$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84dc64ad-1b9e-4419-95fa-e68a2e53fdc0.roa File: 84dc64ad-1b9e-4419-95fa-e68a2e53fdc0.roa (raw, json) Hash identifier: Y54gE2BAs4xgwYaUuKMgu6QGW5ZEmcYm3lXDjrppKaM= Subject key identifier: 7E:36:72:CF:66:AC:01:B5:6E:91:19:F0:1C:59:40:7A:08:36:6C:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D6DA8A92648DEB4F70A33AD8484523D9358F23E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84dc64ad-1b9e-4419-95fa-e68a2e53fdc0.roa Signing time: Fri 13 Jun 2025 00:20:29 +0000 ROA not before: Fri 13 Jun 2025 00:20:29 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.21.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:6d:a8:a9:26:48:de:b4:f7:0a:33:ad:84:84:52:3d:93:58:f2:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 00:20:29 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=27245e789bda6eb8adcf3a42436ad97975b86ab44baae9f0f6e4e6fa181c15b9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cd:1c:7a:92:f2:ac:ea:54:2a:52:bd:25:bc: 45:a4:a8:2f:48:ae:03:b4:7c:73:bc:a4:06:36:53: a3:5b:23:62:aa:71:2a:87:aa:d4:0d:ef:e6:d9:a0: e4:24:a3:47:e1:26:bc:49:ce:67:ed:90:ff:59:82: 84:07:d5:a3:2d:eb:a5:92:42:34:9b:4a:f4:34:e7: 77:52:8a:90:c4:57:9c:b0:f8:d2:e0:63:98:18:26: 03:ea:d8:6f:09:4b:41:46:ef:6b:f9:6e:4f:6f:f9: 99:0e:78:99:0d:65:e2:32:29:3c:1f:84:9a:c6:a2: c8:9e:83:4c:38:7e:ed:d8:cd:2f:f1:5f:1d:38:01: e4:63:9a:0d:4f:e0:b4:c1:91:32:d9:b6:55:2d:9d: 42:e1:f6:e2:fb:e6:f0:52:37:16:e5:da:79:32:3b: 05:88:5a:ae:9a:01:94:b9:80:28:ae:32:5f:77:c8: e2:c6:9b:45:6e:8a:31:11:eb:c4:f8:87:98:52:74: 16:46:f8:05:0a:1d:3f:8a:a7:e1:aa:54:30:a6:5b: 2e:42:8b:37:75:18:39:29:b5:ec:b7:b5:c7:32:78: f6:36:73:a5:d7:3c:f3:0e:34:e6:e0:00:4e:cc:23: 63:da:c5:84:c3:96:43:31:cb:8d:0e:92:76:96:5c: 0e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:36:72:CF:66:AC:01:B5:6E:91:19:F0:1C:59:40:7A:08:36:6C:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84dc64ad-1b9e-4419-95fa-e68a2e53fdc0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.208.0/20 Signature Algorithm: sha256WithRSAEncryption d7:b0:80:7c:0b:af:f8:36:93:c8:41:18:c7:48:d6:32:0b:1a: b1:fd:9e:08:6d:8b:09:99:68:45:c1:b9:38:9f:05:3e:e6:5c: d3:fb:bb:ad:b2:a7:66:53:d7:c2:a6:6b:97:53:5b:8f:57:65: 15:d5:5a:59:2b:0b:52:ae:20:a3:d6:43:6d:4a:2e:0a:d7:6e: 54:02:90:72:38:bf:25:93:5b:54:38:02:34:cb:c2:dc:f7:7f: b4:d7:b4:54:d2:76:a2:2c:5c:32:4c:f7:60:73:e3:70:7e:1f: bb:a4:72:ba:f4:65:8e:c0:a1:0e:41:c9:20:43:88:4f:5b:04: 50:a5:5f:97:c3:98:4f:3d:94:99:7b:e6:e8:66:fe:97:be:c6: 0f:6b:33:df:a9:af:23:aa:bf:8f:51:35:f7:e3:cc:78:f6:c0: 9d:05:a0:ca:f3:cd:88:8a:79:70:bf:ed:72:99:25:6d:1d:a6: 37:df:e4:1e:af:cb:f8:29:1d:3d:70:b3:c8:0b:04:2c:ac:54: 3c:04:c2:67:3e:a2:39:c9:50:5c:1f:bb:0d:a6:aa:2a:b5:82: f4:60:b6:3b:c9:3c:b9:9a:a8:70:68:59:75:45:7c:4e:93:66: 18:42:f3:af:7a:7a:28:05:fe:6d:23:55:ab:56:d9:62:a9:bc: 7d:23:20:5a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDW2oqSZI3rT3CjOthIRSPZNY8j4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMDAyMDI5WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzI0NWU3ODliZGE2ZWI4YWRjZjNhNDI0MzZhZDk3OTc1 Yjg2YWI0NGJhYWU5ZjBmNmU0ZTZmYTE4MWMxNWI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0zRx6kvKs6lQqUr0lvEWkqC9IrgO0fHO8pAY2U6NbI2Kq cSqHqtQN7+bZoOQko0fhJrxJzmftkP9ZgoQH1aMt66WSQjSbSvQ053dSipDEV5yw +NLgY5gYJgPq2G8JS0FG72v5bk9v+ZkOeJkNZeIyKTwfhJrGosieg0w4fu3YzS/x Xx04AeRjmg1P4LTBkTLZtlUtnULh9uL75vBSNxbl2nkyOwWIWq6aAZS5gCiuMl93 yOLGm0VuijER68T4h5hSdBZG+AUKHT+Kp+GqVDCmWy5Cizd1GDkptey3tccyePY2 c6XXPPMONObgAE7MI2PaxYTDlkMxy40OknaWXA4nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfjZyz2asAbVukRnwHFlAegg2bF4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0ZGM2NGFkLTFiOWUtNDQxOS05NWZhLWU2OGEyZTUzZmRjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARrFdAwDQYJKoZIhvcNAQELBQADggEBANewgHwLr/g2k8hBGMdI1jILGrH9 nghtiwmZaEXBuTifBT7mXNP7u62yp2ZT18Kma5dTW49XZRXVWlkrC1KuIKPWQ21K LgrXblQCkHI4vyWTW1Q4AjTLwtz3f7TXtFTSdqIsXDJM92Bz43B+H7ukcrr0ZY7A oQ5BySBDiE9bBFClX5fDmE89lJl75uhm/pe+xg9rM9+pryOqv49RNffjzHj2wJ0F oMrzzYiKeXC/7XKZJW0dpjff5B6vy/gpHT1ws8gLBCysVDwEwmc+ojnJUFwfuw2m qiq1gvRgtjvJPLmaqHBoWXVFfE6TZhhC8696eigF/m0jVatW2WKpvH0jIFo= -----END CERTIFICATE-----Generated at Sun Jun 15 00:34:32 2025 by rpki-client