$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8fadca1-ece1-4fd9-8c0c-44964044b286.roa File: d8fadca1-ece1-4fd9-8c0c-44964044b286.roa (raw, json) Hash identifier: f1gVbMRB67FdlBmxUL3ggYb60oXI0+2ARv8uKo85PsU= Subject key identifier: 3C:DA:AA:9E:03:B2:27:56:37:4D:A5:55:EA:F9:9A:C9:C0:5F:97:E1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BD5D5B66E89CC2A7E4A7E3890F46273BF4D22A5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8fadca1-ece1-4fd9-8c0c-44964044b286.roa Signing time: Tue 17 Jun 2025 00:12:09 +0000 ROA not before: Tue 17 Jun 2025 00:12:09 +0000 ROA not after: Tue 22 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 142.54.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d5:d5:b6:6e:89:cc:2a:7e:4a:7e:38:90:f4:62:73:bf:4d:22:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 17 00:12:09 2025 GMT Not After : Jul 22 23:59:59 2025 GMT Subject: serialNumber=9ea83e5f8b876d40931ca8425b20ba59ccf8e360335296a0705df8efe6c5ecc4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:0e:11:4d:f5:88:15:73:02:f9:5c:f7:1e:84: c4:7b:1a:aa:a9:b6:f5:4c:6e:18:bb:74:91:28:ad: 1b:c6:94:d3:2e:1c:3c:c8:fe:eb:0d:b5:2f:02:0c: fe:7d:d5:87:fa:4e:f9:59:c2:d8:0c:88:19:9a:b2: 12:6e:f7:a3:5d:52:92:f0:85:0b:67:41:2e:1f:81: dc:85:10:f4:b4:76:7d:83:e7:5f:0f:25:a5:06:3e: d4:c3:e1:e1:6a:eb:85:47:1b:d4:11:16:cf:d6:a5: b8:81:fe:2a:eb:03:f1:37:5a:9f:8d:87:a7:89:cf: 3e:c0:ef:9b:17:5f:69:0b:16:1a:ac:ac:87:76:6c: 07:6b:22:49:d1:d7:02:c8:90:81:52:0d:01:b8:ea: 7e:3d:26:42:a0:dc:8c:9d:9f:ea:04:84:04:7a:73: 1d:30:75:59:ad:c8:d9:0c:78:af:dd:7e:e0:f8:58: 27:a8:af:fb:36:8b:4a:a3:aa:bf:da:09:4f:c6:ba: 06:db:66:70:e8:5a:09:ae:63:e8:20:49:5e:29:3a: b4:30:a3:9b:08:a6:2e:79:6b:d9:3b:c6:8b:d2:70: 2f:1a:19:a6:c4:80:87:95:ea:5e:16:57:67:bf:8f: 70:f2:59:b5:99:1d:b7:bb:43:1b:ec:db:20:80:15: f3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:DA:AA:9E:03:B2:27:56:37:4D:A5:55:EA:F9:9A:C9:C0:5F:97:E1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8fadca1-ece1-4fd9-8c0c-44964044b286.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 142.54.128.0/19 Signature Algorithm: sha256WithRSAEncryption c5:ec:8e:24:f2:df:dd:27:78:a1:19:f4:41:b3:83:7b:79:96: 17:2f:85:53:4a:70:c4:2a:88:13:44:f6:bf:31:e2:a1:7b:b1: a6:f3:80:a1:dc:54:10:09:aa:b6:80:8b:db:81:a4:7f:78:e0: a7:85:1d:67:ae:61:8c:42:0e:4e:ff:b7:29:52:ff:39:b0:e9: 1f:69:0d:a4:be:5c:be:11:b6:97:9a:06:63:5a:87:2c:76:81: 0a:0e:2f:34:80:c1:7f:c7:38:f0:1f:0d:db:a9:16:f9:fa:73: 11:13:6d:0a:cb:7b:15:9f:80:0f:1b:f2:e9:69:91:d4:07:39: 76:67:a5:83:79:88:10:eb:fc:8b:d2:cc:e1:96:c0:7d:6d:12: c6:82:bd:75:7f:1b:99:db:04:2f:32:e7:c4:d7:86:a1:0b:94: 27:40:74:5d:bd:d5:ec:32:fe:38:9e:3b:3f:b6:5f:2c:93:09: 56:d7:21:35:0b:60:ad:61:72:ee:02:c8:6d:f0:15:ac:75:86: 5c:37:1a:c5:38:86:a7:e8:06:86:fc:b5:7a:d3:73:8f:59:2e: a9:77:2b:06:14:f0:17:be:78:f1:e6:a6:61:97:ec:32:89:d8: 30:c1:7b:ae:50:d1:d9:c9:a1:ec:ef:e8:ee:4a:f8:91:c0:84: d9:90:31:f8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW9XVtm6JzCp+Sn44kPRic79NIqUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE3MDAxMjA5WhcNMjUwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZWE4M2U1ZjhiODc2ZDQwOTMxY2E4NDI1YjIwYmE1OWNj ZjhlMzYwMzM1Mjk2YTA3MDVkZjhlZmU2YzVlY2M0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEDhFN9YgVcwL5XPcehMR7GqqptvVMbhi7dJEorRvGlNMu HDzI/usNtS8CDP591Yf6TvlZwtgMiBmashJu96NdUpLwhQtnQS4fgdyFEPS0dn2D 518PJaUGPtTD4eFq64VHG9QRFs/WpbiB/irrA/E3Wp+Nh6eJzz7A75sXX2kLFhqs rId2bAdrIknR1wLIkIFSDQG46n49JkKg3Iydn+oEhAR6cx0wdVmtyNkMeK/dfuD4 WCeor/s2i0qjqr/aCU/GugbbZnDoWgmuY+ggSV4pOrQwo5sIpi55a9k7xovScC8a GabEgIeV6l4WV2e/j3DyWbWZHbe7Qxvs2yCAFfPjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPNqqngOyJ1Y3TaVV6vmaycBfl+EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4ZmFkY2ExLWVjZTEtNGZkOS04YzBjLTQ0OTY0MDQ0YjI4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWONoAwDQYJKoZIhvcNAQELBQADggEBAMXsjiTy390neKEZ9EGzg3t5lhcv hVNKcMQqiBNE9r8x4qF7sabzgKHcVBAJqraAi9uBpH944KeFHWeuYYxCDk7/tylS /zmw6R9pDaS+XL4RtpeaBmNahyx2gQoOLzSAwX/HOPAfDdupFvn6cxETbQrLexWf gA8b8ulpkdQHOXZnpYN5iBDr/IvSzOGWwH1tEsaCvXV/G5nbBC8y58TXhqELlCdA dF291ewy/jieOz+2XyyTCVbXITULYK1hcu4CyG3wFax1hlw3GsU4hqfoBob8tXrT c49ZLql3KwYU8Be+ePHmpmGX7DKJ2DDBe65Q0dnJoezv6O5K+JHAhNmQMfg= -----END CERTIFICATE-----Generated at Sun Jun 29 06:41:03 2025 by rpki-client