$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e5a52770-75fd-4126-9116-3362d8dc25af.roa File: e5a52770-75fd-4126-9116-3362d8dc25af.roa (raw, json) Hash identifier: NV/2Sxpjm2At26zLfeghCAcLZWyD3p+J5hcO0AxYrxU= Subject key identifier: 02:F6:C4:7F:C2:F6:17:64:E2:2F:A2:4B:1A:2A:94:AA:9C:58:A7:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 323E569A37267F7B062494B3503999B551908C82 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e5a52770-75fd-4126-9116-3362d8dc25af.roa Signing time: Tue 10 Jun 2025 16:00:29 +0000 ROA not before: Tue 10 Jun 2025 16:00:29 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.16.108.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:3e:56:9a:37:26:7f:7b:06:24:94:b3:50:39:99:b5:51:90:8c:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 10 16:00:29 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=358cbd64aa41e315335b93891d5cea347a75a49b127daf2e1c5391133972f827, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f4:00:b1:a5:fe:d5:a2:f0:a2:4c:5a:90:0f: c5:07:a9:65:e1:96:4b:36:36:4e:05:75:a6:29:88: 10:8b:17:4f:0b:af:55:44:91:63:71:55:70:1a:67: 63:69:fb:98:33:41:63:90:71:7b:06:7c:ab:a4:52: b9:bb:85:aa:24:4c:cc:3b:f8:7e:40:c7:31:58:f7: cf:9b:09:42:33:e0:47:1b:81:75:90:52:1e:4c:10: c2:8a:86:55:6d:08:2b:31:c8:a5:f8:0e:4c:ab:16: 89:8d:d7:36:ab:b8:e5:dd:1b:44:3a:8d:7d:2b:dd: 2e:c6:dc:99:a4:ef:c0:42:e8:77:a3:57:04:2f:d6: 92:56:36:29:4e:a3:f9:26:33:0d:3c:41:c0:2f:2b: 20:b1:4d:d8:79:ae:05:66:c8:f9:18:d7:6a:c2:71: cb:69:11:3a:e4:ee:de:86:87:8e:f5:ca:c3:55:75: 98:3c:88:35:ff:42:e8:8c:9a:fe:1c:b7:f2:7a:be: 6d:5f:50:13:f2:dc:5d:b3:1f:60:cf:6f:71:ca:cc: 26:96:2e:bf:0b:74:90:48:18:61:83:92:97:dd:2d: 40:76:5e:56:7a:b2:b0:b9:82:bc:b5:c4:b9:08:b0: 46:07:4e:7e:85:63:f9:fb:a9:04:94:ae:e9:fe:83: 80:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:F6:C4:7F:C2:F6:17:64:E2:2F:A2:4B:1A:2A:94:AA:9C:58:A7:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e5a52770-75fd-4126-9116-3362d8dc25af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.16.108.0/23 Signature Algorithm: sha256WithRSAEncryption c6:f2:a6:f8:da:c8:42:3d:0b:c2:6b:9e:dc:ef:59:67:86:7c: 0c:b9:e1:05:c9:00:4a:eb:4c:ff:47:4f:4d:4e:0c:28:4e:a0: 9e:21:72:2d:6a:cb:a4:a5:49:8f:3d:de:48:cd:21:08:1f:c6: 75:2d:4f:3a:b9:6e:b2:47:d9:26:af:5f:c6:68:62:a1:55:f2: f3:b4:25:7a:43:eb:e7:31:d3:d9:66:e3:4b:0d:5d:c8:24:62: 46:09:63:9f:b7:2f:6f:68:31:7b:bc:63:72:3b:6d:44:e1:af: 49:f1:2e:ad:af:32:1d:b7:08:87:63:f6:9b:c0:26:c3:b8:2b: a7:43:b0:bf:e4:be:56:f8:e6:df:9d:d5:d8:b9:c4:12:a2:6e: 6a:17:91:48:69:1a:0c:f8:bb:27:df:fb:28:b7:f9:9d:7b:05: 61:75:6f:6b:d5:60:28:68:67:e6:3d:bd:1d:99:22:c9:e2:ef: cc:72:9d:f5:85:f3:d1:1b:a5:a8:35:fe:1e:f9:bc:55:1c:7c: 0f:b2:60:72:34:1a:f4:5a:ad:f6:ca:17:6e:36:42:7f:d9:b5: 9f:98:31:f6:cd:68:db:c2:69:b0:bd:b3:6d:f4:64:fb:5d:33: b9:2e:cb:47:95:16:54:21:b4:53:65:5d:8f:ae:be:ab:a4:0c: ec:f3:b3:fe -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMj5Wmjcmf3sGJJSzUDmZtVGQjIIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEwMTYwMDI5WhcNMjUwNzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNThjYmQ2NGFhNDFlMzE1MzM1YjkzODkxZDVjZWEzNDdh NzVhNDliMTI3ZGFmMmUxYzUzOTExMzM5NzJmODI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCm9ACxpf7VovCiTFqQD8UHqWXhlks2Nk4FdaYpiBCLF08L r1VEkWNxVXAaZ2Np+5gzQWOQcXsGfKukUrm7haokTMw7+H5AxzFY98+bCUIz4Ecb gXWQUh5MEMKKhlVtCCsxyKX4DkyrFomN1zaruOXdG0Q6jX0r3S7G3Jmk78BC6Hej VwQv1pJWNilOo/kmMw08QcAvKyCxTdh5rgVmyPkY12rCcctpETrk7t6Gh471ysNV dZg8iDX/QuiMmv4ct/J6vm1fUBPy3F2zH2DPb3HKzCaWLr8LdJBIGGGDkpfdLUB2 XlZ6srC5gry1xLkIsEYHTn6FY/n7qQSUrun+g4CrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAvbEf8L2F2TiL6JLGiqUqpxYp9kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U1YTUyNzcwLTc1ZmQtNDEyNi05MTE2LTMzNjJkOGRjMjVhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEQEGwwDQYJKoZIhvcNAQELBQADggEBAMbypvjayEI9C8JrntzvWWeGfAy5 4QXJAErrTP9HT01ODChOoJ4hci1qy6SlSY893kjNIQgfxnUtTzq5brJH2SavX8Zo YqFV8vO0JXpD6+cx09lm40sNXcgkYkYJY5+3L29oMXu8Y3I7bUThr0nxLq2vMh23 CIdj9pvAJsO4K6dDsL/kvlb45t+d1di5xBKibmoXkUhpGgz4uyff+yi3+Z17BWF1 b2vVYChoZ+Y9vR2ZIsni78xynfWF89Ebpag1/h75vFUcfA+yYHI0GvRarfbKF242 Qn/ZtZ+YMfbNaNvCabC9s230ZPtdM7kuy0eVFlQhtFNlXY+uvqukDOzzs/4= -----END CERTIFICATE-----Generated at Thu Jul 3 00:59:10 2025 by rpki-client