$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7b573de-8dbd-4362-82ea-1bd3c997a837.roa File: a7b573de-8dbd-4362-82ea-1bd3c997a837.roa (raw, json) Hash identifier: 0ov0rGSopIiFH7nBLAOXgFavL+KsXLizPFkzAqbCNZY= Subject key identifier: DC:CE:B9:DC:3D:EE:BF:FF:DE:D2:04:38:E1:94:45:0B:52:97:CF:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46E13898AF02122F49AAA8D28D69BAB8990625B7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7b573de-8dbd-4362-82ea-1bd3c997a837.roa Signing time: Wed 04 Jun 2025 00:41:33 +0000 ROA not before: Wed 04 Jun 2025 00:41:33 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:e1:38:98:af:02:12:2f:49:aa:a8:d2:8d:69:ba:b8:99:06:25:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 4 00:41:33 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=6bd10225ed8b1977d285fb963cf020847a1df49c52af29ec86c029e87050a471, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:24:b2:6b:4a:bb:30:78:62:c5:c4:74:b7:24: d7:68:e8:a3:e3:4f:a5:97:ef:7d:f6:3b:00:99:68: 97:ee:bd:68:15:6e:10:3b:46:71:d1:0d:50:da:19: f4:23:cf:42:33:5b:7f:a5:4d:0e:17:3f:ed:39:cb: 22:b9:1e:bf:34:ee:f0:b3:07:f7:82:dd:87:f6:18: 68:d5:c6:71:be:3b:8d:e2:9e:b1:4c:24:bb:32:7b: 81:d8:6e:1b:0d:19:b7:32:f4:3f:eb:58:f8:10:81: 49:63:8c:cc:08:77:37:42:57:a5:c7:15:00:1b:6f: d5:51:45:16:c0:f7:0b:bd:94:65:98:d1:43:1d:77: 6c:26:f9:39:37:f5:02:75:20:aa:58:04:ac:20:89: 6c:20:2b:e4:1a:36:5f:7d:a0:0c:a6:01:f1:77:3e: 46:b4:d0:cc:9c:c3:ca:c2:3c:a7:75:89:09:45:c9: 67:9e:1d:7e:78:2c:6b:68:84:08:53:b2:57:e5:82: 67:a3:b6:e6:7b:6d:65:da:fb:56:56:9e:dd:e0:84: 38:29:ff:51:65:aa:86:eb:2f:72:cd:80:7b:dd:08: 12:ed:d3:de:dd:55:05:3f:85:fa:6f:ee:11:89:b3: 8f:3c:29:03:d1:a4:79:d8:9b:3f:0a:eb:b1:35:c7: 1c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:CE:B9:DC:3D:EE:BF:FF:DE:D2:04:38:E1:94:45:0B:52:97:CF:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7b573de-8dbd-4362-82ea-1bd3c997a837.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.64.0/21 Signature Algorithm: sha256WithRSAEncryption d5:bf:99:d8:b0:91:e4:e5:01:d0:07:f9:e5:85:53:b0:84:6d: f7:ad:85:26:67:91:e2:e8:33:5a:a1:82:0f:1c:c0:32:31:e9: 06:4f:d1:ec:56:d3:86:f5:b0:33:3e:e8:e7:97:24:23:81:c6: fe:38:e0:c3:75:f0:0b:ef:40:e5:d5:87:ca:58:2e:ae:d7:71: 85:64:93:ac:7b:1d:a1:30:25:33:de:63:a8:50:99:41:ed:13: 68:13:e0:81:18:76:3d:05:b5:0a:78:c5:ed:18:43:c2:8e:3f: 42:fc:21:cd:1e:bb:88:67:c9:19:19:91:3f:fe:37:0c:5f:59: 20:bd:76:58:10:01:15:c6:84:5d:96:c1:64:df:5e:7f:ce:b7: 76:8a:64:f6:a0:3a:55:1e:e3:61:9f:a8:50:e3:ae:55:14:ea: 8b:bd:e5:1b:2d:18:a1:0c:2b:21:65:89:09:60:f8:ff:e8:ea: b6:c3:23:05:81:0d:91:23:3b:c9:46:aa:98:d9:28:b7:2c:3e: 03:e3:ff:42:5c:f9:1f:7e:00:7f:4a:0f:4b:a7:43:23:74:da: a6:e0:2f:d9:e5:7e:e5:7b:45:f6:8f:43:89:8d:97:41:3b:cd: 17:d8:52:d6:0d:5f:73:ae:8b:74:3d:4e:51:8d:09:7d:45:46: 8f:eb:86:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURuE4mK8CEi9JqqjSjWm6uJkGJbcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA0MDA0MTMzWhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YmQxMDIyNWVkOGIxOTc3ZDI4NWZiOTYzY2YwMjA4NDdh MWRmNDljNTJhZjI5ZWM4NmMwMjllODcwNTBhNDcxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZJLJrSrsweGLFxHS3JNdo6KPjT6WX7332OwCZaJfuvWgV bhA7RnHRDVDaGfQjz0IzW3+lTQ4XP+05yyK5Hr807vCzB/eC3Yf2GGjVxnG+O43i nrFMJLsye4HYbhsNGbcy9D/rWPgQgUljjMwIdzdCV6XHFQAbb9VRRRbA9wu9lGWY 0UMdd2wm+Tk39QJ1IKpYBKwgiWwgK+QaNl99oAymAfF3Pka00Mycw8rCPKd1iQlF yWeeHX54LGtohAhTslflgmejtuZ7bWXa+1ZWnt3ghDgp/1FlqobrL3LNgHvdCBLt 097dVQU/hfpv7hGJs488KQPRpHnYmz8K67E1xxz9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3M653D3uv//e0gQ44ZRFC1KXz2EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3YjU3M2RlLThkYmQtNDM2Mi04MmVhLTFiZDNjOTk3YTgzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl0AwDQYJKoZIhvcNAQELBQADggEBANW/mdiwkeTlAdAH+eWFU7CEbfet hSZnkeLoM1qhgg8cwDIx6QZP0exW04b1sDM+6OeXJCOBxv444MN18AvvQOXVh8pY Lq7XcYVkk6x7HaEwJTPeY6hQmUHtE2gT4IEYdj0FtQp4xe0YQ8KOP0L8Ic0eu4hn yRkZkT/+NwxfWSC9dlgQARXGhF2WwWTfXn/Ot3aKZPagOlUe42GfqFDjrlUU6ou9 5RstGKEMKyFliQlg+P/o6rbDIwWBDZEjO8lGqpjZKLcsPgPj/0Jc+R9+AH9KD0un QyN02qbgL9nlfuV7RfaPQ4mNl0E7zRfYUtYNX3Oui3Q9TlGNCX1FRo/rhhw= -----END CERTIFICATE-----Generated at Sat Jun 14 06:50:51 2025 by rpki-client