$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a645d1e4-bdce-433f-af8a-d1e1c1010b26.roa File: a645d1e4-bdce-433f-af8a-d1e1c1010b26.roa (raw, json) Hash identifier: lJLIJNgCbojH3FXx0H2Hn0LM0M2ryNWq+3yeOoB3bSM= Subject key identifier: 48:E3:71:EF:9A:45:32:C3:05:E5:40:AD:D0:6D:51:13:7C:44:5E:B3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 521388F142F36AAE6462A28DA11EABEEE562A497 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a645d1e4-bdce-433f-af8a-d1e1c1010b26.roa Signing time: Mon 16 Jun 2025 15:10:14 +0000 ROA not before: Mon 16 Jun 2025 15:10:14 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.157.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:13:88:f1:42:f3:6a:ae:64:62:a2:8d:a1:1e:ab:ee:e5:62:a4:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 16 15:10:14 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=0fe1c5d1fd2820a63386865f2754433be82684abdddd27d5659c9ac9ec9c0900, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:c0:5c:1f:46:94:bf:3d:70:5b:41:41:75:31: ec:56:e1:ad:f3:15:71:ae:ea:a7:1b:1a:8c:f2:36: c8:41:30:5a:1d:f7:7d:91:20:3e:82:8b:a5:b6:2e: d4:56:7c:56:ed:62:98:b6:b9:ed:e9:65:33:fe:d1: 4c:8f:3e:f0:85:99:59:35:20:b1:4c:96:28:2d:da: ee:1a:08:90:5d:92:04:80:af:51:ed:9e:66:50:de: 81:5f:2d:d5:3e:69:7a:da:99:ac:35:f2:7f:ee:fe: 2a:01:34:fb:41:09:10:d5:f0:41:f5:e4:46:c6:3c: 87:d3:c4:b6:08:8f:1c:04:8a:22:b3:eb:c5:7d:e8: 8c:2b:50:71:27:14:a1:c6:b2:f7:81:38:9c:48:0e: 22:d7:a8:21:9f:f2:ee:81:ce:f9:fd:e3:d3:69:a6: 3d:94:3f:31:96:dc:16:d3:2c:e5:bd:60:df:6b:6e: b4:e2:1d:78:1f:ef:40:1b:23:b9:64:c8:cd:b6:49: c2:9a:6e:6f:f6:3e:ef:e3:c7:ee:31:3a:0a:20:9d: 67:ae:05:11:82:59:26:68:2c:ab:6f:39:2b:ad:9a: 2e:33:d6:b8:1e:2a:7e:ff:10:17:0c:a2:30:ab:b2: 0a:06:ea:96:50:79:b7:65:85:fb:45:3f:33:42:51: a9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:E3:71:EF:9A:45:32:C3:05:E5:40:AD:D0:6D:51:13:7C:44:5E:B3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a645d1e4-bdce-433f-af8a-d1e1c1010b26.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.157.21.0/24 Signature Algorithm: sha256WithRSAEncryption 90:23:ca:06:4c:65:ca:d9:c4:c5:33:16:28:e1:8f:1d:c3:01: e5:49:c4:0f:c9:c3:2e:22:d2:1f:a8:90:2a:fc:30:ac:3c:b7: cc:e6:fd:da:a7:4a:0b:22:24:37:27:ff:15:0f:cc:a3:6b:37: ea:09:ba:03:69:3a:b5:d6:60:ef:88:77:ef:13:92:6b:0e:f7: 95:32:0d:ef:73:f4:d7:d7:59:62:8e:19:a5:15:ac:b3:80:06: 94:ca:88:6e:c1:15:f4:c8:df:a1:18:dc:90:1b:12:7c:d8:cc: 9c:6a:d7:47:4c:46:e3:e7:b9:6b:bf:bd:8f:0a:30:20:f6:90: 8c:c1:85:14:ea:10:16:ff:2f:19:16:83:cc:de:3e:d3:93:39: a5:5f:e2:5b:c4:0b:22:99:f5:17:17:f2:db:de:2d:e3:ad:52: e5:13:5b:4e:8d:23:3f:d4:4b:f6:45:e8:aa:25:7c:64:5d:23: 3b:8d:74:42:89:8c:4e:af:7d:b3:87:d5:59:71:2f:8f:3a:94: 34:be:36:ce:7d:3a:f1:67:f1:28:1e:36:7b:ff:45:b2:3b:1d: a9:9b:c6:66:70:b8:13:82:b6:ff:95:2f:62:c4:98:2a:2a:2a: 7e:56:a4:38:c4:cf:44:fd:35:6f:35:97:e1:29:6a:0e:8c:57: 73:4e:ee:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUhOI8ULzaq5kYqKNoR6r7uVipJcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE2MTUxMDE0WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZmUxYzVkMWZkMjgyMGE2MzM4Njg2NWYyNzU0NDMzYmU4 MjY4NGFiZGRkZDI3ZDU2NTljOWFjOWVjOWMwOTAwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiwFwfRpS/PXBbQUF1MexW4a3zFXGu6qcbGozyNshBMFod 932RID6Ci6W2LtRWfFbtYpi2ue3pZTP+0UyPPvCFmVk1ILFMligt2u4aCJBdkgSA r1HtnmZQ3oFfLdU+aXramaw18n/u/ioBNPtBCRDV8EH15EbGPIfTxLYIjxwEiiKz 68V96IwrUHEnFKHGsveBOJxIDiLXqCGf8u6Bzvn949Nppj2UPzGW3BbTLOW9YN9r brTiHXgf70AbI7lkyM22ScKabm/2Pu/jx+4xOgognWeuBRGCWSZoLKtvOSutmi4z 1rgeKn7/EBcMojCrsgoG6pZQebdlhftFPzNCUal7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSONx75pFMsMF5UCt0G1RE3xEXrMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E2NDVkMWU0LWJkY2UtNDMzZi1hZjhhLWQxZTFjMTAxMGIyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADYnRUwDQYJKoZIhvcNAQELBQADggEBAJAjygZMZcrZxMUzFijhjx3DAeVJ xA/Jwy4i0h+okCr8MKw8t8zm/dqnSgsiJDcn/xUPzKNrN+oJugNpOrXWYO+Id+8T kmsO95UyDe9z9NfXWWKOGaUVrLOABpTKiG7BFfTI36EY3JAbEnzYzJxq10dMRuPn uWu/vY8KMCD2kIzBhRTqEBb/LxkWg8zePtOTOaVf4lvECyKZ9RcX8tveLeOtUuUT W06NIz/US/ZF6KolfGRdIzuNdEKJjE6vfbOH1VlxL486lDS+Ns59OvFn8SgeNnv/ RbI7HambxmZwuBOCtv+VL2LEmCoqKn5WpDjEz0T9NW81l+Epag6MV3NO7p0= -----END CERTIFICATE-----Generated at Sun Jun 29 07:32:34 2025 by rpki-client