$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf9be969-de18-42a6-9d12-16fc8a45d0da.roa File: bf9be969-de18-42a6-9d12-16fc8a45d0da.roa (raw, json) Hash identifier: QlGaySzWgxGy0ihJ+94CeAfYdhGYoNSk1tea4Ha0ruU= Subject key identifier: 2F:2A:F2:E6:0F:EF:FC:49:EA:B6:D8:EF:4D:4A:23:00:57:96:9A:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 552FF70FA3B1E9284BE288E4772152EE0A0F71E4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf9be969-de18-42a6-9d12-16fc8a45d0da.roa Signing time: Fri 13 Jun 2025 00:31:33 +0000 ROA not before: Fri 13 Jun 2025 00:31:33 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.26.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:2f:f7:0f:a3:b1:e9:28:4b:e2:88:e4:77:21:52:ee:0a:0f:71:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 00:31:33 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=8b4e12213e8a1731d06411e4a1aecb8b04e3d891c1458f1a1befa20a9d02a336, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2e:d7:09:cd:44:b8:4e:79:d0:86:3d:5b:7e: 1f:3a:c3:36:0e:08:b3:ca:dc:a6:19:b7:01:ba:5f: 54:ea:21:53:9a:bf:b4:51:44:7c:2a:db:b1:fe:ec: 52:8d:24:49:2d:90:31:8d:a3:23:0a:aa:db:db:b3: 61:e8:f3:be:d9:26:67:05:91:58:c3:44:92:d1:c1: 87:53:d9:c1:73:a3:6a:c0:91:6e:a3:04:96:a9:f8: 75:58:04:d5:b9:cc:c8:4a:c6:f3:dd:65:bf:0a:b8: b8:9b:94:ee:9a:60:16:49:3a:f6:ad:b3:22:d0:52: c6:52:b9:03:6e:33:60:41:5c:10:eb:bf:55:ff:73: 31:81:45:45:1b:01:04:bc:86:56:73:77:bf:78:3a: 15:c9:63:c3:7a:b0:56:e7:fe:d5:2a:24:20:d0:9d: 79:27:e5:ea:ce:66:7b:87:bb:ea:e5:21:22:71:40: ae:e7:e5:5a:f9:8b:b4:8f:00:7f:2e:e9:27:b0:02: d3:3e:76:35:65:15:a6:b6:c6:d7:29:43:42:53:11: 3d:cf:57:02:8a:1f:59:95:62:02:d1:f2:41:4e:91: ee:36:7f:cb:34:ab:c1:8f:0a:8e:14:cb:c6:20:3b: fd:8f:9e:e5:fa:22:23:c4:65:47:6d:72:c8:0d:89: 22:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:2A:F2:E6:0F:EF:FC:49:EA:B6:D8:EF:4D:4A:23:00:57:96:9A:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf9be969-de18-42a6-9d12-16fc8a45d0da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.26.0.0/15 Signature Algorithm: sha256WithRSAEncryption 92:48:3f:02:3a:11:f2:de:84:27:4d:77:03:c7:09:26:11:19: 7c:a9:c2:11:8d:c5:97:34:0f:32:7a:b7:8f:2b:b8:30:9a:e4: 78:89:e1:e2:86:f3:8a:7a:a9:1d:6d:96:df:db:c0:cb:0e:a4: 51:16:03:78:29:80:a7:78:cf:d4:ae:55:63:84:fa:c5:1c:79: eb:16:92:6c:27:d3:6b:15:f6:b4:98:87:94:c5:70:6a:97:a1: cf:89:10:43:6f:26:db:b7:a0:24:f9:81:d5:f5:8f:86:aa:5f: 3b:a5:0a:e2:a0:97:6d:1f:11:a4:76:c8:77:d5:c6:fb:50:cd: fe:cc:62:f8:d3:8c:86:3e:d2:34:a3:63:8e:d5:df:7b:80:fd: 59:d5:aa:a9:ed:ab:43:96:e6:6f:cf:4a:ea:bd:aa:65:d1:2f: 0f:23:3a:24:8d:b0:1c:d0:d6:9d:a0:1d:56:8e:c8:d6:d5:da: fc:2b:1a:ab:77:9c:45:ba:3c:c8:ed:1e:a3:51:2b:de:73:f1: 90:79:aa:f2:98:2d:d0:60:cd:cc:31:50:0a:7b:ba:61:31:4a: 82:54:1d:26:b4:2b:7b:75:65:73:ad:cd:8c:e2:2b:dc:2a:f2: 17:99:e8:31:a5:39:cb:34:44:bf:cc:be:53:fc:20:de:c6:21: 5d:5e:ac:da -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVS/3D6Ox6ShL4ojkdyFS7goPceQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMDAzMTMzWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YjRlMTIyMTNlOGExNzMxZDA2NDExZTRhMWFlY2I4YjA0 ZTNkODkxYzE0NThmMWExYmVmYTIwYTlkMDJhMzM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJLtcJzUS4TnnQhj1bfh86wzYOCLPK3KYZtwG6X1TqIVOa v7RRRHwq27H+7FKNJEktkDGNoyMKqtvbs2Ho877ZJmcFkVjDRJLRwYdT2cFzo2rA kW6jBJap+HVYBNW5zMhKxvPdZb8KuLiblO6aYBZJOvatsyLQUsZSuQNuM2BBXBDr v1X/czGBRUUbAQS8hlZzd794OhXJY8N6sFbn/tUqJCDQnXkn5erOZnuHu+rlISJx QK7n5Vr5i7SPAH8u6SewAtM+djVlFaa2xtcpQ0JTET3PVwKKH1mVYgLR8kFOke42 f8s0q8GPCo4Uy8YgO/2PnuX6IiPEZUdtcsgNiSLTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQULyry5g/v/EnqttjvTUojAFeWmoQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmOWJlOTY5LWRlMTgtNDJhNi05ZDEyLTE2ZmM4YTQ1ZDBkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEQGjANBgkqhkiG9w0BAQsFAAOCAQEAkkg/AjoR8t6EJ013A8cJJhEZfKnC EY3FlzQPMnq3jyu4MJrkeInh4obzinqpHW2W39vAyw6kURYDeCmAp3jP1K5VY4T6 xRx56xaSbCfTaxX2tJiHlMVwapehz4kQQ28m27egJPmB1fWPhqpfO6UK4qCXbR8R pHbId9XG+1DN/sxi+NOMhj7SNKNjjtXfe4D9WdWqqe2rQ5bmb89K6r2qZdEvDyM6 JI2wHNDWnaAdVo7I1tXa/Csaq3ecRbo8yO0eo1Er3nPxkHmq8pgt0GDNzDFQCnu6 YTFKglQdJrQre3Vlc63NjOIr3CryF5noMaU5yzREv8y+U/wg3sYhXV6s2g== -----END CERTIFICATE-----Generated at Sat Jun 14 06:33:23 2025 by rpki-client