$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4f52d1b-a830-4741-8924-351b0ebc2ffe.roa File: d4f52d1b-a830-4741-8924-351b0ebc2ffe.roa (raw, json) Hash identifier: D0In4tXShbQ708hugdy+0NCJpfQU9yuCl+XPCnUd7vo= Subject key identifier: FF:16:1C:DC:E4:BA:7A:21:10:4F:61:79:6C:F8:50:3B:B6:E0:77:D5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D09D8B55D4A9EB9B0917FC0CEAA4F1B0056A7C3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4f52d1b-a830-4741-8924-351b0ebc2ffe.roa Signing time: Mon 23 Jun 2025 15:10:27 +0000 ROA not before: Mon 23 Jun 2025 15:10:27 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.171.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:09:d8:b5:5d:4a:9e:b9:b0:91:7f:c0:ce:aa:4f:1b:00:56:a7:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:10:27 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=5fb848287f55c8472c4c6e7cc6da719b9f9d3daa4198cf42ca8565752edaa3cb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:3b:17:74:12:d7:15:35:1d:4f:1a:4c:7c:cf: d4:9d:1a:7a:99:66:63:79:a2:98:57:c6:9b:9d:ff: ec:03:2b:fb:27:2d:90:c3:77:83:21:a7:8b:a9:e7: 14:ca:9f:74:60:52:b0:89:53:aa:a1:fc:03:3c:6e: 88:5a:45:ef:08:31:24:dd:e1:b3:bb:69:75:14:0b: 97:45:79:e5:a0:18:da:03:3f:82:99:bc:b1:23:69: 34:4f:a2:2a:f5:c5:68:32:ee:c7:a5:99:b6:ff:a4: ac:9d:28:09:93:df:12:ac:58:68:4d:1d:88:38:88: 13:07:65:4e:b4:00:5f:ef:1f:b9:92:04:37:96:62: 83:79:97:9d:80:fd:b9:93:40:db:40:1d:b0:b6:91: 96:18:b8:06:95:93:08:71:f1:bb:f2:52:b8:22:65: a5:d9:c5:49:54:54:11:61:dd:b1:5f:15:56:de:93: 64:85:a3:3a:dc:e4:e7:43:03:dc:f9:9b:dc:02:e3: 59:79:cb:69:24:6a:98:91:2f:7b:a8:e8:49:24:05: fd:a0:dd:15:55:b9:9e:54:8a:ce:f8:79:30:ec:ab: 6b:4e:3f:fd:aa:8d:56:28:f7:8d:f2:d6:71:56:ed: 70:96:77:98:d2:a1:a7:8a:21:78:8c:97:cf:48:1e: 01:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:16:1C:DC:E4:BA:7A:21:10:4F:61:79:6C:F8:50:3B:B6:E0:77:D5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4f52d1b-a830-4741-8924-351b0ebc2ffe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.171.128.0/19 Signature Algorithm: sha256WithRSAEncryption 46:52:f9:05:6d:18:a2:61:bc:98:1c:d2:26:34:f5:08:e9:4a: 33:6d:bd:55:a3:af:82:18:f8:fa:1c:d1:41:13:5a:fd:e7:7b: 14:0c:87:3c:89:77:84:25:7d:34:58:1d:dd:22:91:ed:46:7a: 6a:85:9d:dd:6f:dd:da:b6:89:f5:32:06:f9:66:b7:37:43:a1: 69:60:91:29:77:dc:01:29:7e:32:c6:e3:a3:3d:ec:04:fa:59: 3f:d1:c5:d1:be:9e:57:06:fc:88:66:6e:b2:1a:cd:7c:72:bb: 0a:98:67:27:28:cb:32:9f:81:4a:f5:73:c9:f4:57:bd:c0:d2: 81:e2:d4:24:36:05:9d:8c:4e:71:b9:95:c7:c0:0a:90:9e:f7: dd:83:83:a8:3b:b3:fe:21:e9:f1:a9:c5:e9:e2:fe:24:e5:e1: 99:59:69:e4:e1:33:b3:5b:d4:b7:a3:ed:98:9c:f9:ea:d4:49: 6d:0e:6f:24:9b:0b:df:19:71:e8:e4:c4:0c:98:df:e3:25:94: 1f:01:60:2a:05:5f:65:d7:2f:82:c5:76:5e:d7:3c:cb:7d:fc: 25:ea:8d:23:0a:e0:50:30:83:55:2b:73:a8:4d:5e:94:65:bd: e9:29:02:71:ff:1b:81:75:3c:02:b8:5b:a5:fa:e5:08:38:b1: 76:6e:45:fa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbQnYtV1KnrmwkX/AzqpPGwBWp8MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUxMDI3WhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZmI4NDgyODdmNTVjODQ3MmM0YzZlN2NjNmRhNzE5Yjlm OWQzZGFhNDE5OGNmNDJjYTg1NjU3NTJlZGFhM2NiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+Oxd0EtcVNR1PGkx8z9SdGnqZZmN5ophXxpud/+wDK/sn LZDDd4Mhp4up5xTKn3RgUrCJU6qh/AM8bohaRe8IMSTd4bO7aXUUC5dFeeWgGNoD P4KZvLEjaTRPoir1xWgy7selmbb/pKydKAmT3xKsWGhNHYg4iBMHZU60AF/vH7mS BDeWYoN5l52A/bmTQNtAHbC2kZYYuAaVkwhx8bvyUrgiZaXZxUlUVBFh3bFfFVbe k2SFozrc5OdDA9z5m9wC41l5y2kkapiRL3uo6EkkBf2g3RVVuZ5Uis74eTDsq2tO P/2qjVYo943y1nFW7XCWd5jSoaeKIXiMl89IHgHNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/xYc3OS6eiEQT2F5bPhQO7bgd9UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q0ZjUyZDFiLWE4MzAtNDc0MS04OTI0LTM1MWIwZWJjMmZmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXYq4AwDQYJKoZIhvcNAQELBQADggEBAEZS+QVtGKJhvJgc0iY09QjpSjNt vVWjr4IY+Poc0UETWv3nexQMhzyJd4QlfTRYHd0ike1GemqFnd1v3dq2ifUyBvlm tzdDoWlgkSl33AEpfjLG46M97AT6WT/RxdG+nlcG/IhmbrIazXxyuwqYZycoyzKf gUr1c8n0V73A0oHi1CQ2BZ2MTnG5lcfACpCe992Dg6g7s/4h6fGpxeni/iTl4ZlZ aeThM7Nb1Lej7Zic+erUSW0ObySbC98ZcejkxAyY3+MllB8BYCoFX2XXL4LFdl7X PMt9/CXqjSMK4FAwg1Urc6hNXpRlvekpAnH/G4F1PAK4W6X65Qg4sXZuRfo= -----END CERTIFICATE-----Generated at Sun Jun 29 04:31:51 2025 by rpki-client