$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d4ea817-9a30-46eb-adae-ea1411984c84.roa File: 9d4ea817-9a30-46eb-adae-ea1411984c84.roa (raw, json) Hash identifier: FyywOlNze2t4IIp6PQAgPXRFEX28E7LQf3Pmk3Qqr14= Subject key identifier: A2:B3:F8:91:F9:85:79:7C:2F:50:FA:CD:B1:D1:EE:D2:61:85:60:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 03E523DB60A268ED8A288B14612B45DA1E1E03DB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d4ea817-9a30-46eb-adae-ea1411984c84.roa Signing time: Wed 25 Jun 2025 00:11:33 +0000 ROA not before: Wed 25 Jun 2025 00:11:33 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.45.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:e5:23:db:60:a2:68:ed:8a:28:8b:14:61:2b:45:da:1e:1e:03:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 25 00:11:33 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=8c669eb5bb8b9369ea6bdeb0014ef173143ca02383a66e5403660ed2422539a3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3f:02:8c:95:02:1b:8c:c0:7b:61:cc:b7:60: 50:cf:e0:af:b1:dd:11:c5:25:0f:9f:9e:f4:21:7e: 58:bd:c2:6d:58:7c:54:d3:ec:47:39:ad:05:50:1b: 41:c3:61:c7:3a:eb:9f:3c:9a:34:73:f1:ac:26:76: ad:04:df:71:4f:ae:0a:80:7b:a8:bd:7f:a3:b4:a9: 60:f8:df:2b:fb:17:75:a4:57:6d:bb:88:84:53:72: 3f:da:a1:b6:e1:f3:41:6e:ae:bd:02:8d:fe:b7:09: ca:94:88:13:4a:26:1e:e8:7f:8f:f1:96:56:f2:22: 6a:fe:80:8a:d2:bb:00:8a:1c:74:7e:b8:f3:7f:16: 50:45:35:22:3b:9b:49:87:08:b7:0a:3e:f3:d7:d8: b5:e8:a8:5c:7e:3c:57:93:00:d7:02:ce:a7:43:dd: 96:c5:ce:f1:04:78:f0:7b:e0:d8:4e:15:46:31:76: 5b:e6:da:4e:70:6d:d4:7b:c3:7c:7e:eb:b9:b5:10: cf:d5:1e:be:83:58:a9:9e:61:3c:5c:c9:62:34:e2: 6b:8c:27:6c:3b:90:e5:8b:36:51:ce:da:42:5b:d5: fa:79:2c:39:c8:a2:a4:6d:f2:12:91:d3:0d:f5:b2: a8:fe:48:2c:55:a1:29:c6:f0:b4:07:55:b9:8d:83: 7e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:B3:F8:91:F9:85:79:7C:2F:50:FA:CD:B1:D1:EE:D2:61:85:60:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9d4ea817-9a30-46eb-adae-ea1411984c84.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.45.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2e:c0:82:9f:71:82:1e:0c:5a:63:dc:be:2f:b4:d7:ba:03:ac: c2:54:f6:f7:b8:41:6b:19:01:41:a5:12:7f:81:3d:8d:ba:92: 6d:5b:51:f0:d2:9c:97:bc:74:68:60:5b:f8:29:d9:f5:d7:dc: 8b:bf:cf:cd:df:ba:33:b4:33:6b:b1:d5:dc:a3:2d:b8:03:a0: 12:0b:5d:24:a4:fa:7c:75:b4:47:2a:8f:7e:1b:b5:31:7e:80: 46:b1:c9:48:21:02:e5:87:bc:d8:39:4c:0c:5e:82:ed:81:db: 08:fd:c2:63:17:cb:43:a5:8e:03:4d:89:63:31:a3:7e:2a:d1: f7:44:3b:93:4a:72:ae:f0:91:33:92:5f:d2:a3:e9:9a:6c:2b: ae:df:8a:66:f0:9e:ad:6a:b8:73:48:65:1e:d2:2b:18:a7:ba: 58:5c:42:02:1a:c6:b5:a8:7d:1d:22:d6:5a:58:c3:02:fa:24: 0b:26:22:0d:f4:05:9b:16:98:d0:ff:e6:f0:97:a1:8c:f5:1a: e1:37:4c:2d:e3:12:1a:a4:25:f3:a8:f1:38:aa:ba:99:be:8a: 04:87:cf:95:c8:46:a0:98:d5:95:8b:ab:d8:c5:4f:25:bc:2c: 93:61:81:d2:ac:34:f3:0b:99:d2:a6:f7:78:80:5b:fa:56:7d: a6:40:b2:a0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUA+Uj22CiaO2KKIsUYStF2h4eA9swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI1MDAxMTMzWhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YzY2OWViNWJiOGI5MzY5ZWE2YmRlYjAwMTRlZjE3MzE0 M2NhMDIzODNhNjZlNTQwMzY2MGVkMjQyMjUzOWEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVPwKMlQIbjMB7Ycy3YFDP4K+x3RHFJQ+fnvQhfli9wm1Y fFTT7Ec5rQVQG0HDYcc66588mjRz8awmdq0E33FPrgqAe6i9f6O0qWD43yv7F3Wk V227iIRTcj/aobbh80Furr0Cjf63CcqUiBNKJh7of4/xllbyImr+gIrSuwCKHHR+ uPN/FlBFNSI7m0mHCLcKPvPX2LXoqFx+PFeTANcCzqdD3ZbFzvEEePB74NhOFUYx dlvm2k5wbdR7w3x+67m1EM/VHr6DWKmeYTxcyWI04muMJ2w7kOWLNlHO2kJb1fp5 LDnIoqRt8hKR0w31sqj+SCxVoSnG8LQHVbmNg37ZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUorP4kfmFeXwvUPrNsdHu0mGFYNkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkNGVhODE3LTlhMzAtNDZlYi1hZGFlLWVhMTQxMTk4NGM4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoLTANBgkqhkiG9w0BAQsFAAOCAQEALsCCn3GCHgxaY9y+L7TXugOswlT2 97hBaxkBQaUSf4E9jbqSbVtR8NKcl7x0aGBb+CnZ9dfci7/Pzd+6M7Qza7HV3KMt uAOgEgtdJKT6fHW0RyqPfhu1MX6ARrHJSCEC5Ye82DlMDF6C7YHbCP3CYxfLQ6WO A02JYzGjfirR90Q7k0pyrvCRM5Jf0qPpmmwrrt+KZvCerWq4c0hlHtIrGKe6WFxC AhrGtah9HSLWWljDAvokCyYiDfQFmxaY0P/m8JehjPUa4TdMLeMSGqQl86jxOKq6 mb6KBIfPlchGoJjVlYur2MVPJbwsk2GB0qw08wuZ0qb3eIBb+lZ9pkCyoA== -----END CERTIFICATE-----Generated at Tue Jul 1 14:29:09 2025 by rpki-client