$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0aecca8-b5b2-4595-9f0a-580808d0a23c.roa File: d0aecca8-b5b2-4595-9f0a-580808d0a23c.roa (raw, json) Hash identifier: VMkjxkDiRD2oii0mBgl/+tuDgFAYnYrWiYaBBxT8YD0= Subject key identifier: 21:80:12:EC:3E:5B:E6:90:04:B0:A9:1B:10:85:5E:3C:06:B1:E8:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 728F6BDA696E19A974ACD4853A348EF915F510B7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0aecca8-b5b2-4595-9f0a-580808d0a23c.roa Signing time: Fri 20 Jun 2025 00:01:13 +0000 ROA not before: Fri 20 Jun 2025 00:01:13 +0000 ROA not after: Fri 25 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 108.166.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:8f:6b:da:69:6e:19:a9:74:ac:d4:85:3a:34:8e:f9:15:f5:10:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 20 00:01:13 2025 GMT Not After : Jul 25 23:59:59 2025 GMT Subject: serialNumber=b289543eafd99cb4b88c04148b76ce71960a5a8bd4711eba24dcaee80c943a1f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9c:8f:a4:d8:7d:fc:ee:99:7e:24:7c:07:bf: 04:46:0c:e8:b1:01:d7:f2:d2:83:5c:2a:d9:b4:15: f5:c2:b8:c5:91:57:2a:27:5d:ce:47:77:38:48:86: 77:3d:db:69:7c:e1:a4:91:bf:62:2b:85:27:d3:01: 8c:a5:09:e0:9d:d1:c5:e9:bc:f2:38:db:d5:9d:2e: e5:62:c2:dc:42:74:44:f2:4f:6d:13:aa:f9:44:90: b6:09:dd:a1:cc:9b:3d:fd:26:f1:c7:96:2f:8e:3f: 49:98:f7:05:88:ab:9b:41:f1:57:cd:94:c2:5e:49: e6:f3:47:87:b7:6e:71:e5:6b:58:ab:6c:6f:e0:c6: 28:76:35:99:cf:82:85:c6:6d:50:14:8d:9d:1f:c7: d1:1e:17:a8:3d:78:b4:39:ab:3f:30:c4:bb:85:f0: f5:1b:ea:6d:87:8b:96:d1:61:c8:41:19:63:59:82: b2:f3:5f:44:6a:47:4b:8c:9c:71:5b:77:ab:40:5d: 5a:5c:cf:05:4b:f9:c5:d7:71:34:5d:62:1e:26:8b: 11:71:93:3d:57:60:20:e1:db:54:9d:f3:ab:89:e6: c7:84:b7:86:76:ef:b8:2a:03:e1:7c:3c:ad:10:23: 05:46:d7:0e:78:ef:b7:41:4c:2c:6c:6f:e3:4c:4c: f2:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:80:12:EC:3E:5B:E6:90:04:B0:A9:1B:10:85:5E:3C:06:B1:E8:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0aecca8-b5b2-4595-9f0a-580808d0a23c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.166.192.0/19 Signature Algorithm: sha256WithRSAEncryption 83:94:08:38:92:1b:35:03:10:22:ec:45:de:12:09:77:2e:4f: 98:f2:22:a4:0b:0b:f8:2b:a1:81:3e:6c:61:3c:e3:2b:b7:dc: b6:d5:c0:20:98:86:94:25:b9:9f:1b:e7:7c:83:ea:a0:92:f1: 1b:17:4c:f9:ff:a8:d7:79:ef:f0:68:1c:1d:a4:b2:a3:fd:7a: 36:72:f0:1a:35:4f:da:67:88:6d:a7:08:3e:51:21:d1:90:9d: fc:e9:49:2b:52:3a:6d:0d:b9:e8:79:b4:c4:e2:3c:f7:eb:6b: 66:e7:85:08:8b:ae:50:c4:4b:70:11:4b:f9:4a:df:ab:7e:69: ad:f4:21:fc:cb:00:e3:4d:04:5c:bb:90:51:10:e0:8e:21:4e: 50:f1:11:5c:d6:60:65:ce:d9:eb:06:f9:6e:94:ae:4b:fb:8f: 40:9b:7b:ee:3f:be:78:b8:a1:44:f9:5d:0f:32:2c:53:90:32: 79:64:bc:b8:1c:4b:b5:b3:e2:e9:08:e2:5d:d6:20:21:47:ac: 9d:1f:72:f5:5b:98:bf:0f:88:30:0a:9a:6b:b9:c7:8d:aa:73: 99:94:1f:08:bc:4f:a2:a0:a0:74:5e:a7:64:76:c6:7d:ed:f7: b1:6e:7c:6a:20:ae:c4:c5:e2:fe:0f:ce:50:9d:c9:8f:fd:f8: f2:0f:7e:5f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUco9r2mluGal0rNSFOjSO+RX1ELcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIwMDAwMTEzWhcNMjUwNzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjg5NTQzZWFmZDk5Y2I0Yjg4YzA0MTQ4Yjc2Y2U3MTk2 MGE1YThiZDQ3MTFlYmEyNGRjYWVlODBjOTQzYTFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0nI+k2H387pl+JHwHvwRGDOixAdfy0oNcKtm0FfXCuMWR VyonXc5HdzhIhnc922l84aSRv2IrhSfTAYylCeCd0cXpvPI429WdLuViwtxCdETy T20TqvlEkLYJ3aHMmz39JvHHli+OP0mY9wWIq5tB8VfNlMJeSebzR4e3bnHla1ir bG/gxih2NZnPgoXGbVAUjZ0fx9EeF6g9eLQ5qz8wxLuF8PUb6m2Hi5bRYchBGWNZ grLzX0RqR0uMnHFbd6tAXVpczwVL+cXXcTRdYh4mixFxkz1XYCDh21Sd86uJ5seE t4Z277gqA+F8PK0QIwVG1w5477dBTCxsb+NMTPJBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIYAS7D5b5pAEsKkbEIVePAax6IgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QwYWVjY2E4LWI1YjItNDU5NS05ZjBhLTU4MDgwOGQwYTIzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVspsAwDQYJKoZIhvcNAQELBQADggEBAIOUCDiSGzUDECLsRd4SCXcuT5jy IqQLC/groYE+bGE84yu33LbVwCCYhpQluZ8b53yD6qCS8RsXTPn/qNd57/BoHB2k sqP9ejZy8Bo1T9pniG2nCD5RIdGQnfzpSStSOm0Nueh5tMTiPPfra2bnhQiLrlDE S3ARS/lK36t+aa30IfzLAONNBFy7kFEQ4I4hTlDxEVzWYGXO2esG+W6Urkv7j0Cb e+4/vni4oUT5XQ8yLFOQMnlkvLgcS7Wz4ukI4l3WICFHrJ0fcvVbmL8PiDAKmmu5 x42qc5mUHwi8T6KgoHRep2R2xn3t97FufGogrsTF4v4PzlCdyY/9+PIPfl8= -----END CERTIFICATE-----Generated at Tue Jul 1 10:32:03 2025 by rpki-client