$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39dca287-26d4-4bbc-a590-f5bf14971de6.roa File: 39dca287-26d4-4bbc-a590-f5bf14971de6.roa (raw, json) Hash identifier: ut24EB7xpaO5i2T87QIXHsgWW5nljsbcugKbixmXK2M= Subject key identifier: 37:54:04:1D:CC:D3:A0:27:71:82:85:16:84:B4:19:BB:E8:3D:E4:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67A2D0443F4202327561400D42FBFD8FD0D458D9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39dca287-26d4-4bbc-a590-f5bf14971de6.roa Signing time: Sat 14 Jun 2025 00:20:21 +0000 ROA not before: Sat 14 Jun 2025 00:20:21 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.187.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:a2:d0:44:3f:42:02:32:75:61:40:0d:42:fb:fd:8f:d0:d4:58:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:20:21 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=d2f42bedf71efe8e33acc4c019cb54eb6c80fb94e76313413e93c1f8ec130f8a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:68:e8:b5:71:a8:e1:70:0e:01:07:4a:18:f3: 2f:84:81:46:ec:ae:22:85:50:23:3b:0c:14:5f:6b: f2:a8:09:4c:e6:f9:ad:16:6a:31:5f:e6:bf:34:50: 20:ca:9e:7d:5c:02:ec:54:ee:6b:19:f0:f8:88:ce: 64:7a:03:43:24:54:b7:b5:6e:84:30:84:96:02:8a: 10:49:d7:fa:58:ca:4e:48:2c:fe:f8:af:19:f2:b6: 5e:db:c8:b5:8d:19:a0:ad:3c:bd:f0:1b:7e:8d:e7: a9:a6:a7:f8:45:c5:97:95:5a:8d:1c:fc:83:f4:6e: 2d:1c:3f:a9:03:fb:6f:73:a9:04:cc:0c:e1:17:f4: 68:9d:c5:a3:7c:e4:4c:80:06:3a:c4:5b:ee:56:df: 09:f1:86:33:b9:4c:1a:f3:c7:a4:93:79:cd:da:58: 9d:c3:7e:e4:04:b8:b1:b1:44:9d:06:27:85:de:c9: 3e:72:d4:0d:7c:64:2f:d2:ff:89:69:76:c6:8f:96: fa:2d:a2:30:31:65:63:2b:12:b9:b5:98:5d:0b:1b: f9:fc:03:7b:c0:95:ea:47:ac:29:a6:a4:28:e4:c8: 60:94:6e:99:a5:5a:36:3a:dc:57:32:da:0f:9e:2d: bf:8e:c7:4a:b0:76:93:2d:63:90:da:94:d1:eb:23: 6b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:54:04:1D:CC:D3:A0:27:71:82:85:16:84:B4:19:BB:E8:3D:E4:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39dca287-26d4-4bbc-a590-f5bf14971de6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.187.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9b:d3:5d:1a:6e:8c:17:16:ef:55:4d:c4:c3:05:47:7e:e2:19: 91:94:9a:85:bf:7a:6d:e7:b4:62:a4:21:48:55:47:44:78:76: 71:99:74:86:b9:d7:a3:35:42:ec:36:ef:18:e5:ec:1a:38:3e: 61:ef:25:1a:88:12:08:b3:35:af:bd:76:3e:3a:5a:1e:40:79: b7:84:51:79:fe:f4:1b:b2:e5:50:85:a9:56:3b:13:ae:74:99: 3b:e5:46:7d:db:04:e4:23:c7:77:37:7f:35:03:55:c1:c2:a4: cc:24:37:59:79:78:a1:f1:04:b8:16:bd:16:71:57:27:41:5f: 51:34:66:aa:9f:f5:e0:35:ed:13:35:ea:76:e3:73:c6:63:f9: 70:7e:32:9d:14:07:33:3d:78:e5:ef:fb:b9:48:df:77:b4:04: 8c:a2:f6:a9:d1:61:a3:f3:f1:a6:98:b9:b7:af:bc:0d:82:ba: 4a:05:71:8c:a9:3d:3f:bc:42:44:11:96:4c:22:48:29:5e:c6: 6a:6d:fe:1d:97:22:38:3d:0d:39:1d:0b:5b:6c:67:92:b6:d7: 31:eb:f9:d8:8e:70:28:b1:03:c3:7a:29:e1:5f:73:3b:9d:b1: 52:45:41:cc:ab:35:55:d6:da:9c:7f:82:99:c2:a3:8d:f5:52: e9:19:18:45 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZ6LQRD9CAjJ1YUANQvv9j9DUWNkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDAyMDIxWhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMmY0MmJlZGY3MWVmZThlMzNhY2M0YzAxOWNiNTRlYjZj ODBmYjk0ZTc2MzEzNDEzZTkzYzFmOGVjMTMwZjhhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0aOi1cajhcA4BB0oY8y+EgUbsriKFUCM7DBRfa/KoCUzm +a0WajFf5r80UCDKnn1cAuxU7msZ8PiIzmR6A0MkVLe1boQwhJYCihBJ1/pYyk5I LP74rxnytl7byLWNGaCtPL3wG36N56mmp/hFxZeVWo0c/IP0bi0cP6kD+29zqQTM DOEX9GidxaN85EyABjrEW+5W3wnxhjO5TBrzx6STec3aWJ3DfuQEuLGxRJ0GJ4Xe yT5y1A18ZC/S/4lpdsaPlvotojAxZWMrErm1mF0LG/n8A3vAlepHrCmmpCjkyGCU bpmlWjY63Fcy2g+eLb+Ox0qwdpMtY5DalNHrI2sjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUN1QEHczToCdxgoUWhLQZu+g95OAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM5ZGNhMjg3LTI2ZDQtNGJiYy1hNTkwLWY1YmYxNDk3MWRlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQuzANBgkqhkiG9w0BAQsFAAOCAQEAm9NdGm6MFxbvVU3EwwVHfuIZkZSa hb96bee0YqQhSFVHRHh2cZl0hrnXozVC7DbvGOXsGjg+Ye8lGogSCLM1r712Pjpa HkB5t4RRef70G7LlUIWpVjsTrnSZO+VGfdsE5CPHdzd/NQNVwcKkzCQ3WXl4ofEE uBa9FnFXJ0FfUTRmqp/14DXtEzXqduNzxmP5cH4ynRQHMz145e/7uUjfd7QEjKL2 qdFho/Pxppi5t6+8DYK6SgVxjKk9P7xCRBGWTCJIKV7Gam3+HZciOD0NOR0LW2xn krbXMev52I5wKLEDw3op4V9zO52xUkVBzKs1VdbanH+CmcKjjfVS6RkYRQ== -----END CERTIFICATE-----Generated at Sat Jun 14 18:50:32 2025 by rpki-client