$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6b24275-0a40-4f1f-b043-0d914be98547.roa File: d6b24275-0a40-4f1f-b043-0d914be98547.roa (raw, json) Hash identifier: 8O4tjGijWwP/vkISNPDu+4HGYrMUhRAe4+Mw6yEyCsE= Subject key identifier: 25:C7:74:DA:41:0F:A4:7C:7E:B1:E0:F7:43:DD:7F:FA:FC:93:E2:9E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D9D91F094B4F06A6589574296930B63B61ECF08 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6b24275-0a40-4f1f-b043-0d914be98547.roa Signing time: Sat 21 Jun 2025 00:11:42 +0000 ROA not before: Sat 21 Jun 2025 00:11:42 +0000 ROA not after: Sat 26 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 160.221.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:9d:91:f0:94:b4:f0:6a:65:89:57:42:96:93:0b:63:b6:1e:cf:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 21 00:11:42 2025 GMT Not After : Jul 26 23:59:59 2025 GMT Subject: serialNumber=756a122a6b05485d66281a82d18470e5b998f449a531623242ab0e9951301d1a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:53:db:2c:93:75:2e:a7:38:28:50:18:25:7b: b7:66:36:83:24:9a:00:e3:bc:68:1c:30:a3:bf:e0: 2f:76:be:0b:1f:2c:a5:a3:4f:72:d2:d4:55:3a:3e: 31:be:72:56:27:76:85:92:17:07:41:ea:f1:52:fb: 30:ff:4d:53:14:e2:04:30:75:2c:7f:37:f1:e1:94: 63:eb:96:62:d0:30:a5:ed:50:84:a9:7d:ad:6c:38: 1e:61:16:17:f5:ef:28:4c:a2:82:24:56:0e:77:63: 74:b2:48:97:1b:02:92:ac:26:13:d0:13:18:de:27: 77:32:6a:3b:8a:fd:00:57:0b:f5:79:a7:5d:64:ea: d8:ac:e3:5a:83:37:4f:60:0d:11:bd:08:aa:e8:0c: 16:e1:c2:3c:2a:9e:4c:9f:00:f3:e7:0a:c0:e1:67: fb:8b:1a:c6:68:48:90:84:85:b2:cd:92:41:41:b5: 79:7a:6e:67:20:66:c4:a7:da:44:71:2d:87:0e:be: 99:a5:2e:b6:26:b2:78:0c:4b:c7:89:f9:dc:f4:0d: cd:da:93:f7:00:90:25:0e:82:cf:1a:3d:5c:1f:74: 2a:8a:b8:32:ae:81:b4:da:9c:11:4f:c6:d4:c6:c2: aa:97:ce:b7:ad:8c:25:fd:d0:48:a1:3c:7e:ee:56: 27:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:C7:74:DA:41:0F:A4:7C:7E:B1:E0:F7:43:DD:7F:FA:FC:93:E2:9E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6b24275-0a40-4f1f-b043-0d914be98547.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.221.0.0/16 Signature Algorithm: sha256WithRSAEncryption 89:17:c8:a5:c4:95:84:68:08:ad:21:00:f9:d6:9d:3c:c0:73: 8e:3d:08:f8:0f:67:ca:2b:77:9d:03:53:f6:11:f6:5e:b1:e5: ed:18:a2:3c:b6:57:c8:a9:4b:df:f4:0c:98:a2:f0:ce:9e:42: 65:5a:9b:2c:f2:e7:a3:a9:6c:bd:2f:c8:a5:d0:a2:72:e1:d5: ca:d4:56:56:7e:1e:f3:ad:41:08:d8:42:07:19:7d:6c:29:2e: 88:85:2a:06:aa:64:d0:a7:0e:0f:0f:f0:64:59:d3:7f:cb:53: 19:94:c8:56:05:96:3f:85:98:1c:92:21:5d:1d:b2:ed:c5:86: 2b:0f:51:17:c9:a2:ba:c8:d9:4c:b2:3e:5e:01:21:56:e1:5a: 48:a9:48:d8:2d:15:6b:db:95:ac:96:9b:b0:2f:a5:9e:9f:ca: 38:19:ec:17:e5:93:59:75:83:2f:8e:14:e3:04:94:41:73:5b: 91:0d:09:12:c0:9f:2b:cc:d7:54:a0:9f:c9:96:25:55:24:f6: 39:99:2e:22:dd:3f:2a:5f:2d:ab:ff:ae:ef:80:be:12:46:16: 18:fd:21:49:c0:35:71:4f:ab:8f:c8:62:77:80:10:b8:85:15: bd:c5:43:a1:cc:33:71:b7:4b:28:b0:18:95:bb:d1:59:5c:f9: ab:d2:f2:6b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfZ2R8JS08GpliVdClpMLY7YezwgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIxMDAxMTQyWhcNMjUwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NTZhMTIyYTZiMDU0ODVkNjYyODFhODJkMTg0NzBlNWI5 OThmNDQ5YTUzMTYyMzI0MmFiMGU5OTUxMzAxZDFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+U9ssk3UupzgoUBgle7dmNoMkmgDjvGgcMKO/4C92vgsf LKWjT3LS1FU6PjG+clYndoWSFwdB6vFS+zD/TVMU4gQwdSx/N/HhlGPrlmLQMKXt UISpfa1sOB5hFhf17yhMooIkVg53Y3SySJcbApKsJhPQExjeJ3cyajuK/QBXC/V5 p11k6tis41qDN09gDRG9CKroDBbhwjwqnkyfAPPnCsDhZ/uLGsZoSJCEhbLNkkFB tXl6bmcgZsSn2kRxLYcOvpmlLrYmsngMS8eJ+dz0Dc3ak/cAkCUOgs8aPVwfdCqK uDKugbTanBFPxtTGwqqXzretjCX90EihPH7uVie/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJcd02kEPpHx+seD3Q91/+vyT4p4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q2YjI0Mjc1LTBhNDAtNGYxZi1iMDQzLTBkOTE0YmU5ODU0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCg3TANBgkqhkiG9w0BAQsFAAOCAQEAiRfIpcSVhGgIrSEA+dadPMBzjj0I +A9nyit3nQNT9hH2XrHl7RiiPLZXyKlL3/QMmKLwzp5CZVqbLPLno6lsvS/IpdCi cuHVytRWVn4e861BCNhCBxl9bCkuiIUqBqpk0KcODw/wZFnTf8tTGZTIVgWWP4WY HJIhXR2y7cWGKw9RF8miusjZTLI+XgEhVuFaSKlI2C0Va9uVrJabsC+lnp/KOBns F+WTWXWDL44U4wSUQXNbkQ0JEsCfK8zXVKCfyZYlVST2OZkuIt0/Kl8tq/+u74C+ EkYWGP0hScA1cU+rj8hid4AQuIUVvcVDocwzcbdLKLAYlbvRWVz5q9Lyaw== -----END CERTIFICATE-----Generated at Wed Jul 2 13:44:04 2025 by rpki-client