$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/abfa8cec-4fb4-41fa-9101-2f83a4c46bbe.roa File: abfa8cec-4fb4-41fa-9101-2f83a4c46bbe.roa (raw, json) Hash identifier: OCmbnAHUoXP/XCO+jkts3kN5YfaIN6LZJjsfP1F67dI= Subject key identifier: 7A:85:CA:E9:97:95:9C:B3:A8:5F:B5:9A:55:EA:BC:1E:73:EB:14:D5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D7B6EFD18E8CAE8254360A5E620EDE558BD2CCC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/abfa8cec-4fb4-41fa-9101-2f83a4c46bbe.roa Signing time: Sat 14 Jun 2025 00:50:15 +0000 ROA not before: Sat 14 Jun 2025 00:50:15 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.35.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:7b:6e:fd:18:e8:ca:e8:25:43:60:a5:e6:20:ed:e5:58:bd:2c:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:50:15 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=99277edbf5da5e6c0d23cb8a67713c83ff73dda770f4c2c7f6f267209dbf0316, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:10:32:f8:c0:1d:63:e3:07:11:c2:1e:41:76: 53:2c:e9:21:43:cb:60:78:81:a6:3f:19:9f:8e:d9: c4:22:75:55:d6:3e:53:cd:e7:4d:9e:2a:d3:41:24: b4:09:b3:4d:45:50:6c:85:6d:b3:f6:71:e1:0b:69: 96:11:17:a4:6b:95:ff:d0:75:d4:d1:8c:72:20:c9: 5d:3e:9c:bb:97:eb:cb:bf:02:33:e6:70:c0:6b:3a: 09:47:b5:57:38:20:cb:da:78:91:7f:7e:db:6e:89: 29:62:d4:e1:69:02:7a:5f:56:21:dc:01:d8:cc:c6: 4a:5f:36:b4:4d:2e:c8:f8:f4:00:76:bb:75:97:35: f1:4c:aa:2e:ef:fa:0d:ec:fb:ae:57:6c:a1:e3:d1: b7:43:fd:73:3a:40:04:23:3c:bb:8e:b4:04:50:9c: 12:04:8c:ac:1d:7a:70:82:e2:33:22:f9:d0:b1:29: a7:3f:5a:1c:f7:e5:fc:96:8d:18:22:4d:19:f5:a7: 9f:5f:a7:3a:58:13:6d:d2:ec:fa:02:ba:49:d9:2f: 4e:f9:50:8e:ee:87:d2:30:21:fb:62:84:f9:95:19: 56:40:79:03:00:f7:30:f2:74:39:0a:cb:70:03:4f: 26:4d:7f:b3:2a:01:5f:60:0f:bb:8e:4b:48:8e:25: 6c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:85:CA:E9:97:95:9C:B3:A8:5F:B5:9A:55:EA:BC:1E:73:EB:14:D5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/abfa8cec-4fb4-41fa-9101-2f83a4c46bbe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.35.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7b:51:4c:4c:59:59:0b:ce:98:83:3a:8f:1b:a7:63:51:cf:da: 06:1d:db:88:b4:ed:53:a0:7e:46:8c:32:8c:a6:dd:a4:17:21: 91:6b:0c:c4:37:22:14:e8:74:e9:3f:f2:3a:5e:25:2c:36:f3: 25:57:8c:3b:82:13:cf:f1:81:fa:ef:e5:d6:70:c2:37:d5:fe: 66:b6:f3:bf:2b:c9:90:c0:2c:3d:b5:37:bd:d3:ce:1f:f5:28: 49:15:47:30:2f:c1:0a:71:f0:34:29:ba:64:45:79:5e:63:f9: 81:fe:e8:73:23:2f:c9:68:4a:3e:b6:99:b6:0e:84:ce:b6:27: a3:01:a7:6c:02:8a:61:56:fd:c5:01:ac:88:f6:a8:27:f8:00: b2:bb:a6:00:41:8e:1e:31:4a:5f:f1:68:68:b4:81:cb:fe:01: 14:20:f2:69:4f:7f:71:62:e1:2d:35:46:a3:7e:23:a1:29:07: 7e:5c:e1:c3:4d:ba:70:8d:b8:7b:3d:02:3c:d4:32:54:26:37: 0c:1f:31:53:b6:9c:a7:1c:12:2a:74:03:35:2c:06:c4:f0:2c: 3a:33:9b:f0:bc:b8:1d:80:07:01:8a:45:93:83:91:c3:b1:54: 32:0e:92:63:2b:b6:8a:57:ba:99:ce:69:b3:4a:b6:56:f6:20: 82:c3:10:26 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHXtu/RjoyuglQ2Cl5iDt5Vi9LMwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDA1MDE1WhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OTI3N2VkYmY1ZGE1ZTZjMGQyM2NiOGE2NzcxM2M4M2Zm NzNkZGE3NzBmNGMyYzdmNmYyNjcyMDlkYmYwMzE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0EDL4wB1j4wcRwh5BdlMs6SFDy2B4gaY/GZ+O2cQidVXW PlPN502eKtNBJLQJs01FUGyFbbP2ceELaZYRF6Rrlf/QddTRjHIgyV0+nLuX68u/ AjPmcMBrOglHtVc4IMvaeJF/fttuiSli1OFpAnpfViHcAdjMxkpfNrRNLsj49AB2 u3WXNfFMqi7v+g3s+65XbKHj0bdD/XM6QAQjPLuOtARQnBIEjKwdenCC4jMi+dCx Kac/Whz35fyWjRgiTRn1p59fpzpYE23S7PoCuknZL075UI7uh9IwIftihPmVGVZA eQMA9zDydDkKy3ADTyZNf7MqAV9gD7uOS0iOJWxhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUeoXK6ZeVnLOoX7WaVeq8HnPrFNUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FiZmE4Y2VjLTRmYjQtNDFmYS05MTAxLTJmODNhNGM0NmJiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoIzANBgkqhkiG9w0BAQsFAAOCAQEAe1FMTFlZC86YgzqPG6djUc/aBh3b iLTtU6B+RowyjKbdpBchkWsMxDciFOh06T/yOl4lLDbzJVeMO4ITz/GB+u/l1nDC N9X+ZrbzvyvJkMAsPbU3vdPOH/UoSRVHMC/BCnHwNCm6ZEV5XmP5gf7ocyMvyWhK PraZtg6EzrYnowGnbAKKYVb9xQGsiPaoJ/gAsrumAEGOHjFKX/FoaLSBy/4BFCDy aU9/cWLhLTVGo34joSkHflzhw026cI24ez0CPNQyVCY3DB8xU7acpxwSKnQDNSwG xPAsOjOb8Ly4HYAHAYpFk4ORw7FUMg6SYyu2ile6mc5ps0q2VvYggsMQJg== -----END CERTIFICATE-----Generated at Sat Jun 14 06:23:08 2025 by rpki-client