$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28d33436-53d2-4ebd-bddc-4f8b317802ba.roa File: 28d33436-53d2-4ebd-bddc-4f8b317802ba.roa (raw, json) Hash identifier: SKd/uEumZAJ0PWydd2Xfeld4yFrANhOHfMWFcTisdcc= Subject key identifier: 33:52:F7:12:B2:48:01:E8:4F:DE:C6:7A:4E:47:6B:CD:9B:D5:32:51 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11E8A2464461888D1FADBFBD72CBD565EB9912B5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28d33436-53d2-4ebd-bddc-4f8b317802ba.roa Signing time: Fri 06 Jun 2025 00:10:50 +0000 ROA not before: Fri 06 Jun 2025 00:10:50 +0000 ROA not after: Fri 11 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.22.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:e8:a2:46:44:61:88:8d:1f:ad:bf:bd:72:cb:d5:65:eb:99:12:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 6 00:10:50 2025 GMT Not After : Jul 11 23:59:59 2025 GMT Subject: serialNumber=f4469cb2008b80d1a015bf95b8a20795d149aaa884e5495aab965a1329000f5b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0d:88:ba:10:1e:b2:49:27:55:68:37:fd:85: 1c:ea:18:c7:98:91:f2:e1:3d:09:2d:60:5d:2c:44: a6:0e:66:b9:c4:36:7c:f4:5c:aa:7e:b7:1a:5b:27: 0e:59:9f:7f:2f:58:2b:41:a7:60:3d:2f:f0:f7:ef: 27:60:b3:bf:87:21:9e:5f:43:02:7a:a7:f2:a4:fe: 77:15:4c:be:0c:4e:8b:45:90:fb:3e:c5:13:46:2d: 93:91:36:fd:dc:df:77:28:f2:30:93:7b:25:7a:8e: 3e:0c:42:1a:fb:8a:c4:91:f6:4c:14:9a:7c:d1:9e: 76:84:bd:42:d7:7e:a4:f3:f3:5d:0f:85:87:78:83: 76:a1:d5:d5:25:dc:45:81:ea:31:1b:51:ee:a5:37: e2:7e:cd:fd:8b:97:71:a1:84:6e:83:ae:5c:bb:43: 13:7c:35:1d:92:37:16:d0:c7:ea:6a:72:42:cb:f8: 02:06:75:32:c8:e1:05:67:b4:51:fd:d1:e5:0a:80: f0:5a:95:6d:1e:a9:59:72:e6:92:4f:51:ae:4a:57: 65:da:56:b0:a0:a9:19:a1:25:93:83:07:ab:1b:f1: 5f:08:be:2c:d6:e0:a5:c8:62:2a:95:da:0b:41:2d: 8b:bf:1c:35:31:6d:68:42:37:58:92:ee:a4:48:91: 45:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:52:F7:12:B2:48:01:E8:4F:DE:C6:7A:4E:47:6B:CD:9B:D5:32:51 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28d33436-53d2-4ebd-bddc-4f8b317802ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.22.0.0/17 Signature Algorithm: sha256WithRSAEncryption 83:8c:9d:d6:dd:92:ac:fa:e7:3d:2d:27:96:2c:87:56:73:59: 29:b3:27:9f:b8:c1:a7:eb:b9:fc:d1:a5:1e:be:5b:74:56:1c: 75:8a:b5:07:9e:f4:41:58:4c:24:7f:fe:54:05:6e:6a:f6:fd: f5:06:0e:54:c3:a4:32:dd:46:e1:c1:e5:1a:40:37:08:a2:a3: 7a:33:2d:35:12:17:5a:9b:b3:a0:cd:44:d8:1b:56:91:6e:aa: e2:ab:d5:71:16:63:fc:b0:35:08:d8:3b:f5:4c:43:7e:06:14: 4d:ed:ee:f8:f3:73:5d:2b:0f:8c:e5:72:5e:2d:c1:5e:c8:8c: 48:c2:ca:f7:f3:09:b9:e3:cf:17:a7:a0:4a:c9:c5:51:36:48: 17:25:8a:7b:3c:84:2d:12:b9:b0:52:fb:ca:94:8f:ba:4d:b4: 21:0d:b0:f0:87:ff:3e:6c:dd:bf:d7:be:b7:37:4c:00:5b:f4: 05:3c:a6:fa:ad:59:e9:d3:a8:ad:77:97:86:16:3a:e7:cd:24: 91:d7:ec:19:92:42:bc:78:1a:6b:c9:6f:fb:41:1c:9e:3e:14: d8:4b:ae:d5:b4:db:47:97:1b:b2:e9:d2:0b:13:59:dd:74:de: b9:fa:f7:24:e8:0e:eb:6e:c8:9b:ab:89:c1:e8:e9:3e:21:1a: 73:5b:a2:e4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEeiiRkRhiI0frb+9csvVZeuZErUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA2MDAxMDUwWhcNMjUwNzExMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDQ2OWNiMjAwOGI4MGQxYTAxNWJmOTViOGEyMDc5NWQx NDlhYWE4ODRlNTQ5NWFhYjk2NWExMzI5MDAwZjViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1DYi6EB6ySSdVaDf9hRzqGMeYkfLhPQktYF0sRKYOZrnE Nnz0XKp+txpbJw5Zn38vWCtBp2A9L/D37ydgs7+HIZ5fQwJ6p/Kk/ncVTL4MTotF kPs+xRNGLZORNv3c33co8jCTeyV6jj4MQhr7isSR9kwUmnzRnnaEvULXfqTz810P hYd4g3ah1dUl3EWB6jEbUe6lN+J+zf2Ll3GhhG6Drly7QxN8NR2SNxbQx+pqckLL +AIGdTLI4QVntFH90eUKgPBalW0eqVly5pJPUa5KV2XaVrCgqRmhJZODB6sb8V8I vizW4KXIYiqV2gtBLYu/HDUxbWhCN1iS7qRIkUUnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUM1L3ErJIAehP3sZ6TkdrzZvVMlEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4ZDMzNDM2LTUzZDItNGViZC1iZGRjLTRmOGIzMTc4MDJiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdFFgAwDQYJKoZIhvcNAQELBQADggEBAIOMndbdkqz65z0tJ5Ysh1ZzWSmz J5+4wafrufzRpR6+W3RWHHWKtQee9EFYTCR//lQFbmr2/fUGDlTDpDLdRuHB5RpA Nwiio3ozLTUSF1qbs6DNRNgbVpFuquKr1XEWY/ywNQjYO/VMQ34GFE3t7vjzc10r D4zlcl4twV7IjEjCyvfzCbnjzxenoErJxVE2SBclins8hC0SubBS+8qUj7pNtCEN sPCH/z5s3b/Xvrc3TABb9AU8pvqtWenTqK13l4YWOufNJJHX7BmSQrx4GmvJb/tB HJ4+FNhLrtW020eXG7Lp0gsTWd103rn69yToDutuyJuricHo6T4hGnNbouQ= -----END CERTIFICATE-----Generated at Sat Jun 14 06:43:20 2025 by rpki-client