$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/26ebf15b-8b83-4ca7-9786-65e57e8877c3.roa File: 26ebf15b-8b83-4ca7-9786-65e57e8877c3.roa (raw, json) Hash identifier: Xzb6WZqlX5M2EKCcQw8yGiWqgqPpw37HDE4d5rMAMq8= Subject key identifier: 1B:9A:83:77:DD:24:13:D3:C1:62:DC:B9:02:7A:B0:27:BC:DF:33:A9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 199590C30873151161AF5CB514ABD29863E3A4DB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/26ebf15b-8b83-4ca7-9786-65e57e8877c3.roa Signing time: Wed 04 Jun 2025 00:11:04 +0000 ROA not before: Wed 04 Jun 2025 00:11:04 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.250.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:95:90:c3:08:73:15:11:61:af:5c:b5:14:ab:d2:98:63:e3:a4:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 4 00:11:04 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=707ad8ae1d8ef6d4a41e5a5b14477e37dc19330a9b933c222ab68773fd5d7db7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ed:fb:58:39:ea:9d:7e:ea:ed:0d:f3:e2:c7: bb:2d:e1:b4:3c:ad:38:98:ca:82:8f:4d:a5:20:19: d4:df:1f:d3:bd:71:96:bd:bd:57:38:cd:fb:63:5a: b0:72:de:87:d1:2d:d0:47:34:dd:d4:82:9b:af:40: a2:90:41:86:e6:6a:93:8d:0e:c8:2f:f2:7f:c5:55: 1c:e5:f7:01:94:7a:32:ed:5c:81:97:d0:ec:53:10: 46:9a:44:30:95:fe:48:fd:4a:ae:f4:23:9d:b3:4a: 95:9e:ce:fb:84:d5:05:aa:8b:d6:48:a2:b9:0d:26: 76:52:82:a5:82:7e:32:71:6a:dd:4d:a1:d9:22:9f: 71:5f:2c:f4:ef:de:5d:9c:23:35:62:2e:52:c1:f0: 45:33:e7:6b:6e:82:2d:a7:92:50:89:11:ce:fb:7b: dd:11:01:4b:d9:2b:74:3e:23:6f:e6:37:ca:f8:72: 3c:3c:bb:c0:bb:ae:3a:f5:a9:1a:2f:19:2e:97:9c: 52:67:38:de:25:d6:0d:c2:51:11:3c:e3:d6:e7:02: 7a:d5:56:b0:f8:44:dd:b5:03:2c:42:a8:0e:59:96: 36:9b:da:95:c5:72:81:d5:ee:a7:c2:5d:51:75:f8: 02:42:1d:4b:c8:85:eb:30:b4:17:4e:fb:68:c5:45: 3e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:9A:83:77:DD:24:13:D3:C1:62:DC:B9:02:7A:B0:27:BC:DF:33:A9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/26ebf15b-8b83-4ca7-9786-65e57e8877c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.250.0.0/16 Signature Algorithm: sha256WithRSAEncryption 19:28:77:fe:9a:0c:88:62:e5:c6:6f:e9:54:cd:83:f6:52:8f: 79:50:9c:b7:bd:25:12:9d:84:f5:56:41:12:44:24:68:97:5c: 55:01:00:40:41:50:a1:2d:33:b2:e2:7d:73:64:ab:b8:2f:58: 20:74:93:2c:03:21:2d:7e:35:2f:9b:2a:88:ff:6f:07:d8:45: d5:fe:ae:86:4f:aa:a7:d5:29:38:1f:51:c5:82:8a:7a:1c:41: 9d:ea:70:dd:c2:d9:17:7d:db:90:6f:8e:27:b2:ff:fc:c0:1e: 18:4e:a5:b8:07:44:9f:6c:29:df:76:5c:5d:17:ae:c0:80:40: d2:7d:ff:8f:e3:57:27:58:8c:2a:fc:30:ff:e9:e7:98:b1:cc: fd:06:cf:50:5c:55:d2:92:e4:44:7f:69:47:37:37:0f:2a:dd: 30:96:ef:b1:f2:49:90:f9:e5:c4:61:b6:c2:e1:e1:d5:fb:20: 83:3c:59:3c:33:52:c6:c7:15:24:5b:9a:a9:15:6a:44:d1:5d: 36:8b:6e:c6:ef:98:5c:4e:64:fe:f4:68:64:a3:e1:7a:1f:d7: ab:93:d5:02:8a:0e:51:c9:af:59:27:4d:1b:69:f4:b0:34:d3: a9:a3:e8:69:4f:8f:4e:e3:2f:bd:f6:a3:ed:a3:c9:f1:49:a2: 25:fb:6f:8c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGZWQwwhzFRFhr1y1FKvSmGPjpNswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA0MDAxMTA0WhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MDdhZDhhZTFkOGVmNmQ0YTQxZTVhNWIxNDQ3N2UzN2Rj MTkzMzBhOWI5MzNjMjIyYWI2ODc3M2ZkNWQ3ZGI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCs7ftYOeqdfurtDfPix7st4bQ8rTiYyoKPTaUgGdTfH9O9 cZa9vVc4zftjWrBy3ofRLdBHNN3UgpuvQKKQQYbmapONDsgv8n/FVRzl9wGUejLt XIGX0OxTEEaaRDCV/kj9Sq70I52zSpWezvuE1QWqi9ZIorkNJnZSgqWCfjJxat1N odkin3FfLPTv3l2cIzViLlLB8EUz52tugi2nklCJEc77e90RAUvZK3Q+I2/mN8r4 cjw8u8C7rjr1qRovGS6XnFJnON4l1g3CURE849bnAnrVVrD4RN21AyxCqA5Zljab 2pXFcoHV7qfCXVF1+AJCHUvIheswtBdO+2jFRT7BAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUG5qDd90kE9PBYty5AnqwJ7zfM6kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI2ZWJmMTViLThiODMtNGNhNy05Nzg2LTY1ZTU3ZTg4NzdjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4+jANBgkqhkiG9w0BAQsFAAOCAQEAGSh3/poMiGLlxm/pVM2D9lKPeVCc t70lEp2E9VZBEkQkaJdcVQEAQEFQoS0zsuJ9c2SruC9YIHSTLAMhLX41L5sqiP9v B9hF1f6uhk+qp9UpOB9RxYKKehxBnepw3cLZF33bkG+OJ7L//MAeGE6luAdEn2wp 33ZcXReuwIBA0n3/j+NXJ1iMKvww/+nnmLHM/QbPUFxV0pLkRH9pRzc3DyrdMJbv sfJJkPnlxGG2wuHh1fsggzxZPDNSxscVJFuaqRVqRNFdNotuxu+YXE5k/vRoZKPh eh/Xq5PVAooOUcmvWSdNG2n0sDTTqaPoaU+PTuMvvfaj7aPJ8UmiJftvjA== -----END CERTIFICATE-----Generated at Sat Jun 14 06:20:15 2025 by rpki-client