$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2968684-8bbe-4f3d-a944-999aee365788.roa File: a2968684-8bbe-4f3d-a944-999aee365788.roa (raw, json) Hash identifier: rRxX1KZYaEzzOSdByFoxllYuce0hLdjWIqjkGOoGXO8= Subject key identifier: DB:1E:E9:E7:A5:1F:7E:52:BC:46:67:E4:A9:C2:D7:1F:9F:7C:6C:12 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4687DE18EE58E60FAD81B7CE46EC9B4F45E0AB48 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2968684-8bbe-4f3d-a944-999aee365788.roa Signing time: Fri 13 Jun 2025 15:11:05 +0000 ROA not before: Fri 13 Jun 2025 15:11:05 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.50.70.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 19 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:87:de:18:ee:58:e6:0f:ad:81:b7:ce:46:ec:9b:4f:45:e0:ab:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 15:11:05 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=49a1d2579a8a812da628b300b890a611918c4d02ef219d44275d5adfbd4dc81f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:d4:92:f2:fe:db:5f:98:e5:86:39:db:88:08: 2f:ef:22:32:71:f7:49:fc:60:3c:44:ae:67:ee:8c: 51:99:0a:34:e7:27:75:9d:ff:af:1f:c5:92:ee:63: 21:eb:36:96:07:98:c6:58:da:82:73:28:bf:16:e2: e1:d1:f1:28:46:fe:d2:0d:00:40:48:e5:31:d3:0b: f4:6b:9e:13:5e:0d:73:12:08:7d:d8:e1:e0:a4:35: 61:3e:c5:ca:be:0c:2b:20:c2:24:80:5c:57:41:7a: 37:87:1c:26:9b:6a:7f:52:f4:06:3d:82:7a:af:23: ee:1b:8e:61:6c:40:1f:ce:62:72:65:82:a1:e3:d3: 79:d4:e2:9f:80:1e:b5:96:73:d3:45:f5:a7:bb:57: 6f:1a:86:46:f9:29:20:06:ea:e5:c3:07:5d:91:7d: 6f:57:48:29:a5:63:1c:3b:ff:47:5b:ad:ce:ba:2b: b2:6f:65:ff:61:7a:66:4a:b0:51:a6:f3:ff:c7:5c: c6:0b:e7:71:e0:02:87:f7:fd:43:06:93:09:71:ff: 7d:db:30:92:0a:ba:0c:74:9a:32:d8:f0:01:13:76: 17:d2:bd:2d:d5:f3:e7:e4:aa:74:ca:88:6f:20:99: 30:73:ed:48:2c:30:9e:60:c3:aa:71:ce:66:68:4b: 07:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:1E:E9:E7:A5:1F:7E:52:BC:46:67:E4:A9:C2:D7:1F:9F:7C:6C:12 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2968684-8bbe-4f3d-a944-999aee365788.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.50.70.0/23 Signature Algorithm: sha256WithRSAEncryption b5:f3:80:8e:6c:e3:d7:73:e2:33:6d:c9:85:63:1b:53:90:74: e8:15:96:87:69:88:46:e7:3a:3c:02:59:b2:05:24:d4:0b:19: d5:1c:fb:bd:c7:fe:89:b7:09:28:08:28:fd:e1:4f:2f:1e:66: 73:f7:d6:cc:2e:ac:89:f5:bd:ed:10:3a:0b:cb:39:9c:1f:fd: 93:6b:1e:c0:9a:af:86:97:77:5a:38:73:a7:ec:9c:cf:56:63: 17:63:ed:bb:ad:44:63:2f:00:45:c6:10:a6:44:3c:59:90:99: 1e:f6:95:01:a1:9a:1b:a8:48:b6:ef:44:c1:be:b9:54:da:3d: 24:c6:21:d0:55:34:35:f2:4f:db:ce:20:24:0b:94:8f:b7:90: d9:52:1f:25:da:f4:8b:c8:98:d9:a1:f9:2e:d2:50:66:01:85: a8:28:e7:bf:cd:b9:e5:6e:8f:82:f1:3e:99:54:84:4f:cb:1a: f2:ba:1b:34:52:46:3b:d1:68:c7:9f:7f:d3:58:0e:3b:04:8c: 11:3b:41:e2:fd:68:d0:2a:f8:54:00:f0:a8:1b:e0:14:84:4d: 6b:95:30:ea:b5:e4:d0:ef:1f:6c:45:1e:d5:a8:8d:12:5c:99: 4d:75:54:13:cc:85:c4:02:1a:b6:02:a7:6a:4f:e3:fe:9f:16: 8a:bd:65:d5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURofeGO5Y5g+tgbfORuybT0Xgq0gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTUxMTA1WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OWExZDI1NzlhOGE4MTJkYTYyOGIzMDBiODkwYTYxMTkx OGM0ZDAyZWYyMTlkNDQyNzVkNWFkZmJkNGRjODFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDX1JLy/ttfmOWGOduICC/vIjJx90n8YDxErmfujFGZCjTn J3Wd/68fxZLuYyHrNpYHmMZY2oJzKL8W4uHR8ShG/tINAEBI5THTC/RrnhNeDXMS CH3Y4eCkNWE+xcq+DCsgwiSAXFdBejeHHCaban9S9AY9gnqvI+4bjmFsQB/OYnJl gqHj03nU4p+AHrWWc9NF9ae7V28ahkb5KSAG6uXDB12RfW9XSCmlYxw7/0dbrc66 K7JvZf9hemZKsFGm8//HXMYL53HgAof3/UMGkwlx/33bMJIKugx0mjLY8AETdhfS vS3V8+fkqnTKiG8gmTBz7UgsMJ5gw6pxzmZoSwfnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2x7p56UfflK8RmfkqcLXH598bBIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EyOTY4Njg0LThiYmUtNGYzZC1hOTQ0LTk5OWFlZTM2NTc4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEQMkYwDQYJKoZIhvcNAQELBQADggEBALXzgI5s49dz4jNtyYVjG1OQdOgV lodpiEbnOjwCWbIFJNQLGdUc+73H/om3CSgIKP3hTy8eZnP31swurIn1ve0QOgvL OZwf/ZNrHsCar4aXd1o4c6fsnM9WYxdj7butRGMvAEXGEKZEPFmQmR72lQGhmhuo SLbvRMG+uVTaPSTGIdBVNDXyT9vOICQLlI+3kNlSHyXa9IvImNmh+S7SUGYBhago 57/NueVuj4LxPplUhE/LGvK6GzRSRjvRaMeff9NYDjsEjBE7QeL9aNAq+FQA8Kgb 4BSETWuVMOq15NDvH2xFHtWojRJcmU11VBPMhcQCGrYCp2pP4/6fFoq9ZdU= -----END CERTIFICATE-----Generated at Wed Jun 18 02:59:40 2025 by rpki-client