$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf4c0d6a-87e1-4500-994c-6d67c6dffa61.roa File: cf4c0d6a-87e1-4500-994c-6d67c6dffa61.roa (raw, json) Hash identifier: +ujO1irVGyNhx2qBxqBxwRTYPAZv7CgpDYqFepeYr4s= Subject key identifier: E8:10:8B:0A:51:F4:6B:C1:48:5F:1A:C7:41:28:85:F8:FB:2A:9B:E9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1FB431BC60B115C17B6A6A9E3D23C01797B7FC69 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf4c0d6a-87e1-4500-994c-6d67c6dffa61.roa Signing time: Sat 28 Jun 2025 00:00:18 +0000 ROA not before: Sat 28 Jun 2025 00:00:18 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 108.171.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:b4:31:bc:60:b1:15:c1:7b:6a:6a:9e:3d:23:c0:17:97:b7:fc:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:00:18 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=fa0fb45336912fe585c023195e3fd8b6152cdc539e980ce247609c2cdf3bc9e9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0e:53:7b:96:b2:ab:3a:49:6b:08:ae:35:c8: bb:12:da:90:ba:03:57:aa:25:48:87:fa:89:31:17: 0f:48:c8:c2:32:a3:d3:b1:29:f9:2d:e2:eb:63:55: b2:f4:e1:e9:92:72:a5:8e:06:26:ca:12:d7:1e:e1: ad:28:63:99:20:dc:1c:18:f8:a0:ed:5d:12:dc:0d: 77:da:05:71:84:71:06:51:f5:85:27:92:1c:0a:ae: 77:aa:71:d1:bd:97:d5:1a:df:25:a8:fd:e0:a6:82: 1b:e0:d8:e7:c5:29:29:53:03:6b:3d:cd:b7:84:ab: f5:d7:08:54:a8:c4:73:d6:fb:91:b2:36:08:86:7b: b6:a0:25:c6:8c:a8:b3:bf:57:c4:7b:d3:b5:65:f3: c4:d2:e3:92:f1:2a:b6:6d:e8:11:13:76:68:02:26: ba:26:ed:96:76:ac:aa:d8:2d:ec:9e:fd:46:91:56: 8d:5f:ee:b2:3f:41:4b:bf:2b:ef:68:b4:ea:ed:3b: 18:f2:88:7f:f5:44:7a:1a:89:57:54:45:ab:84:57: a3:09:44:86:e2:25:73:a9:8f:1f:8b:35:71:75:5e: ba:a0:ab:54:fe:1a:61:7e:97:b0:5b:e7:6f:3c:39: cf:d1:f5:8f:31:2d:4c:ae:de:d6:06:91:5b:12:d2: 5a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:10:8B:0A:51:F4:6B:C1:48:5F:1A:C7:41:28:85:F8:FB:2A:9B:E9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf4c0d6a-87e1-4500-994c-6d67c6dffa61.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.171.240.0/20 Signature Algorithm: sha256WithRSAEncryption 17:cd:c8:85:39:00:a6:ea:c3:95:a7:9b:97:ef:bd:1f:93:a6: e7:c9:1f:68:7d:13:68:2d:da:40:ef:8a:b0:d4:e6:62:aa:a1: c9:34:25:05:3d:d7:2d:f4:1c:f7:a2:2f:dc:a4:7f:d4:c5:6e: 59:1c:98:da:36:d0:1a:b4:73:e3:5b:90:18:e8:47:08:91:71: 4e:b2:e0:7e:4d:88:a4:30:90:ab:48:fc:7b:5e:f6:ca:d0:a4: 40:37:56:f9:e7:83:16:0c:6b:a5:f1:3e:74:05:65:5d:85:42: 09:57:07:9c:e7:7b:be:e0:d5:e2:ad:0f:6b:9c:ff:4d:cf:9c: b8:aa:7b:7e:92:0c:f5:7e:bc:ee:69:78:7a:9e:8a:b2:e8:26: 6b:9f:18:9f:5e:ac:f1:46:79:c5:4b:c3:56:40:10:1a:24:d1: 8e:2d:56:29:5b:b9:59:77:f8:38:5b:3a:4b:04:54:7e:2a:93: d2:de:93:85:75:72:39:11:65:e8:ae:ac:ab:ca:f5:bc:ea:5a: 25:a6:de:8f:9b:b2:62:c5:0d:a6:bc:e1:4a:b1:21:55:a1:60: 7d:9f:5d:70:65:9f:2e:c0:a3:98:07:c5:7d:0a:55:5a:83:a6: ca:08:75:15:2b:a8:6e:00:df:57:20:f5:72:a0:fe:43:0a:fd: 4b:da:25:79 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH7QxvGCxFcF7amqePSPAF5e3/GkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDAwMDE4WhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTBmYjQ1MzM2OTEyZmU1ODVjMDIzMTk1ZTNmZDhiNjE1 MmNkYzUzOWU5ODBjZTI0NzYwOWMyY2RmM2JjOWU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmDlN7lrKrOklrCK41yLsS2pC6A1eqJUiH+okxFw9IyMIy o9OxKfkt4utjVbL04emScqWOBibKEtce4a0oY5kg3BwY+KDtXRLcDXfaBXGEcQZR 9YUnkhwKrneqcdG9l9Ua3yWo/eCmghvg2OfFKSlTA2s9zbeEq/XXCFSoxHPW+5Gy NgiGe7agJcaMqLO/V8R707Vl88TS45LxKrZt6BETdmgCJrom7ZZ2rKrYLeye/UaR Vo1f7rI/QUu/K+9otOrtOxjyiH/1RHoaiVdURauEV6MJRIbiJXOpjx+LNXF1Xrqg q1T+GmF+l7Bb5288Oc/R9Y8xLUyu3tYGkVsS0lobAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6BCLClH0a8FIXxrHQSiF+Psqm+kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmNGMwZDZhLTg3ZTEtNDUwMC05OTRjLTZkNjdjNmRmZmE2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARsq/AwDQYJKoZIhvcNAQELBQADggEBABfNyIU5AKbqw5Wnm5fvvR+TpufJ H2h9E2gt2kDvirDU5mKqock0JQU91y30HPeiL9ykf9TFblkcmNo20Bq0c+NbkBjo RwiRcU6y4H5NiKQwkKtI/Hte9srQpEA3VvnngxYMa6XxPnQFZV2FQglXB5zne77g 1eKtD2uc/03PnLiqe36SDPV+vO5peHqeirLoJmufGJ9erPFGecVLw1ZAEBok0Y4t VilbuVl3+DhbOksEVH4qk9Lek4V1cjkRZeiurKvK9bzqWiWm3o+bsmLFDaa84Uqx IVWhYH2fXXBlny7Ao5gHxX0KVVqDpsoIdRUrqG4A31cg9XKg/kMK/UvaJXk= -----END CERTIFICATE-----Generated at Tue Jul 1 03:39:51 2025 by rpki-client