$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2fe5322-91ca-4110-b210-af46310a9592.roa File: f2fe5322-91ca-4110-b210-af46310a9592.roa (raw, json) Hash identifier: +I5G9HrLEiKl8zVqVGjq3dRpS/q1nqi3GBK9u6igHb4= Subject key identifier: 8B:03:69:7A:97:C3:48:C5:97:BD:8F:E7:77:9B:F7:A1:5C:B3:A0:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5686E15CF1C602073C42D0F56636899AA05F8A4E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2fe5322-91ca-4110-b210-af46310a9592.roa Signing time: Sat 21 Jun 2025 00:20:52 +0000 ROA not before: Sat 21 Jun 2025 00:20:52 +0000 ROA not after: Sat 26 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 166.92.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:86:e1:5c:f1:c6:02:07:3c:42:d0:f5:66:36:89:9a:a0:5f:8a:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 21 00:20:52 2025 GMT Not After : Jul 26 23:59:59 2025 GMT Subject: serialNumber=1348f16cc366ae80227cd87590bf84ed1ab4d215aba0296a5258157f78004582, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:75:22:78:c4:65:23:7e:a7:c7:40:5c:a4:49: e8:e3:48:56:2c:da:41:b7:b5:5e:05:25:ed:a0:51: 17:cf:32:84:8b:4d:e3:de:6a:7b:03:28:97:10:b4: 4a:3e:ff:32:95:bc:50:95:2f:fe:6c:be:4a:7f:d6: 70:91:6f:97:00:d1:fc:ad:60:6c:62:69:1a:7b:91: 10:75:54:98:89:c8:c5:bd:2c:70:f0:81:4f:a9:c5: 42:1e:b1:38:49:c6:b9:50:cd:7d:92:d1:37:1b:aa: 75:3f:d2:22:84:f5:64:15:54:10:d5:b7:e2:59:c5: 23:4d:4f:26:9a:78:bd:59:5c:14:b9:5d:1d:8c:b5: 40:2c:41:ab:b8:28:b3:4a:64:b2:0f:07:34:b0:6b: 24:35:80:55:7a:2f:5f:88:d1:2e:4d:0e:37:59:f3: d1:f9:d0:f9:4a:d8:51:a8:28:63:90:eb:00:34:b7: 3e:05:7b:45:0b:c0:92:19:00:9e:e0:5f:1d:7c:79: 85:16:80:da:aa:39:2b:fc:44:b1:fa:cf:27:5d:99: 95:64:33:2b:26:9d:51:aa:fa:c8:df:61:8d:df:4f: 8d:9e:18:42:e6:6f:6e:5a:3e:7d:f5:1c:8b:96:fe: 8a:c5:2f:3d:a7:32:5d:b1:1f:c5:5f:7d:15:03:27: d0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:03:69:7A:97:C3:48:C5:97:BD:8F:E7:77:9B:F7:A1:5C:B3:A0:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2fe5322-91ca-4110-b210-af46310a9592.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 166.92.0.0/16 Signature Algorithm: sha256WithRSAEncryption 19:0c:13:db:8d:29:18:b6:0f:10:0a:80:9f:3c:67:c2:78:ab: 06:7b:ea:c0:87:b3:55:a2:c5:4e:61:f8:18:01:e8:f2:ee:c2: c0:71:dd:88:54:b5:8c:cf:bc:19:a0:89:e4:7c:07:e6:34:d8: 51:8f:3d:92:2f:97:e4:bd:10:16:d8:c8:8c:57:16:7d:cf:1c: 6b:5b:68:2f:0b:2b:95:29:ca:09:28:27:d3:fd:69:31:bf:40: 57:1b:12:6a:e3:da:78:f1:b1:59:e7:6a:ba:66:92:3b:7f:83: 8d:5c:8c:b2:90:0b:06:3f:42:22:d5:fe:56:3b:90:48:ad:5e: 71:bc:a1:07:ba:bd:89:68:cd:6f:f8:eb:63:67:13:3b:41:5a: 4d:29:9a:50:70:34:3f:bb:6b:21:40:4c:73:37:24:00:23:f9: fb:8b:ce:08:ef:b9:91:92:cd:ac:51:2c:83:a4:0b:e5:fc:c9: b1:70:05:3c:22:c3:d0:89:77:c1:1e:e9:f0:87:44:f2:8e:c6: 10:4f:54:f6:a9:6f:72:d5:2a:e8:82:10:07:f9:d8:79:be:e6: 32:45:5e:4d:03:a4:d3:db:6d:1e:d3:ec:cf:8e:d6:3c:d3:81: e9:0b:52:bb:41:7c:c1:07:69:ef:8a:a9:61:79:2f:a8:c1:8c: 6b:47:48:01 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVobhXPHGAgc8QtD1ZjaJmqBfik4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIxMDAyMDUyWhcNMjUwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzQ4ZjE2Y2MzNjZhZTgwMjI3Y2Q4NzU5MGJmODRlZDFh YjRkMjE1YWJhMDI5NmE1MjU4MTU3Zjc4MDA0NTgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6dSJ4xGUjfqfHQFykSejjSFYs2kG3tV4FJe2gURfPMoSL TePeansDKJcQtEo+/zKVvFCVL/5svkp/1nCRb5cA0fytYGxiaRp7kRB1VJiJyMW9 LHDwgU+pxUIesThJxrlQzX2S0TcbqnU/0iKE9WQVVBDVt+JZxSNNTyaaeL1ZXBS5 XR2MtUAsQau4KLNKZLIPBzSwayQ1gFV6L1+I0S5NDjdZ89H50PlK2FGoKGOQ6wA0 tz4Fe0ULwJIZAJ7gXx18eYUWgNqqOSv8RLH6zyddmZVkMysmnVGq+sjfYY3fT42e GELmb25aPn31HIuW/orFLz2nMl2xH8VffRUDJ9ALAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUiwNpepfDSMWXvY/nd5v3oVyzoFIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyZmU1MzIyLTkxY2EtNDExMC1iMjEwLWFmNDYzMTBhOTU5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCmXDANBgkqhkiG9w0BAQsFAAOCAQEAGQwT240pGLYPEAqAnzxnwnirBnvq wIezVaLFTmH4GAHo8u7CwHHdiFS1jM+8GaCJ5HwH5jTYUY89ki+X5L0QFtjIjFcW fc8ca1toLwsrlSnKCSgn0/1pMb9AVxsSauPaePGxWedqumaSO3+DjVyMspALBj9C ItX+VjuQSK1ecbyhB7q9iWjNb/jrY2cTO0FaTSmaUHA0P7trIUBMczckACP5+4vO CO+5kZLNrFEsg6QL5fzJsXAFPCLD0Il3wR7p8IdE8o7GEE9U9qlvctUq6IIQB/nY eb7mMkVeTQOk09ttHtPsz47WPNOB6QtSu0F8wQdp74qpYXkvqMGMa0dIAQ== -----END CERTIFICATE-----Generated at Fri Jul 4 02:41:29 2025 by rpki-client