$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c6db0b0-0f4a-438a-88fc-504de02997a3.roa File: 3c6db0b0-0f4a-438a-88fc-504de02997a3.roa (raw, json) Hash identifier: jrbQg0o/y61P6dYQBoQMZZ5XGsGfhI+nPy7d7zkE784= Subject key identifier: D8:A0:98:3F:08:A6:09:00:B6:10:02:D6:25:12:12:A5:0B:F9:18:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3DE997BFCD76F4F5323193F27B4F6D9EE8E7700C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c6db0b0-0f4a-438a-88fc-504de02997a3.roa Signing time: Fri 13 Jun 2025 00:51:26 +0000 ROA not before: Fri 13 Jun 2025 00:51:26 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 204.236.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 19 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:e9:97:bf:cd:76:f4:f5:32:31:93:f2:7b:4f:6d:9e:e8:e7:70:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 00:51:26 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=def0a619154d4b3a07c3dcdb3a91cc947bb0cf789a8f24050fcf0681f76fc0c8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b0:63:34:3a:be:da:f2:07:5c:35:29:c0:be: 49:02:c4:7f:c8:e1:63:68:42:85:50:4e:40:56:3c: d5:16:42:40:8d:c9:c6:79:19:5a:4f:a2:10:8f:95: ad:24:09:5b:24:fd:fc:f2:08:02:b5:36:f6:f6:3c: 36:14:5d:b0:30:f4:a9:33:df:6d:5c:a5:52:78:83: 9c:cd:23:97:d5:ce:32:2f:b1:3f:89:32:fb:b3:cb: 4a:1a:cf:4e:77:f3:99:60:44:10:ad:1f:31:ea:68: 6c:dd:d9:cc:06:f6:2f:dd:89:a6:80:52:f4:f3:84: eb:cd:1c:63:a2:e6:4e:64:5f:5e:35:22:0b:f3:9f: f9:26:f4:13:bc:21:21:92:a0:ae:bf:ad:43:83:9b: 65:e1:e3:ff:ab:6f:3c:a2:76:7b:54:c5:07:14:28: 13:92:23:e6:ed:35:8f:b0:44:5b:00:87:98:db:59: ba:70:80:6d:64:fa:e4:84:69:74:85:a2:01:d7:c6: 1f:e8:b2:bc:f2:ae:d4:fe:fa:72:29:2a:10:eb:e3: aa:a4:02:a6:20:79:2d:c1:be:51:58:c8:6a:b9:bf: 78:7c:88:d7:ba:74:0a:8b:17:02:27:21:ad:17:dd: 9d:e3:87:fd:7b:0a:5f:35:eb:4e:2a:57:a6:03:4f: 0e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A0:98:3F:08:A6:09:00:B6:10:02:D6:25:12:12:A5:0B:F9:18:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c6db0b0-0f4a-438a-88fc-504de02997a3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.240.0/20 Signature Algorithm: sha256WithRSAEncryption 28:e7:f8:df:0c:37:4c:84:ee:52:80:ab:ae:b6:ad:f6:00:4b: 61:8a:10:80:be:8f:4a:0b:b8:0f:2f:f1:e6:41:53:95:af:ff: 4a:e1:b7:cd:8a:3e:35:1a:f5:69:78:43:43:0f:7c:8d:8c:7f: f9:47:83:9c:66:20:80:30:d4:5f:16:53:8e:9e:51:9c:18:67: 46:ab:1f:31:88:91:19:7f:26:bb:b3:a1:df:40:c7:88:33:be: a4:9e:a3:e9:12:ba:80:80:af:63:a0:ba:59:5d:fa:49:a5:96: ac:d8:9a:59:58:74:5f:50:4e:d1:a8:29:4e:70:5f:96:6b:f2: 87:0e:64:ae:76:0d:40:1c:db:e0:53:67:15:38:a7:27:57:83: a4:06:86:f6:1c:ee:5c:33:fa:cb:38:e1:f5:5b:1b:91:59:f5: 5e:11:a2:28:e8:55:c9:be:27:ae:3b:de:e2:da:f5:12:fd:e9: db:c6:da:63:78:39:b9:82:1f:63:83:0d:79:d3:93:5b:45:aa: 8c:2c:99:50:a4:24:16:b7:ca:1d:83:f1:10:41:f2:9f:79:d2: e6:ca:27:24:f3:e9:e2:aa:42:2a:1e:42:dd:b7:4f:ad:b9:7e: c5:ed:fa:50:fe:76:fe:32:62:fe:e9:75:75:44:8a:e7:5a:6c: b2:b0:51:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPemXv8129PUyMZPye09tnujncAwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMDA1MTI2WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZWYwYTYxOTE1NGQ0YjNhMDdjM2RjZGIzYTkxY2M5NDdi YjBjZjc4OWE4ZjI0MDUwZmNmMDY4MWY3NmZjMGM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXsGM0Or7a8gdcNSnAvkkCxH/I4WNoQoVQTkBWPNUWQkCN ycZ5GVpPohCPla0kCVsk/fzyCAK1Nvb2PDYUXbAw9Kkz321cpVJ4g5zNI5fVzjIv sT+JMvuzy0oaz05385lgRBCtHzHqaGzd2cwG9i/diaaAUvTzhOvNHGOi5k5kX141 Igvzn/km9BO8ISGSoK6/rUODm2Xh4/+rbzyidntUxQcUKBOSI+btNY+wRFsAh5jb WbpwgG1k+uSEaXSFogHXxh/osrzyrtT++nIpKhDr46qkAqYgeS3BvlFYyGq5v3h8 iNe6dAqLFwInIa0X3Z3jh/17Cl81604qV6YDTw6pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2KCYPwimCQC2EALWJRISpQv5GPkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjNmRiMGIwLTBmNGEtNDM4YS04OGZjLTUwNGRlMDI5OTdhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATM7PAwDQYJKoZIhvcNAQELBQADggEBACjn+N8MN0yE7lKAq662rfYAS2GK EIC+j0oLuA8v8eZBU5Wv/0rht82KPjUa9Wl4Q0MPfI2Mf/lHg5xmIIAw1F8WU46e UZwYZ0arHzGIkRl/Jruzod9Ax4gzvqSeo+kSuoCAr2Ogulld+kmllqzYmllYdF9Q TtGoKU5wX5Zr8ocOZK52DUAc2+BTZxU4pydXg6QGhvYc7lwz+ss44fVbG5FZ9V4R oijoVcm+J6473uLa9RL96dvG2mN4ObmCH2ODDXnTk1tFqowsmVCkJBa3yh2D8RBB 8p950ubKJyTz6eKqQioeQt23T625fsXt+lD+dv4yYv7pdXVEiudabLKwUW0= -----END CERTIFICATE-----Generated at Tue Jun 17 19:39:35 2025 by rpki-client