$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f3a411f-ea9b-4432-94a6-527e3464f16d.roa File: 2f3a411f-ea9b-4432-94a6-527e3464f16d.roa (raw, json) Hash identifier: Wwo6c40C2yDX0D/tV8n4zFUt3f2mh1EZcsgYRjO0/Y8= Subject key identifier: 0C:04:DD:BE:92:1E:87:85:1C:E3:C5:88:A3:56:FC:E3:FD:7C:4F:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 304DBEFE4C1D2F848174C21EA52B3F893B535F97 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f3a411f-ea9b-4432-94a6-527e3464f16d.roa Signing time: Tue 03 Jun 2025 15:06:53 +0000 ROA not before: Tue 03 Jun 2025 15:06:53 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 15.134.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:4d:be:fe:4c:1d:2f:84:81:74:c2:1e:a5:2b:3f:89:3b:53:5f:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 3 15:06:53 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=baa59eea373fa14efb3357ebfa02291613a7adafa58fe2f147862d6322c9090c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:33:94:78:01:52:fe:8c:c1:45:af:4f:6d:ec: 9f:96:6e:42:b6:9d:07:98:be:42:fa:6e:39:ff:17: 78:bc:dd:5a:9a:d3:3c:c5:6e:8c:bf:3a:71:fb:9b: be:d4:fd:ae:f3:71:94:f4:9e:73:4e:09:80:67:8a: 88:2b:7e:aa:7d:da:ef:11:4f:56:ea:30:1c:92:be: 91:d8:f1:1e:3c:28:c1:a4:d1:9a:f6:b9:67:0b:f9: a3:6e:a1:50:3d:b5:de:da:08:e3:57:1b:66:1c:b6: fd:bf:0c:00:c4:e9:71:aa:87:fa:7a:92:95:7c:6b: de:65:fb:a9:66:20:ca:60:5a:5f:2d:75:b0:11:fd: d1:9e:50:84:c9:95:2d:d7:a7:8f:91:9d:74:3a:2e: cd:ee:22:41:47:21:58:87:39:d2:08:2b:51:ce:8d: 7d:cb:95:5b:f2:b3:95:2d:6e:bc:bc:fc:2f:1c:c1: 99:6e:34:5f:27:91:83:36:5c:f0:8c:46:88:05:b3: 38:70:60:07:c8:01:f5:c6:f3:e6:dc:28:83:79:83: e2:d2:5e:fb:95:a2:b3:25:07:87:ba:5e:1f:2f:48: cd:ab:17:c3:ac:7d:1c:33:73:9a:77:4a:d0:ed:16: c7:ea:2a:e2:16:3e:f8:8e:95:3b:7e:37:84:c5:20: f3:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:04:DD:BE:92:1E:87:85:1C:E3:C5:88:A3:56:FC:E3:FD:7C:4F:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f3a411f-ea9b-4432-94a6-527e3464f16d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.134.0.0/16 Signature Algorithm: sha256WithRSAEncryption 36:76:21:06:7a:c1:0f:a9:b4:8d:b0:71:f0:1f:5c:02:2b:e2: ef:08:c5:b5:7e:6d:00:23:95:c4:0a:5d:9f:09:78:73:eb:90: 0f:03:84:8b:df:6d:d3:f4:49:b4:7c:3f:2d:99:ee:1b:e0:74: b1:e4:31:23:0a:25:bd:8d:d1:92:e7:48:b3:64:29:c4:f0:4e: 3c:da:3a:79:79:b7:b9:49:3a:a8:55:1b:29:ff:26:e5:da:e7: 54:c3:fd:47:62:44:4b:28:b0:2c:ad:b4:eb:2f:fe:b9:70:89: db:9d:6d:f0:df:3d:68:f9:b0:20:52:e1:77:23:b6:59:eb:07: 07:31:b9:19:67:14:1e:97:78:9e:1f:8c:05:c0:9e:79:a5:63: 44:0f:b4:b5:f8:71:5b:72:f3:74:3a:0a:e7:a9:42:09:ac:81: 36:27:c9:2d:02:78:95:a6:8d:89:e6:03:bc:19:1f:31:11:10: 92:30:fa:64:b0:df:9f:d9:a4:89:9c:89:44:d3:d2:e1:5e:38: eb:cb:3f:a9:b7:6e:f7:ad:78:d4:c8:15:e4:7a:0d:0d:a1:fe: dd:fd:47:f7:e2:f8:ec:19:29:6b:8e:6b:cd:a9:42:a2:9e:e8: 00:d3:0c:e9:2e:ce:38:80:6a:93:06:2f:70:85:a3:d1:00:fe: 2d:49:4a:cb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUME2+/kwdL4SBdMIepSs/iTtTX5cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAzMTUwNjUzWhcNMjUwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWE1OWVlYTM3M2ZhMTRlZmIzMzU3ZWJmYTAyMjkxNjEz YTdhZGFmYTU4ZmUyZjE0Nzg2MmQ2MzIyYzkwOTBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxM5R4AVL+jMFFr09t7J+WbkK2nQeYvkL6bjn/F3i83Vqa 0zzFboy/OnH7m77U/a7zcZT0nnNOCYBniogrfqp92u8RT1bqMBySvpHY8R48KMGk 0Zr2uWcL+aNuoVA9td7aCONXG2Yctv2/DADE6XGqh/p6kpV8a95l+6lmIMpgWl8t dbAR/dGeUITJlS3Xp4+RnXQ6Ls3uIkFHIViHOdIIK1HOjX3LlVvys5Utbry8/C8c wZluNF8nkYM2XPCMRogFszhwYAfIAfXG8+bcKIN5g+LSXvuVorMlB4e6Xh8vSM2r F8OsfRwzc5p3StDtFsfqKuIWPviOlTt+N4TFIPNpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDATdvpIeh4Uc48WIo1b84/18T1swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmM2E0MTFmLWVhOWItNDQzMi05NGE2LTUyN2UzNDY0ZjE2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAPhjANBgkqhkiG9w0BAQsFAAOCAQEANnYhBnrBD6m0jbBx8B9cAivi7wjF tX5tACOVxApdnwl4c+uQDwOEi99t0/RJtHw/LZnuG+B0seQxIwolvY3RkudIs2Qp xPBOPNo6eXm3uUk6qFUbKf8m5drnVMP9R2JESyiwLK206y/+uXCJ251t8N89aPmw IFLhdyO2WesHBzG5GWcUHpd4nh+MBcCeeaVjRA+0tfhxW3LzdDoK56lCCayBNifJ LQJ4laaNieYDvBkfMREQkjD6ZLDfn9mkiZyJRNPS4V4468s/qbdu96141MgV5HoN DaH+3f1H9+L47Bkpa45rzalCop7oANMM6S7OOIBqkwYvcIWj0QD+LUlKyw== -----END CERTIFICATE-----Generated at Sat Jun 14 06:41:34 2025 by rpki-client