$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c57f3080-c868-4c69-a23e-8d9d7dce91cd.roa File: c57f3080-c868-4c69-a23e-8d9d7dce91cd.roa (raw, json) Hash identifier: UDmIfo85mWpI9l3GFDIOVfWYGttfzkwCnnCQakknGRM= Subject key identifier: 52:4C:7A:59:11:CE:0F:07:D4:21:17:A8:94:D8:A4:F6:64:26:1A:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 16625D85116A0C30D9FFCB51606523861E8EEB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c57f3080-c868-4c69-a23e-8d9d7dce91cd.roa Signing time: Sat 21 Jun 2025 00:01:49 +0000 ROA not before: Sat 21 Jun 2025 00:01:49 +0000 ROA not after: Sat 26 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.130.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:62:5d:85:11:6a:0c:30:d9:ff:cb:51:60:65:23:86:1e:8e:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 21 00:01:49 2025 GMT Not After : Jul 26 23:59:59 2025 GMT Subject: serialNumber=e8be11396b8a9f7374af53c10c545c0257433403efaae63956b66222735cab09, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:a7:0e:52:75:ae:59:d1:dc:4c:e1:de:e3:94: fd:8a:eb:7b:88:79:aa:70:4b:4f:46:b3:87:dd:61: 35:31:19:13:ed:3b:ef:4f:a2:63:f3:3c:4e:8d:66: 0c:98:e4:69:ab:61:f8:11:95:61:49:a6:85:35:64: 81:2a:1b:a1:8b:d3:66:66:54:e9:44:68:32:4f:05: aa:1b:13:d1:14:c9:8a:9d:eb:a1:92:b3:e4:c7:76: 2a:0e:c6:6c:36:4d:60:28:58:e0:32:1e:ce:bc:f5: a0:60:28:cf:5f:0d:c6:28:ba:68:6f:c8:a4:07:e2: 5a:7c:6c:9e:ed:02:ff:0f:01:4e:fb:c8:38:bf:29: ab:92:00:89:22:ab:83:7b:b9:c8:83:34:03:55:4e: 02:4e:2c:ef:0e:67:0f:0f:ec:f6:40:f8:f3:d9:ee: e1:7f:24:24:e4:da:f0:78:47:2d:15:51:69:44:95: 42:b1:a7:ce:4e:db:42:f2:d1:95:24:b6:82:70:fc: cf:e3:37:77:d9:29:e9:08:3b:06:7a:60:ef:97:17: 7b:9a:5e:36:f7:2a:cf:76:f7:d5:71:c0:39:89:f4: d9:a9:54:24:42:22:9c:f5:be:21:e3:21:c3:ec:1a: ac:8f:98:cf:48:80:b6:2a:26:4c:6b:c2:4b:8f:3d: 2f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:4C:7A:59:11:CE:0F:07:D4:21:17:A8:94:D8:A4:F6:64:26:1A:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c57f3080-c868-4c69-a23e-8d9d7dce91cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.130.0.0/16 Signature Algorithm: sha256WithRSAEncryption 92:fa:6a:65:c2:af:c4:b2:d2:f5:b4:2a:07:c9:0a:23:a9:da: 18:92:28:08:20:a9:87:d2:ab:aa:1d:39:a5:d8:07:b6:de:a1: 82:65:90:cf:02:59:c9:8d:79:ff:29:0a:33:f0:ef:b3:3b:b1: c1:53:a5:7d:af:f7:1a:69:09:7f:7f:5c:53:27:d8:56:61:33: 40:0e:c8:db:88:14:a4:e0:9f:59:43:0b:53:69:3a:e0:13:8f: 30:ca:f1:b9:cc:03:d6:dc:81:33:3e:32:7e:3a:7f:fd:d9:00: f8:64:ef:a8:7a:52:cc:85:6a:b7:45:c2:a3:11:94:01:d0:64: 3b:f8:8d:1b:54:7a:2e:13:63:30:8d:3d:6f:90:81:25:33:93: 8a:8a:00:a9:ca:ff:2b:5b:57:86:8e:59:b6:36:d7:c3:68:86: 4d:9b:6d:80:10:a5:54:50:5a:27:38:f7:bf:b2:22:f1:a3:28: 7e:ef:01:fb:df:22:e0:00:c4:c7:3b:71:f5:b1:54:f1:01:9b: f0:3e:aa:77:bd:5d:f4:5b:e4:ca:92:55:ba:a2:9c:8b:93:fd: 5b:a2:75:ee:b2:47:23:9a:6f:53:31:b8:81:76:0d:95:3f:37: c2:fd:5d:3d:97:85:e7:78:b0:0b:f6:52:fc:6a:17:5f:56:82: 34:97:75:9e -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITFmJdhRFqDDDZ/8tRYGUjhh6O6zANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA2MjEwMDAxNDlaFw0yNTA3MjYyMzU5NTla MHoxSTBHBgNVBAUTQGU4YmUxMTM5NmI4YTlmNzM3NGFmNTNjMTBjNTQ1YzAyNTc0 MzM0MDNlZmFhZTYzOTU2YjY2MjIyNzM1Y2FiMDkxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAO6nDlJ1rlnR3Ezh3uOU/Yrre4h5qnBLT0azh91hNTEZE+07 70+iY/M8To1mDJjkaath+BGVYUmmhTVkgSoboYvTZmZU6URoMk8FqhsT0RTJip3r oZKz5Md2Kg7GbDZNYChY4DIezrz1oGAoz18Nxii6aG/IpAfiWnxsnu0C/w8BTvvI OL8pq5IAiSKrg3u5yIM0A1VOAk4s7w5nDw/s9kD489nu4X8kJOTa8HhHLRVRaUSV QrGnzk7bQvLRlSS2gnD8z+M3d9kp6Qg7Bnpg75cXe5peNvcqz3b31XHAOYn02alU JEIinPW+IeMhw+warI+Yz0iAtiomTGvCS489L3sCAwEAAaOCArAwggKsMB0GA1Ud DgQWBBRSTHpZEc4PB9QhF6iU2KT2ZCYaBjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvYzU3ZjMwODAtYzg2OC00YzY5LWEyM2UtOGQ5ZDdkY2U5MWNkLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDABCCMA0GCSqGSIb3DQEBCwUAA4IBAQCS+mplwq/EstL1tCoHyQojqdoYkigI IKmH0quqHTml2Ae23qGCZZDPAlnJjXn/KQoz8O+zO7HBU6V9r/caaQl/f1xTJ9hW YTNADsjbiBSk4J9ZQwtTaTrgE48wyvG5zAPW3IEzPjJ+On/92QD4ZO+oelLMhWq3 RcKjEZQB0GQ7+I0bVHouE2MwjT1vkIElM5OKigCpyv8rW1eGjlm2NtfDaIZNm22A EKVUUFonOPe/siLxoyh+7wH73yLgAMTHO3H1sVTxAZvwPqp3vV30W+TKklW6opyL k/1bonXuskcjmm9TMbiBdg2VPzfC/V09l4XneLAL9lL8ahdfVoI0l3We -----END CERTIFICATE-----Generated at Sun Jun 29 07:42:05 2025 by rpki-client