$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43679d0b-d4d6-4195-8f78-61e5d3431f35.roa File: 43679d0b-d4d6-4195-8f78-61e5d3431f35.roa (raw, json) Hash identifier: v3Q/woEr7FgdhOEBZZQXyVbDemS6GIAa+pUhc8Fkuq0= Subject key identifier: 01:33:97:25:1B:05:2D:E6:8E:F9:ED:16:45:A2:CA:47:8D:E7:D1:B4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 50991601A4A91AA2C21BCED8072AD45B873B65F8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43679d0b-d4d6-4195-8f78-61e5d3431f35.roa Signing time: Fri 13 Jun 2025 15:20:24 +0000 ROA not before: Fri 13 Jun 2025 15:20:24 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 164.152.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:99:16:01:a4:a9:1a:a2:c2:1b:ce:d8:07:2a:d4:5b:87:3b:65:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 15:20:24 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=23296911b183b4de5f5e3d0fc36a1c0ad2ef6e41619a4e1d0205a68ec7cddfcd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:93:0b:2e:98:cb:f7:16:9c:e3:96:ce:1a:9e: 05:45:53:51:22:00:76:e1:a4:c3:27:45:95:a9:9a: 38:af:c9:5a:0e:7d:fa:45:38:b0:39:a9:57:cd:f3: ca:a7:9a:b1:02:07:0c:e1:34:7e:06:51:c6:49:1c: c5:19:a9:c5:8a:fb:d5:66:68:b2:01:d0:d7:90:08: 85:69:2f:36:d2:91:32:b8:a7:bf:cd:1e:70:5a:de: 74:45:bf:05:0c:13:c0:75:6f:25:81:3c:57:28:01: 31:a5:7c:52:d2:40:6d:88:d9:88:64:6e:0a:41:a5: 42:64:8d:4e:9c:c9:34:ad:ad:0d:38:b2:b2:43:33: 18:c3:74:c5:99:82:f3:67:f9:a2:42:43:c6:f0:70: d0:52:50:84:99:67:27:7c:10:6c:76:88:c6:32:3f: c1:a9:96:f3:70:b7:10:c4:1c:c2:3c:c6:7b:25:64: 30:6d:7c:44:96:9a:7b:cc:71:d3:b4:17:6b:44:ce: 43:65:3b:20:0c:b5:5a:81:ce:ab:a8:34:14:1d:d1: f0:2e:70:c8:f3:6b:b8:c3:20:1d:48:2f:e9:a6:16: 83:1e:8f:06:d4:be:d2:55:2c:a2:85:e4:cd:72:82: ed:23:3b:bf:a3:1c:ff:09:a8:ac:8d:bc:50:0c:98: 7f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:33:97:25:1B:05:2D:E6:8E:F9:ED:16:45:A2:CA:47:8D:E7:D1:B4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43679d0b-d4d6-4195-8f78-61e5d3431f35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.152.200.0/22 Signature Algorithm: sha256WithRSAEncryption 94:fb:5b:04:c9:c9:f8:fd:6a:c1:27:83:fa:56:ae:49:be:83: e2:bd:48:b2:78:53:1f:37:ab:6c:89:2a:04:40:0d:eb:6a:62: 28:d3:98:ea:ca:29:94:c7:da:9e:6b:13:ff:84:f5:2f:c4:99: dc:9c:d6:00:9e:4f:51:74:7b:38:9c:4f:44:87:af:06:d8:1a: 08:82:1f:2d:d7:9d:52:61:2f:d3:ba:6c:99:8f:0f:5b:5b:44: ae:24:85:69:2b:15:36:c4:8d:50:85:a4:84:67:3e:70:01:e0: 81:5e:6d:5d:ca:30:c6:74:d4:58:23:5c:50:91:7f:ec:85:2a: f0:f9:84:d7:bd:e3:a8:ca:50:e9:e6:71:34:22:0c:fa:8c:a2: 47:4d:50:8d:5a:7c:2b:c0:8b:75:3e:84:19:46:db:e7:09:23: d4:ae:4c:c8:e9:a0:45:9f:f9:97:34:08:3a:06:b5:81:2a:67: 70:01:fc:70:b1:33:de:29:76:cb:8a:90:26:69:fb:5f:e1:74: 77:11:8b:d1:ad:98:12:82:08:98:00:04:8e:12:d2:cf:e2:cb: 8e:f4:3d:22:94:42:c4:b0:db:37:04:ea:dc:cb:4d:8c:e3:ef: ef:ec:b6:c7:31:e1:19:ab:82:44:23:a6:5f:04:17:69:2a:90: db:21:be:4f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUJkWAaSpGqLCG87YByrUW4c7ZfgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTUyMDI0WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzI5NjkxMWIxODNiNGRlNWY1ZTNkMGZjMzZhMWMwYWQy ZWY2ZTQxNjE5YTRlMWQwMjA1YTY4ZWM3Y2RkZmNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3kwsumMv3Fpzjls4angVFU1EiAHbhpMMnRZWpmjivyVoO ffpFOLA5qVfN88qnmrECBwzhNH4GUcZJHMUZqcWK+9VmaLIB0NeQCIVpLzbSkTK4 p7/NHnBa3nRFvwUME8B1byWBPFcoATGlfFLSQG2I2YhkbgpBpUJkjU6cyTStrQ04 srJDMxjDdMWZgvNn+aJCQ8bwcNBSUISZZyd8EGx2iMYyP8GplvNwtxDEHMI8xnsl ZDBtfESWmnvMcdO0F2tEzkNlOyAMtVqBzquoNBQd0fAucMjza7jDIB1IL+mmFoMe jwbUvtJVLKKF5M1ygu0jO7+jHP8JqKyNvFAMmH8VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUATOXJRsFLeaO+e0WRaLKR43n0bQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzNjc5ZDBiLWQ0ZDYtNDE5NS04Zjc4LTYxZTVkMzQzMWYzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKkmMgwDQYJKoZIhvcNAQELBQADggEBAJT7WwTJyfj9asEng/pWrkm+g+K9 SLJ4Ux83q2yJKgRADetqYijTmOrKKZTH2p5rE/+E9S/Emdyc1gCeT1F0ezicT0SH rwbYGgiCHy3XnVJhL9O6bJmPD1tbRK4khWkrFTbEjVCFpIRnPnAB4IFebV3KMMZ0 1FgjXFCRf+yFKvD5hNe946jKUOnmcTQiDPqMokdNUI1afCvAi3U+hBlG2+cJI9Su TMjpoEWf+Zc0CDoGtYEqZ3AB/HCxM94pdsuKkCZp+1/hdHcRi9GtmBKCCJgABI4S 0s/iy470PSKUQsSw2zcE6tzLTYzj7+/stscx4RmrgkQjpl8EF2kqkNshvk8= -----END CERTIFICATE-----Generated at Sat Jun 14 07:00:29 2025 by rpki-client