$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6558a003-59a6-43fd-8846-6caecf9288bc.roa File: 6558a003-59a6-43fd-8846-6caecf9288bc.roa (raw, json) Hash identifier: 4+V1ygx4SAeliwmR3QpStYSYbfBwvU0cDA/HyzeTQ4E= Subject key identifier: AF:75:78:E4:0F:C8:1F:D9:E5:84:DA:46:A7:2E:7E:90:7C:40:2A:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2F1D9C1853884B993531CD6B266185144758B9BD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6558a003-59a6-43fd-8846-6caecf9288bc.roa Signing time: Wed 11 Jun 2025 00:01:37 +0000 ROA not before: Wed 11 Jun 2025 00:01:37 +0000 ROA not after: Wed 16 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 159.137.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:1d:9c:18:53:88:4b:99:35:31:cd:6b:26:61:85:14:47:58:b9:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 11 00:01:37 2025 GMT Not After : Jul 16 23:59:59 2025 GMT Subject: serialNumber=ef225fb51f70b2631ef01fb85b43495c7a1b675ea21efbe7f7597f9fdfaf9d51, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:92:04:94:49:7b:65:8e:fc:7b:dd:4b:6d:9c: f7:68:22:19:bf:32:3b:9e:b1:fc:11:23:cf:99:b4: 75:e9:c8:8f:bf:83:0d:78:52:bd:3a:c9:11:eb:50: a2:b4:f4:97:f1:a5:a4:e9:76:98:ea:76:74:46:9a: 87:e8:4d:e3:a0:b7:ea:2c:c7:5d:f6:39:94:e3:34: e1:66:bc:ae:87:ba:d9:a1:b5:ed:95:ee:47:0b:0b: 7b:a4:4b:e2:7f:33:92:d4:e8:1f:51:a1:98:64:26: 47:f6:86:79:7e:1f:68:f0:03:d5:76:b6:27:4d:4a: d7:4f:12:ff:e8:47:fb:98:2d:31:15:47:5a:73:44: 02:45:bd:50:43:39:97:b2:03:3b:d1:ab:47:a8:b1: 38:05:0e:cb:fa:aa:ff:f4:70:32:57:00:ca:b5:9a: 36:cd:74:61:86:8b:3a:40:ea:80:b4:34:fa:8c:f6: 91:f0:a4:85:6e:1f:93:9a:43:9d:ef:d7:f6:66:50: 72:32:df:65:7c:b6:27:ee:d7:0b:c6:c4:36:67:22: ec:f2:cc:9b:26:fa:92:4d:0d:b0:93:b5:14:aa:ad: aa:8d:2b:cf:7f:1c:14:88:5f:2d:28:51:29:01:79: f3:4b:65:58:57:9b:24:b0:c1:6c:c8:17:7f:a6:3c: b0:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:75:78:E4:0F:C8:1F:D9:E5:84:DA:46:A7:2E:7E:90:7C:40:2A:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6558a003-59a6-43fd-8846-6caecf9288bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 159.137.128.0/17 Signature Algorithm: sha256WithRSAEncryption 78:5e:c9:dc:90:a3:3c:62:44:db:2b:c9:03:5d:e8:51:1e:dc: cb:82:db:9a:e6:9e:ea:44:ab:8c:58:42:01:40:0d:0d:6c:c5: 6f:e1:df:05:42:ae:dd:67:d9:9c:41:a5:d2:48:7e:fd:9d:e5: e2:2d:23:6d:27:d0:3d:3e:46:b4:e3:20:b3:cd:8a:a9:34:1d: aa:31:27:32:e1:ac:63:9a:5b:fd:90:9e:8a:b6:db:97:5a:05: b9:07:b3:cd:b7:3a:f8:a0:17:88:96:5c:50:22:08:91:60:94: 3d:d9:76:27:15:8f:0e:23:ef:d6:8a:b4:03:a2:33:29:7f:10: 94:75:71:d5:f5:44:4d:8e:12:9b:5e:ab:82:30:a8:f8:21:eb: d3:8b:4b:ca:0c:40:b0:d2:8c:0f:7f:fe:80:13:e7:c7:57:14: b3:e2:8f:0e:d9:ce:b9:da:65:e1:fc:8e:0d:5b:c5:bc:0f:cb: 23:55:88:18:86:82:3e:db:0b:e2:8d:45:d9:bb:26:2f:9a:4f: 26:9b:a1:40:cd:59:57:df:75:c7:ec:a4:4d:2c:64:eb:e2:1b: 23:8f:5f:1b:c7:c0:41:6e:1e:7e:c4:fb:e4:8b:79:44:1f:d0: 9f:6f:50:e6:fe:04:fe:df:74:bb:1a:fa:43:7c:7a:1b:67:4f: 05:11:25:a9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULx2cGFOIS5k1Mc1rJmGFFEdYub0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjExMDAwMTM3WhcNMjUwNzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjIyNWZiNTFmNzBiMjYzMWVmMDFmYjg1YjQzNDk1Yzdh MWI2NzVlYTIxZWZiZTdmNzU5N2Y5ZmRmYWY5ZDUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxkgSUSXtljvx73UttnPdoIhm/MjuesfwRI8+ZtHXpyI+/ gw14Ur06yRHrUKK09JfxpaTpdpjqdnRGmofoTeOgt+osx132OZTjNOFmvK6Hutmh te2V7kcLC3ukS+J/M5LU6B9RoZhkJkf2hnl+H2jwA9V2tidNStdPEv/oR/uYLTEV R1pzRAJFvVBDOZeyAzvRq0eosTgFDsv6qv/0cDJXAMq1mjbNdGGGizpA6oC0NPqM 9pHwpIVuH5OaQ53v1/ZmUHIy32V8tifu1wvGxDZnIuzyzJsm+pJNDbCTtRSqraqN K89/HBSIXy0oUSkBefNLZVhXmySwwWzIF3+mPLBZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUr3V45A/IH9nlhNpGpy5+kHxAKuAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1NThhMDAzLTU5YTYtNDNmZC04ODQ2LTZjYWVjZjkyODhiYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAefiYAwDQYJKoZIhvcNAQELBQADggEBAHheydyQozxiRNsryQNd6FEe3MuC 25rmnupEq4xYQgFADQ1sxW/h3wVCrt1n2ZxBpdJIfv2d5eItI20n0D0+RrTjILPN iqk0HaoxJzLhrGOaW/2Qnoq225daBbkHs823OvigF4iWXFAiCJFglD3ZdicVjw4j 79aKtAOiMyl/EJR1cdX1RE2OEpteq4IwqPgh69OLS8oMQLDSjA9//oAT58dXFLPi jw7ZzrnaZeH8jg1bxbwPyyNViBiGgj7bC+KNRdm7Ji+aTyaboUDNWVffdcfspE0s ZOviGyOPXxvHwEFuHn7E++SLeUQf0J9vUOb+BP7fdLsa+kN8ehtnTwURJak= -----END CERTIFICATE-----Generated at Sat Jun 14 19:11:08 2025 by rpki-client