$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/940d4db1-8435-4b14-9f65-40384956f3cf.roa File: 940d4db1-8435-4b14-9f65-40384956f3cf.roa (raw, json) Hash identifier: jHj8pR3I2Jv5LJcFJOXMyZ4FzMon8zyDB2Z70VMRTgk= Subject key identifier: 99:29:32:DE:3F:BE:26:B7:BD:9A:94:FC:72:31:D2:4C:E9:EB:15:6C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D4A39400281E59BC1F700B3C9F8EB3C642BB49F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/940d4db1-8435-4b14-9f65-40384956f3cf.roa Signing time: Wed 18 Jun 2025 00:11:09 +0000 ROA not before: Wed 18 Jun 2025 00:11:09 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.51.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:4a:39:40:02:81:e5:9b:c1:f7:00:b3:c9:f8:eb:3c:64:2b:b4:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:11:09 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=b654acd8ce786730470dd93b3db1a41cb6fe50b855e5717d59a14d37c20efe86, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9f:e3:d9:8d:b8:a7:fb:ba:99:b0:a9:05:fb: f8:71:96:44:79:9f:6c:d1:05:94:f5:19:dd:37:1e: f1:1a:15:5a:05:d2:36:1e:c0:e4:55:fc:36:48:c5: 1f:c8:50:f8:76:85:27:c4:52:4f:fe:3f:e7:81:36: 94:e2:e2:db:65:76:38:a8:17:eb:0a:e6:f3:53:7f: ca:94:f9:9d:5e:e3:f3:ba:91:c3:78:53:d7:da:39: 5d:61:8f:e6:14:bb:60:7e:50:f1:39:3e:b0:45:fa: d5:0e:c3:86:82:84:f7:5c:12:af:92:14:e4:80:84: 0f:10:73:fe:e3:8e:58:a0:9b:e3:41:1f:e5:f6:8f: 38:c6:30:ee:36:87:45:91:17:ba:cf:bb:05:85:da: fe:fe:1a:0f:b1:5f:b9:9f:db:30:13:e8:2f:2f:90: 13:01:41:3a:38:08:76:90:53:26:ee:a1:d4:87:c5: bf:bb:96:5f:3f:84:3e:24:a3:0a:a7:36:bd:2b:fe: 1a:c0:0b:17:91:2c:3f:54:09:40:4f:c2:1f:3b:d7: 5e:65:bf:f5:c6:69:3d:5a:07:3a:b1:ae:60:d0:32: 65:39:dc:79:a7:1c:6a:e7:e6:7f:3e:67:c8:9d:fb: 98:fd:54:cd:a8:d5:ca:18:9f:12:a8:ec:7f:49:95: 7a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:29:32:DE:3F:BE:26:B7:BD:9A:94:FC:72:31:D2:4C:E9:EB:15:6C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/940d4db1-8435-4b14-9f65-40384956f3cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.51.0.0/16 Signature Algorithm: sha256WithRSAEncryption 04:bf:e0:ef:64:d4:6d:09:06:6b:07:6a:82:07:6a:c2:a7:10: 67:40:fd:11:c8:75:d7:ce:7a:fe:5f:c0:d9:2a:66:e0:f3:ae: dc:64:59:d3:84:48:76:a1:17:0b:c3:17:c6:41:82:52:27:ac: ec:0f:ba:e9:c6:46:44:51:77:76:a0:dc:be:8f:b7:5e:21:fe: 6a:74:70:7e:f7:1a:4f:86:b3:95:d1:33:3a:30:f5:ee:0d:61: 41:e0:74:9f:f3:a3:07:36:fa:01:6b:48:5e:70:65:f8:0a:3c: 49:3d:6a:06:d5:14:32:93:cf:17:93:b7:63:cf:90:c8:6e:61: 67:e4:d5:a2:46:ca:08:8d:87:16:a2:c4:2e:a3:28:45:ed:a8: 83:bd:ff:36:e8:6a:a6:e7:b4:34:ce:95:64:5f:d7:6f:81:38: 7c:7b:cf:48:e9:06:83:7f:04:96:93:10:be:d9:a7:a9:9c:07: 74:f8:71:61:e8:c0:90:aa:09:5d:f4:d3:3b:5c:80:1b:6f:cd: 48:db:52:13:49:a7:71:1d:ac:b3:8d:5a:69:30:53:34:e3:31: 9a:7c:b8:d5:68:81:8a:15:80:6d:f0:1c:78:6b:46:d6:95:7c: ae:60:ff:74:f9:d1:20:64:fd:b3:50:a3:50:c1:06:ef:55:f5: be:38:08:16 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTUo5QAKB5ZvB9wCzyfjrPGQrtJ8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE4MDAxMTA5WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjU0YWNkOGNlNzg2NzMwNDcwZGQ5M2IzZGIxYTQxY2I2 ZmU1MGI4NTVlNTcxN2Q1OWExNGQzN2MyMGVmZTg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwn+PZjbin+7qZsKkF+/hxlkR5n2zRBZT1Gd03HvEaFVoF 0jYewORV/DZIxR/IUPh2hSfEUk/+P+eBNpTi4ttldjioF+sK5vNTf8qU+Z1e4/O6 kcN4U9faOV1hj+YUu2B+UPE5PrBF+tUOw4aChPdcEq+SFOSAhA8Qc/7jjligm+NB H+X2jzjGMO42h0WRF7rPuwWF2v7+Gg+xX7mf2zAT6C8vkBMBQTo4CHaQUybuodSH xb+7ll8/hD4kowqnNr0r/hrACxeRLD9UCUBPwh87115lv/XGaT1aBzqxrmDQMmU5 3HmnHGrn5n8+Z8id+5j9VM2o1coYnxKo7H9JlXrvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmSky3j++Jre9mpT8cjHSTOnrFWwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0MGQ0ZGIxLTg0MzUtNGIxNC05ZjY1LTQwMzg0OTU2ZjNjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjMzANBgkqhkiG9w0BAQsFAAOCAQEABL/g72TUbQkGawdqggdqwqcQZ0D9 Ech11856/l/A2Spm4POu3GRZ04RIdqEXC8MXxkGCUies7A+66cZGRFF3dqDcvo+3 XiH+anRwfvcaT4azldEzOjD17g1hQeB0n/OjBzb6AWtIXnBl+Ao8ST1qBtUUMpPP F5O3Y8+QyG5hZ+TVokbKCI2HFqLELqMoRe2og73/Nuhqpue0NM6VZF/Xb4E4fHvP SOkGg38ElpMQvtmnqZwHdPhxYejAkKoJXfTTO1yAG2/NSNtSE0mncR2ss41aaTBT NOMxmny41WiBihWAbfAceGtG1pV8rmD/dPnRIGT9s1CjUMEG71X1vjgIFg== -----END CERTIFICATE-----Generated at Fri Jul 4 00:25:02 2025 by rpki-client