$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b551b0fa-4ca7-4e59-b924-6e15a8ffd1ea.roa File: b551b0fa-4ca7-4e59-b924-6e15a8ffd1ea.roa (raw, json) Hash identifier: Q1js+ZqbVka4JtZG794ok7b29RXNW4kkiLmeOkhkrJ8= Subject key identifier: E5:6E:77:CC:E5:B4:8E:AA:CA:03:9D:E5:DE:42:2A:3D:92:93:A0:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B79C6201E425D367758FB4FB68776828108BFBD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b551b0fa-4ca7-4e59-b924-6e15a8ffd1ea.roa Signing time: Tue 24 Jun 2025 00:32:01 +0000 ROA not before: Tue 24 Jun 2025 00:32:01 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 68.232.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:79:c6:20:1e:42:5d:36:77:58:fb:4f:b6:87:76:82:81:08:bf:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:32:01 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=8273f5bb8e4f6a8e9b11e48dcbba957bbce383874fddbd3737dbe768981d30f3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ea:8e:c5:df:64:81:1b:ef:15:0f:0e:52:b9: 8c:9f:59:ed:6e:e9:23:d0:c0:c9:62:8d:f0:48:84: 5b:95:76:51:3d:b3:66:74:44:07:fc:1f:7d:18:94: fe:04:98:6a:b0:23:13:52:9e:0b:7c:d9:6f:bb:1a: 40:9a:e5:8a:dd:7d:4b:a3:67:3f:f3:09:6a:00:57: 3d:bc:91:28:ee:d2:6e:c4:e2:fd:a0:71:b8:23:99: 81:b7:8e:48:20:67:c1:15:2c:81:dc:5f:74:3c:a0: f0:b1:e8:25:31:44:ac:ae:10:00:c8:94:5d:26:66: ea:5f:c0:e4:9c:9b:44:5c:af:78:f0:af:a5:7f:5a: 80:9f:92:06:2d:15:20:da:f8:3d:c6:0a:4d:4a:d6: c9:38:f1:9e:35:a2:66:6f:96:fe:da:13:e6:6f:d3: ee:8b:77:6a:13:0b:2c:12:2c:4d:53:bb:26:18:aa: 67:8c:eb:ea:5e:79:c4:c0:6e:36:28:b3:0e:5f:10: 4a:84:e8:e3:a8:a7:78:d6:59:f8:67:9d:7d:5c:a0: 34:e5:35:91:4f:47:ed:92:8e:30:5f:ab:53:57:05: 74:62:fa:e5:15:72:4a:c7:6f:ec:93:8c:fc:fe:96: fc:c2:fd:e0:0b:16:66:b5:cf:9c:fa:43:d6:af:e1: 89:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:6E:77:CC:E5:B4:8E:AA:CA:03:9D:E5:DE:42:2A:3D:92:93:A0:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b551b0fa-4ca7-4e59-b924-6e15a8ffd1ea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 68.232.112.0/20 Signature Algorithm: sha256WithRSAEncryption 8e:67:5e:da:ad:b0:f8:d2:31:32:88:54:d2:e3:32:39:35:85: 8d:9c:9d:34:a5:24:0b:0b:1c:59:c3:cf:f8:6c:87:6a:5c:15: 35:09:4d:6b:3e:26:bc:2e:da:c2:ab:74:83:5c:d7:92:7f:27: 2f:ca:66:db:56:25:4f:71:bd:56:bc:06:23:6c:c4:b1:ef:21: 8b:f2:ab:95:65:81:46:69:5a:ea:38:dc:dd:85:ff:3d:d5:4d: 28:13:c4:3a:46:35:33:d6:49:c1:ea:e2:ef:98:f2:fa:8d:6b: fe:66:e1:29:50:7b:bc:4a:b0:07:6d:9c:be:df:02:22:d3:22: 59:a4:e1:2a:f8:29:41:c6:da:19:5b:2a:33:dd:f8:71:e3:c4: 30:6b:96:c7:17:06:8e:50:50:42:40:02:40:1b:0f:9a:b4:c3: 98:e1:ac:6c:4f:20:31:83:9f:b4:1c:64:eb:a3:ef:de:dd:ba: 2c:50:a1:90:05:4a:2b:a6:88:18:f6:e8:00:f4:ad:e7:eb:bd: c8:08:91:2a:cb:ee:67:58:83:a4:6c:41:c6:5b:7a:69:cb:bc: b5:c3:27:6a:8e:d2:92:57:31:31:58:66:d2:8e:c7:92:8d:0b: 2c:da:e3:ac:9b:1c:73:05:ea:9e:96:83:3f:76:3d:f3:67:6c: 63:d1:6f:fe -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG3nGIB5CXTZ3WPtPtod2goEIv70wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAzMjAxWhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MjczZjViYjhlNGY2YThlOWIxMWU0OGRjYmJhOTU3YmJj ZTM4Mzg3NGZkZGJkMzczN2RiZTc2ODk4MWQzMGYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDY6o7F32SBG+8VDw5SuYyfWe1u6SPQwMlijfBIhFuVdlE9 s2Z0RAf8H30YlP4EmGqwIxNSngt82W+7GkCa5YrdfUujZz/zCWoAVz28kSju0m7E 4v2gcbgjmYG3jkggZ8EVLIHcX3Q8oPCx6CUxRKyuEADIlF0mZupfwOScm0Rcr3jw r6V/WoCfkgYtFSDa+D3GCk1K1sk48Z41omZvlv7aE+Zv0+6Ld2oTCywSLE1TuyYY qmeM6+peecTAbjYosw5fEEqE6OOop3jWWfhnnX1coDTlNZFPR+2SjjBfq1NXBXRi +uUVckrHb+yTjPz+lvzC/eALFma1z5z6Q9av4YltAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5W53zOW0jqrKA53l3kIqPZKToAQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I1NTFiMGZhLTRjYTctNGU1OS1iOTI0LTZlMTVhOGZmZDFlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARE6HAwDQYJKoZIhvcNAQELBQADggEBAI5nXtqtsPjSMTKIVNLjMjk1hY2c nTSlJAsLHFnDz/hsh2pcFTUJTWs+Jrwu2sKrdINc15J/Jy/KZttWJU9xvVa8BiNs xLHvIYvyq5VlgUZpWuo43N2F/z3VTSgTxDpGNTPWScHq4u+Y8vqNa/5m4SlQe7xK sAdtnL7fAiLTIlmk4Sr4KUHG2hlbKjPd+HHjxDBrlscXBo5QUEJAAkAbD5q0w5jh rGxPIDGDn7QcZOuj797duixQoZAFSiumiBj26AD0refrvcgIkSrL7mdYg6RsQcZb emnLvLXDJ2qO0pJXMTFYZtKOx5KNCyza46ybHHMF6p6Wgz92PfNnbGPRb/4= -----END CERTIFICATE-----Generated at Sun Jun 29 04:32:57 2025 by rpki-client