$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dae0253e-b4d8-4623-b4ce-9451a6087b11.roa File: dae0253e-b4d8-4623-b4ce-9451a6087b11.roa (raw, json) Hash identifier: KwBPRC8Q8WloAZr3k/e3UIYTvrUjsRY33+oKeSVCKUo= Subject key identifier: D3:BA:A4:68:6C:68:89:62:B0:B8:B9:3F:34:DB:FA:84:C4:4A:BD:F5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 110F13FB00D89EADD02E8B2E0A942720EF4B785C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dae0253e-b4d8-4623-b4ce-9451a6087b11.roa Signing time: Sat 07 Jun 2025 00:30:29 +0000 ROA not before: Sat 07 Jun 2025 00:30:29 +0000 ROA not after: Sat 12 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.157.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:0f:13:fb:00:d8:9e:ad:d0:2e:8b:2e:0a:94:27:20:ef:4b:78:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 7 00:30:29 2025 GMT Not After : Jul 12 23:59:59 2025 GMT Subject: serialNumber=240906571e684a6b0caf1b4ab4b0eab94f28abee064c40feda48ac5ac05113a5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:30:51:53:32:ae:1c:c9:cf:75:5d:1c:8f:00: a5:7d:67:83:f5:8d:13:d4:9f:91:0c:ee:bb:99:75: e9:cf:5e:28:61:8c:4c:f8:40:20:14:d7:0c:e3:08: 17:42:88:5b:a1:ac:e5:97:42:55:17:14:13:ff:ea: 35:29:20:82:c2:42:eb:3c:17:02:ea:56:73:42:7a: 67:1a:e0:e6:54:00:51:df:fc:44:5d:01:bd:aa:b9: 15:1b:4e:ee:f9:63:c5:a6:9b:2e:be:6f:c4:65:c2: 10:9c:e8:84:1b:28:96:41:f2:7d:fb:3a:55:2b:e0: be:12:0b:c0:f8:5b:c4:0b:6a:e6:80:16:4e:ac:70: 7e:02:18:7d:58:a6:d3:9f:9c:1c:57:44:1a:4a:0c: 73:e9:84:91:32:4e:c3:75:2f:d7:ad:32:eb:d4:81: 7a:3b:69:4a:9c:e4:f2:f8:98:5f:bf:8f:24:4a:79: 5b:1c:e8:db:18:3e:e6:65:7a:ff:64:cd:e2:3d:b6: f9:26:a9:e1:c5:82:59:3d:84:6c:95:93:aa:4c:af: f8:eb:a2:d9:fb:cf:bc:7c:d0:ea:9f:59:d0:47:5f: 37:b5:e9:51:5d:dc:11:6c:21:d2:70:24:8d:dc:19: 68:a8:cd:17:be:e9:4c:c6:f9:17:3a:9f:8e:70:a3: 7f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:BA:A4:68:6C:68:89:62:B0:B8:B9:3F:34:DB:FA:84:C4:4A:BD:F5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dae0253e-b4d8-4623-b4ce-9451a6087b11.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.157.4.0/22 Signature Algorithm: sha256WithRSAEncryption ce:4a:0c:70:a5:77:e1:80:16:ad:e0:ca:31:71:74:ca:02:40: 46:67:e5:77:e5:3b:c6:2c:66:bc:f5:f4:d5:e5:d5:e1:76:74: 9d:68:73:0f:06:ef:19:89:66:95:87:8b:d0:88:32:8c:30:61: 9e:22:8c:4c:52:92:d7:b6:64:db:6f:96:a9:83:37:79:42:b3: 01:17:5d:e8:f3:29:89:2f:13:9b:73:30:06:08:e8:0b:a6:81: 47:0b:0d:96:70:c0:12:09:75:55:37:1b:07:c6:ea:2a:1c:d3: da:05:f3:ef:e7:84:4e:cb:4c:d5:c3:db:f3:3d:13:b9:9f:c1: 60:e6:e3:56:f8:79:5a:e6:b9:83:9a:db:1a:cb:63:bb:71:bd: aa:80:80:6e:f5:8e:6d:6a:57:33:d2:15:31:b1:47:05:48:3d: 6a:8b:0b:d2:25:26:d9:7f:22:bf:9c:42:78:38:dc:9f:7d:09: b4:92:cf:02:e8:4d:2a:6b:98:34:4b:c0:fe:b1:1a:ce:f4:9c: af:c7:1c:37:0f:c7:ac:11:39:09:7d:2b:be:0d:a8:92:4b:9c: 04:c2:bd:72:78:d7:c0:d2:96:cb:d1:c5:d4:d2:7d:1d:e1:7d: 07:9d:ca:68:6e:f1:b9:b9:ad:bf:d8:4a:7a:26:cd:a5:20:3a: d8:31:bf:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEQ8T+wDYnq3QLosuCpQnIO9LeFwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA3MDAzMDI5WhcNMjUwNzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDA5MDY1NzFlNjg0YTZiMGNhZjFiNGFiNGIwZWFiOTRm MjhhYmVlMDY0YzQwZmVkYTQ4YWM1YWMwNTExM2E1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtMFFTMq4cyc91XRyPAKV9Z4P1jRPUn5EM7ruZdenPXihh jEz4QCAU1wzjCBdCiFuhrOWXQlUXFBP/6jUpIILCQus8FwLqVnNCemca4OZUAFHf /ERdAb2quRUbTu75Y8Wmmy6+b8RlwhCc6IQbKJZB8n37OlUr4L4SC8D4W8QLauaA Fk6scH4CGH1YptOfnBxXRBpKDHPphJEyTsN1L9etMuvUgXo7aUqc5PL4mF+/jyRK eVsc6NsYPuZlev9kzeI9tvkmqeHFglk9hGyVk6pMr/jrotn7z7x80OqfWdBHXze1 6VFd3BFsIdJwJI3cGWiozRe+6UzG+Rc6n45wo39XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU07qkaGxoiWKwuLk/NNv6hMRKvfUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhZTAyNTNlLWI0ZDgtNDYyMy1iNGNlLTk0NTFhNjA4N2IxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALYnQQwDQYJKoZIhvcNAQELBQADggEBAM5KDHCld+GAFq3gyjFxdMoCQEZn 5XflO8YsZrz19NXl1eF2dJ1ocw8G7xmJZpWHi9CIMowwYZ4ijExSkte2ZNtvlqmD N3lCswEXXejzKYkvE5tzMAYI6AumgUcLDZZwwBIJdVU3GwfG6ioc09oF8+/nhE7L TNXD2/M9E7mfwWDm41b4eVrmuYOa2xrLY7txvaqAgG71jm1qVzPSFTGxRwVIPWqL C9IlJtl/Ir+cQng43J99CbSSzwLoTSprmDRLwP6xGs70nK/HHDcPx6wROQl9K74N qJJLnATCvXJ418DSlsvRxdTSfR3hfQedymhu8bm5rb/YSnomzaUgOtgxv6g= -----END CERTIFICATE-----Generated at Tue Jul 1 09:37:17 2025 by rpki-client