$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be837a1b-32c4-49b1-9b20-3b8e4d8e0724.roa File: be837a1b-32c4-49b1-9b20-3b8e4d8e0724.roa (raw, json) Hash identifier: Pjp5avh30hzWMmWD/FePt+MitIS5HDPd9j1YOzhwCEo= Subject key identifier: 29:C6:A9:93:B8:34:C0:E0:0D:09:FF:55:F4:4D:C8:D8:E7:97:16:4A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 714483CA2ECA602C16151DB8A3C8A609A586CEDE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be837a1b-32c4-49b1-9b20-3b8e4d8e0724.roa Signing time: Tue 03 Jun 2025 00:20:20 +0000 ROA not before: Tue 03 Jun 2025 00:20:20 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.86.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:44:83:ca:2e:ca:60:2c:16:15:1d:b8:a3:c8:a6:09:a5:86:ce:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 3 00:20:20 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=1e46253dfac59e6e72040a4091141dbb66e320828e3bb6dba247f42fecdd53b2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8d:df:76:82:4f:fb:f3:76:08:3c:56:1f:7e: fd:83:9e:a0:6e:bf:b8:ac:eb:56:8f:4b:2a:06:f4: 77:49:d7:3d:55:53:6f:23:2f:a3:7f:94:6f:57:d7: 0e:33:ca:0c:af:87:e9:28:14:e4:78:81:a4:34:a4: 17:92:ee:38:98:55:17:94:29:18:3c:1a:70:93:71: 9b:18:2d:7a:32:f0:e6:fd:17:4d:68:79:43:f9:cf: 1a:3a:5e:bd:ac:a0:9f:18:be:d6:c7:5e:8a:42:22: b7:91:91:b9:2b:86:11:4b:9c:5a:f4:f3:3e:42:47: d5:4e:d5:c2:27:e1:b4:96:ff:b7:21:6c:75:76:d3: 25:7f:e8:c9:c3:0e:bd:5b:8f:d5:79:e5:6d:1c:cc: 9a:57:22:2c:eb:39:45:b2:2f:c6:cc:57:89:11:59: 92:e2:3e:e2:85:47:87:db:73:c3:34:34:3b:73:06: 52:78:42:b5:bd:4c:10:5a:23:a3:64:52:2e:a6:cb: 0b:dd:7d:19:a5:bd:59:00:83:c5:20:31:41:66:78: ca:32:85:c8:18:af:8a:ad:6a:92:55:cc:ad:b3:3c: b7:fa:27:9e:b0:fd:83:39:28:95:f0:fe:22:8e:24: 54:15:f0:e2:4c:ea:32:a9:fc:b5:4a:10:0a:d1:67: bc:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C6:A9:93:B8:34:C0:E0:0D:09:FF:55:F4:4D:C8:D8:E7:97:16:4A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be837a1b-32c4-49b1-9b20-3b8e4d8e0724.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.86.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6a:83:50:ad:da:25:24:a0:9d:73:cc:72:c5:6f:26:ee:0d:fc: 64:6a:3d:40:22:90:bf:c4:3d:0e:2b:8a:23:d3:ff:6c:94:d0: 30:a7:4d:3b:8b:dc:23:8f:7c:52:51:e9:e2:9b:1c:66:a6:41: 32:19:24:a0:65:1a:f3:1c:0b:f9:9a:ed:53:ea:9c:41:28:c0: f9:53:ef:fb:fa:23:b9:a0:97:9d:ff:6e:71:4a:f0:c5:38:88: e7:16:0a:b2:4a:28:ad:7d:bd:0c:91:05:c9:7c:cc:80:e4:34: 12:48:58:c2:99:a3:5e:20:bb:14:68:ac:aa:7c:b3:4c:24:ee: b6:1d:d1:bc:54:a5:7b:96:2e:f8:29:78:e5:0b:1d:b5:5d:2e: 49:87:79:0c:c2:6f:44:8b:5a:c2:91:66:84:30:0f:ca:e8:42: fe:38:4f:d8:5a:98:4f:89:e1:6f:69:4c:00:01:b2:96:ff:85: 96:c0:d3:a1:24:8d:9c:7a:a9:61:1e:90:b5:9e:69:d3:65:c8: 6a:f6:5c:1d:2d:82:03:d5:73:1b:cf:13:0f:c6:53:2b:e8:1f: 23:3f:f7:47:59:ef:7a:c8:88:d4:37:41:4c:ab:b1:c3:f3:ae: cf:1d:9e:89:0d:01:eb:e0:72:de:43:0c:5f:0f:fe:9d:5e:5c: f6:7b:22:66 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcUSDyi7KYCwWFR24o8imCaWGzt4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAzMDAyMDIwWhcNMjUwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTQ2MjUzZGZhYzU5ZTZlNzIwNDBhNDA5MTE0MWRiYjY2 ZTMyMDgyOGUzYmI2ZGJhMjQ3ZjQyZmVjZGQ1M2IyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCejd92gk/783YIPFYffv2DnqBuv7is61aPSyoG9HdJ1z1V U28jL6N/lG9X1w4zygyvh+koFOR4gaQ0pBeS7jiYVReUKRg8GnCTcZsYLXoy8Ob9 F01oeUP5zxo6Xr2soJ8YvtbHXopCIreRkbkrhhFLnFr08z5CR9VO1cIn4bSW/7ch bHV20yV/6MnDDr1bj9V55W0czJpXIizrOUWyL8bMV4kRWZLiPuKFR4fbc8M0NDtz BlJ4QrW9TBBaI6NkUi6mywvdfRmlvVkAg8UgMUFmeMoyhcgYr4qtapJVzK2zPLf6 J56w/YM5KJXw/iKOJFQV8OJM6jKp/LVKEArRZ7ytAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKcapk7g0wOANCf9V9E3I2OeXFkowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JlODM3YTFiLTMyYzQtNDliMS05YjIwLTNiOGU0ZDhlMDcyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDRVjANBgkqhkiG9w0BAQsFAAOCAQEAaoNQrdolJKCdc8xyxW8m7g38ZGo9 QCKQv8Q9DiuKI9P/bJTQMKdNO4vcI498UlHp4pscZqZBMhkkoGUa8xwL+ZrtU+qc QSjA+VPv+/ojuaCXnf9ucUrwxTiI5xYKskoorX29DJEFyXzMgOQ0EkhYwpmjXiC7 FGisqnyzTCTuth3RvFSle5Yu+Cl45QsdtV0uSYd5DMJvRItawpFmhDAPyuhC/jhP 2FqYT4nhb2lMAAGylv+FlsDToSSNnHqpYR6QtZ5p02XIavZcHS2CA9VzG88TD8ZT K+gfIz/3R1nvesiI1DdBTKuxw/Ouzx2eiQ0B6+By3kMMXw/+nV5c9nsiZg== -----END CERTIFICATE-----Generated at Sat Jun 14 06:44:17 2025 by rpki-client