$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/646c43c0-5fb0-40e1-9466-05bdc0cdc3f1.roa File: 646c43c0-5fb0-40e1-9466-05bdc0cdc3f1.roa (raw, json) Hash identifier: 8y0OCNKHSEG9H1mZnuQgr2L7Gr8a7ThvRyrC1nOjFDQ= Subject key identifier: 67:72:2A:80:D3:B8:FD:9A:36:15:7D:E3:96:0E:9A:CD:48:F6:3A:CE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 57B30F77A41D43F8304D591887F99AF0C7EBA057 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/646c43c0-5fb0-40e1-9466-05bdc0cdc3f1.roa Signing time: Fri 13 Jun 2025 00:42:20 +0000 ROA not before: Fri 13 Jun 2025 00:42:20 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 174.129.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:b3:0f:77:a4:1d:43:f8:30:4d:59:18:87:f9:9a:f0:c7:eb:a0:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 00:42:20 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=390c2420a1dee5eb407f8e9b25dfac9314d9343926bce450454d9c98dbf6a478, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:df:46:8c:6d:d7:a0:f1:82:15:da:eb:fa:24: 0b:7e:c4:68:63:2d:b6:b8:c7:5e:53:78:fc:78:bb: 5c:2b:c6:75:b6:21:16:18:5b:99:69:06:db:20:b6: d6:f7:50:3c:67:e3:2a:be:91:de:5f:1a:76:05:72: ab:7e:2f:dd:55:24:1a:9a:ce:83:3e:ae:cd:e9:31: 70:38:d4:6a:97:9d:46:df:b5:78:d4:90:ce:eb:1e: a9:1c:da:80:9a:f1:22:6a:de:c1:2f:91:eb:c1:6f: 26:5b:ce:eb:2d:ef:ff:7f:a3:0a:ef:0a:84:3d:70: ca:73:94:53:5b:29:b0:35:d3:dd:f3:c2:0b:da:18: fa:8b:ef:f2:d8:9d:04:ee:53:25:82:fa:87:95:c1: a9:ca:f5:84:b3:45:a8:4e:54:86:01:fa:cf:71:4d: f1:39:72:d2:78:22:ad:6f:df:7a:20:d7:6e:fe:0d: cf:08:60:a9:91:a6:e8:dc:67:ee:23:de:ab:6c:80: 10:74:25:f5:93:a1:45:c9:3f:52:14:fc:d8:8c:fd: f9:72:8e:a3:ee:2b:97:f1:3f:9c:cf:56:d8:39:68: 90:50:1a:ff:23:7e:84:c1:78:53:94:c8:2f:fc:d0: 44:f4:76:1a:96:e1:b9:af:8c:0b:22:22:f4:02:20: 12:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:72:2A:80:D3:B8:FD:9A:36:15:7D:E3:96:0E:9A:CD:48:F6:3A:CE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/646c43c0-5fb0-40e1-9466-05bdc0cdc3f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 174.129.192.0/18 Signature Algorithm: sha256WithRSAEncryption 2b:1f:61:19:1b:ae:87:29:15:4e:03:e1:2a:18:59:b2:2c:66: e5:da:41:46:8f:c7:56:92:35:09:c2:57:83:48:68:0b:98:f5: b2:01:3e:ab:a8:e1:a1:e1:95:f1:a2:88:90:31:0d:90:34:88: 1d:a7:89:10:a0:c0:14:1e:cf:6a:36:eb:8c:0c:e7:db:60:08: 4e:09:a2:84:c4:e5:50:cd:f5:b0:fb:0d:65:20:f4:63:c7:8d: e2:31:35:ac:46:fb:0c:89:58:92:31:ca:b5:8f:2d:eb:28:a1: 86:76:24:ae:ef:97:2a:c5:20:d2:88:f5:d6:2c:05:3a:35:57: ef:02:78:7a:0e:a7:5e:71:56:a2:1b:9b:29:3f:88:62:26:52: 18:f4:b1:1a:b5:d1:c7:52:1f:16:7a:10:88:f1:e9:75:af:97: 58:6e:ca:48:99:d7:14:5e:81:09:66:c6:31:d0:00:bd:e8:e9: bb:81:29:32:5b:b8:f4:17:89:f1:c0:d0:16:25:7c:c8:c5:b6: 18:6d:0d:c7:15:71:ed:f2:e6:00:e1:0e:b3:ad:f9:72:e3:f0: e6:69:54:69:38:a3:87:3e:54:8a:55:cc:cd:39:15:14:c9:c0: 98:07:8c:85:33:65:10:76:0d:39:f9:3e:66:2e:1c:4c:0e:95: e8:d6:32:00 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV7MPd6QdQ/gwTVkYh/ma8MfroFcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMDA0MjIwWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTBjMjQyMGExZGVlNWViNDA3ZjhlOWIyNWRmYWM5MzE0 ZDkzNDM5MjZiY2U0NTA0NTRkOWM5OGRiZjZhNDc4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC430aMbdeg8YIV2uv6JAt+xGhjLba4x15TePx4u1wrxnW2 IRYYW5lpBtsgttb3UDxn4yq+kd5fGnYFcqt+L91VJBqazoM+rs3pMXA41GqXnUbf tXjUkM7rHqkc2oCa8SJq3sEvkevBbyZbzust7/9/owrvCoQ9cMpzlFNbKbA1093z wgvaGPqL7/LYnQTuUyWC+oeVwanK9YSzRahOVIYB+s9xTfE5ctJ4Iq1v33og127+ Dc8IYKmRpujcZ+4j3qtsgBB0JfWToUXJP1IU/NiM/flyjqPuK5fxP5zPVtg5aJBQ Gv8jfoTBeFOUyC/80ET0dhqW4bmvjAsiIvQCIBK7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZ3IqgNO4/Zo2FX3jlg6azUj2Os4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY0NmM0M2MwLTVmYjAtNDBlMS05NDY2LTA1YmRjMGNkYzNmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaugcAwDQYJKoZIhvcNAQELBQADggEBACsfYRkbrocpFU4D4SoYWbIsZuXa QUaPx1aSNQnCV4NIaAuY9bIBPquo4aHhlfGiiJAxDZA0iB2niRCgwBQez2o264wM 59tgCE4JooTE5VDN9bD7DWUg9GPHjeIxNaxG+wyJWJIxyrWPLesooYZ2JK7vlyrF INKI9dYsBTo1V+8CeHoOp15xVqIbmyk/iGImUhj0sRq10cdSHxZ6EIjx6XWvl1hu ykiZ1xRegQlmxjHQAL3o6buBKTJbuPQXifHA0BYlfMjFthhtDccVce3y5gDhDrOt +XLj8OZpVGk4o4c+VIpVzM05FRTJwJgHjIUzZRB2DTn5PmYuHEwOlejWMgA= -----END CERTIFICATE-----Generated at Sat Jun 14 19:04:46 2025 by rpki-client