93:20:89:cd:71:3f:42:d9:a9:fc:84: 05:13:e9:d7:8b:67:a4:23:b8:c9:e7:70:bc:02:60: 2a:eb:36:88:ef:0e:0f:82:b6:0c:b3:08:61:86:87: 9a:0b:e6:b3:2d:a1:31:f1:01:5b:c9:cf:e0:25:32: f6:01:68:80:2c:47:58:8a:7b:15:4d:75:81:91:d6: f2:fa:86:4b:0d:42:56:68:27:48:b1:4e:bb:7b:6d: 5a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:54:B9:9A:C5:24:8C:13:08:B8:F3:8C:A1:82:35:24:0B:9C:5C:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/83e5f62a-715e-4a96-9bf3-8b5162e078d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.182.224.0/21 Signature Algorithm: sha256WithRSAEncryption 74:87:c7:37:f0:64:9f:d9:b6:bf:b1:10:d3:47:c3:40:cf:4c: b0:4d:e9:cd:ac:ff:16:a7:4d:a5:55:17:d7:68:50:dc:9c:e1: 92:21:cb:c6:74:9c:cb:a0:bc:11:39:39:d1:20:34:0a:ab:a3: c0:9c:69:aa:b0:3b:36:ae:12:13:cb:66:08:fa:22:ff:5d:0e: 88:ce:85:b3:bf:7a:80:76:94:42:80:95:a6:2e:6a:52:9f:59: db:48:dd:ea:62:96:00:89:af:f0:2e:a1:47:68:ff:77:7c:24: de:b7:7b:9e:b2:f8:51:a4:35:62:23:a7:d1:81:88:46:5f:be: 9f:4e:0e:d8:43:9a:02:53:b1:0e:11:6b:85:c9:e6:9d:29:78: ce:fb:aa:41:19:57:4c:01:79:b0:4e:4f:8f:8a:a6:95:1a:2a: ae:06:64:7b:c5:f5:b0:f6:33:75:44:9f:86:57:ae:e3:c5:d9: a5:c0:3e:33:a9:c4:25:cf:3b:bb:7e:7c:90:6a:22:c0:d7:73: 49:4a:38:b3:7d:7d:0e:e5:ae:a6:9d:6f:27:2d:28:b9:5f:ff: ff:48:f3:6a:be:2a:07:6a:a6:96:14:97:d8:5c:72:10:76:12: 63:f2:9d:9a:bb:41:39:98:57:f8:5e:70:ca:70:d1:61:2c:48: b2:1f:34:c0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGKtePoFxXC4IRseIIpYd64UaetcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDAyMTE5WhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDI5OTA3NGM0OWM4MWFkZDMyYzA5Y2FhYzc3NGUyYTM0 ZDE5ZjkwMzA1NTNhNTlhZmViZGU0OWU2NTQ3YzE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxvbeKP8g0EffbGowAPFmydMpGRGwPAPQkIZWDLJ1grvDe pFA2QQapTexRLO2Rz55lwbJJ+4vhuRzHBvPgbVhVFxUeFGun+XZQOfbUMXZXrnJV gwhI22BxdFa5o1y4tDpKmdnMC7c9TeIW8znfaqua5Rc2sKYMd6hQJV5becuhfrXQ yPVQTl+AkT9nT8L1davNjkGP5GPNAk5oc+LdXPGXaTUgLlCgjQCTIInNcT9C2an8 hAUT6deLZ6QjuMnncLwCYCrrNojvDg+CtgyzCGGGh5oL5rMtoTHxAVvJz+AlMvYB aIAsR1iKexVNdYGR1vL6hksNQlZoJ0ixTrt7bVrjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqVS5msUkjBMIuPOMoYI1JAucXJowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgzZTVmNjJhLTcxNWUtNGE5Ni05YmYzLThiNTE2MmUwNzhkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPYtuAwDQYJKoZIhvcNAQELBQADggEBAHSHxzfwZJ/Ztr+xENNHw0DPTLBN 6c2s/xanTaVVF9doUNyc4ZIhy8Z0nMugvBE5OdEgNAqro8CcaaqwOzauEhPLZgj6 Iv9dDojOhbO/eoB2lEKAlaYualKfWdtI3epilgCJr/AuoUdo/3d8JN63e56y+FGk NWIjp9GBiEZfvp9ODthDmgJTsQ4Ra4XJ5p0peM77qkEZV0wBebBOT4+KppUaKq4G ZHvF9bD2M3VEn4ZXruPF2aXAPjOpxCXPO7t+fJBqIsDXc0lKOLN9fQ7lrqadbyct KLlf//9I82q+KgdqppYUl9hcchB2EmPynZq7QTmYV/hecMpw0WEsSLIfNMA= -----END CERTIFICATE-----Generated at Tue Jul 1 09:10:11 2025 by rpki-client