$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b131daf1-b7a0-4cfc-895e-57ca8f2fcc6e.roa File: b131daf1-b7a0-4cfc-895e-57ca8f2fcc6e.roa (raw, json) Hash identifier: QN5NFAgjdqjkfTqONqJnxgB/Mv5NroAdcwoOjdt+vmM= Subject key identifier: 7F:97:84:86:59:9A:F6:11:0E:DD:A7:78:E9:85:94:AE:9A:44:A5:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0ECF1829C0E53761165D39D7E348C52578687E2F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b131daf1-b7a0-4cfc-895e-57ca8f2fcc6e.roa Signing time: Sat 14 Jun 2025 00:31:20 +0000 ROA not before: Sat 14 Jun 2025 00:31:20 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.21.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:cf:18:29:c0:e5:37:61:16:5d:39:d7:e3:48:c5:25:78:68:7e:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:31:20 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=4faa4d38cd065f00cddc9754dbf44e2a66dc4798f5ede6f1d4f4107e106a2ae3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:7d:bf:64:22:0f:52:28:60:4c:f6:ab:62:1c: e3:86:2c:31:a7:81:5d:73:ab:d3:65:71:d6:7f:a1: 2d:81:08:07:6b:ec:61:a3:c2:1a:e1:7b:99:fd:d6: d9:3d:d7:27:09:ee:76:46:44:08:11:45:a6:cb:16: 97:d0:35:ed:5f:83:a2:bd:db:c1:89:e9:48:51:b7: 6c:ee:54:c2:6f:79:ce:97:6f:c5:dd:84:7d:2e:3f: ca:53:99:6a:99:fc:3c:65:13:0b:2e:08:cc:f7:6f: 5c:e7:c7:1c:21:57:53:d0:05:f4:9c:d8:a2:16:ff: 60:ec:50:57:d7:df:40:8a:33:16:02:9b:1a:81:c0: 03:7b:f3:f9:59:49:ad:68:30:c7:2f:94:28:66:3b: cb:7e:d9:4d:0e:05:99:22:5b:c5:2f:dd:d7:69:82: 67:5b:d2:99:d2:df:6d:8d:ad:40:2a:92:77:9c:22: 90:38:12:6d:4a:d4:2a:d7:aa:01:fc:25:49:18:72: 8a:6a:d1:07:16:bd:06:2c:5a:35:e6:89:0b:b6:e8: 13:57:2a:08:e1:4f:1f:b7:3d:f9:50:11:68:b2:fc: a1:9f:4b:0b:ee:88:b4:1d:bf:4c:75:bc:d9:08:65: 0f:ea:a7:45:1f:36:16:64:60:53:06:89:d0:f5:5d: 7b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:97:84:86:59:9A:F6:11:0E:DD:A7:78:E9:85:94:AE:9A:44:A5:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b131daf1-b7a0-4cfc-895e-57ca8f2fcc6e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.21.48.0/20 Signature Algorithm: sha256WithRSAEncryption 16:4f:2a:bb:b8:4c:f9:14:99:53:c7:84:f5:bf:ac:f6:8a:50: b3:ae:80:1e:f3:0c:92:92:80:31:28:f4:5a:b9:78:b7:cc:6e: 30:40:49:e2:0a:21:6c:f3:71:c3:42:b7:04:dc:7a:c0:e0:f1: 26:97:7d:27:e4:94:c4:38:a4:fa:76:af:6c:73:6a:bd:81:7c: c6:0f:31:5d:16:87:f7:ae:80:d0:fb:ef:4a:b6:35:11:5d:dd: f4:8e:99:dd:6b:f6:ce:0c:1d:a3:c7:2c:70:23:79:ea:19:b5: 14:35:15:35:b8:fe:05:1a:44:15:4f:64:cc:8a:7c:6f:da:ae: 63:97:d7:32:df:d2:4a:b3:23:64:69:66:72:79:ac:7f:97:b8: 91:03:62:b7:1a:5a:78:ee:8b:87:f9:b1:80:63:f7:b9:4a:07: 9b:9e:db:f5:6a:f3:a7:5e:29:3d:2a:64:f1:9c:3b:40:ab:ab: 27:aa:d5:c7:ee:bf:34:6c:fe:79:68:77:26:14:ca:bd:fc:f0: 61:5c:a5:13:7d:86:6e:d3:02:e5:20:a4:46:29:06:94:a1:1d: 70:e8:a4:7c:34:c0:01:2d:a1:63:09:79:fd:79:08:c5:e9:f8: c1:b7:03:17:88:97:eb:78:65:e5:0a:a8:03:ca:e7:e7:da:2c: b4:56:ad:25 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDs8YKcDlN2EWXTnX40jFJXhofi8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDAzMTIwWhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZmFhNGQzOGNkMDY1ZjAwY2RkYzk3NTRkYmY0NGUyYTY2 ZGM0Nzk4ZjVlZGU2ZjFkNGY0MTA3ZTEwNmEyYWUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgfb9kIg9SKGBM9qtiHOOGLDGngV1zq9NlcdZ/oS2BCAdr 7GGjwhrhe5n91tk91ycJ7nZGRAgRRabLFpfQNe1fg6K928GJ6UhRt2zuVMJvec6X b8XdhH0uP8pTmWqZ/DxlEwsuCMz3b1znxxwhV1PQBfSc2KIW/2DsUFfX30CKMxYC mxqBwAN78/lZSa1oMMcvlChmO8t+2U0OBZkiW8Uv3ddpgmdb0pnS322NrUAqknec IpA4Em1K1CrXqgH8JUkYcopq0QcWvQYsWjXmiQu26BNXKgjhTx+3PflQEWiy/KGf SwvuiLQdv0x1vNkIZQ/qp0UfNhZkYFMGidD1XXvLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUf5eEhlma9hEO3ad46YWUrppEpWUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxMzFkYWYxLWI3YTAtNGNmYy04OTVlLTU3Y2E4ZjJmY2M2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQXFTAwDQYJKoZIhvcNAQELBQADggEBABZPKru4TPkUmVPHhPW/rPaKULOu gB7zDJKSgDEo9Fq5eLfMbjBASeIKIWzzccNCtwTcesDg8SaXfSfklMQ4pPp2r2xz ar2BfMYPMV0Wh/eugND770q2NRFd3fSOmd1r9s4MHaPHLHAjeeoZtRQ1FTW4/gUa RBVPZMyKfG/armOX1zLf0kqzI2RpZnJ5rH+XuJEDYrcaWnjui4f5sYBj97lKB5ue 2/Vq86deKT0qZPGcO0Crqyeq1cfuvzRs/nlodyYUyr388GFcpRN9hm7TAuUgpEYp BpShHXDopHw0wAEtoWMJef15CMXp+MG3AxeIl+t4ZeUKqAPK5+faLLRWrSU= -----END CERTIFICATE-----Generated at Sat Jun 14 06:40:28 2025 by rpki-client