$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/95fb205d-987d-4fa2-b75a-8819afe4b558.roa File: 95fb205d-987d-4fa2-b75a-8819afe4b558.roa (raw, json) Hash identifier: tx2UsSP4NGu9hFavvZW5M6nm+HkxJexJ04EwNXSExJw= Subject key identifier: F6:FA:C1:A7:DF:02:45:98:92:0A:C3:FB:4F:EF:DE:D4:DE:F7:21:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11E2F35DC0C74ED7E0DD7DC10452294D3874BA3F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/95fb205d-987d-4fa2-b75a-8819afe4b558.roa Signing time: Fri 06 Jun 2025 00:10:51 +0000 ROA not before: Fri 06 Jun 2025 00:10:51 +0000 ROA not after: Fri 11 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.22.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:e2:f3:5d:c0:c7:4e:d7:e0:dd:7d:c1:04:52:29:4d:38:74:ba:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 6 00:10:51 2025 GMT Not After : Jul 11 23:59:59 2025 GMT Subject: serialNumber=cc74940635d88e991937e0c1b810790ebc6aac59f339b1b7e9f69ca71329131a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:a8:ad:35:23:d5:2c:85:6f:0c:ea:d4:d7:48: 44:6c:c8:29:fd:5c:db:eb:82:b3:ce:f7:54:49:74: fd:b9:c3:4e:30:96:b0:16:08:f2:4f:aa:68:e8:ea: 54:d2:b4:ff:b7:35:6a:b0:b1:08:8a:73:d1:2e:ea: 3f:a1:28:04:c7:34:26:63:3c:de:a3:26:38:0a:ce: ca:0d:2c:7e:3d:e4:e3:10:91:da:22:cf:09:4f:86: 7b:42:8a:6f:39:46:d4:0e:5c:75:7d:bd:4d:22:f4: 34:47:d1:b1:55:0e:f3:c5:2c:5b:af:b5:0b:98:b9: aa:88:ed:ed:73:46:b5:81:07:1f:3a:3f:9c:43:5d: 56:59:47:61:b6:5c:64:35:b0:c1:ae:4c:6e:7e:d6: f0:b1:9c:48:c1:9c:d2:8c:64:26:4a:df:f4:b8:c5: 98:53:ba:4a:0f:32:4b:99:ad:95:f7:5f:79:b6:da: 2c:5c:10:b0:65:c8:4a:cf:a1:e2:e9:73:ee:d9:6c: 25:b9:b7:d6:19:d3:d3:80:07:93:2f:54:2d:c4:95: 3e:61:29:86:2f:8d:e7:41:99:58:aa:af:47:76:e0: 71:32:e3:ed:98:a6:6f:36:ff:7a:8b:92:78:9c:3f: 97:68:37:36:31:07:c9:57:4b:7f:ac:d4:36:99:25: 8e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:FA:C1:A7:DF:02:45:98:92:0A:C3:FB:4F:EF:DE:D4:DE:F7:21:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/95fb205d-987d-4fa2-b75a-8819afe4b558.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.22.192.0/18 Signature Algorithm: sha256WithRSAEncryption 34:04:6d:aa:b5:43:e2:ad:16:34:14:6b:ec:7d:f5:56:fd:50: e0:21:ad:b8:fa:3d:33:af:c7:57:07:9a:ba:fc:1a:f3:c3:6e: 94:57:83:f3:d8:bb:78:7d:83:54:22:c9:58:a0:6e:50:dc:36: b1:bf:79:5c:cf:d0:6e:32:9a:65:83:a3:62:1b:6c:1c:8a:e1: 34:8d:09:75:d6:58:a4:55:8d:81:09:69:f7:c3:b9:62:da:09: 4f:22:fa:62:e9:1e:20:1a:ae:1b:52:50:d0:0f:19:e1:d5:3d: 18:35:d4:58:d9:06:5f:77:a5:45:88:96:8f:73:5a:f1:9b:77: 6b:61:33:31:9d:a3:94:f6:2a:64:80:11:39:89:91:2a:de:a5: 97:25:75:01:ae:c1:e9:3e:67:a7:62:fe:31:4d:22:14:f9:66: ae:89:85:1d:92:10:d0:0e:d9:7d:8c:75:01:d4:ca:8e:30:9b: 34:b0:67:64:c7:44:34:82:24:6a:c3:92:31:b6:70:01:2b:df: f6:e9:88:89:f5:33:db:60:56:3a:0e:13:09:94:4c:ff:a8:6f: e9:02:64:ca:7f:a6:58:a1:34:92:f9:17:6d:de:ef:3c:18:4d: b4:81:3c:12:22:e8:65:0d:80:2a:d8:7d:c4:29:79:c7:47:db: ff:6b:d2:04 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEeLzXcDHTtfg3X3BBFIpTTh0uj8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA2MDAxMDUxWhcNMjUwNzExMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzc0OTQwNjM1ZDg4ZTk5MTkzN2UwYzFiODEwNzkwZWJj NmFhYzU5ZjMzOWIxYjdlOWY2OWNhNzEzMjkxMzFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCAqK01I9UshW8M6tTXSERsyCn9XNvrgrPO91RJdP25w04w lrAWCPJPqmjo6lTStP+3NWqwsQiKc9Eu6j+hKATHNCZjPN6jJjgKzsoNLH495OMQ kdoizwlPhntCim85RtQOXHV9vU0i9DRH0bFVDvPFLFuvtQuYuaqI7e1zRrWBBx86 P5xDXVZZR2G2XGQ1sMGuTG5+1vCxnEjBnNKMZCZK3/S4xZhTukoPMkuZrZX3X3m2 2ixcELBlyErPoeLpc+7ZbCW5t9YZ09OAB5MvVC3ElT5hKYYvjedBmViqr0d24HEy 4+2Ypm82/3qLknicP5doNzYxB8lXS3+s1DaZJY6/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9vrBp98CRZiSCsP7T+/e1N73IQMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1ZmIyMDVkLTk4N2QtNGZhMi1iNzVhLTg4MTlhZmU0YjU1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZFFsAwDQYJKoZIhvcNAQELBQADggEBADQEbaq1Q+KtFjQUa+x99Vb9UOAh rbj6PTOvx1cHmrr8GvPDbpRXg/PYu3h9g1QiyVigblDcNrG/eVzP0G4ymmWDo2Ib bByK4TSNCXXWWKRVjYEJaffDuWLaCU8i+mLpHiAarhtSUNAPGeHVPRg11FjZBl93 pUWIlo9zWvGbd2thMzGdo5T2KmSAETmJkSrepZcldQGuwek+Z6di/jFNIhT5Zq6J hR2SENAO2X2MdQHUyo4wmzSwZ2THRDSCJGrDkjG2cAEr3/bpiIn1M9tgVjoOEwmU TP+ob+kCZMp/plihNJL5F23e7zwYTbSBPBIi6GUNgCrYfcQpecdH2/9r0gQ= -----END CERTIFICATE-----Generated at Sat Jun 14 07:14:54 2025 by rpki-client