$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bcb0304-f139-4662-bb87-35c5c7564fa0.roa File: 5bcb0304-f139-4662-bb87-35c5c7564fa0.roa (raw, json) Hash identifier: 6WqXbOEslPtkHCTwhkhuJrdTqXBd12DCo4zG+8YJdao= Subject key identifier: 43:A4:8F:B8:37:3A:79:B9:79:C6:0F:E9:46:0F:6D:B5:0E:7E:AE:1E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31AC9CEBFB1F5A501C2297D1D7DE13E8F21D17 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bcb0304-f139-4662-bb87-35c5c7564fa0.roa Signing time: Mon 16 Jun 2025 15:31:26 +0000 ROA not before: Mon 16 Jun 2025 15:31:26 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 19 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:ac:9c:eb:fb:1f:5a:50:1c:22:97:d1:d7:de:13:e8:f2:1d:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 16 15:31:26 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=75820871c01b3d2c549ef957fa6b172e0f26ebadac62b60883570f8dc50ea3bd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:44:f0:17:f1:e8:06:4e:63:27:4c:15:2a:0a: b0:aa:9f:b9:9a:ad:47:0d:73:a4:5c:6e:4c:d7:a8: ec:4e:0c:19:a4:e3:49:fe:cd:df:77:d5:da:1e:7d: 61:e9:7f:35:9a:d3:20:20:0f:46:ac:73:03:33:78: 38:06:c2:1a:8e:8a:cd:33:55:63:e9:17:08:87:af: a1:f8:8f:f8:b6:61:cf:c4:52:4a:21:07:93:89:28: fc:68:26:42:8c:f6:82:0b:4b:81:61:52:4a:d6:2d: 8c:74:e8:19:8e:fa:8c:a1:8a:30:06:1c:1e:9f:3b: d7:91:70:59:37:44:59:43:e5:3b:fd:21:c7:b8:25: d3:24:43:df:d5:a7:ed:ef:49:aa:50:66:72:01:d8: 33:95:7d:af:ea:fc:04:a2:51:ec:07:69:99:f6:cc: 73:a3:24:d2:31:e2:df:c6:0b:b6:22:bb:18:8a:60: 00:c2:49:70:76:66:cc:d6:ac:13:10:43:08:d7:86: 9a:92:f3:15:c9:e1:ee:20:7e:ae:c7:5f:f0:50:3e: 85:b8:32:12:17:47:0f:d8:78:93:98:6e:24:90:f6: cc:6f:bc:97:47:7f:ac:69:9c:a3:b6:77:8b:8a:2a: 17:2e:19:f3:f6:8a:69:10:da:81:d4:e0:eb:a7:ef: 57:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:A4:8F:B8:37:3A:79:B9:79:C6:0F:E9:46:0F:6D:B5:0E:7E:AE:1E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5bcb0304-f139-4662-bb87-35c5c7564fa0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.175.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:a7:2a:57:ce:26:39:4f:be:73:c9:0c:a6:cc:ad:05:93:3a: 4a:88:58:d5:b1:c5:86:8d:24:78:bf:6e:02:64:c2:e5:64:05: 36:02:7d:6e:bb:57:b1:1f:95:aa:d7:d1:e2:b9:5e:ed:19:16: d9:25:6e:dd:af:d4:4d:6c:00:f1:b6:ab:24:45:0b:54:05:f4: e5:a2:67:4e:1f:6a:7f:11:5a:cf:23:49:05:45:b9:07:e9:8b: 60:a3:99:1d:70:15:f4:95:b3:12:34:d3:a0:a0:49:96:ee:f5: af:51:b8:74:6d:46:c3:ab:66:b4:aa:32:52:65:9f:b2:9f:2f: b5:00:00:98:43:c1:3f:b2:22:b4:93:2a:4f:37:f7:8f:3b:6e: 70:5d:2e:e4:70:df:35:ee:be:da:e7:1f:c6:51:74:46:51:80: 60:b9:fd:d1:27:f7:83:7d:d8:a4:ed:39:77:af:85:6b:9e:46: f2:e7:20:d6:37:75:27:b2:17:c3:39:d4:13:f8:98:02:94:e2: 96:42:a0:0c:5b:e8:f8:48:3d:5d:b9:b3:3a:1d:85:d9:e0:0d: 9e:0a:67:56:5e:2b:eb:b3:d0:63:87:b7:24:96:14:18:d5:f6: 89:83:2b:09:a3:f7:6d:95:c3:48:5e:c4:c7:06:f9:97:92:8b: a0:64:de:7e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITMayc6/sfWlAcIpfR194T6PIdFzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA2MTYxNTMxMjZaFw0yNTA3MjEyMzU5NTla MHoxSTBHBgNVBAUTQDc1ODIwODcxYzAxYjNkMmM1NDllZjk1N2ZhNmIxNzJlMGYy NmViYWRhYzYyYjYwODgzNTcwZjhkYzUwZWEzYmQxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMVE8Bfx6AZOYydMFSoKsKqfuZqtRw1zpFxuTNeo7E4MGaTj Sf7N33fV2h59Yel/NZrTICAPRqxzAzN4OAbCGo6KzTNVY+kXCIevofiP+LZhz8RS SiEHk4ko/GgmQoz2ggtLgWFSStYtjHToGY76jKGKMAYcHp8715FwWTdEWUPlO/0h x7gl0yRD39Wn7e9JqlBmcgHYM5V9r+r8BKJR7AdpmfbMc6Mk0jHi38YLtiK7GIpg AMJJcHZmzNasExBDCNeGmpLzFcnh7iB+rsdf8FA+hbgyEhdHD9h4k5huJJD2zG+8 l0d/rGmco7Z3i4oqFy4Z8/aKaRDagdTg66fvV9UCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBRDpI+4Nzp5uXnGD+lGD221Dn6uHjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvNWJjYjAzMDQtZjEzOS00NjYyLWJiODctMzVjNWM3NTY0ZmEwLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAEUArzANBgkqhkiG9w0BAQsFAAOCAQEAGqcqV84mOU++c8kMpsytBZM6SohY 1bHFho0keL9uAmTC5WQFNgJ9brtXsR+VqtfR4rle7RkW2SVu3a/UTWwA8barJEUL VAX05aJnTh9qfxFazyNJBUW5B+mLYKOZHXAV9JWzEjTToKBJlu71r1G4dG1Gw6tm tKoyUmWfsp8vtQAAmEPBP7IitJMqTzf3jztucF0u5HDfNe6+2ucfxlF0RlGAYLn9 0Sf3g33YpO05d6+Fa55G8ucg1jd1J7IXwznUE/iYApTilkKgDFvo+Eg9XbmzOh2F 2eANngpnVl4r67PQY4e3JJYUGNX2iYMrCaP3bZXDSF7Exwb5l5KLoGTefg== -----END CERTIFICATE-----Generated at Tue Jun 17 19:55:46 2025 by rpki-client