$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2fc0877-920f-4e6c-8f40-ee4247efb624.roa File: d2fc0877-920f-4e6c-8f40-ee4247efb624.roa (raw, json) Hash identifier: 2jhFLq/X9mUMQOVvdQjQfNuE6p1neHES3dRS/4bWWlQ= Subject key identifier: A4:2B:C8:A6:34:DF:FF:7D:87:E9:9C:2F:B2:23:5E:D5:CA:BB:FD:46 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36EC8DB30211D214E7C54DF77DB56501BF1C071C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2fc0877-920f-4e6c-8f40-ee4247efb624.roa Signing time: Tue 24 Jun 2025 00:00:34 +0000 ROA not before: Tue 24 Jun 2025 00:00:34 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.48.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ec:8d:b3:02:11:d2:14:e7:c5:4d:f7:7d:b5:65:01:bf:1c:07:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:00:34 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=e3d14448c4243ce965c6803b449cfe6e0931153eba5279f0b777fc1eaf801b93, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3d:cc:f4:5d:9a:70:84:eb:cf:f1:b8:d8:1a: 1f:d0:f4:2c:84:08:c6:f6:6a:e9:fa:26:bb:27:8e: 0d:7a:67:9d:3e:60:cd:c3:1c:c8:b0:dd:bd:1c:ba: 5a:4f:4d:e5:8b:84:1b:b3:3b:0b:51:93:33:b3:4b: e8:ea:ed:ec:22:8c:2e:a4:f1:45:2e:a9:f4:f3:18: f6:6b:ba:8d:f0:9f:d5:74:39:3c:a5:ef:18:7e:82: 3a:a1:55:09:f0:b7:7b:0e:15:82:e8:94:9b:f5:4f: 9f:e1:97:97:43:b6:1a:64:85:67:4b:8c:8e:b8:e8: 2b:a8:de:fc:d8:c7:c0:93:5d:f0:6c:62:6c:7f:a8: e4:93:d0:f1:dc:4d:e1:09:95:73:23:ab:21:02:60: 59:c5:70:b3:08:7a:1b:eb:26:fd:7e:6f:25:c0:36: 59:b4:67:11:62:67:e9:69:0b:79:ec:13:eb:a1:70: 77:61:d5:2a:8b:2f:14:db:68:e5:b3:2c:cd:39:d4: a4:ef:92:c2:f4:8b:4c:6b:63:49:0b:98:15:46:9e: 6e:b2:69:53:51:4c:51:4d:5e:a6:b4:64:f9:2c:84: bc:ba:bd:08:30:df:31:22:66:24:dc:65:9a:ab:de: 58:a2:da:34:14:2b:ce:ec:ab:ac:6d:16:78:4c:26: 50:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:2B:C8:A6:34:DF:FF:7D:87:E9:9C:2F:B2:23:5E:D5:CA:BB:FD:46 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2fc0877-920f-4e6c-8f40-ee4247efb624.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.48.0.0/18 Signature Algorithm: sha256WithRSAEncryption 18:84:81:c3:08:d0:df:4d:fc:f3:7a:65:6a:b2:4d:6c:c2:a1: 54:1a:6c:e3:a1:07:a4:94:24:4a:8e:06:9f:bf:dd:44:8a:8c: 3b:c4:d0:e6:75:eb:93:cd:df:36:99:8c:49:86:03:11:f6:4b: e7:83:3e:59:1f:97:77:4b:99:c5:fc:1a:9f:f8:53:43:46:bb: 3f:ef:05:c5:98:62:8a:c8:d0:46:74:aa:b9:1d:f6:66:ae:d1: 34:1d:5b:fe:fc:dd:d5:fd:89:65:60:d5:e7:ea:1e:0c:bc:68: ce:63:8c:21:af:4d:72:12:18:86:1e:fd:de:ff:3d:df:20:2f: 22:c1:e4:a0:ed:d3:dd:17:7f:38:d1:ba:ef:79:7b:8f:af:f7: e2:33:40:6c:4a:75:94:d6:75:35:db:80:56:6a:59:4e:c9:e2: 3d:79:f1:16:22:a0:a2:95:6b:57:88:bc:a4:e0:e6:f4:1c:3f: 49:ad:ec:3e:20:ab:d8:21:9b:b9:01:ca:e8:26:b3:32:7c:0c: ec:14:75:3d:32:97:02:ea:a4:60:40:ae:27:59:c8:96:fb:79: a9:be:a8:99:c4:f3:df:51:49:70:5f:2c:65:54:b3:ee:7c:91: 7e:3b:32:37:49:c5:e2:c7:99:1c:08:86:a8:7f:ce:0e:27:3b: f2:ff:33:14 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNuyNswIR0hTnxU33fbVlAb8cBxwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAwMDM0WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlM2QxNDQ0OGM0MjQzY2U5NjVjNjgwM2I0NDljZmU2ZTA5 MzExNTNlYmE1Mjc5ZjBiNzc3ZmMxZWFmODAxYjkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkPcz0XZpwhOvP8bjYGh/Q9CyECMb2aun6Jrsnjg16Z50+ YM3DHMiw3b0culpPTeWLhBuzOwtRkzOzS+jq7ewijC6k8UUuqfTzGPZruo3wn9V0 OTyl7xh+gjqhVQnwt3sOFYLolJv1T5/hl5dDthpkhWdLjI646Cuo3vzYx8CTXfBs Ymx/qOST0PHcTeEJlXMjqyECYFnFcLMIehvrJv1+byXANlm0ZxFiZ+lpC3nsE+uh cHdh1SqLLxTbaOWzLM051KTvksL0i0xrY0kLmBVGnm6yaVNRTFFNXqa0ZPkshLy6 vQgw3zEiZiTcZZqr3lii2jQUK87sq6xtFnhMJlBNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpCvIpjTf/32H6ZwvsiNe1cq7/UYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyZmMwODc3LTkyMGYtNGU2Yy04ZjQwLWVlNDI0N2VmYjYyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbYMAAwDQYJKoZIhvcNAQELBQADggEBABiEgcMI0N9N/PN6ZWqyTWzCoVQa bOOhB6SUJEqOBp+/3USKjDvE0OZ165PN3zaZjEmGAxH2S+eDPlkfl3dLmcX8Gp/4 U0NGuz/vBcWYYorI0EZ0qrkd9mau0TQdW/783dX9iWVg1efqHgy8aM5jjCGvTXIS GIYe/d7/Pd8gLyLB5KDt090XfzjRuu95e4+v9+IzQGxKdZTWdTXbgFZqWU7J4j15 8RYioKKVa1eIvKTg5vQcP0mt7D4gq9ghm7kByugmszJ8DOwUdT0ylwLqpGBAridZ yJb7eam+qJnE899RSXBfLGVUs+58kX47MjdJxeLHmRwIhqh/zg4nO/L/MxQ= -----END CERTIFICATE-----Generated at Sun Jun 29 11:30:12 2025 by rpki-client