$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/466309f8-ad84-4ccd-a3ab-f603c201bc26.roa File: 466309f8-ad84-4ccd-a3ab-f603c201bc26.roa (raw, json) Hash identifier: g1SOa4i1z6rJIzlAOYPSH8ipYTeVkPJHhVwzjchS9Rk= Subject key identifier: 37:2C:6C:A7:C2:63:C8:20:C3:3D:19:C5:51:DC:10:54:D3:56:79:F6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FBD60F696C76AA80387F272120A11C3AC2CBE75 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/466309f8-ad84-4ccd-a3ab-f603c201bc26.roa Signing time: Sat 07 Jun 2025 00:21:08 +0000 ROA not before: Sat 07 Jun 2025 00:21:08 +0000 ROA not after: Sat 12 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 124.25.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:bd:60:f6:96:c7:6a:a8:03:87:f2:72:12:0a:11:c3:ac:2c:be:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 7 00:21:08 2025 GMT Not After : Jul 12 23:59:59 2025 GMT Subject: serialNumber=e344daf0b0eb32da7e829e166fae54f064ee4cd64ddb06a85dd4ad2008009fc0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3b:77:9b:2e:02:df:46:3f:75:71:50:fb:5c: 87:f0:a4:d6:b5:b2:b0:06:65:4a:4e:c4:35:94:7d: 6c:09:e4:f8:8e:18:88:3d:a1:bb:26:03:16:8f:e3: bf:af:c9:a7:3b:c3:b7:d5:27:49:f3:0f:76:a2:0e: 05:35:52:af:2f:92:49:ed:5d:8e:75:26:88:45:46: ce:d2:51:87:c6:69:79:42:b7:f4:fd:44:53:a3:83: 09:0a:c7:ef:bb:40:25:91:85:d3:cf:ed:56:d6:c7: 84:72:e1:92:d0:ac:60:eb:03:62:da:44:e2:81:95: bf:76:af:ae:e3:17:54:1c:0e:12:1e:4a:09:01:10: 0b:5a:df:b9:ed:ae:40:28:f0:5c:49:7c:30:46:db: 65:37:1d:43:7f:7a:5f:c0:38:1d:5d:93:4d:a0:57: 00:06:c8:51:49:92:06:06:b6:b1:79:e4:01:f3:c3: 9c:2c:e3:9d:8c:9c:f2:de:0c:0b:f2:86:d8:da:ad: 04:3c:43:db:04:97:f6:f9:6e:ce:8d:9a:04:9f:27: ea:24:34:eb:a4:8c:77:c1:35:24:c4:71:4a:2d:4f: 3f:14:58:ef:d2:a7:e1:f9:bd:0d:2f:be:e1:4b:75: 48:e8:cc:b3:3f:94:e7:1c:3b:bf:5a:b8:ae:be:0e: 2d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:2C:6C:A7:C2:63:C8:20:C3:3D:19:C5:51:DC:10:54:D3:56:79:F6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/466309f8-ad84-4ccd-a3ab-f603c201bc26.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 124.25.0.0/18 Signature Algorithm: sha256WithRSAEncryption 8f:82:57:30:6a:69:33:a5:cf:bd:7b:56:87:4c:69:10:0d:f9: 2b:ae:e1:5d:a8:59:c2:0a:0c:d7:2b:93:1c:8a:0d:4b:18:32: 0d:1f:2e:fe:22:d9:e0:ff:28:66:f0:65:2d:57:a7:d9:3c:45: 9e:79:c8:c1:ab:2f:c8:34:ce:da:b7:d0:3e:aa:a3:a7:95:97: 00:be:51:bc:26:e8:61:36:e5:14:72:a0:58:de:b9:01:77:48: 11:a1:96:a2:e5:15:49:b8:dd:f6:88:bb:8c:39:f1:0c:20:ae: f0:17:79:a3:fb:0f:92:16:7a:ca:7c:f9:3b:bc:cf:34:84:21: 4f:58:13:c9:5f:b2:9c:40:ff:91:85:be:1f:f3:f5:9d:e1:f4: 68:1d:25:15:9d:ef:0d:9f:ca:ed:49:e0:d2:ae:a2:ee:74:c7: 56:4b:8c:18:76:b5:8c:d5:e0:bd:36:14:f6:f7:1f:30:33:e7: 75:81:18:0d:63:4a:0f:4f:e7:67:83:fb:ec:4f:4e:5c:87:f2: e6:53:c1:f1:ac:84:4f:0b:47:48:1e:61:00:06:61:5e:40:1b: 18:ae:c0:d9:95:a9:26:3b:5e:c7:5a:68:8c:ad:c3:52:65:f8: d9:c8:52:50:f8:b0:d4:ff:fd:93:20:ab:ad:87:fa:e0:9a:da: 2d:fd:79:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT71g9pbHaqgDh/JyEgoRw6wsvnUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA3MDAyMTA4WhcNMjUwNzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMzQ0ZGFmMGIwZWIzMmRhN2U4MjllMTY2ZmFlNTRmMDY0 ZWU0Y2Q2NGRkYjA2YTg1ZGQ0YWQyMDA4MDA5ZmMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzO3ebLgLfRj91cVD7XIfwpNa1srAGZUpOxDWUfWwJ5PiO GIg9obsmAxaP47+vyac7w7fVJ0nzD3aiDgU1Uq8vkkntXY51JohFRs7SUYfGaXlC t/T9RFOjgwkKx++7QCWRhdPP7VbWx4Ry4ZLQrGDrA2LaROKBlb92r67jF1QcDhIe SgkBEAta37ntrkAo8FxJfDBG22U3HUN/el/AOB1dk02gVwAGyFFJkgYGtrF55AHz w5ws452MnPLeDAvyhtjarQQ8Q9sEl/b5bs6NmgSfJ+okNOukjHfBNSTEcUotTz8U WO/Sp+H5vQ0vvuFLdUjozLM/lOccO79auK6+Di2ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNyxsp8JjyCDDPRnFUdwQVNNWefYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ2NjMwOWY4LWFkODQtNGNjZC1hM2FiLWY2MDNjMjAxYmMyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZ8GQAwDQYJKoZIhvcNAQELBQADggEBAI+CVzBqaTOlz717VodMaRAN+Suu 4V2oWcIKDNcrkxyKDUsYMg0fLv4i2eD/KGbwZS1Xp9k8RZ55yMGrL8g0ztq30D6q o6eVlwC+Ubwm6GE25RRyoFjeuQF3SBGhlqLlFUm43faIu4w58QwgrvAXeaP7D5IW esp8+Tu8zzSEIU9YE8lfspxA/5GFvh/z9Z3h9GgdJRWd7w2fyu1J4NKuou50x1ZL jBh2tYzV4L02FPb3HzAz53WBGA1jSg9P52eD++xPTlyH8uZTwfGshE8LR0geYQAG YV5AGxiuwNmVqSY7XsdaaIytw1Jl+NnIUlD4sNT//ZMgq62H+uCa2i39ecM= -----END CERTIFICATE-----Generated at Sat Jun 14 06:59:49 2025 by rpki-client