$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6776af38-515d-4b33-bc1f-9f781cacf369.roa File: 6776af38-515d-4b33-bc1f-9f781cacf369.roa (raw, json) Hash identifier: 3mJ4DogfTrBrzTtTVNgn0/mTSOdHaSSOwRgf/BGkQDk= Subject key identifier: 3B:06:02:32:DB:14:85:37:91:8D:AA:D0:3E:70:C1:A4:30:0F:73:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58156DFF33F1C7DAC7893837B84F26893D25EE3A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6776af38-515d-4b33-bc1f-9f781cacf369.roa Signing time: Fri 13 Jun 2025 15:01:03 +0000 ROA not before: Fri 13 Jun 2025 15:01:03 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.20.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 18 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:15:6d:ff:33:f1:c7:da:c7:89:38:37:b8:4f:26:89:3d:25:ee:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 15:01:03 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=742971f9bcd3c38214571bf7d2b0856b2d123ba1ce27384b0ae1ce124d27ff43, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9b:78:64:15:bf:14:ba:88:85:33:0f:06:c5: fb:c2:6a:47:f8:d7:1d:c9:29:c0:18:d1:e6:3b:4a: bf:7b:eb:6e:0b:49:55:18:85:02:df:6c:c3:ce:80: 80:a2:40:70:46:10:9e:a1:d4:b2:3e:5e:10:71:3b: f8:06:e9:20:4a:00:b7:c9:6d:0f:e9:71:80:9c:0f: ad:df:d8:dd:4b:bd:11:97:c9:30:2e:9d:ae:d7:8f: c9:c7:57:3d:f0:ad:a5:80:6c:fd:84:06:91:9a:2b: 78:86:9d:e2:c7:51:76:9d:75:c7:b9:e5:7a:f4:a8: 07:73:99:49:3b:4f:a4:d6:92:8a:bf:ef:29:4a:be: 5d:0c:30:21:7a:c0:1f:23:bd:f5:0e:b0:1a:54:8e: db:a5:46:9b:b2:22:19:f9:36:af:9a:01:8a:e3:32: ef:a2:dd:28:ed:df:53:79:da:a0:9a:93:86:4c:b9: 2b:66:21:59:dd:7d:ae:53:57:79:d7:5e:be:55:1d: f8:33:5b:70:88:62:c6:0d:44:50:1d:fb:f7:eb:fa: 15:3b:36:ae:ac:2f:12:2e:49:08:98:bd:36:32:50: 34:f6:7b:00:6a:75:e5:44:6d:1d:a6:84:39:45:8c: a4:34:8b:6d:3b:3d:d5:88:24:ed:91:52:eb:f7:a0: 27:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:06:02:32:DB:14:85:37:91:8D:AA:D0:3E:70:C1:A4:30:0F:73:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6776af38-515d-4b33-bc1f-9f781cacf369.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.160.0/19 Signature Algorithm: sha256WithRSAEncryption 1e:c6:f2:8d:21:7e:fa:02:59:81:88:82:3d:62:fe:1a:2d:c8: 7c:e8:23:f6:0c:86:4b:9f:11:fc:fe:b3:25:af:7a:12:7d:eb: d1:5a:6d:07:a8:98:5d:86:7b:9d:f0:52:0b:f8:f5:58:61:ad: 35:b8:e3:b6:a3:5a:c5:5f:46:d7:b2:bf:e8:92:b3:f5:37:ac: 00:23:82:3f:ee:03:0b:8e:1e:50:a0:e2:03:aa:9d:7c:e5:7a: 55:59:08:68:c9:91:c8:45:49:ba:3e:92:b7:68:e0:9e:f3:90: 6a:64:d8:c0:38:a3:93:d5:3f:7b:bc:5a:61:6e:99:ce:ff:19: af:02:fc:fb:d5:80:9f:a2:a2:04:1e:91:20:b8:2a:1f:0c:78: e6:4a:ec:a9:c2:70:52:e2:17:34:f6:b3:32:2b:4a:c2:6e:7c: b4:32:ec:bc:f3:9b:0a:e0:83:32:da:bd:5a:7d:2b:e2:74:02: 7c:1f:33:2b:50:28:66:b9:7f:f4:aa:88:08:8b:a5:be:07:4e: 20:fa:97:9e:02:a8:f8:cb:1d:78:48:94:a2:d8:10:59:08:7b: 36:d3:c0:3b:f8:eb:32:00:f2:76:0d:ab:87:dc:94:2a:17:4a: f7:a2:c3:ec:55:ba:c1:9c:39:1a:54:9f:59:04:a8:d6:aa:19: e0:96:d1:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWBVt/zPxx9rHiTg3uE8miT0l7jowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTUwMTAzWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDI5NzFmOWJjZDNjMzgyMTQ1NzFiZjdkMmIwODU2YjJk MTIzYmExY2UyNzM4NGIwYWUxY2UxMjRkMjdmZjQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAm3hkFb8UuoiFMw8GxfvCakf41x3JKcAY0eY7Sr97624L SVUYhQLfbMPOgICiQHBGEJ6h1LI+XhBxO/gG6SBKALfJbQ/pcYCcD63f2N1LvRGX yTAuna7Xj8nHVz3wraWAbP2EBpGaK3iGneLHUXaddce55Xr0qAdzmUk7T6TWkoq/ 7ylKvl0MMCF6wB8jvfUOsBpUjtulRpuyIhn5Nq+aAYrjMu+i3Sjt31N52qCak4ZM uStmIVndfa5TV3nXXr5VHfgzW3CIYsYNRFAd+/fr+hU7Nq6sLxIuSQiYvTYyUDT2 ewBqdeVEbR2mhDlFjKQ0i207PdWIJO2RUuv3oCehAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOwYCMtsUhTeRjarQPnDBpDAPc6YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY3NzZhZjM4LTUxNWQtNGIzMy1iYzFmLTlmNzgxY2FjZjM2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVrFKAwDQYJKoZIhvcNAQELBQADggEBAB7G8o0hfvoCWYGIgj1i/hotyHzo I/YMhkufEfz+syWvehJ969FabQeomF2Ge53wUgv49VhhrTW447ajWsVfRteyv+iS s/U3rAAjgj/uAwuOHlCg4gOqnXzlelVZCGjJkchFSbo+krdo4J7zkGpk2MA4o5PV P3u8WmFumc7/Ga8C/PvVgJ+iogQekSC4Kh8MeOZK7KnCcFLiFzT2szIrSsJufLQy 7LzzmwrggzLavVp9K+J0AnwfMytQKGa5f/SqiAiLpb4HTiD6l54CqPjLHXhIlKLY EFkIezbTwDv46zIA8nYNq4fclCoXSveiw+xVusGcORpUn1kEqNaqGeCW0eI= -----END CERTIFICATE-----Generated at Tue Jun 17 13:57:40 2025 by rpki-client