$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66e59786-c1f4-4146-bccb-708e47a5469a.roa File: 66e59786-c1f4-4146-bccb-708e47a5469a.roa (raw, json) Hash identifier: zDYrn6b3LCf7y6vfRHEQqDqMyADO31dsFUqU/ERLGnI= Subject key identifier: CC:F6:54:D7:0D:F5:AB:23:D6:0B:77:4F:41:B8:40:8D:03:0B:09:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 251876812F1932FE0E66A61B490E91AF688F7B7B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66e59786-c1f4-4146-bccb-708e47a5469a.roa Signing time: Sat 14 Jun 2025 00:50:17 +0000 ROA not before: Sat 14 Jun 2025 00:50:17 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.48.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:18:76:81:2f:19:32:fe:0e:66:a6:1b:49:0e:91:af:68:8f:7b:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:50:17 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=2a575bcc3a1f8778dc759288780f83449b77c70837e6c3be59d9536efb883da9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:97:ec:a3:ad:79:99:69:dd:25:33:8c:16:bf: ac:fd:10:29:1b:85:7f:e5:37:f3:ed:69:12:70:32: 0d:12:07:14:ae:26:a8:df:7d:1b:3f:4b:06:2f:8d: 3d:83:2a:95:29:a0:bf:8b:85:5e:7b:ad:16:45:20: 27:31:1f:d4:19:7a:a4:42:65:9d:bb:aa:ca:17:eb: 6b:4f:e1:bf:ba:32:83:43:1c:f0:7b:28:71:42:3a: 65:e4:47:53:2d:27:f7:a3:98:42:67:5a:87:c3:7c: 4d:4e:50:59:9f:b1:67:23:73:b2:53:0e:8b:35:be: 24:e3:18:1b:f8:dd:1c:0b:ca:6f:e6:fe:ec:54:31: 76:bf:dc:a0:f9:4e:d7:99:8f:60:54:27:3c:5e:c6: 54:b2:51:4c:a4:2e:66:c7:66:3a:e6:db:3c:10:ed: 35:41:d5:7d:d8:e9:96:17:6c:73:9f:ce:26:3b:ee: 7d:28:4b:ca:be:0e:89:9f:eb:ef:2e:83:0d:1f:f5: fb:ee:c2:11:11:b4:3a:fc:7e:a2:fc:ba:30:21:a7: c5:df:f8:e6:5a:8f:17:5b:92:27:85:dc:dd:70:01: ff:30:e5:05:88:e4:54:74:52:a0:ef:97:c9:b8:1b: 14:f5:bc:e4:9c:62:65:35:26:c0:96:48:7c:51:ed: 36:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:F6:54:D7:0D:F5:AB:23:D6:0B:77:4F:41:B8:40:8D:03:0B:09:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66e59786-c1f4-4146-bccb-708e47a5469a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.48.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3d:cf:d4:be:14:98:7a:95:2a:7e:8c:99:11:37:9a:01:36:e4: 9c:db:02:f8:71:31:24:41:b7:79:7d:45:73:b7:80:2f:4e:68: 78:ac:55:9d:cb:3b:e7:60:f9:b5:a6:d0:30:11:f4:df:bc:ae: 96:5f:ab:85:6c:2a:0b:bb:01:0f:8d:ff:c8:22:93:cd:9b:ae: f4:b4:06:6c:18:c4:73:73:91:9b:9d:36:ac:e9:50:b3:74:33: b4:c1:b4:55:d7:bd:22:d7:2c:b0:ec:4c:4e:af:17:a4:46:89: f7:0f:e0:a5:7a:43:9c:fa:5d:12:43:d9:fc:91:53:68:da:05: 2b:a4:3d:68:c5:0e:b2:11:b4:6d:16:6a:3d:a3:85:64:c7:02: cd:d7:f6:82:45:e1:3c:d2:f6:69:e0:b7:aa:5b:36:35:ee:de: 7c:d3:cb:32:ce:03:ec:14:38:66:56:3f:39:67:15:1c:c0:c4: af:39:b6:0d:1c:09:15:3c:be:3c:0a:7f:b5:d6:8d:f3:f7:45: fc:84:72:bf:2e:22:fc:d5:6e:2a:db:2c:92:62:f1:98:03:af: 55:f9:5f:1b:3a:63:a2:e1:50:59:4d:21:0e:c4:9f:9a:2c:dd: 5a:29:a8:c1:96:dc:af:f9:8f:e4:10:86:5c:38:ba:8a:8a:0f: e3:f2:c5:75 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJRh2gS8ZMv4OZqYbSQ6Rr2iPe3swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDA1MDE3WhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYTU3NWJjYzNhMWY4Nzc4ZGM3NTkyODg3ODBmODM0NDli NzdjNzA4MzdlNmMzYmU1OWQ5NTM2ZWZiODgzZGE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9l+yjrXmZad0lM4wWv6z9ECkbhX/lN/PtaRJwMg0SBxSu JqjffRs/SwYvjT2DKpUpoL+LhV57rRZFICcxH9QZeqRCZZ27qsoX62tP4b+6MoND HPB7KHFCOmXkR1MtJ/ejmEJnWofDfE1OUFmfsWcjc7JTDos1viTjGBv43RwLym/m /uxUMXa/3KD5TteZj2BUJzxexlSyUUykLmbHZjrm2zwQ7TVB1X3Y6ZYXbHOfziY7 7n0oS8q+Domf6+8ugw0f9fvuwhERtDr8fqL8ujAhp8Xf+OZajxdbkieF3N1wAf8w 5QWI5FR0UqDvl8m4GxT1vOScYmU1JsCWSHxR7TZRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzPZU1w31qyPWC3dPQbhAjQMLCQYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY2ZTU5Nzg2LWMxZjQtNDE0Ni1iY2NiLTcwOGU0N2E1NDY5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoMDANBgkqhkiG9w0BAQsFAAOCAQEAPc/UvhSYepUqfoyZETeaATbknNsC +HExJEG3eX1Fc7eAL05oeKxVncs752D5tabQMBH037yull+rhWwqC7sBD43/yCKT zZuu9LQGbBjEc3ORm502rOlQs3QztMG0Vde9ItcssOxMTq8XpEaJ9w/gpXpDnPpd EkPZ/JFTaNoFK6Q9aMUOshG0bRZqPaOFZMcCzdf2gkXhPNL2aeC3qls2Ne7efNPL Ms4D7BQ4ZlY/OWcVHMDErzm2DRwJFTy+PAp/tdaN8/dF/IRyvy4i/NVuKtsskmLx mAOvVflfGzpjouFQWU0hDsSfmizdWimowZbcr/mP5BCGXDi6iooP4/LFdQ== -----END CERTIFICATE-----Generated at Sat Jun 14 06:36:26 2025 by rpki-client