$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b6fff12b-04f6-4091-84aa-f568d30f090b.roa File: b6fff12b-04f6-4091-84aa-f568d30f090b.roa (raw, json) Hash identifier: EvbG3TqDyOBbWNskctSZKK5UpB0IArD5YqifKnXAHI8= Subject key identifier: 02:1C:7B:68:68:9C:A0:96:58:A5:58:93:C7:E0:57:5E:2D:E0:53:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 19452A929AF31D6E3D76A34B030E918DDB66B9F2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b6fff12b-04f6-4091-84aa-f568d30f090b.roa Signing time: Wed 04 Jun 2025 00:31:41 +0000 ROA not before: Wed 04 Jun 2025 00:31:41 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:45:2a:92:9a:f3:1d:6e:3d:76:a3:4b:03:0e:91:8d:db:66:b9:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 4 00:31:41 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=bf877fddabb403f5e5371510fbb1035eb07cc61cfa6095315f8b5ded7e402979, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:5c:d8:1d:78:8e:f2:5a:16:a1:5a:d1:46:72: 26:bd:92:ff:1c:42:be:8e:cf:6c:28:98:9a:0d:61: 0c:05:07:9f:bb:10:2a:1d:85:c5:5b:22:c7:d2:27: fe:5c:3a:b8:e5:a4:7c:46:a7:a8:93:1c:c9:b6:0b: 11:69:f0:8c:66:f0:53:ea:00:82:52:f0:c3:4a:1e: f0:45:46:18:f4:8e:1c:c5:2f:4a:e4:ad:94:81:d1: a5:e6:30:f4:6a:cd:f4:46:4d:d2:74:f1:2d:86:74: 17:de:56:ae:14:76:44:0b:f1:9a:ab:4c:80:ec:17: 78:a3:8b:cf:d0:74:37:20:9c:95:26:cf:c3:27:54: 90:f8:38:36:d0:fd:72:f4:8d:39:2d:81:e8:51:f4: ae:80:1c:4d:76:2c:97:e9:73:d7:00:6b:63:7e:7d: 81:36:31:f0:75:0e:60:71:3c:5e:b0:dc:8c:2d:d9: d3:42:27:d6:44:31:69:6f:60:dc:cb:c8:b2:aa:59: 30:81:5e:98:19:d0:ab:15:1c:d5:7f:01:cd:19:cb: 74:81:17:53:36:ed:e6:17:01:f5:6f:4a:9b:88:1e: d1:b0:29:55:b1:bb:9c:da:7a:8b:21:2e:ec:65:0c: a8:57:08:9d:4c:0d:8a:6c:2d:d6:e4:2e:5e:46:b1: 07:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:1C:7B:68:68:9C:A0:96:58:A5:58:93:C7:E0:57:5E:2D:E0:53:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b6fff12b-04f6-4091-84aa-f568d30f090b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.32.0/21 Signature Algorithm: sha256WithRSAEncryption b0:ee:f8:9f:01:37:e2:ae:a5:27:9d:8c:a3:8f:2b:07:40:78: fe:80:1d:ac:33:ae:a9:76:3a:d3:52:e3:8d:77:ec:7f:21:58: 83:5e:ef:4c:c6:b6:84:5e:de:4d:a9:02:5e:a8:57:1e:f1:73: 20:17:76:a2:11:34:3c:ab:a2:80:63:0f:33:66:5b:89:a9:bf: 18:68:9e:6b:66:f0:5f:cf:77:ef:c4:9c:cf:33:11:5d:ae:86: 8c:33:29:d2:f0:a0:41:cf:80:6b:8b:26:e6:cd:68:30:b9:58: 56:3b:7f:83:01:e7:92:fd:d5:de:db:ab:a5:eb:75:ca:34:8b: b4:1f:4f:cd:15:bd:46:00:af:54:80:ed:ad:f5:92:34:af:6c: 99:0c:1d:02:ab:ab:12:b6:56:25:c3:8e:82:55:ae:bf:6d:48: 18:ea:86:43:32:61:df:ab:06:4e:f0:83:20:d0:f7:ab:5b:87: 0b:b3:e9:83:79:5c:4a:fc:f0:1f:89:dc:6e:f2:aa:27:a0:2e: ff:e6:c4:70:38:bf:58:9c:e5:c2:f1:b6:1f:84:8a:f4:30:60: 86:dc:1d:4b:63:cf:22:d7:f5:f0:fa:1b:31:7c:b6:91:a0:b4: 4d:f0:14:fa:c0:82:f6:f7:e1:f8:d8:ac:53:35:39:8b:8e:33: ac:6e:c7:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGUUqkprzHW49dqNLAw6RjdtmufIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA0MDAzMTQxWhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjg3N2ZkZGFiYjQwM2Y1ZTUzNzE1MTBmYmIxMDM1ZWIw N2NjNjFjZmE2MDk1MzE1ZjhiNWRlZDdlNDAyOTc5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPXNgdeI7yWhahWtFGcia9kv8cQr6Oz2womJoNYQwFB5+7 ECodhcVbIsfSJ/5cOrjlpHxGp6iTHMm2CxFp8Ixm8FPqAIJS8MNKHvBFRhj0jhzF L0rkrZSB0aXmMPRqzfRGTdJ08S2GdBfeVq4UdkQL8ZqrTIDsF3iji8/QdDcgnJUm z8MnVJD4ODbQ/XL0jTktgehR9K6AHE12LJfpc9cAa2N+fYE2MfB1DmBxPF6w3Iwt 2dNCJ9ZEMWlvYNzLyLKqWTCBXpgZ0KsVHNV/Ac0Zy3SBF1M27eYXAfVvSpuIHtGw KVWxu5zaeoshLuxlDKhXCJ1MDYpsLdbkLl5GsQdPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAhx7aGicoJZYpViTx+BXXi3gUzEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I2ZmZmMTJiLTA0ZjYtNDA5MS04NGFhLWY1NjhkMzBmMDkwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjliAwDQYJKoZIhvcNAQELBQADggEBALDu+J8BN+KupSedjKOPKwdAeP6A Hawzrql2OtNS44137H8hWINe70zGtoRe3k2pAl6oVx7xcyAXdqIRNDyrooBjDzNm W4mpvxhonmtm8F/Pd+/EnM8zEV2uhowzKdLwoEHPgGuLJubNaDC5WFY7f4MB55L9 1d7bq6Xrdco0i7QfT80VvUYAr1SA7a31kjSvbJkMHQKrqxK2ViXDjoJVrr9tSBjq hkMyYd+rBk7wgyDQ96tbhwuz6YN5XEr88B+J3G7yqiegLv/mxHA4v1ic5cLxth+E ivQwYIbcHUtjzyLX9fD6GzF8tpGgtE3wFPrAgvb34fjYrFM1OYuOM6xux/k= -----END CERTIFICATE-----Generated at Sat Jun 14 19:07:29 2025 by rpki-client