$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cafe4c1-68f8-4701-986b-5ec06431a231.roa File: 0cafe4c1-68f8-4701-986b-5ec06431a231.roa (raw, json) Hash identifier: KUNGUghCXB+/SPv1J7zIVB0wiIWY78u2PF/uJKB/ryw= Subject key identifier: BB:B9:87:83:3D:4A:DD:DB:D1:E4:ED:61:67:05:66:11:18:FE:90:DC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7314689078E730EA79D05642A645C917790E0F91 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cafe4c1-68f8-4701-986b-5ec06431a231.roa Signing time: Sat 14 Jun 2025 00:51:03 +0000 ROA not before: Sat 14 Jun 2025 00:51:03 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.25.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 19 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:14:68:90:78:e7:30:ea:79:d0:56:42:a6:45:c9:17:79:0e:0f:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:51:03 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=922594785295c8a1477ecf0b48e33b8d679c87c891dbb76c28673e80f7e8d579, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e2:51:f1:ff:20:b9:22:46:65:97:51:58:ab: ef:d7:a6:3a:2a:3a:48:9c:12:89:ba:0b:65:f1:e5: 0a:da:81:0a:66:f2:bf:4e:33:11:a0:83:a5:f4:bb: 25:5d:a1:b8:5c:55:0d:60:5b:45:f4:28:08:42:03: ee:8b:65:7b:b2:56:bc:95:a4:c6:38:37:0b:27:3b: e7:eb:3b:50:18:4b:9c:c8:9d:1d:0b:44:a9:d6:dd: f2:1b:ee:be:92:6b:7a:46:1e:2f:b7:50:f8:c4:d3: f2:3e:a0:a7:5c:01:eb:6b:2c:48:b3:ef:bc:cf:94: f7:78:70:4e:2b:dc:df:b2:a4:1f:a7:b0:83:0a:d3: 03:d7:95:7d:2a:54:8d:36:ba:7d:36:2e:7d:7d:6d: f3:c2:45:f2:90:2b:58:25:6b:b6:28:10:a5:aa:b6: e9:3b:50:12:19:82:20:f2:e4:be:bc:41:83:2d:f1: 48:d7:73:07:5f:2c:60:55:80:9f:b7:6c:2e:71:1a: c8:84:07:5b:f0:7b:b7:16:be:9f:a5:64:cf:55:ee: a4:df:81:93:b3:ff:a8:16:be:79:6e:59:74:52:49: 5e:41:cc:83:f5:61:11:2a:73:fd:39:cd:76:0d:a1: 1b:71:46:06:d6:05:7f:bb:53:e9:4e:10:7f:31:65: 76:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:B9:87:83:3D:4A:DD:DB:D1:E4:ED:61:67:05:66:11:18:FE:90:DC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cafe4c1-68f8-4701-986b-5ec06431a231.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.0.0/16 Signature Algorithm: sha256WithRSAEncryption aa:01:33:18:77:54:f1:56:e6:76:a8:9c:a4:ef:02:8f:8d:07: 22:95:12:2e:20:de:5b:68:bb:07:19:4d:1b:2e:d4:81:46:3a: 64:74:5f:ef:12:97:32:f5:2d:50:55:11:84:24:e4:84:a7:01: 35:e6:ff:c5:68:64:23:34:f7:76:3b:dc:27:ba:9f:cf:7a:d0: 61:3b:39:3a:e1:93:1e:49:2a:34:78:a0:39:a9:82:4d:65:5a: 37:54:9a:3a:95:97:5f:c2:a5:89:4f:7c:e1:ed:c9:16:de:a5: 91:07:a4:61:e0:1a:1d:eb:43:a5:ff:90:15:a6:09:86:14:7e: f0:73:8e:c9:2f:37:9b:aa:a3:fe:06:af:1e:d2:a2:82:8d:8a: b0:46:b6:bc:2a:e1:08:bc:22:0d:2f:fe:df:f8:40:59:d7:94: 28:f2:29:b2:50:88:58:7c:6d:dd:63:ae:f7:25:40:06:f0:cd: e3:59:da:ae:0f:9c:9b:95:b9:2f:a0:4b:48:f3:9f:9c:3e:69: 53:c9:06:62:e8:13:96:86:93:57:61:d8:cf:d6:ac:1f:80:18: fd:94:26:41:3b:73:58:64:10:c5:58:59:e9:c5:44:49:d8:ad: 00:5f:7a:e0:ce:76:3d:53:06:9c:63:57:71:66:0b:32:64:8b: d2:86:ea:cc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcxRokHjnMOp50FZCpkXJF3kOD5EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDA1MTAzWhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MjI1OTQ3ODUyOTVjOGExNDc3ZWNmMGI0OGUzM2I4ZDY3 OWM4N2M4OTFkYmI3NmMyODY3M2U4MGY3ZThkNTc5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH4lHx/yC5IkZll1FYq+/XpjoqOkicEom6C2Xx5QragQpm 8r9OMxGgg6X0uyVdobhcVQ1gW0X0KAhCA+6LZXuyVryVpMY4NwsnO+frO1AYS5zI nR0LRKnW3fIb7r6Sa3pGHi+3UPjE0/I+oKdcAetrLEiz77zPlPd4cE4r3N+ypB+n sIMK0wPXlX0qVI02un02Ln19bfPCRfKQK1gla7YoEKWqtuk7UBIZgiDy5L68QYMt 8UjXcwdfLGBVgJ+3bC5xGsiEB1vwe7cWvp+lZM9V7qTfgZOz/6gWvnluWXRSSV5B zIP1YREqc/05zXYNoRtxRgbWBX+7U+lOEH8xZXYrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUu7mHgz1K3dvR5O1hZwVmERj+kNwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjYWZlNGMxLTY4ZjgtNDcwMS05ODZiLTVlYzA2NDMxYTIzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2GTANBgkqhkiG9w0BAQsFAAOCAQEAqgEzGHdU8VbmdqicpO8Cj40HIpUS LiDeW2i7BxlNGy7UgUY6ZHRf7xKXMvUtUFURhCTkhKcBNeb/xWhkIzT3djvcJ7qf z3rQYTs5OuGTHkkqNHigOamCTWVaN1SaOpWXX8KliU984e3JFt6lkQekYeAaHetD pf+QFaYJhhR+8HOOyS83m6qj/gavHtKigo2KsEa2vCrhCLwiDS/+3/hAWdeUKPIp slCIWHxt3WOu9yVABvDN41narg+cm5W5L6BLSPOfnD5pU8kGYugTloaTV2HYz9as H4AY/ZQmQTtzWGQQxVhZ6cVESditAF964M52PVMGnGNXcWYLMmSL0obqzA== -----END CERTIFICATE-----Generated at Tue Jun 17 20:14:59 2025 by rpki-client