$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/530a77ca-5428-42b4-9c03-adb88573ea2a.roa File: 530a77ca-5428-42b4-9c03-adb88573ea2a.roa (raw, json) Hash identifier: HqFMr1AzR6VlShVBGWp4sIUWh/rmog4fY7sW1UIepX8= Subject key identifier: 8F:CD:5A:81:D8:9F:8E:01:38:A0:28:33:BC:20:FF:96:2E:D2:1B:79 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 312F7C1DD8F9F71F65C5D6DFB88862F72D857A96 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/530a77ca-5428-42b4-9c03-adb88573ea2a.roa Signing time: Wed 04 Jun 2025 00:21:12 +0000 ROA not before: Wed 04 Jun 2025 00:21:12 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 66.7.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 18 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:2f:7c:1d:d8:f9:f7:1f:65:c5:d6:df:b8:88:62:f7:2d:85:7a:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 4 00:21:12 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=f735c7a9fba627f464fe7fae80efb3e72ec5e4da91da618c6c563726bd5e9d5d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a7:1a:77:e0:3c:bb:77:cc:4a:ee:8e:20:2b: 3e:dc:66:18:fc:54:11:35:b2:e5:a1:3f:59:09:1f: f6:16:5a:d8:e3:41:cd:3c:66:9c:6e:df:e9:7a:e8: c9:fc:a1:78:bf:b0:30:b4:0f:38:19:8d:e2:0b:ab: b9:18:ee:23:5e:30:e2:fb:7a:f9:e1:7f:20:7e:2d: 3c:c6:03:01:23:aa:f6:be:95:7d:99:d3:73:c1:9d: b1:3c:1c:02:25:d9:a9:f4:8f:53:5c:26:b0:09:12: 55:e7:83:56:1a:b6:c5:2d:04:71:ff:80:9c:d4:1f: ea:2c:00:08:d5:f4:ad:a1:d8:a5:0f:fc:7f:86:b2: 96:4d:e7:96:ff:fb:4f:41:9f:2b:fc:82:fc:59:24: 70:2e:77:83:3a:03:48:d2:1d:56:82:ef:29:d9:69: fc:64:30:d8:66:50:6a:c2:99:ee:54:53:ca:14:5b: 53:6a:96:63:fe:6e:db:52:be:8a:43:b5:f5:ae:2a: 70:65:d8:dc:c6:09:e3:ef:65:8f:e6:aa:6c:48:74: 7f:1f:ef:33:16:d8:fa:30:c1:69:3b:59:98:b7:ee: 58:68:02:be:5b:07:6f:07:b9:f9:15:2c:d8:35:ae: 5f:45:6a:1f:a9:ab:67:eb:4c:35:9f:cc:fd:4d:3b: f0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:CD:5A:81:D8:9F:8E:01:38:A0:28:33:BC:20:FF:96:2E:D2:1B:79 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/530a77ca-5428-42b4-9c03-adb88573ea2a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.7.0.0/18 Signature Algorithm: sha256WithRSAEncryption b6:41:29:6c:16:79:40:16:e0:9d:c9:b6:9f:b8:03:26:6e:8c: bf:65:fb:22:13:3c:08:a2:ce:f2:ac:9e:b0:77:9c:e6:68:4b: a3:fa:98:5e:49:08:95:a7:54:95:3d:f5:2f:63:65:54:5e:a1: 5d:61:c3:a5:c6:a7:ab:7a:1d:ac:2a:46:23:7b:48:2e:2e:2c: 97:db:d2:20:94:53:98:07:4f:a6:a5:16:71:6d:2f:ab:ad:92: 39:74:17:f0:c4:4f:4c:3c:ae:20:9b:5e:5a:37:94:64:58:c6: 99:32:6e:72:04:67:8a:69:6c:0b:25:cb:db:28:1a:eb:9c:09: 12:12:de:55:d6:c9:55:28:03:7a:01:1e:36:b3:4e:25:80:a5: e5:20:a5:69:e0:17:6c:a1:ac:4d:34:68:90:be:ab:fb:33:fa: 35:64:52:32:8f:74:d7:ba:14:48:13:6a:38:f1:2e:6a:74:c8: b1:02:73:c5:64:87:6c:38:83:c6:8e:69:fb:bb:47:e1:19:14: 2a:78:10:b5:ae:d4:93:70:0a:e6:77:f9:6a:e9:1d:e9:40:63: bc:21:50:f8:6e:aa:57:de:50:66:38:be:53:5b:ad:ce:a8:74: a8:96:19:f7:5e:6b:d5:cf:51:62:e1:14:bc:e4:f4:64:fd:31: 32:e4:9d:4a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMS98Hdj59x9lxdbfuIhi9y2FepYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA0MDAyMTEyWhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzM1YzdhOWZiYTYyN2Y0NjRmZTdmYWU4MGVmYjNlNzJl YzVlNGRhOTFkYTYxOGM2YzU2MzcyNmJkNWU5ZDVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqpxp34Dy7d8xK7o4gKz7cZhj8VBE1suWhP1kJH/YWWtjj Qc08Zpxu3+l66Mn8oXi/sDC0DzgZjeILq7kY7iNeMOL7evnhfyB+LTzGAwEjqva+ lX2Z03PBnbE8HAIl2an0j1NcJrAJElXng1YatsUtBHH/gJzUH+osAAjV9K2h2KUP /H+GspZN55b/+09Bnyv8gvxZJHAud4M6A0jSHVaC7ynZafxkMNhmUGrCme5UU8oU W1NqlmP+bttSvopDtfWuKnBl2NzGCePvZY/mqmxIdH8f7zMW2PowwWk7WZi37lho Ar5bB28HufkVLNg1rl9Fah+pq2frTDWfzP1NO/AJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUj81agdifjgE4oCgzvCD/li7SG3kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzMGE3N2NhLTU0MjgtNDJiNC05YzAzLWFkYjg4NTczZWEyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZCBwAwDQYJKoZIhvcNAQELBQADggEBALZBKWwWeUAW4J3Jtp+4AyZujL9l +yITPAiizvKsnrB3nOZoS6P6mF5JCJWnVJU99S9jZVReoV1hw6XGp6t6HawqRiN7 SC4uLJfb0iCUU5gHT6alFnFtL6utkjl0F/DET0w8riCbXlo3lGRYxpkybnIEZ4pp bAsly9soGuucCRIS3lXWyVUoA3oBHjazTiWApeUgpWngF2yhrE00aJC+q/sz+jVk UjKPdNe6FEgTajjxLmp0yLECc8Vkh2w4g8aOafu7R+EZFCp4ELWu1JNwCuZ3+Wrp HelAY7whUPhuqlfeUGY4vlNbrc6odKiWGfdea9XPUWLhFLzk9GT9MTLknUo= -----END CERTIFICATE-----Generated at Tue Jun 17 16:19:26 2025 by rpki-client