$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9544df28-c3ca-47ba-851e-1178b9c685ec.roa File: 9544df28-c3ca-47ba-851e-1178b9c685ec.roa (raw, json) Hash identifier: WY5Z2mIhw5LsE1w4UZY6i789DbYjwv6KJ094HKCmHEI= Subject key identifier: FB:CE:1F:B7:9A:FB:3F:B2:42:36:88:94:6E:70:B6:F1:CF:EB:67:B4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BCD578E250D3EB14F550491A36616D7237C8A82 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9544df28-c3ca-47ba-851e-1178b9c685ec.roa Signing time: Mon 23 Jun 2025 15:51:18 +0000 ROA not before: Mon 23 Jun 2025 15:51:18 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 96.0.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:cd:57:8e:25:0d:3e:b1:4f:55:04:91:a3:66:16:d7:23:7c:8a:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:51:18 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=204095c8db03f8a9a7c48388fc277987efc6d16e54408282fe980ae05967cf8f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:46:5e:86:b5:c5:bc:6f:96:bf:d5:74:23:02: 02:09:66:2d:9e:a5:9b:f0:cc:2e:ae:37:a2:66:77: e3:c4:e8:6f:e2:4a:70:ec:47:61:7f:6a:24:d1:f4: 1b:ed:65:e8:42:43:62:bd:b8:a7:fc:59:e8:05:77: 04:1b:d9:44:a5:20:88:ae:fc:5c:31:7e:c8:81:7b: c3:4f:74:55:98:fb:8d:d4:98:bf:91:99:e3:0f:c5: 9e:73:50:99:86:62:09:70:63:1f:20:fb:88:59:96: d8:9e:12:ef:4a:7f:1b:55:09:b9:31:39:66:c6:56: bd:d0:86:7f:1d:9b:6e:cb:d8:4d:99:22:7e:ad:bc: 8c:c4:27:69:12:5c:fa:80:49:4f:1f:d7:46:a3:d4: 85:56:ed:55:78:1f:46:0e:18:a6:6e:ee:0d:ed:73: b0:19:cb:7a:ae:35:8a:c0:9e:ee:c7:d4:16:f4:3e: 52:e0:42:c1:4b:1e:f8:8a:c7:4d:5d:09:8f:3b:0a: 1f:cd:e4:05:39:83:0b:ea:23:6d:14:29:1b:16:ee: 6a:09:f0:a1:6c:c4:c4:58:bc:b4:0d:5d:b4:bf:8d: 5e:25:7c:e5:15:03:1a:ad:9e:5c:bd:0c:81:a8:70: b0:ea:fe:e0:2e:23:ea:5a:e4:dc:61:2a:b8:b8:4a: bd:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:CE:1F:B7:9A:FB:3F:B2:42:36:88:94:6E:70:B6:F1:CF:EB:67:B4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9544df28-c3ca-47ba-851e-1178b9c685ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.48.0/21 Signature Algorithm: sha256WithRSAEncryption 71:18:80:09:3b:6d:eb:29:18:28:84:ce:41:fd:32:dc:bf:4d: 80:f9:d1:6a:25:6f:50:82:65:67:61:be:59:88:27:ae:3c:2e: df:1f:d1:e1:fb:b7:7f:d3:54:b5:c4:b1:ca:aa:04:f6:09:5d: 12:34:7c:95:15:59:81:07:ee:5b:fe:69:2b:dd:c2:16:ed:1f: 40:1f:60:46:4d:0a:b0:82:0b:06:9b:da:7b:3f:0b:67:b3:ab: df:97:e0:28:40:42:c4:ce:8c:3d:a3:c4:a2:c8:e5:d4:8f:a3: cd:71:00:73:41:e8:b0:d2:d1:64:11:c0:a7:a0:20:f6:4c:86: 65:df:07:49:84:f2:c4:e3:6a:07:99:74:ee:dd:ea:46:0a:2e: dc:14:2d:ff:96:81:0d:8d:c0:c3:75:c3:6b:b6:1d:40:38:54: 17:c4:7c:bb:ee:f0:3f:91:7b:a2:bc:96:76:cf:11:27:c6:06: dc:8c:8d:9a:96:88:62:09:2a:e1:02:4a:9a:a9:4a:78:52:9d: cf:04:d9:ef:56:cf:51:a1:8d:a8:02:e4:37:15:12:33:a1:43: 8a:63:44:10:01:53:4d:01:ce:b4:e9:ad:ed:5d:0a:54:95:b9: 29:8f:23:c0:07:21:01:3d:ba:2f:9a:b5:21:b4:ec:41:3a:e6: d3:1d:df:7b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa81XjiUNPrFPVQSRo2YW1yN8ioIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTU1MTE4WhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDQwOTVjOGRiMDNmOGE5YTdjNDgzODhmYzI3Nzk4N2Vm YzZkMTZlNTQ0MDgyODJmZTk4MGFlMDU5NjdjZjhmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbRl6GtcW8b5a/1XQjAgIJZi2epZvwzC6uN6Jmd+PE6G/i SnDsR2F/aiTR9BvtZehCQ2K9uKf8WegFdwQb2USlIIiu/FwxfsiBe8NPdFWY+43U mL+RmeMPxZ5zUJmGYglwYx8g+4hZltieEu9KfxtVCbkxOWbGVr3Qhn8dm27L2E2Z In6tvIzEJ2kSXPqASU8f10aj1IVW7VV4H0YOGKZu7g3tc7AZy3quNYrAnu7H1Bb0 PlLgQsFLHviKx01dCY87Ch/N5AU5gwvqI20UKRsW7moJ8KFsxMRYvLQNXbS/jV4l fOUVAxqtnly9DIGocLDq/uAuI+pa5NxhKri4Sr0RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+84ft5r7P7JCNoiUbnC28c/rZ7QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1NDRkZjI4LWMzY2EtNDdiYS04NTFlLTExNzhiOWM2ODVlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgADAwDQYJKoZIhvcNAQELBQADggEBAHEYgAk7bespGCiEzkH9Mty/TYD5 0Wolb1CCZWdhvlmIJ648Lt8f0eH7t3/TVLXEscqqBPYJXRI0fJUVWYEH7lv+aSvd whbtH0AfYEZNCrCCCwab2ns/C2ezq9+X4ChAQsTOjD2jxKLI5dSPo81xAHNB6LDS 0WQRwKegIPZMhmXfB0mE8sTjageZdO7d6kYKLtwULf+WgQ2NwMN1w2u2HUA4VBfE fLvu8D+Re6K8lnbPESfGBtyMjZqWiGIJKuECSpqpSnhSnc8E2e9Wz1GhjagC5DcV EjOhQ4pjRBABU00BzrTpre1dClSVuSmPI8AHIQE9ui+atSG07EE65tMd33s= -----END CERTIFICATE-----Generated at Tue Jul 1 18:25:50 2025 by rpki-client