$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9cb2c346-369b-4c70-8b2a-9e3ce4acc541.roa File: 9cb2c346-369b-4c70-8b2a-9e3ce4acc541.roa (raw, json) Hash identifier: rtJ4ZdcXO+7WH43+9057yr6K5d4S9wFpagLDD6jEHtw= Subject key identifier: 4B:12:86:02:2F:22:8C:46:27:B4:D1:E2:B6:F6:69:F9:FF:EA:18:E8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2F32620FA999B5E09292361A31CA5066A1DA9E02 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9cb2c346-369b-4c70-8b2a-9e3ce4acc541.roa Signing time: Fri 20 Jun 2025 00:10:16 +0000 ROA not before: Fri 20 Jun 2025 00:10:16 +0000 ROA not after: Fri 25 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 75.45.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:32:62:0f:a9:99:b5:e0:92:92:36:1a:31:ca:50:66:a1:da:9e:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 20 00:10:16 2025 GMT Not After : Jul 25 23:59:59 2025 GMT Subject: serialNumber=7f9963089be4bf2c2b48abb5eca1c37b6e15de0b76fb43a96ff7fb836802d844, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cb:f1:1d:23:60:fa:3e:e8:aa:e8:62:aa:6e: f2:0e:0b:e2:02:5c:70:79:33:3d:36:fa:cd:9b:f6: f5:47:c8:ef:32:5a:a0:76:64:b8:f2:b3:c9:0d:1e: 78:6d:ad:76:db:a7:2a:9d:e0:74:90:b1:c8:44:5a: 23:b9:be:79:ec:66:ee:25:ba:48:b9:f0:b6:2a:a9: 85:d1:0d:bb:b0:c4:ef:35:0a:a8:92:3f:99:2e:d4: b6:10:b6:f1:fc:7f:80:20:ea:84:40:a0:aa:de:5a: 1c:bf:2f:12:fb:55:18:d4:73:36:ad:c2:f4:9b:fa: 49:a7:36:c4:a4:49:29:80:3f:e6:9b:2f:38:84:a7: 05:d9:28:6f:af:67:8a:5d:15:c0:63:66:ac:b9:34: ce:68:52:3f:61:ef:19:22:18:77:6e:0e:9e:02:2a: c3:fd:a0:4b:e2:bd:ef:18:5b:c4:fb:75:74:ca:74: c5:a5:ca:10:93:99:df:25:b5:b3:90:42:9f:0a:94: 3a:2f:53:20:32:46:24:2a:02:7d:3f:ef:d1:f4:bf: 0f:2f:f9:85:44:a7:c5:b6:e3:70:b5:26:ae:66:0a: d8:ea:06:ac:ec:5a:14:12:fd:5c:57:e2:9a:0c:51: 9a:a3:8a:46:59:15:1f:44:7a:d6:68:70:d8:d6:84: ff:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:12:86:02:2F:22:8C:46:27:B4:D1:E2:B6:F6:69:F9:FF:EA:18:E8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9cb2c346-369b-4c70-8b2a-9e3ce4acc541.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.45.128.0/18 Signature Algorithm: sha256WithRSAEncryption b3:3f:d0:8e:59:7e:13:78:a9:08:94:a6:19:92:77:a0:a7:8f: 44:b0:38:7f:1b:13:f8:38:87:61:ab:34:0a:3d:1b:ee:fe:e9: 2f:75:e1:71:d5:15:ea:aa:80:69:cc:c6:5f:c8:af:8e:25:ce: 44:81:44:92:0c:f8:e4:d3:ff:6c:14:2e:ee:cb:83:61:5b:55: a2:55:6a:b2:95:ed:4b:f0:43:d0:b3:57:49:58:b7:f5:2f:a6: d9:7f:52:f3:86:19:0d:6f:4e:d5:76:b9:04:19:e3:c2:b9:20: 21:4a:c0:d8:e0:eb:cb:b9:bf:90:46:4c:6a:a7:99:7b:21:d9: 00:7f:d2:3a:c6:50:3a:38:d7:ae:08:38:0a:9b:b7:ce:fa:b6: 2d:92:6f:b5:db:8a:e7:c1:d5:06:e8:b1:d7:2b:0c:4b:9c:4f: 28:cb:d9:fa:be:b1:10:a6:6e:c1:ee:3d:87:73:05:48:e2:5f: 58:a8:41:01:b2:6c:03:5b:65:4c:19:1e:87:e9:a5:88:98:ad: 44:84:82:45:91:74:bd:08:4b:a0:fe:35:8e:67:32:3f:f4:18: f4:06:aa:7a:b4:77:35:8c:c5:c3:7d:de:c2:a4:60:26:a1:59: b7:bf:f5:89:6d:eb:ab:4b:7f:09:ef:ea:e9:fa:b2:46:80:fa: 64:a2:40:91 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULzJiD6mZteCSkjYaMcpQZqHangIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIwMDAxMDE2WhcNMjUwNzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3Zjk5NjMwODliZTRiZjJjMmI0OGFiYjVlY2ExYzM3YjZl MTVkZTBiNzZmYjQzYTk2ZmY3ZmI4MzY4MDJkODQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4y/EdI2D6Puiq6GKqbvIOC+ICXHB5Mz02+s2b9vVHyO8y WqB2ZLjys8kNHnhtrXbbpyqd4HSQschEWiO5vnnsZu4luki58LYqqYXRDbuwxO81 CqiSP5ku1LYQtvH8f4Ag6oRAoKreWhy/LxL7VRjUczatwvSb+kmnNsSkSSmAP+ab LziEpwXZKG+vZ4pdFcBjZqy5NM5oUj9h7xkiGHduDp4CKsP9oEvive8YW8T7dXTK dMWlyhCTmd8ltbOQQp8KlDovUyAyRiQqAn0/79H0vw8v+YVEp8W243C1Jq5mCtjq BqzsWhQS/VxX4poMUZqjikZZFR9EetZocNjWhP8HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSxKGAi8ijEYntNHitvZp+f/qGOgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzljYjJjMzQ2LTM2OWItNGM3MC04YjJhLTllM2NlNGFjYzU0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZLLYAwDQYJKoZIhvcNAQELBQADggEBALM/0I5ZfhN4qQiUphmSd6Cnj0Sw OH8bE/g4h2GrNAo9G+7+6S914XHVFeqqgGnMxl/Ir44lzkSBRJIM+OTT/2wULu7L g2FbVaJVarKV7UvwQ9CzV0lYt/Uvptl/UvOGGQ1vTtV2uQQZ48K5ICFKwNjg68u5 v5BGTGqnmXsh2QB/0jrGUDo4164IOAqbt876ti2Sb7XbiufB1QbosdcrDEucTyjL 2fq+sRCmbsHuPYdzBUjiX1ioQQGybANbZUwZHofppYiYrUSEgkWRdL0IS6D+NY5n Mj/0GPQGqnq0dzWMxcN93sKkYCahWbe/9Ylt66tLfwnv6un6skaA+mSiQJE= -----END CERTIFICATE-----Generated at Thu Jul 3 00:57:44 2025 by rpki-client