$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/942b7589-0ee2-4f4b-b8b4-f938452b1983.roa File: 942b7589-0ee2-4f4b-b8b4-f938452b1983.roa (raw, json) Hash identifier: Isj6yjQEHQGGUe7ZbacnbHqqhs7KpDCQu1AwQnvwvcg= Subject key identifier: 9B:0D:46:EE:3C:58:69:E3:D8:A5:B5:DD:1C:71:ED:7B:B3:2B:23:8F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7CDED8DB67AABBE4175E2186D4C3ECCD2B44B226 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/942b7589-0ee2-4f4b-b8b4-f938452b1983.roa Signing time: Fri 13 Jun 2025 00:21:21 +0000 ROA not before: Fri 13 Jun 2025 00:21:21 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 108.136.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:de:d8:db:67:aa:bb:e4:17:5e:21:86:d4:c3:ec:cd:2b:44:b2:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 00:21:21 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=aa0c6488123a682b2765a72590275aecd173d0dfc76fc1b0d807f9e91d2cfde1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a2:e6:d7:40:c2:fc:09:5c:9c:0e:da:3c:ef: bc:f4:d1:17:af:a4:e1:0e:0a:03:f8:b6:02:0e:e9: d8:e1:3a:ee:e9:0a:fe:22:df:8f:b6:2e:d4:4c:18: 48:af:fa:03:a4:30:b6:b5:fd:de:e2:41:a4:5b:d3: dc:8b:ea:f6:e1:bc:8f:bc:db:32:67:3e:18:6e:53: 5e:51:51:66:0a:26:ab:0f:6f:a1:7f:a8:86:aa:ca: d8:b5:06:47:dd:0b:0d:0e:94:ed:67:64:7c:1d:7e: af:83:ec:11:12:27:3c:7c:41:67:c1:25:a7:5a:c8: 2c:ba:c4:97:00:50:bf:ab:81:18:d8:f3:34:18:67: 3a:19:22:dc:ff:6f:34:de:0a:55:6b:40:fd:f6:e7: 52:f5:da:b6:34:a7:53:2e:88:be:b5:ae:48:94:17: 7a:8a:50:f5:11:26:9b:9e:06:6e:40:db:7f:38:87: 31:67:df:14:65:db:c2:7f:4c:5c:35:63:e4:d5:bc: f7:84:d5:ad:1d:6b:77:ba:52:79:ac:82:50:f0:78: 26:54:17:3b:53:c9:83:d1:0f:bf:03:3c:63:42:d5: a3:14:34:38:df:50:aa:03:f0:7e:1c:d9:38:72:e1: 60:dc:6a:4f:39:b6:37:22:b5:1f:50:fc:bf:c2:b2: a6:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:0D:46:EE:3C:58:69:E3:D8:A5:B5:DD:1C:71:ED:7B:B3:2B:23:8F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/942b7589-0ee2-4f4b-b8b4-f938452b1983.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.136.128.0/17 Signature Algorithm: sha256WithRSAEncryption c5:da:5c:9d:6b:9b:af:f1:c2:ca:70:ef:09:e9:dc:98:d2:52: 7e:5d:8d:09:0b:40:3c:a5:77:58:64:dc:68:77:a0:56:9a:a6: 36:2d:46:e1:74:9f:5b:f2:f3:cb:49:f2:90:01:22:34:90:13: 6b:bc:3c:f7:4d:e0:14:2d:48:b4:07:c5:d8:95:bb:47:48:6c: 52:df:34:db:ff:64:01:63:57:f0:c8:7c:72:77:c5:62:e3:1a: 07:62:b9:23:43:92:31:f1:dd:db:af:09:57:46:0f:71:dc:9a: 5d:b2:cd:4f:f6:8c:d5:fe:2a:be:23:b5:e5:9e:5e:2f:7e:50: cb:24:cb:a8:3b:06:c2:1a:21:c2:69:cf:05:01:62:35:8b:99: 31:c8:f7:ae:41:c1:16:80:93:06:bc:c7:be:c6:19:83:ed:f1: dc:0c:5b:23:1a:0b:c9:b1:f1:06:54:31:06:03:a4:90:04:2b: d0:27:a8:1f:1e:90:65:2a:60:10:14:d4:18:04:e9:0e:8a:4a: 7b:b9:66:29:18:d0:33:93:63:3b:d9:ab:90:78:f4:28:9e:01: 50:3d:5e:6e:87:53:b8:bb:fc:54:55:37:f6:45:cb:d7:c1:96: 58:37:2f:ac:b3:98:ac:0e:be:11:a1:ff:99:a5:19:ac:9e:de: c2:06:ac:27 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfN7Y22equ+QXXiGG1MPszStEsiYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMDAyMTIxWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTBjNjQ4ODEyM2E2ODJiMjc2NWE3MjU5MDI3NWFlY2Qx NzNkMGRmYzc2ZmMxYjBkODA3ZjllOTFkMmNmZGUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfoubXQML8CVycDto877z00RevpOEOCgP4tgIO6djhOu7p Cv4i34+2LtRMGEiv+gOkMLa1/d7iQaRb09yL6vbhvI+82zJnPhhuU15RUWYKJqsP b6F/qIaqyti1BkfdCw0OlO1nZHwdfq+D7BESJzx8QWfBJadayCy6xJcAUL+rgRjY 8zQYZzoZItz/bzTeClVrQP3251L12rY0p1MuiL61rkiUF3qKUPURJpueBm5A2384 hzFn3xRl28J/TFw1Y+TVvPeE1a0da3e6UnmsglDweCZUFztTyYPRD78DPGNC1aMU NDjfUKoD8H4c2Thy4WDcak85tjcitR9Q/L/CsqaLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmw1G7jxYaePYpbXdHHHte7MrI48wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0MmI3NTg5LTBlZTItNGY0Yi1iOGI0LWY5Mzg0NTJiMTk4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdsiIAwDQYJKoZIhvcNAQELBQADggEBAMXaXJ1rm6/xwspw7wnp3JjSUn5d jQkLQDyld1hk3Gh3oFaapjYtRuF0n1vy88tJ8pABIjSQE2u8PPdN4BQtSLQHxdiV u0dIbFLfNNv/ZAFjV/DIfHJ3xWLjGgdiuSNDkjHx3duvCVdGD3Hcml2yzU/2jNX+ Kr4jteWeXi9+UMsky6g7BsIaIcJpzwUBYjWLmTHI965BwRaAkwa8x77GGYPt8dwM WyMaC8mx8QZUMQYDpJAEK9AnqB8ekGUqYBAU1BgE6Q6KSnu5ZikY0DOTYzvZq5B4 9CieAVA9Xm6HU7i7/FRVN/ZFy9fBllg3L6yzmKwOvhGh/5mlGaye3sIGrCc= -----END CERTIFICATE-----Generated at Sat Jun 14 06:52:40 2025 by rpki-client