$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e27e6a-31da-41fe-92f4-ae61707162ed.roa File: 21e27e6a-31da-41fe-92f4-ae61707162ed.roa (raw, json) Hash identifier: 9G1nSlE0M4IaAH4XNpyr4R+N4c1GAIrnqFez9a7AzGk= Subject key identifier: 1C:C1:65:6C:C0:6C:64:E1:47:51:7C:7D:C1:0B:09:0E:28:49:DD:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 068DAC2331A33F19095545CFD63EF040605997CA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e27e6a-31da-41fe-92f4-ae61707162ed.roa Signing time: Wed 28 May 2025 00:41:51 +0000 ROA not before: Wed 28 May 2025 00:41:51 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 68.215.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:8d:ac:23:31:a3:3f:19:09:55:45:cf:d6:3e:f0:40:60:59:97:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:41:51 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=b35af87f9216aacc621c81142f47a4699c651f11e01c58cb92de6eb6bf507087, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c9:c5:51:77:4e:69:cf:50:f2:16:ca:4a:6b: 5c:10:9b:f2:e4:22:10:38:87:94:84:63:2c:13:db: 4e:f4:e0:cb:27:46:65:cc:e2:d8:8d:6a:f6:95:59: 5a:0b:84:9c:70:4a:9e:24:b4:51:8d:d8:71:a2:06: 0d:d2:2e:d3:4b:c0:4a:ee:bf:6e:6c:fb:1d:5a:de: 27:92:09:34:42:fd:3e:02:58:6e:94:7a:82:6f:11: b9:8c:f4:fc:c8:97:4c:7d:6d:b3:57:ef:16:d0:5e: 92:da:c5:52:18:bb:25:49:60:91:50:49:47:7c:9b: 59:03:94:2f:c6:29:a4:fc:1f:ad:0a:6c:7b:09:a4: 36:d3:ed:f0:23:29:3c:b0:82:ce:73:ba:7b:f7:05: 15:f4:30:f2:14:c4:89:1e:f8:cf:01:c0:0f:60:c7: b1:7c:94:f7:dd:5d:63:74:df:02:e1:01:fa:92:78: 4a:51:02:a0:b7:b1:b3:ca:ea:be:9a:18:c1:12:d8: d8:6f:2b:ad:dd:7e:b2:87:e0:91:09:79:f0:42:43: b4:de:f9:62:1d:ba:69:38:5a:c1:f6:30:f9:81:f3: ef:85:ee:7b:c5:e0:02:03:1f:1d:d8:c8:28:7a:db: b3:56:7d:89:6b:21:52:34:c8:8d:a3:c5:1f:30:34: df:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:C1:65:6C:C0:6C:64:E1:47:51:7C:7D:C1:0B:09:0E:28:49:DD:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e27e6a-31da-41fe-92f4-ae61707162ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 68.215.0.0/16 Signature Algorithm: sha256WithRSAEncryption 82:68:0c:fa:f9:33:a0:2c:b9:de:64:e0:48:bb:95:b9:cf:b9: 72:d1:13:86:15:19:af:a6:b9:88:3a:13:bb:fc:0d:52:08:14: d7:df:4e:e8:63:ac:82:bf:3c:3a:7a:af:08:bb:38:d4:04:52: d0:a8:2b:4f:b3:83:72:77:23:d7:e1:66:67:eb:bd:9f:b2:cd: bf:e0:44:4d:41:20:a0:9e:c9:0e:ef:47:94:ee:ef:76:4a:96: e2:4e:bb:df:2c:7b:d1:8f:bd:83:95:23:fc:e9:f2:85:26:5d: 8f:8e:aa:05:5b:fd:9e:73:bb:ce:a9:19:8c:41:77:e1:f2:3e: 72:8f:da:19:5b:31:77:17:02:1c:ed:86:a0:e7:53:f3:01:dd: 63:37:a2:26:8d:2a:6c:00:4c:b6:82:d8:ba:70:90:b7:b7:5a: 30:95:64:1f:e2:a9:af:ea:0a:b3:f7:88:9d:18:24:09:a1:92: c0:79:7e:82:b5:79:a0:6c:83:ed:9d:70:f2:be:33:3e:02:6e: 30:7f:f2:b0:8d:8b:8e:9c:0c:08:10:0b:32:2f:3d:76:30:d0: 42:d5:7e:18:a3:ec:07:e9:65:0f:30:a0:dd:5d:4f:97:b5:cb: 15:fb:9f:9a:8f:f7:87:8a:0a:36:39:dc:68:7d:54:4b:69:c1: 29:5f:2f:04 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBo2sIzGjPxkJVUXP1j7wQGBZl8owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDA0MTUxWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzVhZjg3ZjkyMTZhYWNjNjIxYzgxMTQyZjQ3YTQ2OTlj NjUxZjExZTAxYzU4Y2I5MmRlNmViNmJmNTA3MDg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuycVRd05pz1DyFspKa1wQm/LkIhA4h5SEYywT20704Msn RmXM4tiNavaVWVoLhJxwSp4ktFGN2HGiBg3SLtNLwEruv25s+x1a3ieSCTRC/T4C WG6UeoJvEbmM9PzIl0x9bbNX7xbQXpLaxVIYuyVJYJFQSUd8m1kDlC/GKaT8H60K bHsJpDbT7fAjKTywgs5zunv3BRX0MPIUxIke+M8BwA9gx7F8lPfdXWN03wLhAfqS eEpRAqC3sbPK6r6aGMES2NhvK63dfrKH4JEJefBCQ7Te+WIdumk4WsH2MPmB8++F 7nvF4AIDHx3YyCh627NWfYlrIVI0yI2jxR8wNN/dAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHMFlbMBsZOFHUXx9wQsJDihJ3SwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxZTI3ZTZhLTMxZGEtNDFmZS05MmY0LWFlNjE3MDcxNjJlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBE1zANBgkqhkiG9w0BAQsFAAOCAQEAgmgM+vkzoCy53mTgSLuVuc+5ctET hhUZr6a5iDoTu/wNUggU199O6GOsgr88OnqvCLs41ARS0KgrT7ODcncj1+FmZ+u9 n7LNv+BETUEgoJ7JDu9HlO7vdkqW4k673yx70Y+9g5Uj/OnyhSZdj46qBVv9nnO7 zqkZjEF34fI+co/aGVsxdxcCHO2GoOdT8wHdYzeiJo0qbABMtoLYunCQt7daMJVk H+Kpr+oKs/eInRgkCaGSwHl+grV5oGyD7Z1w8r4zPgJuMH/ysI2LjpwMCBALMi89 djDQQtV+GKPsB+llDzCg3V1Pl7XLFfufmo/3h4oKNjncaH1US2nBKV8vBA== -----END CERTIFICATE-----Generated at Sat Jun 14 06:51:44 2025 by rpki-client