$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48743620-d852-4c45-84d7-d4a7e3874270.roa File: 48743620-d852-4c45-84d7-d4a7e3874270.roa (raw, json) Hash identifier: 8tZHOEP8g+xM2UA9yBGE7d5xFbg6ctums1PLLyOJJ60= Subject key identifier: AB:FB:5F:52:99:F0:A2:B1:0E:75:32:53:34:39:AF:0D:63:09:A0:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D15DA7A4DB3C184291F2822642525986510E88B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48743620-d852-4c45-84d7-d4a7e3874270.roa Signing time: Sat 14 Jun 2025 00:20:24 +0000 ROA not before: Sat 14 Jun 2025 00:20:24 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 168.192.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:15:da:7a:4d:b3:c1:84:29:1f:28:22:64:25:25:98:65:10:e8:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:20:24 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=90f1d6c9129e8e0eaa10cfd06f419766a9e9a7374de4a504ed0b4d06af82a481, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:25:5d:ad:3e:ba:68:f9:f5:df:2e:b3:9f:f0: 9d:05:50:d1:9e:f8:b5:5b:a9:1f:d4:23:38:b7:e0: 69:f6:19:40:2a:d6:cf:2a:a1:b4:0e:16:c7:1c:a0: 26:df:16:82:23:1d:0f:9b:17:d7:fd:fd:2e:ee:df: 61:99:6d:45:2d:33:0f:ba:8c:79:98:19:f9:af:65: 21:33:42:47:b1:be:06:1b:cd:c9:99:a8:ee:8e:a1: f8:0a:1f:0c:5d:1c:35:46:85:12:bf:12:25:a4:57: 6c:d9:d8:48:1c:86:d8:b4:90:6b:ff:2f:93:2c:47: 08:24:82:73:e1:83:02:71:87:e6:d8:47:cb:30:95: 39:bc:d9:df:ff:89:a7:3b:11:d1:2c:c5:43:92:15: 94:57:2d:ef:b6:56:09:f0:a9:1c:2a:9e:f2:84:cc: 44:90:09:e4:3a:d0:42:44:f0:d8:d8:a8:92:e0:40: 31:dd:c7:76:1e:a9:02:93:30:fc:17:16:8a:76:7f: dc:7d:aa:44:f5:22:21:44:6b:58:47:46:b4:11:17: ec:15:5e:b4:ca:ee:8f:24:a5:15:c8:ba:b8:c1:d9: 2c:d9:02:e8:e4:27:c9:fc:21:92:e1:67:20:8a:73: 73:53:55:8b:85:ad:7c:db:92:35:08:7b:b0:b0:26: 53:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:FB:5F:52:99:F0:A2:B1:0E:75:32:53:34:39:AF:0D:63:09:A0:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48743620-d852-4c45-84d7-d4a7e3874270.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.192.0.0/15 Signature Algorithm: sha256WithRSAEncryption 01:f7:62:71:ba:54:cc:40:83:4c:e6:48:07:93:d4:6d:47:c3: f5:d4:eb:07:ab:59:97:d2:70:9e:b8:9f:85:07:a4:19:3c:4a: 82:d7:18:39:4e:a0:17:f5:bb:28:04:e6:f3:71:fe:d5:e1:26: 75:02:1b:6e:4d:ef:05:32:1f:41:3e:d2:02:7d:da:39:e4:e0: 33:04:30:25:7f:1a:6e:c7:1e:cb:1c:1c:58:d8:d8:64:53:5a: a9:ed:5a:1b:0a:f2:a1:45:a6:a2:0d:db:d9:69:ad:92:b7:b4: 26:fd:07:6e:48:bc:34:cf:08:02:91:c5:c6:b3:36:3c:52:7e: 52:13:10:9e:91:2a:12:2e:3c:bc:4c:01:39:7e:1b:5e:d8:2d: 1b:b6:37:df:22:b9:73:19:63:90:6f:78:ff:c3:a5:be:6e:3a: 47:36:c3:39:55:da:87:d3:dc:3e:0e:19:d2:31:f8:c4:dc:4d: 75:5e:b3:dd:b7:10:68:7d:86:10:90:7e:b6:0b:3e:90:a7:05: 5f:a8:1b:9b:40:a1:42:72:cb:91:51:72:68:6f:cd:5c:ea:cd: 88:b5:28:fc:c5:72:0c:a4:8f:06:61:d2:fd:13:1d:5c:4e:da: 60:db:cf:6a:23:db:c4:ce:48:e0:c9:55:c3:67:2d:8d:cd:d3: 9b:cb:91:53 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDRXaek2zwYQpHygiZCUlmGUQ6IswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDAyMDI0WhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MGYxZDZjOTEyOWU4ZTBlYWExMGNmZDA2ZjQxOTc2NmE5 ZTlhNzM3NGRlNGE1MDRlZDBiNGQwNmFmODJhNDgxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoJV2tPrpo+fXfLrOf8J0FUNGe+LVbqR/UIzi34Gn2GUAq 1s8qobQOFsccoCbfFoIjHQ+bF9f9/S7u32GZbUUtMw+6jHmYGfmvZSEzQkexvgYb zcmZqO6OofgKHwxdHDVGhRK/EiWkV2zZ2Egchti0kGv/L5MsRwgkgnPhgwJxh+bY R8swlTm82d//iac7EdEsxUOSFZRXLe+2VgnwqRwqnvKEzESQCeQ60EJE8NjYqJLg QDHdx3YeqQKTMPwXFop2f9x9qkT1IiFEa1hHRrQRF+wVXrTK7o8kpRXIurjB2SzZ AujkJ8n8IZLhZyCKc3NTVYuFrXzbkjUIe7CwJlP5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUq/tfUpnworEOdTJTNDmvDWMJoK0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ4NzQzNjIwLWQ4NTItNGM0NS04NGQ3LWQ0YTdlMzg3NDI3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwGowDANBgkqhkiG9w0BAQsFAAOCAQEAAfdicbpUzECDTOZIB5PUbUfD9dTr B6tZl9JwnrifhQekGTxKgtcYOU6gF/W7KATm83H+1eEmdQIbbk3vBTIfQT7SAn3a OeTgMwQwJX8absceyxwcWNjYZFNaqe1aGwryoUWmog3b2Wmtkre0Jv0Hbki8NM8I ApHFxrM2PFJ+UhMQnpEqEi48vEwBOX4bXtgtG7Y33yK5cxljkG94/8Olvm46RzbD OVXah9PcPg4Z0jH4xNxNdV6z3bcQaH2GEJB+tgs+kKcFX6gbm0ChQnLLkVFyaG/N XOrNiLUo/MVyDKSPBmHS/RMdXE7aYNvPaiPbxM5I4MlVw2ctjc3Tm8uRUw== -----END CERTIFICATE-----Generated at Wed Jun 18 18:15:54 2025 by rpki-client