$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d43a58c1-65d8-408a-9da2-aac1d5d7a248.roa File: d43a58c1-65d8-408a-9da2-aac1d5d7a248.roa (raw, json) Hash identifier: IePXfECGtZKzgd1J646Em1jQ5x9/NwdOjF9w5IMG5uc= Subject key identifier: 2C:96:41:C7:B9:AF:50:7F:6A:5C:29:91:7F:58:6A:B8:AB:B8:8E:EA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 03A0ECC2FCA22E6C1C20F2AFB561B63428E73D5D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d43a58c1-65d8-408a-9da2-aac1d5d7a248.roa Signing time: Wed 25 Jun 2025 00:10:49 +0000 ROA not before: Wed 25 Jun 2025 00:10:49 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:a0:ec:c2:fc:a2:2e:6c:1c:20:f2:af:b5:61:b6:34:28:e7:3d:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 25 00:10:49 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=223954dd24a1bcb2b89285245dd019905928bde67236d30aaf2f348a86c41bba, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:86:9e:bd:3f:15:6a:38:bf:1c:86:0e:d3:51: 1c:82:1d:81:af:01:90:14:d4:2a:1b:6f:1c:4f:a5: cf:d0:17:68:94:2b:c4:fc:21:1f:c6:f2:1d:d8:4f: 54:2a:da:8f:d2:25:0f:e7:6e:4d:f3:bd:9c:5f:3c: 05:d1:a7:ef:97:1e:cb:c7:37:db:d2:38:c5:aa:9a: 08:0b:44:11:78:3f:71:9a:66:82:f2:40:ae:da:58: 1e:83:00:76:03:4b:ac:13:21:5c:14:d6:3b:ab:16: de:01:45:c9:93:8d:94:e3:6b:88:56:e4:18:a9:93: 48:47:22:5e:6e:6c:b5:cb:c1:ee:0d:7e:c6:8a:be: 41:df:d0:d7:fa:01:49:51:b1:ba:0b:2f:6a:c9:54: de:62:c3:59:55:4d:95:56:00:74:49:87:23:99:e0: 54:84:30:84:91:c0:dd:f8:2a:55:32:08:11:c2:bc: 87:40:65:49:77:f0:47:b0:cc:cd:1e:73:7d:ca:1d: 3a:54:42:3b:eb:92:e9:fd:11:61:10:b1:48:7e:94: 84:3e:8a:5e:c8:04:71:a9:46:da:4e:cd:a4:d7:50: 5b:16:f8:87:5a:ac:97:a5:c6:12:9a:40:52:1e:83: 9a:51:31:c7:cb:0f:2d:24:92:1d:73:2f:32:1f:c6: 39:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:96:41:C7:B9:AF:50:7F:6A:5C:29:91:7F:58:6A:B8:AB:B8:8E:EA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d43a58c1-65d8-408a-9da2-aac1d5d7a248.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.128.0/18 Signature Algorithm: sha256WithRSAEncryption a7:b6:07:2f:e5:e0:68:cb:5d:b4:3e:94:2d:a7:ee:68:41:b8: e3:60:9f:dd:54:ec:12:30:9f:8b:6e:d8:f6:c3:0f:87:35:c1: 85:14:df:6b:7d:26:36:08:58:2f:3a:75:f8:d8:63:55:35:3d: 33:a7:5b:b2:54:5d:39:e9:44:03:a6:24:b0:79:60:e5:9d:c8: 3b:a4:d5:a5:6d:be:46:e5:c1:88:e6:0d:7b:7e:52:63:60:4b: b0:cd:35:fd:cc:66:3f:40:6c:bd:be:73:b0:ce:4f:e5:12:c9: e2:97:5c:ed:74:6a:92:f7:13:37:b7:10:21:76:f8:ea:1f:5d: 36:c4:71:0b:e1:bc:a9:44:88:94:3e:0b:81:09:26:9b:85:14: f7:d9:f4:6c:a1:08:dd:9f:3e:7f:98:e8:4c:4f:af:28:3f:68: dd:19:08:f5:93:d2:ae:b3:3d:78:6f:7d:56:fa:e8:f1:58:9a: 8e:74:7e:e5:45:af:6e:4d:26:30:d0:ab:9f:08:94:3e:75:7d: e7:b4:5f:36:69:d4:4c:8b:26:74:55:07:17:96:bb:cb:c6:9d: 10:e4:fc:1d:38:ba:76:b5:5b:54:92:75:11:82:e2:62:4d:17: 12:09:e7:64:01:44:87:2a:53:a3:01:28:65:e6:81:bd:71:4e: 61:57:f9:78 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA6DswvyiLmwcIPKvtWG2NCjnPV0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI1MDAxMDQ5WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjM5NTRkZDI0YTFiY2IyYjg5Mjg1MjQ1ZGQwMTk5MDU5 MjhiZGU2NzIzNmQzMGFhZjJmMzQ4YTg2YzQxYmJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGhp69PxVqOL8chg7TURyCHYGvAZAU1CobbxxPpc/QF2iU K8T8IR/G8h3YT1Qq2o/SJQ/nbk3zvZxfPAXRp++XHsvHN9vSOMWqmggLRBF4P3Ga ZoLyQK7aWB6DAHYDS6wTIVwU1jurFt4BRcmTjZTja4hW5Bipk0hHIl5ubLXLwe4N fsaKvkHf0Nf6AUlRsboLL2rJVN5iw1lVTZVWAHRJhyOZ4FSEMISRwN34KlUyCBHC vIdAZUl38EewzM0ec33KHTpUQjvrkun9EWEQsUh+lIQ+il7IBHGpRtpOzaTXUFsW +IdarJelxhKaQFIeg5pRMcfLDy0kkh1zLzIfxjmBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULJZBx7mvUH9qXCmRf1hquKu4juowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q0M2E1OGMxLTY1ZDgtNDA4YS05ZGEyLWFhYzFkNWQ3YTI0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjl4AwDQYJKoZIhvcNAQELBQADggEBAKe2By/l4GjLXbQ+lC2n7mhBuONg n91U7BIwn4tu2PbDD4c1wYUU32t9JjYIWC86dfjYY1U1PTOnW7JUXTnpRAOmJLB5 YOWdyDuk1aVtvkblwYjmDXt+UmNgS7DNNf3MZj9AbL2+c7DOT+USyeKXXO10apL3 Eze3ECF2+OofXTbEcQvhvKlEiJQ+C4EJJpuFFPfZ9GyhCN2fPn+Y6ExPryg/aN0Z CPWT0q6zPXhvfVb66PFYmo50fuVFr25NJjDQq58IlD51fee0XzZp1EyLJnRVBxeW u8vGnRDk/B04una1W1SSdRGC4mJNFxIJ52QBRIcqU6MBKGXmgb1xTmFX+Xg= -----END CERTIFICATE-----Generated at Sun Jun 29 09:22:55 2025 by rpki-client