$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4314907-a293-452a-8393-4b578c9f3645.roa File: d4314907-a293-452a-8393-4b578c9f3645.roa (raw, json) Hash identifier: MOIfQfNp1EeASFg4IlM4+OifVo4lhRzyONZ2xDUg5ZI= Subject key identifier: FC:81:0B:E8:09:4A:8F:82:71:C7:27:FB:36:55:68:3A:81:AD:32:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3DB1DAB44A320B7BB8729BF9EB86F8E15398A01C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4314907-a293-452a-8393-4b578c9f3645.roa Signing time: Sat 14 Jun 2025 00:50:24 +0000 ROA not before: Sat 14 Jun 2025 00:50:24 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 5.60.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:b1:da:b4:4a:32:0b:7b:b8:72:9b:f9:eb:86:f8:e1:53:98:a0:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:50:24 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=7c4ac38f1b160648094fa8578d5c4354d72b21317cc9eba4caf235f43fcf3dd7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:df:37:8d:db:5c:b7:50:6b:79:91:81:f5:79: b5:dd:2e:89:6f:8a:ae:3c:ef:98:7f:d8:fe:e0:a6: ba:57:f6:16:d7:76:ae:69:fc:32:89:ae:37:22:7f: 38:7a:b3:55:ac:57:5d:31:e0:73:5e:b8:c6:05:35: f8:f3:b0:87:6c:cd:66:4d:f6:de:d5:db:a6:54:bf: 0e:f7:cc:fe:82:c0:3d:44:de:61:57:b0:90:96:eb: d2:f8:86:c6:ee:77:d1:ae:9e:bb:f6:8a:e6:1e:6b: 00:bc:d5:be:3c:f6:6b:7f:de:c1:5d:16:9c:c6:c7: b8:54:ad:3d:03:6e:51:79:9a:97:7b:84:97:31:46: 7d:7d:8b:56:90:59:ff:b9:4d:04:ee:f0:a4:45:54: 5e:48:6f:d7:d6:1c:42:d4:5e:97:fa:80:e2:ab:78: aa:3e:7b:b4:79:06:05:dd:e6:c2:db:c1:a5:66:34: b0:05:5b:88:f1:19:35:1f:19:8b:1b:40:c1:9e:16: 68:94:c8:38:2d:d9:77:77:53:6f:20:48:ae:ef:79: 7f:88:a8:ed:dd:7c:71:f6:2a:cf:af:a0:fe:6c:54: bc:bf:56:9c:41:5e:89:25:d7:a6:71:e5:cb:85:9e: a4:f6:3b:c2:bc:97:9e:01:25:e6:cb:17:b0:1a:81: 28:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:81:0B:E8:09:4A:8F:82:71:C7:27:FB:36:55:68:3A:81:AD:32:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4314907-a293-452a-8393-4b578c9f3645.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.60.0.0/16 Signature Algorithm: sha256WithRSAEncryption b6:60:00:df:ed:1a:a2:51:63:04:99:9b:71:65:26:92:af:d2: 2f:9f:52:cc:6b:6c:6d:e7:6a:4c:32:4c:2d:e1:a5:b1:83:8c: c0:a5:3e:ae:14:cd:cf:b1:ac:28:c7:8a:b5:bf:ed:a9:21:87: 1d:86:e2:aa:68:33:f0:b5:68:1a:dc:81:fb:7e:34:e0:86:1c: 04:84:ec:ab:c9:b9:e0:32:03:a7:30:d4:79:69:5f:de:05:55: 01:db:4d:ad:c6:3f:46:26:33:f0:67:c4:72:53:fd:de:4a:c0: 82:99:b2:50:95:4d:92:ab:9c:7c:9f:6f:52:b4:58:fa:9d:20: 2f:1f:42:10:c0:49:ad:7d:a9:56:d8:36:0e:47:d5:90:ad:c2: 7a:fc:3f:71:81:b9:f4:70:53:ba:42:c5:a1:d1:d1:eb:da:0e: 43:99:ee:d2:3b:2a:80:02:d7:0b:54:a1:5c:1d:95:c0:ff:18: 72:31:ae:08:03:7d:52:cb:6e:e8:fe:66:f6:13:6f:4e:7e:31: 8d:ec:3a:d8:2b:dd:ca:67:f0:3c:35:b2:9c:28:de:5b:13:15: 6a:7e:24:7e:a7:22:15:e0:9e:a3:0c:19:2e:d8:eb:97:8c:66: 5f:8e:f0:5b:07:6f:46:96:c8:9a:e0:29:34:66:7b:f7:a4:71: 2e:8b:a5:34 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPbHatEoyC3u4cpv564b44VOYoBwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDA1MDI0WhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YzRhYzM4ZjFiMTYwNjQ4MDk0ZmE4NTc4ZDVjNDM1NGQ3 MmIyMTMxN2NjOWViYTRjYWYyMzVmNDNmY2YzZGQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDa3zeN21y3UGt5kYH1ebXdLolviq4875h/2P7gprpX9hbX dq5p/DKJrjcifzh6s1WsV10x4HNeuMYFNfjzsIdszWZN9t7V26ZUvw73zP6CwD1E 3mFXsJCW69L4hsbud9Gunrv2iuYeawC81b489mt/3sFdFpzGx7hUrT0DblF5mpd7 hJcxRn19i1aQWf+5TQTu8KRFVF5Ib9fWHELUXpf6gOKreKo+e7R5BgXd5sLbwaVm NLAFW4jxGTUfGYsbQMGeFmiUyDgt2Xd3U28gSK7veX+IqO3dfHH2Ks+voP5sVLy/ VpxBXokl16Zx5cuFnqT2O8K8l54BJebLF7AagSj1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/IEL6AlKj4Jxxyf7NlVoOoGtMgIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q0MzE0OTA3LWEyOTMtNDUyYS04MzkzLTRiNTc4YzlmMzY0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAFPDANBgkqhkiG9w0BAQsFAAOCAQEAtmAA3+0aolFjBJmbcWUmkq/SL59S zGtsbedqTDJMLeGlsYOMwKU+rhTNz7GsKMeKtb/tqSGHHYbiqmgz8LVoGtyB+340 4IYcBITsq8m54DIDpzDUeWlf3gVVAdtNrcY/RiYz8GfEclP93krAgpmyUJVNkquc fJ9vUrRY+p0gLx9CEMBJrX2pVtg2DkfVkK3Cevw/cYG59HBTukLFodHR69oOQ5nu 0jsqgALXC1ShXB2VwP8YcjGuCAN9Ustu6P5m9hNvTn4xjew62CvdymfwPDWynCje WxMVan4kfqciFeCeowwZLtjrl4xmX47wWwdvRpbImuApNGZ796RxLoulNA== -----END CERTIFICATE-----Generated at Wed Jul 2 16:19:14 2025 by rpki-client