$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84098119-db6f-400e-8b50-d3b7152181be.roa File: 84098119-db6f-400e-8b50-d3b7152181be.roa (raw, json) Hash identifier: ekMO59U0Dy4HWzhEwLtPpURhgFgYi1mWBWXbl5YFUNI= Subject key identifier: FC:E5:6C:13:B6:B9:E7:0D:4E:76:F2:EE:3C:A2:11:BF:95:48:F6:58 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2C3FA7638549284FCB870E8B3EEECB2FEC0BEDC7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84098119-db6f-400e-8b50-d3b7152181be.roa Signing time: Tue 24 Jun 2025 00:01:43 +0000 ROA not before: Tue 24 Jun 2025 00:01:43 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 166.108.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:3f:a7:63:85:49:28:4f:cb:87:0e:8b:3e:ee:cb:2f:ec:0b:ed:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:01:43 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=4cb1aea6ee526d1e7edb317957e6ee9123467798741a6243460ec80130a03d21, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9d:80:12:75:2b:22:06:5e:dc:d3:dc:2c:aa: f3:34:6d:b4:4c:16:3f:4d:ee:e9:f6:27:74:0c:88: e7:79:73:f0:57:1d:86:33:f5:77:c8:bf:6d:94:6c: 81:ee:7e:78:b7:52:e4:10:23:88:33:9d:21:e0:5f: e8:66:96:0b:23:df:8c:e2:f6:45:18:d7:0d:90:5c: 22:2d:a8:8f:63:a2:0d:6a:be:a5:71:74:6a:1a:a4: f0:cc:78:3c:e4:6d:13:1e:dc:e2:4f:5e:9f:55:8a: af:00:71:f3:73:ac:52:0b:81:e2:44:e5:77:68:d3: 11:77:33:ad:db:4a:b2:42:ec:e0:dc:2a:c7:71:41: 79:fc:5c:f6:b5:44:77:1e:89:d4:a6:01:1c:c8:28: ed:d9:e6:c5:a3:05:06:5c:3d:ec:6b:37:af:f9:50: 29:ab:0f:74:b8:f9:5d:c2:83:db:79:fc:1c:a0:50: 49:c5:1c:32:4c:77:b2:75:d7:66:c4:05:0a:bd:45: de:c5:2c:30:1e:b4:78:e4:c3:6b:1c:b5:2b:0a:d6: b4:fd:c5:3f:6e:da:1b:db:64:d3:59:0a:0e:99:61: 64:af:3f:de:13:2b:59:f6:65:81:37:eb:fa:69:76: 71:ef:bf:91:07:b5:f3:a3:34:fd:90:c3:32:1b:d8: f1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:E5:6C:13:B6:B9:E7:0D:4E:76:F2:EE:3C:A2:11:BF:95:48:F6:58 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84098119-db6f-400e-8b50-d3b7152181be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 166.108.0.0/19 Signature Algorithm: sha256WithRSAEncryption 82:70:82:c3:3c:b1:27:74:bf:d7:30:97:90:2a:a0:87:6c:82: ea:6c:19:b1:90:37:50:16:bb:97:77:f9:7b:19:81:60:2d:e2: 71:27:d6:95:c6:83:cb:e1:bd:f1:7f:4b:ab:8c:3d:fa:35:8a: 16:fc:7f:6a:f3:a9:94:cf:7b:de:c6:40:1a:b1:ef:64:74:b8: 62:19:1a:93:9d:a6:02:07:07:eb:74:b8:da:08:32:1a:5b:21: b9:6d:55:aa:1e:bb:ac:65:f3:52:dd:7d:f1:52:e8:5f:45:1d: 23:d0:54:04:fd:c5:f5:25:a3:ae:53:fd:46:66:35:ae:97:ed: 15:16:7d:b1:50:4c:5e:98:ee:12:6d:28:04:e4:c0:6b:e8:8f: cd:ce:c5:e8:58:d0:57:ee:f4:de:61:94:86:a7:71:ff:f9:a6: f1:0d:52:d7:f9:27:fa:af:45:67:f7:f5:07:35:0b:1b:96:e0: 62:30:6f:fe:b8:60:0b:80:09:2c:84:23:61:57:64:59:29:60: 08:c4:ad:c0:35:39:03:6d:f6:39:30:5a:42:33:48:0e:a6:34: b7:85:89:98:4e:ee:25:9e:c9:02:ee:1d:72:40:4b:68:63:44: 59:d2:15:c0:e4:fb:23:cf:bc:a7:dd:63:dc:5e:d7:74:57:f9: 8a:5c:81:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULD+nY4VJKE/Lhw6LPu7LL+wL7ccwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAwMTQzWhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2IxYWVhNmVlNTI2ZDFlN2VkYjMxNzk1N2U2ZWU5MTIz NDY3Nzk4NzQxYTYyNDM0NjBlYzgwMTMwYTAzZDIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClnYASdSsiBl7c09wsqvM0bbRMFj9N7un2J3QMiOd5c/BX HYYz9XfIv22UbIHufni3UuQQI4gznSHgX+hmlgsj34zi9kUY1w2QXCItqI9jog1q vqVxdGoapPDMeDzkbRMe3OJPXp9Viq8AcfNzrFILgeJE5Xdo0xF3M63bSrJC7ODc KsdxQXn8XPa1RHceidSmARzIKO3Z5sWjBQZcPexrN6/5UCmrD3S4+V3Cg9t5/Byg UEnFHDJMd7J112bEBQq9Rd7FLDAetHjkw2sctSsK1rT9xT9u2hvbZNNZCg6ZYWSv P94TK1n2ZYE36/ppdnHvv5EHtfOjNP2QwzIb2PErAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/OVsE7a55w1OdvLuPKIRv5VI9lgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0MDk4MTE5LWRiNmYtNDAwZS04YjUwLWQzYjcxNTIxODFiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWmbAAwDQYJKoZIhvcNAQELBQADggEBAIJwgsM8sSd0v9cwl5AqoIdsgups GbGQN1AWu5d3+XsZgWAt4nEn1pXGg8vhvfF/S6uMPfo1ihb8f2rzqZTPe97GQBqx 72R0uGIZGpOdpgIHB+t0uNoIMhpbIbltVaoeu6xl81LdffFS6F9FHSPQVAT9xfUl o65T/UZmNa6X7RUWfbFQTF6Y7hJtKATkwGvoj83OxehY0Ffu9N5hlIancf/5pvEN Utf5J/qvRWf39Qc1CxuW4GIwb/64YAuACSyEI2FXZFkpYAjErcA1OQNt9jkwWkIz SA6mNLeFiZhO7iWeyQLuHXJAS2hjRFnSFcDk+yPPvKfdY9xe13RX+Ypcgag= -----END CERTIFICATE-----Generated at Tue Jul 1 15:03:18 2025 by rpki-client