$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9025971-4f0f-4ad4-9ab8-6448dc5b46bd.roa File: c9025971-4f0f-4ad4-9ab8-6448dc5b46bd.roa (raw, json) Hash identifier: dKAILFTt7PIbHaVlZOse4hRSp0eBIs0LLdawSgw4Frg= Subject key identifier: 63:78:33:81:F8:B8:B0:73:4B:3F:B1:AA:C4:14:C1:B7:11:CD:C3:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30C59EF7AC5E6418C7457F76E0813549F87849B3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9025971-4f0f-4ad4-9ab8-6448dc5b46bd.roa Signing time: Tue 24 Jun 2025 00:00:35 +0000 ROA not before: Tue 24 Jun 2025 00:00:35 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.64.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:c5:9e:f7:ac:5e:64:18:c7:45:7f:76:e0:81:35:49:f8:78:49:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:00:35 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=a98eb10c7018ac32d3454874ca7d51f4fdbd451578146d640c93ae4339566b55, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3d:db:00:e4:c2:4f:95:ec:39:d1:5d:af:5c: ae:e4:8a:01:80:e5:54:e8:95:6a:f1:cb:6f:e2:e3: f4:fb:bc:94:59:0e:d9:ed:cc:47:15:4f:c3:32:06: 5c:08:d8:79:37:22:80:44:8f:0b:13:06:9b:a1:fd: b4:87:ab:13:75:de:51:15:1e:bf:8b:b8:95:98:18: a3:71:00:df:81:40:82:11:9f:2e:76:2a:8b:dc:74: 48:52:c9:30:79:0d:44:6c:b6:ae:de:22:e4:70:fa: 57:69:a7:c2:b6:f2:bc:f9:44:90:6d:32:50:56:cc: d6:23:9b:5e:bb:50:ed:ff:dc:f2:af:e8:d8:95:f9: 95:56:08:19:a3:cb:e8:36:7a:6b:1e:c1:db:1e:9f: 91:48:99:2f:c0:10:bd:4c:d6:9e:8f:a6:66:f7:22: 7a:5c:22:1c:91:6b:21:b0:c6:3c:c6:13:7f:02:4d: 85:e1:3b:7d:1e:73:9c:b2:22:aa:c7:40:92:28:81: 68:67:8c:76:7a:26:2a:b3:5c:91:0b:fb:a1:db:e0: 86:13:15:90:05:97:27:c5:40:f5:ba:43:c9:cf:c9: 26:cb:7a:ae:69:2d:93:a3:d1:1c:ac:f8:19:ba:87: af:5f:4d:8c:2c:0e:a8:68:f0:59:3c:9b:2d:e6:86: 6f:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:78:33:81:F8:B8:B0:73:4B:3F:B1:AA:C4:14:C1:B7:11:CD:C3:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9025971-4f0f-4ad4-9ab8-6448dc5b46bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.64.0.0/17 Signature Algorithm: sha256WithRSAEncryption 93:c6:d0:24:fd:96:72:12:5a:5b:8e:0a:18:47:94:cc:5d:10: 2e:c2:9a:a0:e0:23:d3:12:2b:1f:99:1f:8a:62:59:61:cd:92: 34:fd:97:4e:5c:d7:c8:0a:9b:c9:4e:32:61:2c:bb:0a:c0:31: 06:c3:95:d0:d9:cb:b0:78:dc:c9:0e:73:0b:c5:ec:a7:06:cf: f1:56:9a:7f:e3:b5:91:30:23:d1:49:ea:81:b4:f4:00:09:db: 8c:7d:70:01:68:c8:ed:b9:6f:97:b6:25:6e:5e:a6:2b:f5:65: 84:db:b8:ee:63:18:91:94:48:6c:41:62:b7:19:dd:58:99:c1: 20:7d:68:3d:4b:38:39:f9:82:77:ee:09:92:b7:31:ec:93:6f: cc:c1:2c:45:f7:85:ed:51:92:cc:52:51:1d:cc:31:c8:46:e1: a5:17:9b:d3:bb:bf:bf:e0:68:3b:44:bf:45:75:ab:ab:bc:7c: ea:5d:ff:8e:6a:63:32:8a:44:cf:5b:47:07:b9:18:1b:1e:e6: 26:79:bc:3a:0b:39:29:b3:10:eb:58:7f:f4:a4:7a:9b:4a:ad: ed:19:dc:76:01:63:fa:dd:44:1d:03:47:19:5d:bc:96:6d:c3: 64:41:12:42:35:c4:14:e2:dc:ce:91:a0:83:7c:c8:cc:7f:51: bd:2e:47:5d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMMWe96xeZBjHRX924IE1Sfh4SbMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAwMDM1WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhOThlYjEwYzcwMThhYzMyZDM0NTQ4NzRjYTdkNTFmNGZk YmQ0NTE1NzgxNDZkNjQwYzkzYWU0MzM5NTY2YjU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9PdsA5MJPlew50V2vXK7kigGA5VTolWrxy2/i4/T7vJRZ DtntzEcVT8MyBlwI2Hk3IoBEjwsTBpuh/bSHqxN13lEVHr+LuJWYGKNxAN+BQIIR ny52KovcdEhSyTB5DURstq7eIuRw+ldpp8K28rz5RJBtMlBWzNYjm167UO3/3PKv 6NiV+ZVWCBmjy+g2emsewdsen5FImS/AEL1M1p6Ppmb3InpcIhyRayGwxjzGE38C TYXhO30ec5yyIqrHQJIogWhnjHZ6JiqzXJEL+6Hb4IYTFZAFlyfFQPW6Q8nPySbL eq5pLZOj0Rys+Bm6h69fTYwsDqho8Fk8my3mhm+fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUY3gzgfi4sHNLP7GqxBTBtxHNw6YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5MDI1OTcxLTRmMGYtNGFkNC05YWI4LTY0NDhkYzViNDZiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfYQAAwDQYJKoZIhvcNAQELBQADggEBAJPG0CT9lnISWluOChhHlMxdEC7C mqDgI9MSKx+ZH4piWWHNkjT9l05c18gKm8lOMmEsuwrAMQbDldDZy7B43MkOcwvF 7KcGz/FWmn/jtZEwI9FJ6oG09AAJ24x9cAFoyO25b5e2JW5epiv1ZYTbuO5jGJGU SGxBYrcZ3ViZwSB9aD1LODn5gnfuCZK3MeyTb8zBLEX3he1RksxSUR3MMchG4aUX m9O7v7/gaDtEv0V1q6u8fOpd/45qYzKKRM9bRwe5GBse5iZ5vDoLOSmzEOtYf/Sk eptKre0Z3HYBY/rdRB0DRxldvJZtw2RBEkI1xBTi3M6RoIN8yMx/Ub0uR10= -----END CERTIFICATE-----Generated at Sun Jun 29 20:46:16 2025 by rpki-client