$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60e798f1-2c72-4195-b34c-7c1c6171e9a3.roa File: 60e798f1-2c72-4195-b34c-7c1c6171e9a3.roa (raw, json) Hash identifier: Bsr3H1i9C37LgyWiD826OjnZFJbPiA7K4wwIlVF7cQw= Subject key identifier: 04:34:71:76:B7:CB:46:D7:98:96:40:F8:B5:85:D0:54:62:8B:04:3E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 626A74DAB343CE6C4C1145FB89B87940FD8CDAF1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60e798f1-2c72-4195-b34c-7c1c6171e9a3.roa Signing time: Wed 04 Jun 2025 00:31:42 +0000 ROA not before: Wed 04 Jun 2025 00:31:42 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:6a:74:da:b3:43:ce:6c:4c:11:45:fb:89:b8:79:40:fd:8c:da:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 4 00:31:42 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=3074305865a78af865983bb967709d6d4b4c9d40576a17a92e1e2c78743427cf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fe:2e:f9:07:4e:9d:00:d5:3d:7a:3b:2a:79: c9:05:aa:80:71:e4:f4:95:fb:f1:4f:5f:5b:cf:3f: e5:df:bc:54:8a:1c:87:3e:55:36:87:ce:cd:42:33: 61:d3:da:f7:20:f1:67:c9:0f:1c:31:d5:b0:78:be: 13:52:7b:3d:ab:52:40:c6:51:7a:10:78:1c:bc:e2: fa:1b:47:11:30:5f:72:7a:66:80:8a:70:5a:d8:bb: dd:fd:6b:01:84:ee:17:60:3a:dc:29:69:58:80:d3: f8:eb:66:b9:28:55:dc:40:e4:f4:ef:d9:6c:d2:a1: f9:b7:47:24:ba:02:d3:6f:64:b9:5f:88:99:d9:d0: 80:4f:68:3b:a3:85:fd:af:29:49:42:19:ea:d9:3b: a9:04:a7:53:b2:5e:3c:ba:6b:14:c1:fa:e7:b1:1f: 5e:8f:96:ec:ae:ca:07:82:c6:cb:3f:c3:23:c9:83: fc:ab:64:ed:93:01:54:64:a7:be:d5:fe:67:28:28: e3:22:5c:79:3d:cd:3a:38:73:cc:4c:3b:f6:0c:b4: de:a1:d7:ae:64:ce:fe:69:e8:c1:ff:32:6d:2c:5c: 17:9f:94:e7:84:27:72:b1:ea:e2:28:69:5b:61:39: ff:70:90:f5:5a:77:e0:78:66:e8:83:50:4b:7f:db: 83:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:34:71:76:B7:CB:46:D7:98:96:40:F8:B5:85:D0:54:62:8B:04:3E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60e798f1-2c72-4195-b34c-7c1c6171e9a3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.175.0/24 Signature Algorithm: sha256WithRSAEncryption c9:fe:67:58:a9:f6:b6:f9:ec:43:03:88:9b:c7:c7:ec:e3:06: 08:22:f7:c8:34:c0:38:3e:ca:6e:26:9a:91:e3:cf:ff:43:dd: 8b:ef:68:5e:be:ef:fe:61:69:b0:e6:a5:78:a2:8e:b7:55:f1: 4e:24:68:d0:f3:c0:20:36:f0:73:b9:0b:54:b1:3c:71:81:df: e9:fc:7b:42:24:f6:77:df:18:4c:ba:76:a7:b9:2e:7d:36:8b: 01:98:ce:61:c3:b6:04:ef:8e:57:26:72:44:bf:19:47:83:dd: bc:60:70:ed:ca:6e:da:14:19:fd:6c:ab:30:8d:1f:48:0f:ff: 70:ff:78:47:a7:6f:ae:60:eb:e8:81:b0:27:56:38:0a:97:7c: d8:12:4b:1c:49:db:5b:86:59:77:23:fc:6b:79:5d:e1:9b:76: 3e:13:ea:ee:f9:ba:22:d9:fc:f6:c6:8a:99:47:40:99:ba:17: cc:d0:3a:ab:fb:ec:52:9f:5d:0b:23:21:9b:37:3a:53:bb:d2: a6:3f:00:d8:82:fb:6d:8d:48:dd:f0:a4:fd:45:41:63:8f:3b: 56:1d:17:e0:5b:b8:f6:00:68:b6:da:63:8b:eb:56:42:52:92: 7a:ab:e4:ca:bd:5b:64:92:5c:c3:10:e6:7a:e4:c1:98:22:50: 65:a2:8a:32 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYmp02rNDzmxMEUX7ibh5QP2M2vEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA0MDAzMTQyWhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDc0MzA1ODY1YTc4YWY4NjU5ODNiYjk2NzcwOWQ2ZDRi NGM5ZDQwNTc2YTE3YTkyZTFlMmM3ODc0MzQyN2NmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3/i75B06dANU9ejsqeckFqoBx5PSV+/FPX1vPP+XfvFSK HIc+VTaHzs1CM2HT2vcg8WfJDxwx1bB4vhNSez2rUkDGUXoQeBy84vobRxEwX3J6 ZoCKcFrYu939awGE7hdgOtwpaViA0/jrZrkoVdxA5PTv2WzSofm3RyS6AtNvZLlf iJnZ0IBPaDujhf2vKUlCGerZO6kEp1OyXjy6axTB+uexH16PluyuygeCxss/wyPJ g/yrZO2TAVRkp77V/mcoKOMiXHk9zTo4c8xMO/YMtN6h165kzv5p6MH/Mm0sXBef lOeEJ3Kx6uIoaVthOf9wkPVad+B4ZuiDUEt/24ORAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBDRxdrfLRteYlkD4tYXQVGKLBD4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYwZTc5OGYxLTJjNzItNDE5NS1iMzRjLTdjMWM2MTcxZTlhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl68wDQYJKoZIhvcNAQELBQADggEBAMn+Z1ip9rb57EMDiJvHx+zjBggi 98g0wDg+ym4mmpHjz/9D3YvvaF6+7/5habDmpXiijrdV8U4kaNDzwCA28HO5C1Sx PHGB3+n8e0Ik9nffGEy6dqe5Ln02iwGYzmHDtgTvjlcmckS/GUeD3bxgcO3KbtoU Gf1sqzCNH0gP/3D/eEenb65g6+iBsCdWOAqXfNgSSxxJ21uGWXcj/Gt5XeGbdj4T 6u75uiLZ/PbGiplHQJm6F8zQOqv77FKfXQsjIZs3OlO70qY/ANiC+22NSN3wpP1F QWOPO1YdF+BbuPYAaLbaY4vrVkJSknqr5Mq9W2SSXMMQ5nrkwZgiUGWiijI= -----END CERTIFICATE-----Generated at Sat Jun 14 06:47:32 2025 by rpki-client