$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59965eb9-a645-4fb7-a6d9-bdde9e726d3f.roa File: 59965eb9-a645-4fb7-a6d9-bdde9e726d3f.roa (raw, json) Hash identifier: ZVgbVyH5gSLqOXQD0wDohjPY87yFWNAYtluoDWzRZtY= Subject key identifier: 94:6C:6E:3A:2C:6F:78:ED:7B:66:7C:39:51:46:F9:91:FC:9A:6A:F4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52BD5BC087879FCD8A298F44398A4B77716DFD4C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59965eb9-a645-4fb7-a6d9-bdde9e726d3f.roa Signing time: Sat 07 Jun 2025 00:40:59 +0000 ROA not before: Sat 07 Jun 2025 00:40:59 +0000 ROA not after: Sat 12 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.226.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:bd:5b:c0:87:87:9f:cd:8a:29:8f:44:39:8a:4b:77:71:6d:fd:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 7 00:40:59 2025 GMT Not After : Jul 12 23:59:59 2025 GMT Subject: serialNumber=11ed7c5e112eb9759a2f9b84bf682f0da9bdfea9f074e1992f7e740af7357c03, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4c:ad:d9:b6:69:ef:13:38:38:7d:a6:e5:ea: cb:2f:e0:7c:1a:50:ba:55:e2:2c:87:a8:cc:c1:a2: 9f:db:ca:33:1a:eb:12:52:48:ac:40:90:0f:2f:16: cc:00:31:19:af:90:54:02:d3:df:42:12:81:1d:0c: e9:b5:44:75:e5:56:a9:f3:6a:be:b1:0e:e3:68:d2: 0c:59:c0:80:3d:be:cf:b4:8a:b8:b7:a6:f5:45:6d: 9d:5d:8c:21:65:19:82:88:64:d5:82:6f:e3:2e:37: ac:6b:9a:1d:9d:3e:4e:2c:8a:eb:2b:30:cc:bc:83: 46:e7:a0:32:c3:cf:00:c0:ce:3b:e0:09:27:55:58: 5e:9f:c3:d1:60:8a:48:f4:af:c2:a1:41:82:27:1c: d7:22:6b:c3:ad:b4:f5:56:34:e9:d3:43:73:a9:71: 19:3a:02:c6:47:78:24:d5:92:ed:60:ab:73:f0:76: 68:80:4c:d4:51:22:eb:b1:f6:0e:6d:b7:01:43:e1: ec:d8:6e:9a:db:33:97:91:a2:79:a1:1d:ec:31:f5: 55:49:7c:2b:50:4a:40:78:f7:6a:04:8f:57:62:a4: 5b:a9:5b:c9:af:64:67:c2:17:79:7a:13:f5:b9:f6: 28:65:07:61:ac:bd:94:ca:eb:ac:d5:81:d1:23:ff: 97:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:6C:6E:3A:2C:6F:78:ED:7B:66:7C:39:51:46:F9:91:FC:9A:6A:F4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59965eb9-a645-4fb7-a6d9-bdde9e726d3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.226.216.0/22 Signature Algorithm: sha256WithRSAEncryption d3:32:eb:dc:02:96:ca:2f:c9:52:73:49:d2:b9:e8:86:28:81: a7:78:0d:c2:48:1a:9e:94:f5:9f:72:f3:1f:20:f9:df:fa:7a: 79:08:02:aa:6b:15:f3:d3:cb:8c:77:93:82:01:63:30:0c:fc: 36:b4:f7:ff:f7:a4:d7:a0:4e:3f:91:be:99:e3:92:fc:33:f4: d0:9b:23:2c:af:95:86:32:b3:e0:c3:fb:ee:dc:80:02:fe:3c: ad:2a:4c:24:58:61:98:b6:b7:5f:b6:1c:86:32:49:b3:20:97: 4d:0c:fe:68:f4:1f:10:c7:08:99:e7:7a:da:f0:82:84:c4:3f: c7:b5:67:45:59:73:89:1b:9b:e2:d2:86:24:c2:ed:da:73:a5: a1:8c:e1:c2:2e:0e:64:d7:a0:0b:f9:58:54:1a:a9:c3:75:81: c9:ca:8a:13:49:ef:94:f5:d3:0a:9b:8a:c4:37:b2:50:bc:40: bf:8b:21:4d:d0:38:ea:39:b9:cb:86:d7:ff:23:33:13:39:b1: 40:da:d4:e2:e4:d1:5e:46:33:2e:5c:72:a1:18:9e:a1:2e:43: ca:3e:b6:6e:06:59:c2:7d:2d:15:07:21:1d:85:90:fa:ec:ca: a3:44:6d:24:ca:2b:a5:2f:18:77:2c:44:bd:39:8c:be:dc:64: 7a:84:c0:30 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUr1bwIeHn82KKY9EOYpLd3Ft/UwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA3MDA0MDU5WhcNMjUwNzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMWVkN2M1ZTExMmViOTc1OWEyZjliODRiZjY4MmYwZGE5 YmRmZWE5ZjA3NGUxOTkyZjdlNzQwYWY3MzU3YzAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFTK3ZtmnvEzg4fabl6ssv4HwaULpV4iyHqMzBop/byjMa 6xJSSKxAkA8vFswAMRmvkFQC099CEoEdDOm1RHXlVqnzar6xDuNo0gxZwIA9vs+0 iri3pvVFbZ1djCFlGYKIZNWCb+MuN6xrmh2dPk4siusrMMy8g0bnoDLDzwDAzjvg CSdVWF6fw9Fgikj0r8KhQYInHNcia8OttPVWNOnTQ3OpcRk6AsZHeCTVku1gq3Pw dmiATNRRIuux9g5ttwFD4ezYbprbM5eRonmhHewx9VVJfCtQSkB492oEj1dipFup W8mvZGfCF3l6E/W59ihlB2GsvZTK66zVgdEj/5epAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlGxuOixveO17Znw5UUb5kfyaavQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5OTY1ZWI5LWE2NDUtNGZiNy1hNmQ5LWJkZGU5ZTcyNmQzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJA4tgwDQYJKoZIhvcNAQELBQADggEBANMy69wClsovyVJzSdK56IYogad4 DcJIGp6U9Z9y8x8g+d/6enkIAqprFfPTy4x3k4IBYzAM/Da09//3pNegTj+Rvpnj kvwz9NCbIyyvlYYys+DD++7cgAL+PK0qTCRYYZi2t1+2HIYySbMgl00M/mj0HxDH CJnnetrwgoTEP8e1Z0VZc4kbm+LShiTC7dpzpaGM4cIuDmTXoAv5WFQaqcN1gcnK ihNJ75T10wqbisQ3slC8QL+LIU3QOOo5ucuG1/8jMxM5sUDa1OLk0V5GMy5ccqEY nqEuQ8o+tm4GWcJ9LRUHIR2FkPrsyqNEbSTKK6UvGHcsRL05jL7cZHqEwDA= -----END CERTIFICATE-----Generated at Sat Jun 14 06:27:10 2025 by rpki-client