$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ebb8b2c6-e910-45f8-815f-53a36c636115.roa File: ebb8b2c6-e910-45f8-815f-53a36c636115.roa (raw, json) Hash identifier: bP0OjIQ7VD2rzzMOQWCWXi/YxP3cXRPchxsLv0yuf5s= Subject key identifier: F0:91:08:00:AC:3E:8A:4C:97:18:9A:B3:85:D5:24:C0:EE:33:41:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2045221C97A2A5F45D9D1496A265CFB250C3E127 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ebb8b2c6-e910-45f8-815f-53a36c636115.roa Signing time: Mon 23 Jun 2025 15:32:14 +0000 ROA not before: Mon 23 Jun 2025 15:32:14 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 57.88.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:45:22:1c:97:a2:a5:f4:5d:9d:14:96:a2:65:cf:b2:50:c3:e1:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:32:14 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=0bc216755a8ade1d88e6e4a35122551847116485d202fa527fdb4bb36be9a695, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e3:54:cb:a6:01:e0:2c:9e:45:67:19:06:85: 8c:43:90:5c:91:91:e2:55:c2:56:eb:a6:66:30:a8: 6e:79:b3:b4:2b:12:d6:79:11:20:26:80:6b:e4:07: 4b:e6:14:c8:88:17:c9:75:06:37:65:cc:05:88:96: 7a:f5:0e:2e:c5:5b:b7:bc:28:51:6b:f4:00:da:02: dc:42:49:bf:67:70:37:11:84:4b:47:b8:a0:b6:85: 12:fc:d3:c4:78:bb:1e:b2:79:41:9d:31:96:cf:cf: ba:54:c1:28:3a:2a:14:f6:ba:96:7c:62:94:c7:7d: e8:5d:a5:cb:f4:65:48:e7:7b:a7:2c:71:db:35:13: 6b:a0:51:fc:5d:35:39:b9:0d:69:ee:29:01:12:60: 32:6a:51:b7:55:c2:e6:0b:87:d6:54:34:dc:d6:c7: 5e:1e:7c:4a:59:c4:81:c7:57:8c:c1:ed:0b:73:9f: 0e:fa:c0:b9:42:11:a3:8d:b9:ae:e3:98:05:53:c9: 00:0d:ac:1c:a8:84:35:b4:32:fd:38:4e:e9:a2:3c: eb:75:41:a5:c7:dc:e4:99:56:eb:db:28:53:ed:e1: cf:ea:ec:96:80:93:e2:89:31:68:aa:e8:90:5a:00: 0f:30:99:1b:6c:87:8b:47:e1:00:98:19:dc:6f:1e: fc:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:91:08:00:AC:3E:8A:4C:97:18:9A:B3:85:D5:24:C0:EE:33:41:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ebb8b2c6-e910-45f8-815f-53a36c636115.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.88.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2e:3b:72:41:5e:a8:21:69:62:38:2c:f3:0c:bd:e3:f4:c1:59: 08:c2:3e:3a:f0:68:80:7a:c9:87:6e:87:67:de:ca:cb:93:35: d6:32:bc:47:86:ae:06:e3:3b:1c:de:c7:62:36:a9:55:f4:b0: 29:38:70:c6:8b:ee:02:4a:4a:93:20:c4:df:dd:65:e6:20:86: a9:5a:8b:0a:f0:ed:be:a9:95:c1:c6:98:3f:72:4a:7a:05:d7: 44:5c:ef:d7:f1:ca:e1:22:f9:c6:7b:92:7d:82:1f:ae:d8:7e: 42:e3:32:dc:ff:d3:24:01:82:31:f4:a8:b9:19:dc:60:ec:7e: 04:f3:ab:02:31:ec:52:3c:56:d0:6d:08:a3:68:e0:e0:6d:5c: 86:9a:c2:45:24:aa:fe:2a:7f:8f:a5:ae:5f:21:c7:15:78:b2: 79:c6:19:4d:97:1e:6e:25:88:69:eb:a2:ea:f9:a4:34:93:71: 5e:a3:4b:f9:79:d5:7b:4b:c8:e5:5f:f1:67:8a:5d:f4:de:ba: 82:ea:a4:cf:f5:64:24:bd:7b:1b:85:0d:82:ae:23:bc:b6:74: 40:f6:98:6b:82:1c:71:65:64:3e:97:f3:7d:db:69:b9:61:09: e8:c2:61:b3:32:76:6f:b3:3d:76:e5:bb:38:d0:36:7e:60:16: 3c:1f:40:e1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIEUiHJeipfRdnRSWomXPslDD4ScwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUzMjE0WhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYmMyMTY3NTVhOGFkZTFkODhlNmU0YTM1MTIyNTUxODQ3 MTE2NDg1ZDIwMmZhNTI3ZmRiNGJiMzZiZTlhNjk1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO41TLpgHgLJ5FZxkGhYxDkFyRkeJVwlbrpmYwqG55s7Qr EtZ5ESAmgGvkB0vmFMiIF8l1BjdlzAWIlnr1Di7FW7e8KFFr9ADaAtxCSb9ncDcR hEtHuKC2hRL808R4ux6yeUGdMZbPz7pUwSg6KhT2upZ8YpTHfehdpcv0ZUjne6cs cds1E2ugUfxdNTm5DWnuKQESYDJqUbdVwuYLh9ZUNNzWx14efEpZxIHHV4zB7Qtz nw76wLlCEaONua7jmAVTyQANrByohDW0Mv04TumiPOt1QaXH3OSZVuvbKFPt4c/q 7JaAk+KJMWiq6JBaAA8wmRtsh4tH4QCYGdxvHvx9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8JEIAKw+ikyXGJqzhdUkwO4zQZowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ViYjhiMmM2LWU5MTAtNDVmOC04MTVmLTUzYTM2YzYzNjExNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5WDANBgkqhkiG9w0BAQsFAAOCAQEALjtyQV6oIWliOCzzDL3j9MFZCMI+ OvBogHrJh26HZ97Ky5M11jK8R4auBuM7HN7HYjapVfSwKThwxovuAkpKkyDE391l 5iCGqVqLCvDtvqmVwcaYP3JKegXXRFzv1/HK4SL5xnuSfYIfrth+QuMy3P/TJAGC MfSouRncYOx+BPOrAjHsUjxW0G0Io2jg4G1chprCRSSq/ip/j6WuXyHHFXiyecYZ TZcebiWIaeui6vmkNJNxXqNL+XnVe0vI5V/xZ4pd9N66guqkz/VkJL17G4UNgq4j vLZ0QPaYa4IccWVkPpfzfdtpuWEJ6MJhszJ2b7M9duW7ONA2fmAWPB9A4Q== -----END CERTIFICATE-----Generated at Tue Jul 1 07:11:31 2025 by rpki-client