$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b685dd41-8f09-47b5-8997-53c2dc02d7af.roa File: b685dd41-8f09-47b5-8997-53c2dc02d7af.roa (raw, json) Hash identifier: u/dm27rT2aPHPHELhYykya57obLkr600b+Do06l4GLM= Subject key identifier: 5D:E0:1E:43:5D:C1:CE:CD:DE:BF:1F:74:9C:65:4E:6F:C5:C1:1C:7E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FFDBC6818672F5DA89E742321A3CE26185D863B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b685dd41-8f09-47b5-8997-53c2dc02d7af.roa Signing time: Tue 03 Jun 2025 00:10:53 +0000 ROA not before: Tue 03 Jun 2025 00:10:53 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 184.72.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:fd:bc:68:18:67:2f:5d:a8:9e:74:23:21:a3:ce:26:18:5d:86:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 3 00:10:53 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=8616c8dff02667785ccecbc6c2f128fa2e7ba6c9928dc7e811cf1a59023e2d71, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:53:c0:e4:ce:d1:04:0b:2f:c2:7a:88:72:40: e3:e0:1e:e0:3f:6b:da:33:9c:57:08:73:5b:06:7f: 3a:7b:45:18:50:99:9b:ff:38:55:e7:76:d8:83:b9: ab:b5:55:5e:62:70:01:8e:71:45:cb:21:af:40:bc: f6:8e:9a:c4:7e:52:46:4c:0e:4b:5e:75:64:0f:ee: 70:a7:1e:c6:76:4d:81:06:e9:ad:0e:ea:d5:e9:cc: 7c:c5:08:d5:bf:35:15:e6:81:d1:4c:8c:5e:dd:6a: 2f:d9:b8:b6:51:af:9b:8b:e0:8d:b5:49:9b:59:65: 28:3c:a1:d4:ab:25:22:c2:22:d6:42:01:df:2d:65: 12:e4:ad:44:ba:a3:15:2a:4d:16:2a:0e:8c:c7:bd: ae:c4:7e:25:c3:ea:0c:23:25:88:25:24:0b:58:f9: 7b:c1:e6:d7:58:ff:76:1e:76:2b:ea:af:12:b9:8b: e8:4a:22:67:6e:51:2c:44:44:9e:10:08:da:8f:a1: a1:8b:0c:51:6e:58:20:18:a4:07:a0:55:1a:6b:c2: 71:ba:8f:58:5c:04:93:3c:49:9e:66:e4:12:7b:28: 8e:88:8d:f8:9b:55:e6:a8:88:a4:15:5e:23:13:e0: 04:f7:c5:55:39:51:86:2c:89:75:83:1b:69:9c:97: 00:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E0:1E:43:5D:C1:CE:CD:DE:BF:1F:74:9C:65:4E:6F:C5:C1:1C:7E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b685dd41-8f09-47b5-8997-53c2dc02d7af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.94.0/24 Signature Algorithm: sha256WithRSAEncryption 71:79:cb:27:2a:d0:6d:f9:f4:a1:0a:8b:08:56:6f:9c:0e:eb: 83:94:5c:38:2b:e5:26:85:ff:7c:e4:09:09:a2:7c:06:45:5f: 0f:2c:6d:a9:22:31:00:a0:d8:c8:87:35:31:2e:13:26:76:f7: 59:35:26:6a:cb:f9:61:08:5e:4f:f6:15:69:3e:56:1c:93:0d: cf:5b:75:3d:ca:8b:77:f7:ce:69:36:81:6a:f1:af:1a:6a:ab: 96:7f:bb:2b:d9:b0:d9:b5:eb:84:aa:7f:83:5b:bd:ec:63:51: 1e:97:db:5b:6f:b1:cd:3f:4a:5a:e4:92:9f:1d:33:30:26:10: 5d:6b:42:1d:4c:0b:5e:fc:bf:23:dc:6d:ff:7a:b0:92:6a:c5: 02:56:8e:5f:df:e5:56:fa:0e:48:be:34:92:a1:33:37:e5:18: 81:f1:9a:08:c3:7e:3b:21:37:d6:be:2e:01:f9:3f:7a:09:33: e7:5e:ba:8a:bf:1f:8d:6d:e9:d7:99:0e:ef:21:0b:1b:a3:d2: dd:20:89:23:52:20:9e:d8:03:b5:eb:f0:6e:af:d9:47:76:1e: 80:8b:02:14:7c:2c:ad:f5:81:b2:8e:a5:8a:01:91:f4:e2:0a: cd:20:d5:ca:bc:d8:90:59:38:91:a3:4c:dd:13:ab:cd:6d:6b: 54:59:56:63 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD/28aBhnL12onnQjIaPOJhhdhjswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAzMDAxMDUzWhcNMjUwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NjE2YzhkZmYwMjY2Nzc4NWNjZWNiYzZjMmYxMjhmYTJl N2JhNmM5OTI4ZGM3ZTgxMWNmMWE1OTAyM2UyZDcxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2U8DkztEECy/CeohyQOPgHuA/a9oznFcIc1sGfzp7RRhQ mZv/OFXndtiDuau1VV5icAGOcUXLIa9AvPaOmsR+UkZMDktedWQP7nCnHsZ2TYEG 6a0O6tXpzHzFCNW/NRXmgdFMjF7dai/ZuLZRr5uL4I21SZtZZSg8odSrJSLCItZC Ad8tZRLkrUS6oxUqTRYqDozHva7EfiXD6gwjJYglJAtY+XvB5tdY/3YedivqrxK5 i+hKImduUSxERJ4QCNqPoaGLDFFuWCAYpAegVRprwnG6j1hcBJM8SZ5m5BJ7KI6I jfibVeaoiKQVXiMT4AT3xVU5UYYsiXWDG2mclwDRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXeAeQ13Bzs3evx90nGVOb8XBHH4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I2ODVkZDQxLThmMDktNDdiNS04OTk3LTUzYzJkYzAyZDdhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAC4SF4wDQYJKoZIhvcNAQELBQADggEBAHF5yycq0G359KEKiwhWb5wO64OU XDgr5SaF/3zkCQmifAZFXw8sbakiMQCg2MiHNTEuEyZ291k1JmrL+WEIXk/2FWk+ VhyTDc9bdT3Ki3f3zmk2gWrxrxpqq5Z/uyvZsNm164Sqf4NbvexjUR6X21tvsc0/ Slrkkp8dMzAmEF1rQh1MC178vyPcbf96sJJqxQJWjl/f5Vb6Dki+NJKhMzflGIHx mgjDfjshN9a+LgH5P3oJM+deuoq/H41t6deZDu8hCxuj0t0giSNSIJ7YA7Xr8G6v 2Ud2HoCLAhR8LK31gbKOpYoBkfTiCs0g1cq82JBZOJGjTN0Tq81ta1RZVmM= -----END CERTIFICATE-----Generated at Mon Jun 16 09:58:35 2025 by rpki-client