$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c433a1-52bd-4a34-af35-a61c38d2ae00.roa File: b4c433a1-52bd-4a34-af35-a61c38d2ae00.roa (raw, json) Hash identifier: OFXTf6B6OY9QwqU0EaEIND/DVzcxYujalwxHkyVgqms= Subject key identifier: AC:C3:F4:7C:D9:41:AA:F2:FE:C7:05:72:DC:AC:A7:F1:47:B5:07:D8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D0FEF27FC6D41C3B1A51A71117548EB94B39FFC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c433a1-52bd-4a34-af35-a61c38d2ae00.roa Signing time: Wed 18 Jun 2025 00:20:55 +0000 ROA not before: Wed 18 Jun 2025 00:20:55 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:0f:ef:27:fc:6d:41:c3:b1:a5:1a:71:11:75:48:eb:94:b3:9f:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 18 00:20:55 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=06ce40027a1570482829341ed039bf5dc294f2be863f6917186a9fc0d154f3de, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:84:7c:07:58:ca:f2:c7:f3:ed:54:a2:85:e4: 65:fa:ae:c8:50:5e:55:ec:a3:b9:37:7f:b2:c2:8d: 6c:8b:6e:11:58:46:a6:9f:33:5d:91:38:4b:02:c1: 92:c8:a5:20:c8:15:89:61:49:b1:7b:59:d0:a7:a9: 4b:41:25:41:2a:3b:56:de:d3:e4:e6:32:55:06:fd: 41:6b:16:3a:8a:a3:b8:f5:5d:8e:a9:53:14:12:08: 7c:93:b7:2f:bd:8c:7b:ce:56:89:5e:fc:b2:1e:18: eb:f4:1a:27:92:a5:34:6c:d6:d3:29:30:8f:f1:9e: 14:0b:6b:fa:89:56:ab:12:ca:40:bf:22:5e:6d:58: 3d:7f:05:45:1a:2e:4c:4a:b4:35:46:46:8f:ec:17: e1:55:86:4d:ac:00:37:fd:d2:1d:e4:ad:9a:c4:43: 4e:63:d6:33:35:56:4b:a8:d7:03:1e:9a:69:86:4d: dd:f1:74:5b:68:dc:5a:63:ea:e8:3a:24:f3:0e:bb: 28:c5:9b:aa:c6:39:87:cb:b7:e3:4e:cb:ec:bf:78: 38:7d:95:20:af:20:ba:8b:88:5b:48:b7:67:72:0f: 0a:c6:c9:6b:2b:a8:32:be:ab:b3:f7:c6:50:e1:5a: cb:74:ac:b1:ba:91:55:06:d3:ef:e8:3c:5f:b2:e4: b2:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:C3:F4:7C:D9:41:AA:F2:FE:C7:05:72:DC:AC:A7:F1:47:B5:07:D8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c433a1-52bd-4a34-af35-a61c38d2ae00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.168.0/24 Signature Algorithm: sha256WithRSAEncryption 43:3a:21:6b:d7:bc:be:0e:03:d9:58:5f:5d:f9:48:6b:a0:f7: 42:79:a4:85:ff:23:f3:b4:67:b9:0f:e4:a5:ea:52:a1:d5:e9: 6e:33:dd:f3:08:a4:c6:36:0b:b3:93:a6:12:ea:ee:f5:51:d2: 41:de:22:22:3b:6d:66:7c:8e:00:2d:3b:fd:28:15:26:9e:54: 28:30:ed:4b:a9:a7:05:af:c3:7a:93:40:d5:0b:8a:97:a8:e0: 70:7f:06:a9:ab:14:f5:1d:71:d7:40:f5:94:83:5a:50:14:0f: c2:57:64:f5:aa:d4:90:a4:3d:3e:e0:a3:47:c3:1e:44:4d:f1: 46:e1:46:0a:e4:07:7b:a7:23:3f:98:34:7f:71:aa:01:d2:22: 91:be:d2:75:cc:f5:15:81:65:36:6b:73:0b:be:9d:e4:15:c2: 87:34:3a:fa:f4:4a:2f:49:13:65:cc:a9:29:10:75:d4:91:c7: 5d:74:52:77:28:1e:ba:62:de:7f:66:87:05:08:13:e8:54:63: f8:10:67:17:b7:a2:e2:a5:b6:c2:2e:a1:39:71:9d:45:a3:b3: b2:0d:e4:d0:7f:1d:2f:d9:37:36:5b:d0:54:c7:9c:c7:a2:f9: 33:04:d7:98:dc:df:9d:95:46:28:64:2f:a9:78:b7:88:b6:58: b3:36:f7:be -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULQ/vJ/xtQcOxpRpxEXVI65Szn/wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE4MDAyMDU1WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNmNlNDAwMjdhMTU3MDQ4MjgyOTM0MWVkMDM5YmY1ZGMy OTRmMmJlODYzZjY5MTcxODZhOWZjMGQxNTRmM2RlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCehHwHWMryx/PtVKKF5GX6rshQXlXso7k3f7LCjWyLbhFY RqafM12ROEsCwZLIpSDIFYlhSbF7WdCnqUtBJUEqO1be0+TmMlUG/UFrFjqKo7j1 XY6pUxQSCHyTty+9jHvOVole/LIeGOv0GieSpTRs1tMpMI/xnhQLa/qJVqsSykC/ Il5tWD1/BUUaLkxKtDVGRo/sF+FVhk2sADf90h3krZrEQ05j1jM1Vkuo1wMemmmG Td3xdFto3Fpj6ug6JPMOuyjFm6rGOYfLt+NOy+y/eDh9lSCvILqLiFtIt2dyDwrG yWsrqDK+q7P3xlDhWst0rLG6kVUG0+/oPF+y5LLjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrMP0fNlBqvL+xwVy3Kyn8Ue1B9gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I0YzQzM2ExLTUyYmQtNGEzNC1hZjM1LWE2MWMzOGQyYWUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36gwDQYJKoZIhvcNAQELBQADggEBAEM6IWvXvL4OA9lYX135SGug90J5 pIX/I/O0Z7kP5KXqUqHV6W4z3fMIpMY2C7OTphLq7vVR0kHeIiI7bWZ8jgAtO/0o FSaeVCgw7UuppwWvw3qTQNULipeo4HB/BqmrFPUdcddA9ZSDWlAUD8JXZPWq1JCk PT7go0fDHkRN8UbhRgrkB3unIz+YNH9xqgHSIpG+0nXM9RWBZTZrcwu+neQVwoc0 Ovr0Si9JE2XMqSkQddSRx110UncoHrpi3n9mhwUIE+hUY/gQZxe3ouKltsIuoTlx nUWjs7IN5NB/HS/ZNzZb0FTHnMei+TME15jc352VRihkL6l4t4i2WLM2974= -----END CERTIFICATE-----Generated at Mon Jun 30 19:22:14 2025 by rpki-client