$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4fc45e7-8bde-4b2c-ad82-302a6c0ccbfd.roa File: b4fc45e7-8bde-4b2c-ad82-302a6c0ccbfd.roa (raw, json) Hash identifier: g7cmURhdjIK+xH5MqSulXX8IsY/2nSVwIj9MgCE9G1g= Subject key identifier: 0E:B3:A3:8E:BD:99:B4:9A:93:52:D9:B0:ED:26:04:A3:D5:37:11:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 654B30D26F82592D08608968AC588B3F8F2BD6A0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4fc45e7-8bde-4b2c-ad82-302a6c0ccbfd.roa Signing time: Sat 07 Jun 2025 00:20:18 +0000 ROA not before: Sat 07 Jun 2025 00:20:18 +0000 ROA not after: Sat 12 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 167.147.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:4b:30:d2:6f:82:59:2d:08:60:89:68:ac:58:8b:3f:8f:2b:d6:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 7 00:20:18 2025 GMT Not After : Jul 12 23:59:59 2025 GMT Subject: serialNumber=42b6cfc60f64741923d24b238dc0f4ce30efdee0181f90fdcec027f5d7063652, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:3b:5f:51:a8:b4:b9:2b:9b:b0:a1:3d:d7:d5: a6:fa:6c:45:9c:71:78:2f:24:3e:77:9f:31:5d:d2: 54:97:14:d2:8d:fc:0a:8a:32:ee:d6:7d:34:13:54: a5:0d:6b:e1:07:26:cd:f0:b9:ae:1d:ad:37:f0:d3: ac:06:f0:fe:07:55:5d:14:45:ac:7f:ba:40:75:57: aa:64:9b:59:b3:de:de:bb:5d:08:c5:66:7b:19:c9: 43:60:0c:e7:6e:e9:74:f6:9a:5f:4c:b5:18:6a:ed: 59:ba:86:3e:aa:0a:e2:1a:d8:b4:13:0a:78:e5:56: 5c:ed:69:48:62:41:05:93:51:fa:25:7a:3f:8f:95: 7c:4e:a7:39:0f:3e:7d:90:40:98:01:9b:a2:ac:47: 6d:b1:64:11:93:d1:5c:27:bd:66:51:58:34:0c:5f: 4d:5b:21:61:d9:45:a7:0b:82:aa:21:1c:5d:bd:e9: 4a:3c:69:1e:d2:63:82:a8:a8:3f:1f:09:97:43:de: d5:bd:9b:98:cd:3b:2e:0c:ba:d7:a0:99:be:62:0d: 58:4e:6a:ee:83:a9:b3:a8:a8:7a:ad:d4:20:26:d5: 11:e1:14:e3:70:ab:fd:74:c8:7b:26:e9:51:ba:4c: ce:1b:63:46:9f:83:30:b8:92:f2:6a:ee:ef:70:d8: 83:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B3:A3:8E:BD:99:B4:9A:93:52:D9:B0:ED:26:04:A3:D5:37:11:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4fc45e7-8bde-4b2c-ad82-302a6c0ccbfd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 167.147.0.0/16 Signature Algorithm: sha256WithRSAEncryption 83:6b:a1:54:94:c6:2b:93:94:de:b0:9c:45:4c:4b:fa:76:b1: 3c:d7:01:63:7f:8d:a0:be:ae:11:01:2f:18:b5:34:87:78:9c: 02:3e:d3:a1:53:09:fb:35:ee:90:80:bf:0d:80:81:2e:56:f7: 88:a7:02:f2:c3:6c:97:d3:5e:b8:bc:7b:2c:a2:e8:42:51:5e: da:d7:8e:85:31:86:e7:c2:69:dc:50:f1:50:14:3b:e8:00:73: da:d7:20:db:57:7c:26:e3:27:f0:0c:dd:dd:c3:87:41:02:e2: 6b:2d:e5:10:51:0d:83:5c:33:d8:4c:e1:b7:ec:9a:de:7a:7b: 83:38:f2:34:2d:5d:9f:52:0d:6b:60:ac:ef:10:6b:b1:b6:c8: fd:d9:f6:b8:70:44:b2:32:4a:38:b1:b9:28:42:bf:c7:16:d6: 97:d2:07:ad:17:0f:fc:cf:54:e8:b9:74:74:b8:e5:03:84:6a: 9a:fb:77:64:98:0e:53:a2:be:f7:f6:1e:43:09:92:05:8e:a0: df:84:ab:e7:e1:be:64:2c:18:dc:3f:ba:c9:1a:e0:3a:89:0a: 9a:9d:f2:64:40:af:dc:03:fe:2a:02:a7:42:bd:ba:8e:46:33: 44:aa:70:94:0e:9d:51:de:39:f0:32:d4:e4:cc:64:55:1a:92: 53:b9:d9:ca -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZUsw0m+CWS0IYIlorFiLP48r1qAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA3MDAyMDE4WhcNMjUwNzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MmI2Y2ZjNjBmNjQ3NDE5MjNkMjRiMjM4ZGMwZjRjZTMw ZWZkZWUwMTgxZjkwZmRjZWMwMjdmNWQ3MDYzNjUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKO19RqLS5K5uwoT3X1ab6bEWccXgvJD53nzFd0lSXFNKN /AqKMu7WfTQTVKUNa+EHJs3wua4drTfw06wG8P4HVV0URax/ukB1V6pkm1mz3t67 XQjFZnsZyUNgDOdu6XT2ml9MtRhq7Vm6hj6qCuIa2LQTCnjlVlztaUhiQQWTUfol ej+PlXxOpzkPPn2QQJgBm6KsR22xZBGT0VwnvWZRWDQMX01bIWHZRacLgqohHF29 6Uo8aR7SY4KoqD8fCZdD3tW9m5jNOy4Mutegmb5iDVhOau6DqbOoqHqt1CAm1RHh FONwq/10yHsm6VG6TM4bY0afgzC4kvJq7u9w2IPNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDrOjjr2ZtJqTUtmw7SYEo9U3EaYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I0ZmM0NWU3LThiZGUtNGIyYy1hZDgyLTMwMmE2YzBjY2JmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCnkzANBgkqhkiG9w0BAQsFAAOCAQEAg2uhVJTGK5OU3rCcRUxL+naxPNcB Y3+NoL6uEQEvGLU0h3icAj7ToVMJ+zXukIC/DYCBLlb3iKcC8sNsl9NeuLx7LKLo QlFe2teOhTGG58Jp3FDxUBQ76ABz2tcg21d8JuMn8Azd3cOHQQLiay3lEFENg1wz 2Ezht+ya3np7gzjyNC1dn1INa2Cs7xBrsbbI/dn2uHBEsjJKOLG5KEK/xxbWl9IH rRcP/M9U6Ll0dLjlA4Rqmvt3ZJgOU6K+9/YeQwmSBY6g34Sr5+G+ZCwY3D+6yRrg OokKmp3yZECv3AP+KgKnQr26jkYzRKpwlA6dUd458DLU5MxkVRqSU7nZyg== -----END CERTIFICATE-----Generated at Sat Jun 14 06:29:23 2025 by rpki-client