$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6dee5376-32e7-4adf-a1a0-57aedac04f93.roa File: 6dee5376-32e7-4adf-a1a0-57aedac04f93.roa (raw, json) Hash identifier: axqhUkt8K/FLpnrpvAVoW2vz2wwmmerjq7c9PRi0bcQ= Subject key identifier: 30:4A:8E:85:3C:0B:CB:A8:EA:94:00:FA:F1:84:E9:A5:86:9C:0E:E4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 15205440E5C5C2E677BA58EA9F70D90172C425EF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6dee5376-32e7-4adf-a1a0-57aedac04f93.roa Signing time: Tue 10 Jun 2025 16:11:55 +0000 ROA not before: Tue 10 Jun 2025 16:11:55 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.252.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:20:54:40:e5:c5:c2:e6:77:ba:58:ea:9f:70:d9:01:72:c4:25:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 10 16:11:55 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=02012f7ea174fd67045def4e920f8200fe560dfb321b498964b783c0f0436d03, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:73:36:d3:5f:d4:a9:fd:5d:5f:b5:a0:c3:b1: a3:ea:e6:e9:e5:d6:27:48:7a:c2:dd:41:df:ed:cb: 6c:6a:9e:9d:0d:d4:52:51:fc:38:86:3f:ae:c8:27: 0e:c4:46:f3:1e:3e:9c:cf:d9:40:9c:5e:51:37:62: c2:cd:74:ab:ba:86:cb:ea:3f:7b:2f:54:0d:85:e7: 20:27:aa:00:ab:ec:85:3c:b0:12:75:0b:84:57:ad: ff:0e:19:91:7f:e1:1c:66:ff:5a:ab:a4:97:b5:7c: a0:89:d4:58:cc:cc:96:66:56:8e:18:ef:f8:42:c7: 14:9b:92:a8:b0:21:3b:95:70:c9:86:c2:a2:e2:8b: 8c:13:ca:7e:63:3d:fb:5d:56:10:52:ba:c1:08:cc: 42:47:5a:e3:cc:a4:01:6b:82:5b:0b:44:93:17:25: ae:11:b0:16:9f:db:cb:87:1e:13:56:60:b6:74:d7: 22:8a:6e:df:0c:ff:d8:a4:8e:df:60:2c:bc:1f:45: 0d:44:03:5f:5b:ca:02:f4:a1:eb:eb:74:a2:0d:0b: c7:ff:4c:f0:a1:38:b5:e9:71:0b:61:40:e0:57:06: fa:07:5a:bd:66:6b:8f:0d:ac:8c:f2:e3:02:72:c1: 8f:95:c5:88:97:4c:0b:82:db:d7:cb:37:ba:f3:b3: a0:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:4A:8E:85:3C:0B:CB:A8:EA:94:00:FA:F1:84:E9:A5:86:9C:0E:E4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6dee5376-32e7-4adf-a1a0-57aedac04f93.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.252.144.0/21 Signature Algorithm: sha256WithRSAEncryption 7f:0a:22:32:0e:f5:57:bc:16:d2:b1:ee:c9:6c:02:77:74:95: b4:20:4b:d5:dd:2d:2f:5b:ad:98:ff:e7:57:2f:db:50:81:25: e8:da:e2:d5:75:bf:b4:64:cb:dc:0c:f4:9c:12:5f:48:9d:33: 6f:bf:a2:b8:0c:9b:ee:1c:84:72:07:b3:73:d0:cf:bc:ed:9d: e1:a5:f2:04:b4:fc:90:44:e6:76:26:37:d1:ea:8d:5a:10:68: 2d:11:ca:e5:fb:eb:6b:eb:9c:c9:93:fe:89:05:ea:39:48:3b: b1:38:fc:d2:03:db:6a:d2:96:17:8d:90:4c:bd:4e:70:10:11: c4:37:fa:24:e0:5b:a3:e0:94:67:9d:f4:6e:70:26:26:29:37: 4b:c4:73:d4:f2:00:36:3e:41:74:66:cf:fc:63:72:7d:b6:25: be:a3:62:1b:81:46:48:09:d2:71:90:74:1d:77:28:cd:db:0d: b3:7a:05:7d:ae:f9:e8:01:56:fc:d5:b4:8c:24:6c:60:da:fd: 38:ac:70:4c:52:66:3f:a8:bf:4a:a6:8c:13:8a:89:26:5b:0e: 7c:5e:e6:74:6b:af:50:73:f7:e4:89:da:46:ed:85:3c:73:c1: bd:56:54:4a:d7:f2:dd:4e:3b:6c:34:34:a6:12:f8:e0:0b:e4: 70:94:1c:05 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFSBUQOXFwuZ3uljqn3DZAXLEJe8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEwMTYxMTU1WhcNMjUwNzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjAxMmY3ZWExNzRmZDY3MDQ1ZGVmNGU5MjBmODIwMGZl NTYwZGZiMzIxYjQ5ODk2NGI3ODNjMGYwNDM2ZDAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcczbTX9Sp/V1ftaDDsaPq5unl1idIesLdQd/ty2xqnp0N 1FJR/DiGP67IJw7ERvMePpzP2UCcXlE3YsLNdKu6hsvqP3svVA2F5yAnqgCr7IU8 sBJ1C4RXrf8OGZF/4Rxm/1qrpJe1fKCJ1FjMzJZmVo4Y7/hCxxSbkqiwITuVcMmG wqLii4wTyn5jPftdVhBSusEIzEJHWuPMpAFrglsLRJMXJa4RsBaf28uHHhNWYLZ0 1yKKbt8M/9ikjt9gLLwfRQ1EA19bygL0oevrdKINC8f/TPChOLXpcQthQOBXBvoH Wr1ma48NrIzy4wJywY+VxYiXTAuC29fLN7rzs6D/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMEqOhTwLy6jqlAD68YTppYacDuQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZkZWU1Mzc2LTMyZTctNGFkZi1hMWEwLTU3YWVkYWMwNGY5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPY/JAwDQYJKoZIhvcNAQELBQADggEBAH8KIjIO9Ve8FtKx7slsAnd0lbQg S9XdLS9brZj/51cv21CBJeja4tV1v7Rky9wM9JwSX0idM2+/orgMm+4chHIHs3PQ z7ztneGl8gS0/JBE5nYmN9HqjVoQaC0RyuX762vrnMmT/okF6jlIO7E4/NID22rS lheNkEy9TnAQEcQ3+iTgW6PglGed9G5wJiYpN0vEc9TyADY+QXRmz/xjcn22Jb6j YhuBRkgJ0nGQdB13KM3bDbN6BX2u+egBVvzVtIwkbGDa/TiscExSZj+ov0qmjBOK iSZbDnxe5nRrr1Bz9+SJ2kbthTxzwb1WVErX8t1OO2w0NKYS+OAL5HCUHAU= -----END CERTIFICATE-----Generated at Sat Jun 14 06:31:23 2025 by rpki-client