$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d7cb979-c125-4840-893a-6f3570fa019a.roa File: 6d7cb979-c125-4840-893a-6f3570fa019a.roa (raw, json) Hash identifier: ZPvHb2ra9uQ7p5rs6+L54ChDRcFZQ2AnrMFKECnwg8M= Subject key identifier: 06:1F:A9:F1:54:3A:C3:26:FB:10:58:96:EA:1A:17:23:CD:84:78:B3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 291286CD5C544CDB42D07AA5E9F815B2B86A7A45 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d7cb979-c125-4840-893a-6f3570fa019a.roa Signing time: Sat 14 Jun 2025 00:50:12 +0000 ROA not before: Sat 14 Jun 2025 00:50:12 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.32.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:12:86:cd:5c:54:4c:db:42:d0:7a:a5:e9:f8:15:b2:b8:6a:7a:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:50:12 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=f8dd05032d893362435318300578567cb0ff8ad37dd13d8765c9ec2ee25e075c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:cb:d8:0e:c0:53:09:23:34:b7:aa:ff:fb:2c: 15:6c:ab:f0:99:06:e2:56:eb:e2:68:98:f4:c2:77: 6d:56:5b:f1:ff:9c:d9:b8:07:dd:82:59:f0:13:0c: 66:30:25:59:39:5d:45:d4:99:9c:7b:67:24:3e:f3: c4:99:e4:8d:4d:a0:72:28:2c:8c:03:7a:ef:07:11: bf:05:71:9e:10:70:6b:ba:a2:a9:1b:41:19:07:50: 74:b9:f0:82:5e:82:f7:bd:8c:1c:cb:eb:cf:23:c4: 08:3a:a8:46:a1:71:fb:87:ac:1e:57:39:ac:3e:c0: e7:80:11:2a:d8:a6:b3:d9:97:bb:86:cb:cb:32:fa: 1b:17:f1:b8:87:54:d7:a0:a2:4a:b6:1a:b7:c7:a3: 61:bc:f5:a2:f9:fb:6d:e4:bc:84:a1:6a:c2:53:f8: 00:f1:e6:4b:6a:1b:75:31:e4:9d:6e:2c:c0:a4:27: 0f:9f:50:11:8f:27:86:8d:10:14:a1:04:db:1c:63: 58:bc:82:a4:39:74:c5:9f:e6:18:af:27:50:ca:13: e4:d4:0f:02:c8:ce:5d:ca:b3:e3:4d:18:e8:1f:4e: 73:3e:f3:fc:38:96:9e:b9:20:25:5c:ad:41:7e:28: ee:18:bd:d4:5d:f2:b1:3b:d1:2b:00:75:14:44:27: 8f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:1F:A9:F1:54:3A:C3:26:FB:10:58:96:EA:1A:17:23:CD:84:78:B3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d7cb979-c125-4840-893a-6f3570fa019a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.32.0.0/16 Signature Algorithm: sha256WithRSAEncryption c1:0e:d8:75:d4:db:fa:fb:44:0c:6c:a1:22:9c:5d:11:aa:c4: e6:9d:57:0b:d2:ce:4e:e0:f1:e6:9e:a2:e9:64:86:e9:79:3e: dc:bb:70:87:07:be:a4:d4:c0:3e:d8:e9:ae:14:26:6a:de:18: 4b:97:33:37:8c:b9:ad:62:85:1e:9b:0b:3e:0d:de:02:a6:bc: f5:a0:34:a1:95:ef:ac:ee:fe:fd:53:60:20:7b:43:c3:a4:cb: 1b:97:ca:23:10:c2:3f:a7:6c:c7:8b:96:4b:30:27:20:1b:09: 71:80:dc:39:ed:38:b6:e4:6a:3a:6b:bd:77:33:83:28:e6:4a: 92:df:71:3a:09:e5:f3:32:64:7b:c7:e1:75:d6:82:ab:77:a5: 85:d7:8e:e8:08:0d:ee:47:e8:1d:a5:e4:f5:5e:25:93:bd:c1: 42:ca:1d:6b:20:7c:57:b0:b5:9b:b5:cc:6b:7f:d0:31:eb:be: b7:9e:e1:df:f7:33:87:c0:a3:44:88:3b:8f:7a:83:42:c4:3a: cb:9b:45:11:4c:58:fa:aa:f5:9a:bd:66:71:9e:89:89:59:69: df:82:5e:9c:9d:ea:aa:83:cf:00:18:a8:f9:96:e7:7a:92:ea: 32:f1:36:f3:09:51:1e:1b:bc:8e:6f:d8:79:ed:de:fc:49:66: 20:8a:7e:f0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKRKGzVxUTNtC0Hql6fgVsrhqekUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDA1MDEyWhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOGRkMDUwMzJkODkzMzYyNDM1MzE4MzAwNTc4NTY3Y2Iw ZmY4YWQzN2RkMTNkODc2NWM5ZWMyZWUyNWUwNzVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDty9gOwFMJIzS3qv/7LBVsq/CZBuJW6+JomPTCd21WW/H/ nNm4B92CWfATDGYwJVk5XUXUmZx7ZyQ+88SZ5I1NoHIoLIwDeu8HEb8FcZ4QcGu6 oqkbQRkHUHS58IJegve9jBzL688jxAg6qEahcfuHrB5XOaw+wOeAESrYprPZl7uG y8sy+hsX8biHVNegokq2GrfHo2G89aL5+23kvIShasJT+ADx5ktqG3Ux5J1uLMCk Jw+fUBGPJ4aNEBShBNscY1i8gqQ5dMWf5hivJ1DKE+TUDwLIzl3Ks+NNGOgfTnM+ 8/w4lp65ICVcrUF+KO4YvdRd8rE70SsAdRREJ493AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBh+p8VQ6wyb7EFiW6hoXI82EeLMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZkN2NiOTc5LWMxMjUtNDg0MC04OTNhLTZmMzU3MGZhMDE5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoIDANBgkqhkiG9w0BAQsFAAOCAQEAwQ7YddTb+vtEDGyhIpxdEarE5p1X C9LOTuDx5p6i6WSG6Xk+3Ltwhwe+pNTAPtjprhQmat4YS5czN4y5rWKFHpsLPg3e Aqa89aA0oZXvrO7+/VNgIHtDw6TLG5fKIxDCP6dsx4uWSzAnIBsJcYDcOe04tuRq Omu9dzODKOZKkt9xOgnl8zJke8fhddaCq3elhdeO6AgN7kfoHaXk9V4lk73BQsod ayB8V7C1m7XMa3/QMeu+t57h3/czh8CjRIg7j3qDQsQ6y5tFEUxY+qr1mr1mcZ6J iVlp34JenJ3qqoPPABio+ZbnepLqMvE28wlRHhu8jm/Yee3e/ElmIIp+8A== -----END CERTIFICATE-----Generated at Thu Jun 19 16:10:09 2025 by rpki-client