$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fbcb60b-a5ea-46f5-9918-7ad443253fcf.roa File: 0fbcb60b-a5ea-46f5-9918-7ad443253fcf.roa (raw, json) Hash identifier: gTgo+rbrAzaeQ2h06BTm5OT/k9JLCkBPtnrb8uy/ThI= Subject key identifier: 1C:EB:A0:9C:74:33:A7:D2:E9:A3:03:FD:69:E2:7A:63:8E:C2:B1:48 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 235EAB50088537D570548B9CA4EA9853CB282A5B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fbcb60b-a5ea-46f5-9918-7ad443253fcf.roa Signing time: Tue 10 Jun 2025 16:01:05 +0000 ROA not before: Tue 10 Jun 2025 16:01:05 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.160.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:5e:ab:50:08:85:37:d5:70:54:8b:9c:a4:ea:98:53:cb:28:2a:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 10 16:01:05 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=18fcd3dca3ffbb5be036ca8c336e5ba79e66939ff9c746090d69e206a4de352a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:0e:18:52:f2:41:56:b0:5d:c0:01:d7:cc:e7: 62:0b:85:21:b3:88:fa:f3:31:5a:f8:f2:27:97:07: fd:a8:d2:e7:cf:c9:09:56:53:67:55:2c:70:c9:dd: c6:2d:9b:24:80:e1:78:71:4b:53:0e:d3:f8:cf:b3: 1f:32:18:35:34:1f:0d:e6:ab:ff:b2:f4:11:65:5f: 32:be:0b:3c:5a:e5:15:dc:14:fa:be:50:05:64:6a: 7c:58:60:af:93:61:af:14:ee:d8:f8:e8:fb:da:93: b5:95:13:ff:2e:9d:ca:3b:af:9e:b7:dd:18:da:43: b2:10:50:cc:08:b4:81:16:77:89:ec:dc:88:11:83: 85:fb:f2:3d:e7:cd:9a:43:98:2e:6e:b2:6f:68:c3: 2b:72:14:50:96:10:59:05:a5:eb:41:64:d5:88:ef: 2b:55:46:30:86:6b:42:ef:77:ca:0d:d7:9f:7e:bf: 6f:6d:b5:4f:40:36:08:9f:46:2b:77:27:3e:c0:05: 7e:af:e8:94:c4:5b:74:fe:e0:83:71:e5:51:8a:d0: 16:2f:79:d7:a2:e6:1a:5e:77:6d:eb:c2:e9:1d:f7: e9:e1:30:45:3e:2b:94:29:a1:c0:4e:0d:5c:62:22: b7:75:4a:d3:b8:73:3e:a3:65:cd:72:d2:99:b0:ec: 4a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:EB:A0:9C:74:33:A7:D2:E9:A3:03:FD:69:E2:7A:63:8E:C2:B1:48 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fbcb60b-a5ea-46f5-9918-7ad443253fcf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.160.0.0/16 Signature Algorithm: sha256WithRSAEncryption 69:2b:be:52:c8:e4:64:76:6a:d3:02:fd:16:dd:7d:f8:a1:2f: 7a:43:ac:24:ca:16:7a:80:bf:68:78:0b:12:42:3a:57:83:06: 62:ce:fb:9c:63:3f:49:ee:62:cb:ac:33:65:0d:a1:99:4f:59: 3a:5b:4c:e1:72:03:77:a9:eb:91:0b:0a:7c:b2:4f:17:48:a2: f0:fc:49:fb:0d:dd:37:10:d9:62:c0:03:74:ea:d8:6e:06:f0: d0:aa:59:ab:b5:54:95:f8:94:ac:dd:6e:5a:ec:0c:22:93:64: f5:40:e7:3e:ec:58:85:65:af:92:5a:90:7b:6d:c8:5e:b4:da: 75:dd:52:87:0b:24:18:d2:ce:fe:49:4c:ae:25:de:d4:00:92: 5c:eb:10:4c:73:d9:00:b1:e3:9d:07:15:89:b2:fa:80:52:d9: 8b:52:16:01:a8:68:17:80:ad:db:e0:46:d3:aa:66:35:87:af: 62:82:0b:df:d4:87:92:65:37:ce:73:8b:f7:01:b1:c7:40:72: 42:c4:05:67:c0:73:3d:13:5f:d9:a4:1d:da:aa:b1:ec:40:78: ef:68:45:5e:35:10:f3:1e:f1:12:92:fd:36:82:b8:11:5b:7f: 3c:13:54:1e:29:3c:01:34:b7:f2:d8:66:ef:b1:c0:57:2b:2e: d6:1b:00:82 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUI16rUAiFN9VwVIucpOqYU8soKlswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEwMTYwMTA1WhcNMjUwNzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOGZjZDNkY2EzZmZiYjViZTAzNmNhOGMzMzZlNWJhNzll NjY5MzlmZjljNzQ2MDkwZDY5ZTIwNmE0ZGUzNTJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgDhhS8kFWsF3AAdfM52ILhSGziPrzMVr48ieXB/2o0ufP yQlWU2dVLHDJ3cYtmySA4XhxS1MO0/jPsx8yGDU0Hw3mq/+y9BFlXzK+Czxa5RXc FPq+UAVkanxYYK+TYa8U7tj46Pvak7WVE/8unco7r5633RjaQ7IQUMwItIEWd4ns 3IgRg4X78j3nzZpDmC5usm9owytyFFCWEFkFpetBZNWI7ytVRjCGa0Lvd8oN159+ v29ttU9ANgifRit3Jz7ABX6v6JTEW3T+4INx5VGK0BYvedei5hped23rwukd9+nh MEU+K5QpocBODVxiIrd1StO4cz6jZc1y0pmw7EpdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHOugnHQzp9LpowP9aeJ6Y47CsUgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmYmNiNjBiLWE1ZWEtNDZmNS05OTE4LTdhZDQ0MzI1M2ZjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBroDANBgkqhkiG9w0BAQsFAAOCAQEAaSu+UsjkZHZq0wL9Ft19+KEvekOs JMoWeoC/aHgLEkI6V4MGYs77nGM/Se5iy6wzZQ2hmU9ZOltM4XIDd6nrkQsKfLJP F0ii8PxJ+w3dNxDZYsADdOrYbgbw0KpZq7VUlfiUrN1uWuwMIpNk9UDnPuxYhWWv klqQe23IXrTadd1ShwskGNLO/klMriXe1ACSXOsQTHPZALHjnQcVibL6gFLZi1IW AahoF4Ct2+BG06pmNYevYoIL39SHkmU3znOL9wGxx0ByQsQFZ8BzPRNf2aQd2qqx 7EB472hFXjUQ8x7xEpL9NoK4EVt/PBNUHik8ATS38thm77HAVysu1hsAgg== -----END CERTIFICATE-----Generated at Sun Jun 15 07:16:41 2025 by rpki-client