$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c761c83-4fca-487f-8159-56ab4bf2d3f7.roa File: 7c761c83-4fca-487f-8159-56ab4bf2d3f7.roa (raw, json) Hash identifier: h7tA6t492xOGimUsL/9LAGz1RDhOfzqble1r9+Gigs4= Subject key identifier: 8D:61:25:AD:6E:B8:0E:FA:E5:18:57:EE:45:00:5B:2C:B6:49:00:BD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 57E5B54E243E403EF0DBA5BD63EAFEC5E5F5D7C0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c761c83-4fca-487f-8159-56ab4bf2d3f7.roa Signing time: Fri 13 Jun 2025 00:30:59 +0000 ROA not before: Fri 13 Jun 2025 00:30:59 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.62.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:e5:b5:4e:24:3e:40:3e:f0:db:a5:bd:63:ea:fe:c5:e5:f5:d7:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 00:30:59 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=e70fcf589da022060e97af89f1393d9e5f693fe97a129249a8dcbcfe94d682c5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4a:1a:bc:47:51:96:4a:f7:96:64:f5:d9:62: 98:8c:6e:33:6b:ff:29:70:d3:7f:ea:59:bf:ac:1f: 52:bb:0c:99:20:80:92:84:6b:58:13:cb:ba:1a:fb: ef:e3:f1:b4:92:44:2a:b7:76:6b:85:d4:fc:cd:14: 81:a7:a5:24:4a:63:06:d2:36:1c:22:7c:5f:d7:08: 6a:69:3d:1d:c3:70:91:0e:95:77:0b:4a:1d:a0:8a: 30:80:8f:d3:dc:67:a7:cd:5e:3c:96:0d:3c:67:03: c4:bb:0e:44:27:ea:cc:ed:a0:dc:46:af:71:19:33: 89:42:4f:28:7b:7d:43:2c:66:69:8d:34:77:84:83: 18:81:bb:19:d0:6b:7e:44:e2:69:87:09:0e:dc:f6: 7a:e6:d9:26:03:15:ae:d0:f7:61:66:a2:ab:19:ac: 96:2b:93:6d:39:77:a1:27:a9:73:54:cd:11:a9:85: b6:ef:8b:c8:6d:1f:c3:d6:61:f6:4d:d3:25:e8:d1: 71:bc:75:e0:96:42:22:df:6f:b1:ed:4e:f9:c2:99: 5a:92:27:1b:88:3a:76:7e:2c:a6:43:c3:8a:2a:ec: c3:e9:b6:20:2c:35:fa:a7:ab:be:37:2b:e0:f9:04: ca:96:44:dc:3d:9d:25:1c:5c:fe:73:29:43:f1:7d: 50:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:61:25:AD:6E:B8:0E:FA:E5:18:57:EE:45:00:5B:2C:B6:49:00:BD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c761c83-4fca-487f-8159-56ab4bf2d3f7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.62.141.0/24 Signature Algorithm: sha256WithRSAEncryption 95:1f:02:2c:1b:07:6b:10:83:fd:23:73:e4:b1:6f:e3:34:8c: df:cd:1b:97:f9:c5:14:d8:48:f2:6c:a7:cb:b5:0e:02:39:f2: e1:ba:50:63:6e:43:82:56:ee:f5:9c:3d:72:b5:f8:3a:74:25: 57:b7:f0:06:98:fb:ad:45:4e:75:25:fb:75:56:98:26:91:03: 60:bf:08:f0:f4:7d:d6:09:61:66:d0:02:85:bb:09:76:4f:50: 3e:c4:14:31:a2:da:8c:6a:95:a8:b4:9c:53:8c:eb:07:3b:18: d2:10:2c:19:5b:95:e5:44:fa:ed:63:df:57:95:1f:bc:6e:01: 51:18:57:d8:6b:3b:a9:65:55:0d:ee:9a:32:bd:a0:dc:dc:ad: ca:06:5d:0d:8b:87:e3:80:25:d3:82:45:07:02:f0:83:e6:fa: a5:a8:38:c8:39:de:61:4d:64:d2:04:d1:ae:48:be:28:31:a9: 7e:87:6b:a6:ee:64:cf:53:35:99:32:1b:2c:5f:48:a0:27:36: cc:51:d4:ed:10:7f:ba:45:34:0e:4e:f3:44:6c:ca:0b:26:fc: af:4b:dc:2f:a2:af:21:49:1d:2d:22:a9:80:b9:9b:d3:6d:8a: 0c:54:40:ce:f5:6b:b3:a5:8c:78:e3:c7:58:9c:35:7b:e1:42: 83:81:9f:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV+W1TiQ+QD7w26W9Y+r+xeX118AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMDAzMDU5WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzBmY2Y1ODlkYTAyMjA2MGU5N2FmODlmMTM5M2Q5ZTVm NjkzZmU5N2ExMjkyNDlhOGRjYmNmZTk0ZDY4MmM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTShq8R1GWSveWZPXZYpiMbjNr/ylw03/qWb+sH1K7DJkg gJKEa1gTy7oa++/j8bSSRCq3dmuF1PzNFIGnpSRKYwbSNhwifF/XCGppPR3DcJEO lXcLSh2gijCAj9PcZ6fNXjyWDTxnA8S7DkQn6sztoNxGr3EZM4lCTyh7fUMsZmmN NHeEgxiBuxnQa35E4mmHCQ7c9nrm2SYDFa7Q92FmoqsZrJYrk205d6EnqXNUzRGp hbbvi8htH8PWYfZN0yXo0XG8deCWQiLfb7HtTvnCmVqSJxuIOnZ+LKZDw4oq7MPp tiAsNfqnq743K+D5BMqWRNw9nSUcXP5zKUPxfVBRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjWElrW64DvrlGFfuRQBbLLZJAL0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjNzYxYzgzLTRmY2EtNDg3Zi04MTU5LTU2YWI0YmYyZDNmNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAQPo0wDQYJKoZIhvcNAQELBQADggEBAJUfAiwbB2sQg/0jc+Sxb+M0jN/N G5f5xRTYSPJsp8u1DgI58uG6UGNuQ4JW7vWcPXK1+Dp0JVe38AaY+61FTnUl+3VW mCaRA2C/CPD0fdYJYWbQAoW7CXZPUD7EFDGi2oxqlai0nFOM6wc7GNIQLBlbleVE +u1j31eVH7xuAVEYV9hrO6llVQ3umjK9oNzcrcoGXQ2Lh+OAJdOCRQcC8IPm+qWo OMg53mFNZNIE0a5IvigxqX6Ha6buZM9TNZkyGyxfSKAnNsxR1O0Qf7pFNA5O80Rs ygsm/K9L3C+iryFJHS0iqYC5m9NtigxUQM71a7OljHjjx1icNXvhQoOBn4s= -----END CERTIFICATE-----Generated at Sat Jun 14 18:59:27 2025 by rpki-client