$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/280150a9-28cf-4a60-ae68-8c0cf3fe64df.roa File: 280150a9-28cf-4a60-ae68-8c0cf3fe64df.roa (raw, json) Hash identifier: Bp4tqDMr7M4NkcChVjgj8QT6FzewCXqnCOF2dHZknAk= Subject key identifier: D5:7D:10:1B:07:99:35:D1:0C:6E:FD:1C:AD:6D:16:C2:3D:F9:5C:30 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58A116A3EAD24310B007380A3A1B26C5FC525ACF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/280150a9-28cf-4a60-ae68-8c0cf3fe64df.roa Signing time: Fri 13 Jun 2025 00:42:16 +0000 ROA not before: Fri 13 Jun 2025 00:42:16 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 174.129.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a1:16:a3:ea:d2:43:10:b0:07:38:0a:3a:1b:26:c5:fc:52:5a:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 00:42:16 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=31cb3dcc33cc00a069266e5ea62278210495d427bf386c8b184523f33b876208, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a1:9f:e8:e6:89:9d:ea:df:99:9d:05:fa:9c: 18:99:8d:8b:fa:b2:22:ef:93:1c:f0:17:8c:46:01: bc:13:42:98:c4:a8:84:73:fe:e4:0b:6f:ca:d0:22: d3:7e:6d:76:f9:b3:ef:4e:f6:4d:37:06:bd:0f:24: f7:cc:3a:c7:b9:a3:09:9d:9c:75:7b:c8:4e:78:5e: 73:da:88:da:eb:72:29:c1:79:3a:e1:f6:fe:dd:06: 8e:97:e2:80:eb:2c:74:6e:2f:d8:13:d2:d4:34:34: 48:d3:c1:51:af:f3:29:3a:9c:3d:31:13:bc:bf:ea: cd:9a:3b:08:fe:bf:52:91:b3:1b:cb:7e:c0:cd:2e: 57:0c:30:26:2f:4b:89:4a:fb:70:6c:68:b0:f1:f1: 7f:95:43:d1:a1:e4:b5:c4:92:4d:7f:f4:5c:60:cc: a4:d6:c2:99:d3:94:e0:f3:83:f0:90:83:78:f2:ec: 3f:e1:d6:89:d3:18:60:3d:19:2b:d4:fb:71:5d:1b: fe:62:c1:05:e3:ab:03:9d:da:a8:3c:9f:bd:66:d0: 5a:18:90:94:6b:7a:93:e5:54:9e:19:2a:0d:ca:d2: b1:52:24:1b:0d:da:d1:de:6a:a2:ac:d2:f9:6f:37: 3e:fb:42:78:4c:91:2c:a5:c2:21:de:ee:a5:0e:ad: 70:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:7D:10:1B:07:99:35:D1:0C:6E:FD:1C:AD:6D:16:C2:3D:F9:5C:30 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/280150a9-28cf-4a60-ae68-8c0cf3fe64df.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 174.129.0.0/19 Signature Algorithm: sha256WithRSAEncryption 79:38:77:2c:3b:e0:52:f4:2c:9b:38:90:25:f5:8c:98:b1:c9: 91:05:d5:fb:82:91:f1:34:d2:73:fd:53:19:0c:25:bb:88:af: 7f:04:ae:43:36:d1:5d:21:bc:aa:ac:55:f2:d5:0e:9f:93:8d: ce:9b:c4:6f:78:7d:96:84:65:15:59:77:00:18:70:dd:b5:0d: 5f:b3:36:22:9c:e1:07:fe:40:21:81:d2:3f:8d:93:2c:fd:c5: 66:db:4e:38:1f:0f:df:3c:f4:5f:c5:e9:07:48:6f:3f:fd:36: 6c:be:5d:e0:a9:14:51:c4:07:23:6c:fb:af:ff:e8:ad:8a:3a: 25:e8:83:dd:80:37:bd:b4:7a:53:36:85:5b:fe:42:c7:dd:33: bf:5c:2d:98:78:46:62:3b:4c:9a:73:b4:91:c9:0c:78:f6:4c: ba:0e:dc:c1:f1:80:6f:83:df:45:6d:30:10:d5:46:7b:82:e4: 7c:21:a3:d5:ef:97:28:2f:df:43:4d:f3:2f:1f:10:e2:52:e8: cc:7d:cc:03:f6:15:4a:c4:44:58:c8:82:a8:39:c0:0e:ea:45: 7a:76:66:57:1b:e3:2a:64:ca:b6:b7:2c:50:67:66:40:6c:ce: 19:0c:12:24:b6:7e:2e:16:f5:37:70:89:9a:89:fb:e5:1a:91: fa:a4:c0:26 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWKEWo+rSQxCwBzgKOhsmxfxSWs8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMDA0MjE2WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMWNiM2RjYzMzY2MwMGEwNjkyNjZlNWVhNjIyNzgyMTA0 OTVkNDI3YmYzODZjOGIxODQ1MjNmMzNiODc2MjA4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/oZ/o5omd6t+ZnQX6nBiZjYv6siLvkxzwF4xGAbwTQpjE qIRz/uQLb8rQItN+bXb5s+9O9k03Br0PJPfMOse5owmdnHV7yE54XnPaiNrrcinB eTrh9v7dBo6X4oDrLHRuL9gT0tQ0NEjTwVGv8yk6nD0xE7y/6s2aOwj+v1KRsxvL fsDNLlcMMCYvS4lK+3BsaLDx8X+VQ9Gh5LXEkk1/9FxgzKTWwpnTlODzg/CQg3jy 7D/h1onTGGA9GSvU+3FdG/5iwQXjqwOd2qg8n71m0FoYkJRrepPlVJ4ZKg3K0rFS JBsN2tHeaqKs0vlvNz77QnhMkSylwiHe7qUOrXARAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1X0QGweZNdEMbv0crW0Wwj35XDAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4MDE1MGE5LTI4Y2YtNGE2MC1hZTY4LThjMGNmM2ZlNjRkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWugQAwDQYJKoZIhvcNAQELBQADggEBAHk4dyw74FL0LJs4kCX1jJixyZEF 1fuCkfE00nP9UxkMJbuIr38ErkM20V0hvKqsVfLVDp+Tjc6bxG94fZaEZRVZdwAY cN21DV+zNiKc4Qf+QCGB0j+Nkyz9xWbbTjgfD9889F/F6QdIbz/9Nmy+XeCpFFHE ByNs+6//6K2KOiXog92AN720elM2hVv+QsfdM79cLZh4RmI7TJpztJHJDHj2TLoO 3MHxgG+D30VtMBDVRnuC5Hwho9Xvlygv30NN8y8fEOJS6Mx9zAP2FUrERFjIgqg5 wA7qRXp2Zlcb4ypkyra3LFBnZkBszhkMEiS2fi4W9TdwiZqJ++UakfqkwCY= -----END CERTIFICATE-----Generated at Sat Jun 14 18:55:48 2025 by rpki-client