$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6694171a-aae2-4bbb-a718-43a3f95c6dc1.roa File: 6694171a-aae2-4bbb-a718-43a3f95c6dc1.roa (raw, json) Hash identifier: PlvVvejSz1OppVv+uYnHMTTkMK5UWiu79GCMUNQeyKU= Subject key identifier: D4:81:C0:F3:A7:FD:EF:37:9D:5B:2B:DE:EA:E7:7C:3B:20:F8:64:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67FA12160A0642E3BFCEA5C49F218ED23C67F438 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6694171a-aae2-4bbb-a718-43a3f95c6dc1.roa Signing time: Fri 13 Jun 2025 00:51:25 +0000 ROA not before: Fri 13 Jun 2025 00:51:25 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.236.144.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:fa:12:16:0a:06:42:e3:bf:ce:a5:c4:9f:21:8e:d2:3c:67:f4:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 00:51:25 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=0940e4be7d884130241ba80bd14a44b791dad1fe42445f26cab819ec9fb07ded, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:37:60:df:2f:21:98:94:e8:3c:28:1c:f9:14: 8a:b7:e9:8c:e9:eb:60:40:b4:6d:26:a8:c3:0f:4d: 2c:60:6b:ee:fb:da:05:1a:51:c5:e4:df:a9:04:40: 24:cb:e6:f9:8f:18:03:a4:c8:b1:aa:ae:33:54:17: ab:20:ae:d0:a2:be:bf:59:d8:17:1f:89:a6:c4:68: 62:65:17:eb:cd:93:37:d5:63:6d:02:7f:8d:52:d7: d7:f4:36:0b:d6:79:ca:dd:83:c7:3c:ae:4f:6e:7f: a2:04:47:87:5e:30:cc:3f:5d:b9:e4:8b:45:ce:8e: 27:8d:ec:91:87:1f:9f:48:ba:7f:64:03:df:48:a5: 00:b4:8b:7d:f0:a4:21:0c:28:4d:8d:52:e8:aa:6b: 63:5e:9e:57:36:ef:0f:6c:ba:f6:d8:90:c1:cc:3f: 5a:9a:20:22:93:96:3d:74:c0:7c:2a:77:83:76:33: df:1d:d7:07:76:33:72:e7:a5:47:1c:55:17:e6:fb: 0e:95:d5:7c:ce:3b:33:3f:d4:12:0c:c9:4c:89:5a: d2:e2:7b:b3:3b:e6:88:d6:f8:11:32:c1:39:2d:31: 48:80:83:88:6f:5c:5c:1f:e2:d6:cc:e9:76:0c:3e: 26:11:3a:5f:13:94:35:76:2a:89:d7:3d:e5:8f:f1: 95:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:81:C0:F3:A7:FD:EF:37:9D:5B:2B:DE:EA:E7:7C:3B:20:F8:64:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6694171a-aae2-4bbb-a718-43a3f95c6dc1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.144.0/20 Signature Algorithm: sha256WithRSAEncryption d1:f5:4f:8b:ff:82:b1:f7:e1:f9:8d:89:52:f5:21:99:cc:33: 6e:bd:88:08:e4:75:b3:e7:93:fb:65:b6:1a:6d:0c:29:30:76: 1e:c3:f7:89:fc:1e:b8:0b:fb:2f:0b:fc:c3:2e:14:6c:48:5a: be:a4:64:84:a7:17:76:c4:97:66:28:b5:1d:25:40:d2:f4:51: cb:ef:71:00:ce:bb:43:6b:41:f8:3d:d5:e9:68:e4:7c:4c:cc: a8:ff:15:75:7d:a9:60:00:66:2c:1c:fe:19:b8:b4:ce:6b:c5: 0b:10:18:e9:92:eb:d5:30:be:1c:bf:f3:27:ae:8f:7c:d4:7d: 27:10:b8:9c:70:a8:e7:f3:40:63:d2:ca:d3:a3:be:d6:9c:57: 30:e5:f2:c2:f6:d3:af:83:03:be:70:f0:07:04:8f:90:ce:08: 9f:30:b1:a6:3a:c9:6b:55:dd:49:8e:8f:34:db:d2:d2:58:54: 10:86:8e:66:1f:88:d3:31:9f:b9:6e:e1:d9:bd:2a:3e:65:48: 0b:f7:87:96:93:56:6e:62:25:df:5f:c7:da:7c:40:24:6a:13: 9b:f5:45:af:d8:f4:7e:8c:94:76:28:2f:f3:90:5f:78:8d:f8: 68:64:79:2b:96:bd:20:ea:61:f0:71:a2:ab:50:1d:60:02:33: 95:b4:4c:eb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ/oSFgoGQuO/zqXEnyGO0jxn9DgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMDA1MTI1WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTQwZTRiZTdkODg0MTMwMjQxYmE4MGJkMTRhNDRiNzkx ZGFkMWZlNDI0NDVmMjZjYWI4MTllYzlmYjA3ZGVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTN2DfLyGYlOg8KBz5FIq36Yzp62BAtG0mqMMPTSxga+77 2gUaUcXk36kEQCTL5vmPGAOkyLGqrjNUF6sgrtCivr9Z2BcfiabEaGJlF+vNkzfV Y20Cf41S19f0NgvWecrdg8c8rk9uf6IER4deMMw/Xbnki0XOjieN7JGHH59Iun9k A99IpQC0i33wpCEMKE2NUuiqa2Nenlc27w9suvbYkMHMP1qaICKTlj10wHwqd4N2 M98d1wd2M3LnpUccVRfm+w6V1XzOOzM/1BIMyUyJWtLie7M75ojW+BEywTktMUiA g4hvXFwf4tbM6XYMPiYROl8TlDV2KonXPeWP8ZUJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1IHA86f97zedWyve6ud8OyD4ZPcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY2OTQxNzFhLWFhZTItNGJiYi1hNzE4LTQzYTNmOTVjNmRjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATM7JAwDQYJKoZIhvcNAQELBQADggEBANH1T4v/grH34fmNiVL1IZnMM269 iAjkdbPnk/tlthptDCkwdh7D94n8HrgL+y8L/MMuFGxIWr6kZISnF3bEl2YotR0l QNL0UcvvcQDOu0NrQfg91elo5HxMzKj/FXV9qWAAZiwc/hm4tM5rxQsQGOmS69Uw vhy/8yeuj3zUfScQuJxwqOfzQGPSytOjvtacVzDl8sL206+DA75w8AcEj5DOCJ8w saY6yWtV3UmOjzTb0tJYVBCGjmYfiNMxn7lu4dm9Kj5lSAv3h5aTVm5iJd9fx9p8 QCRqE5v1Ra/Y9H6MlHYoL/OQX3iN+GhkeSuWvSDqYfBxoqtQHWACM5W0TOs= -----END CERTIFICATE-----Generated at Sat Jun 14 06:51:49 2025 by rpki-client