$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/92f15bca-51be-4291-9efa-b2392d67d840.roa File: 92f15bca-51be-4291-9efa-b2392d67d840.roa (raw, json) Hash identifier: jYCmhACNPNQWx2Diwp1s2Be3CVzP037TOJhC9hUJpZI= Subject key identifier: FB:4F:A3:48:A4:E8:CF:20:32:75:33:BA:59:50:60:F9:A5:2E:C8:54 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D924DF3224EEC6553043B8E80A026859FBF88CB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/92f15bca-51be-4291-9efa-b2392d67d840.roa Signing time: Fri 13 Jun 2025 15:30:20 +0000 ROA not before: Fri 13 Jun 2025 15:30:20 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 149.128.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:92:4d:f3:22:4e:ec:65:53:04:3b:8e:80:a0:26:85:9f:bf:88:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 15:30:20 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=09013c8a8b84532fe1d4600168f8371793cebbf5bf49ff16921161b25ad0aaf8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:70:40:b0:a1:8a:10:0d:94:55:10:50:62:72: 75:f5:31:69:81:d6:50:00:7f:b9:a3:a3:c6:61:2d: 28:ba:c2:84:6e:bc:9a:c8:0b:99:4d:3e:39:6f:49: b1:dd:0f:51:3a:09:0e:86:af:35:7c:58:82:1c:40: 58:0a:78:f2:19:9a:1f:72:f2:bf:b3:f3:08:fb:08: 9e:13:e4:ec:cd:9d:09:75:09:ec:ea:d2:04:1b:f3: 89:76:e2:43:ed:9f:de:ac:df:ae:ba:79:f9:bc:f2: 3d:2c:83:6e:02:c3:9f:eb:3b:96:80:27:eb:e8:c0: 4d:6e:5c:93:26:fc:ae:f1:19:04:62:8c:da:21:46: 84:13:cd:12:ed:30:35:4d:f6:5b:1b:24:5f:b3:bd: d4:0c:3c:37:2a:25:5b:f7:76:28:fb:8a:ae:c6:06: be:2c:1d:71:e0:55:85:d4:56:26:da:b8:c3:95:b4: 9d:40:61:74:8c:4b:77:68:37:8e:90:c4:4c:8d:d5: 9b:7d:e3:91:eb:f3:bf:14:6b:46:1a:9c:1d:8e:55: c0:0c:be:40:b3:ec:6c:d8:fe:a4:a3:b6:0b:33:da: 52:63:ab:c2:ee:32:5f:73:b6:7d:e2:21:c2:8c:36: 54:32:d7:7c:50:44:42:5a:0c:7f:0c:27:3a:81:bd: 80:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:4F:A3:48:A4:E8:CF:20:32:75:33:BA:59:50:60:F9:A5:2E:C8:54 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/92f15bca-51be-4291-9efa-b2392d67d840.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.128.128.0/17 Signature Algorithm: sha256WithRSAEncryption 8c:06:e0:f5:09:b0:48:b1:4b:8e:81:5c:ba:b3:e4:59:57:55: 73:4a:48:cd:ff:09:8c:05:31:48:17:e3:40:4e:40:08:fd:cb: 57:f4:eb:fd:0b:b2:b8:ad:f8:d6:4c:10:b4:f0:e2:b3:5d:a7: 6f:8a:75:97:d4:b5:d3:b5:f5:1c:c9:c2:93:0b:df:33:e2:85: 98:43:6f:e8:cc:e3:9d:ab:ba:df:96:de:d0:71:98:70:bd:84: aa:7e:8c:9b:a8:1f:aa:80:d2:99:9f:6e:b6:b9:be:4b:12:eb: 8d:17:83:21:3c:85:a9:c9:a0:84:da:24:fe:88:85:97:e1:f2: f5:9a:c6:92:60:8d:18:2b:cd:15:44:c4:a9:5d:cf:d9:12:7f: 98:b8:c9:bc:18:3d:49:c8:43:7b:c9:25:23:ab:6d:50:73:cf: 94:d7:7f:f4:dc:b6:59:13:20:05:a6:d5:c3:71:4f:1b:63:73: 4c:06:ba:64:b7:67:d3:a5:71:4c:c3:fe:c6:2a:7f:b0:c5:29: b7:24:7e:ee:eb:a0:f5:c6:ea:a6:ee:88:a6:b3:41:ae:12:f9: 9d:78:cf:bc:ef:1e:b1:59:d4:1b:59:c3:61:95:e1:80:5d:b8: 03:1f:94:0d:a7:3d:f6:5c:e0:29:77:db:cf:06:a1:79:6e:dc: 09:70:9f:63 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbZJN8yJO7GVTBDuOgKAmhZ+/iMswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTUzMDIwWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTAxM2M4YThiODQ1MzJmZTFkNDYwMDE2OGY4MzcxNzkz Y2ViYmY1YmY0OWZmMTY5MjExNjFiMjVhZDBhYWY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCncECwoYoQDZRVEFBicnX1MWmB1lAAf7mjo8ZhLSi6woRu vJrIC5lNPjlvSbHdD1E6CQ6GrzV8WIIcQFgKePIZmh9y8r+z8wj7CJ4T5OzNnQl1 Cezq0gQb84l24kPtn96s3666efm88j0sg24Cw5/rO5aAJ+vowE1uXJMm/K7xGQRi jNohRoQTzRLtMDVN9lsbJF+zvdQMPDcqJVv3dij7iq7GBr4sHXHgVYXUVibauMOV tJ1AYXSMS3doN46QxEyN1Zt945Hr878Ua0YanB2OVcAMvkCz7GzY/qSjtgsz2lJj q8LuMl9ztn3iIcKMNlQy13xQREJaDH8MJzqBvYCJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+0+jSKTozyAydTO6WVBg+aUuyFQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkyZjE1YmNhLTUxYmUtNDI5MS05ZWZhLWIyMzkyZDY3ZDg0MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAeVgIAwDQYJKoZIhvcNAQELBQADggEBAIwG4PUJsEixS46BXLqz5FlXVXNK SM3/CYwFMUgX40BOQAj9y1f06/0Lsrit+NZMELTw4rNdp2+KdZfUtdO19RzJwpML 3zPihZhDb+jM452rut+W3tBxmHC9hKp+jJuoH6qA0pmfbra5vksS640XgyE8hanJ oITaJP6IhZfh8vWaxpJgjRgrzRVExKldz9kSf5i4ybwYPUnIQ3vJJSOrbVBzz5TX f/TctlkTIAWm1cNxTxtjc0wGumS3Z9OlcUzD/sYqf7DFKbckfu7roPXG6qbuiKaz Qa4S+Z14z7zvHrFZ1BtZw2GV4YBduAMflA2nPfZc4Cl3288GoXlu3Alwn2M= -----END CERTIFICATE-----Generated at Sat Jun 14 06:57:59 2025 by rpki-client