$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/639097d5-f9bb-4b92-adec-86468a0d59da.roa File: 639097d5-f9bb-4b92-adec-86468a0d59da.roa (raw, json) Hash identifier: 0tqMGkCRWVLKd9TtjhTjjgjSnC9fwe4W4osNw8XKQw0= Subject key identifier: 45:C3:40:46:00:89:6C:A9:AD:F5:99:1A:A6:88:11:2E:8A:2A:68:29 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1A2303079F57DBE790BAC3CD59B07C894AAD371F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/639097d5-f9bb-4b92-adec-86468a0d59da.roa Signing time: Sat 14 Jun 2025 00:10:48 +0000 ROA not before: Sat 14 Jun 2025 00:10:48 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 19 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:23:03:07:9f:57:db:e7:90:ba:c3:cd:59:b0:7c:89:4a:ad:37:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:10:48 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=5d1b4eb2899cdb0e5fc866f346d1b93bc43f566e7628a6af818e5d52badccbff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:6d:2d:d4:15:85:d6:20:cb:f6:4d:e3:bf:7e: 1f:37:03:e1:11:72:9b:2a:f2:06:18:4a:b1:71:cc: 63:a7:9a:1e:5a:22:d0:60:79:42:66:fe:29:45:12: 21:45:8f:61:fa:cb:4b:04:85:85:9c:3b:be:51:c1: 0d:eb:f7:e6:b3:47:d5:2c:4e:91:1e:8b:11:c8:85: 2f:4c:e8:b9:4e:13:e0:db:f0:c9:ca:ab:c6:7c:33: 48:36:15:e2:2e:77:b2:75:7c:6f:73:bd:d2:77:f0: ca:0d:1b:3a:9d:1c:a1:b8:c5:50:e8:87:ef:a4:64: 2b:09:5b:1c:f1:a2:1b:18:bb:cb:34:35:15:72:76: db:1c:9f:15:43:7e:1b:9e:86:d6:29:17:6d:b3:0e: d3:7b:e7:aa:3a:5a:97:4c:f8:3d:fa:6b:1e:10:96: 28:0a:9b:ac:a6:1c:4d:9e:7e:cc:f3:ac:47:1e:d1: fa:e6:eb:2e:f1:c3:99:c6:2c:65:c5:35:c4:36:17: 3d:95:8e:7e:24:74:08:ca:48:66:fd:a9:6b:75:52: 38:a6:0f:b9:b1:a2:3a:9e:18:b5:23:87:ce:b6:65: 36:95:4e:e5:83:ae:46:f6:87:ea:bc:41:0c:38:11: 10:ac:ae:d5:d7:20:dd:12:ab:5a:04:bd:01:70:9a: 17:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:C3:40:46:00:89:6C:A9:AD:F5:99:1A:A6:88:11:2E:8A:2A:68:29 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/639097d5-f9bb-4b92-adec-86468a0d59da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.0.0/24 Signature Algorithm: sha256WithRSAEncryption ac:63:0c:dd:fc:d6:03:17:09:d4:67:ea:f9:00:94:2a:fc:f2: cb:42:7b:b6:4a:dc:76:c8:e7:f1:1e:71:ec:ec:53:3f:05:e7: ec:20:90:0e:08:9b:d8:6b:6a:89:f2:ca:3b:f9:8f:52:7e:e0: b8:18:c6:4d:35:46:9e:d4:47:d1:8d:dd:28:43:6b:d3:59:24: 81:f8:77:f0:f5:5b:d7:71:fb:63:77:22:e5:b9:7b:c7:fd:f3: 88:0e:3e:35:c2:97:2e:05:a9:14:b7:25:4f:88:57:7c:f6:c5: 25:53:53:1e:f1:a0:e3:3c:7e:24:7c:56:cc:43:d8:4e:63:ca: 72:e3:d3:c3:0d:3a:e3:6c:8e:db:58:20:15:91:a5:2f:a0:11: 23:71:bb:5d:2d:63:88:12:51:65:b0:82:7b:68:b4:86:31:83: 66:f9:1a:10:88:83:74:6b:10:2d:25:85:db:08:54:b9:e4:a3: 25:d3:67:af:aa:eb:a5:b0:5d:5b:8e:50:86:9b:e3:38:ce:10: 71:2d:19:7a:7c:f4:6c:fa:65:57:1e:6c:8d:ad:b0:69:95:89: fd:f3:7b:5b:9b:b1:7c:31:d1:57:c7:d5:31:b3:ea:52:87:22: 0e:97:00:07:05:0e:8c:61:20:c6:33:7e:d1:28:2c:d7:f2:a5: b0:ba:99:22 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGiMDB59X2+eQusPNWbB8iUqtNx8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDAxMDQ4WhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDFiNGViMjg5OWNkYjBlNWZjODY2ZjM0NmQxYjkzYmM0 M2Y1NjZlNzYyOGE2YWY4MThlNWQ1MmJhZGNjYmZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCobS3UFYXWIMv2TeO/fh83A+ERcpsq8gYYSrFxzGOnmh5a ItBgeUJm/ilFEiFFj2H6y0sEhYWcO75RwQ3r9+azR9UsTpEeixHIhS9M6LlOE+Db 8MnKq8Z8M0g2FeIud7J1fG9zvdJ38MoNGzqdHKG4xVDoh++kZCsJWxzxohsYu8s0 NRVydtscnxVDfhuehtYpF22zDtN756o6WpdM+D36ax4QligKm6ymHE2efszzrEce 0frm6y7xw5nGLGXFNcQ2Fz2Vjn4kdAjKSGb9qWt1UjimD7mxojqeGLUjh862ZTaV TuWDrkb2h+q8QQw4ERCsrtXXIN0Sq1oEvQFwmhfzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURcNARgCJbKmt9ZkapogRLooqaCkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYzOTA5N2Q1LWY5YmItNGI5Mi1hZGVjLTg2NDY4YTBkNTlkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABsgAwDQYJKoZIhvcNAQELBQADggEBAKxjDN381gMXCdRn6vkAlCr88stC e7ZK3HbI5/EecezsUz8F5+wgkA4Im9hraonyyjv5j1J+4LgYxk01Rp7UR9GN3ShD a9NZJIH4d/D1W9dx+2N3IuW5e8f984gOPjXCly4FqRS3JU+IV3z2xSVTUx7xoOM8 fiR8VsxD2E5jynLj08MNOuNsjttYIBWRpS+gESNxu10tY4gSUWWwgntotIYxg2b5 GhCIg3RrEC0lhdsIVLnkoyXTZ6+q66WwXVuOUIab4zjOEHEtGXp89Gz6ZVcebI2t sGmVif3ze1ubsXwx0VfH1TGz6lKHIg6XAAcFDoxhIMYzftEoLNfypbC6mSI= -----END CERTIFICATE-----Generated at Tue Jun 17 19:42:22 2025 by rpki-client