$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c23a83e6-32c4-43b4-9986-8f3da063223c.roa File: c23a83e6-32c4-43b4-9986-8f3da063223c.roa (raw, json) Hash identifier: yRQthBWU/tbCJ0q8Gf4zpgJ2rEbqHaO9eZuU0Ut79JA= Subject key identifier: 58:F3:07:73:F4:02:E6:6C:C6:4C:75:C1:E2:F6:2F:BD:23:2C:97:E4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 184ADA55C80CB178DE065B7B29546F6DDA44C1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c23a83e6-32c4-43b4-9986-8f3da063223c.roa Signing time: Sat 14 Jun 2025 00:20:29 +0000 ROA not before: Sat 14 Jun 2025 00:20:29 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 204.236.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:4a:da:55:c8:0c:b1:78:de:06:5b:7b:29:54:6f:6d:da:44:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:20:29 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=1f17e0bcf679c70e96dbaf2094829edc0901cb7f4e0adab6a9f600c2791531c2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:2a:fa:94:ee:c9:d6:f1:04:ed:34:60:49:34: 1b:58:e1:a8:32:e5:c9:74:58:dd:7a:11:f5:d3:25: eb:72:ae:da:64:57:92:78:3b:cb:b5:0d:3c:9c:fc: a8:b7:d5:b8:8d:1e:09:41:4f:96:71:9d:f2:cd:16: 1c:6a:46:7a:87:fe:a6:8c:d9:71:90:30:de:a4:b6: 9f:fe:21:62:f4:93:b9:46:0f:2e:ce:88:1f:05:80: 46:2b:ed:5f:e5:df:f1:4d:50:38:15:e7:ec:4f:77: 20:7d:1a:31:c4:0c:c6:83:05:5c:4c:22:5d:8a:ea: 66:1a:69:b9:92:1c:f7:d0:f5:f5:f6:7c:cd:70:27: 0d:45:0f:86:33:f9:fc:de:44:af:a9:c6:aa:fb:ff: e5:bb:d8:2f:06:65:65:8c:6f:22:00:0e:0b:c7:a9: 2b:88:1b:d9:58:ec:87:18:81:13:2f:b9:8f:9d:48: 80:1b:7b:56:ed:12:22:13:ec:5d:18:ae:c5:0a:53: db:48:ea:87:c6:21:76:93:17:2d:59:19:43:3c:ab: da:9c:67:29:82:be:e9:7d:f3:91:0f:e8:c9:aa:2c: f3:1b:f8:90:87:2d:86:1a:47:18:45:5f:d5:4c:b0: 9d:be:56:1e:db:7f:a7:88:1b:3d:23:7e:23:7f:1d: 72:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:F3:07:73:F4:02:E6:6C:C6:4C:75:C1:E2:F6:2F:BD:23:2C:97:E4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c23a83e6-32c4-43b4-9986-8f3da063223c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.192.0/20 Signature Algorithm: sha256WithRSAEncryption 3d:ff:83:fd:af:a1:0b:c9:b1:9e:41:3b:08:8c:8c:8e:a2:c8: 85:8b:b6:99:82:35:d1:fc:c9:78:ad:14:4b:a7:e2:13:cb:1b: e8:88:3f:64:c7:7d:6c:17:9c:99:b2:a0:46:7a:b1:78:09:e8: aa:d1:6d:c8:dc:14:fd:a8:48:4e:d8:b3:5e:2e:29:73:26:b6: 50:4e:6b:0f:18:1b:fb:bc:6b:ea:bd:57:b4:a0:87:8e:2c:f9: f3:5c:0f:2b:e2:c9:80:4c:40:8f:f7:91:95:b8:d4:82:b6:6f: 9e:a8:60:ec:ad:0e:36:0e:89:38:8b:e9:5a:fe:12:3e:74:54: 05:73:fc:ee:ca:03:df:5e:66:be:13:9b:69:34:0c:af:f7:82: 1a:c1:e2:d7:13:a0:8f:6c:c4:f0:a3:f6:94:99:ba:16:7b:5e: 05:7f:64:b6:03:ac:a0:c1:f4:08:14:b2:1c:27:ee:59:a7:12: 34:2c:87:ad:d9:6d:ba:b2:3e:bf:df:a6:af:97:c4:32:1c:4e: db:21:12:14:1a:9a:55:08:fa:57:7e:a4:1d:be:19:0d:89:fd: 01:3e:42:b5:1a:b5:44:fe:c6:0d:78:68:b3:61:78:7b:36:77: 92:a7:9c:69:e0:24:d2:1a:34:13:47:2a:5f:3d:3a:72:a3:45: fc:76:6f:c7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITGEraVcgMsXjeBlt7KVRvbdpEwTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA2MTQwMDIwMjlaFw0yNTA3MTkyMzU5NTla MHoxSTBHBgNVBAUTQDFmMTdlMGJjZjY3OWM3MGU5NmRiYWYyMDk0ODI5ZWRjMDkw MWNiN2Y0ZTBhZGFiNmE5ZjYwMGMyNzkxNTMxYzIxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJoq+pTuydbxBO00YEk0G1jhqDLlyXRY3XoR9dMl63Ku2mRX kng7y7UNPJz8qLfVuI0eCUFPlnGd8s0WHGpGeof+pozZcZAw3qS2n/4hYvSTuUYP Ls6IHwWARivtX+Xf8U1QOBXn7E93IH0aMcQMxoMFXEwiXYrqZhppuZIc99D19fZ8 zXAnDUUPhjP5/N5Er6nGqvv/5bvYLwZlZYxvIgAOC8epK4gb2VjshxiBEy+5j51I gBt7Vu0SIhPsXRiuxQpT20jqh8YhdpMXLVkZQzyr2pxnKYK+6X3zkQ/oyaos8xv4 kIcthhpHGEVf1Uywnb5WHtt/p4gbPSN+I38dctcCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBRY8wdz9ALmbMZMdcHi9i+9IyyX5DAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvYzIzYTgzZTYtMzJjNC00M2I0LTk5ODYtOGYzZGEwNjMyMjNjLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBMzswDANBgkqhkiG9w0BAQsFAAOCAQEAPf+D/a+hC8mxnkE7CIyMjqLIhYu2 mYI10fzJeK0US6fiE8sb6Ig/ZMd9bBecmbKgRnqxeAnoqtFtyNwU/ahITtizXi4p cya2UE5rDxgb+7xr6r1XtKCHjiz581wPK+LJgExAj/eRlbjUgrZvnqhg7K0ONg6J OIvpWv4SPnRUBXP87soD315mvhObaTQMr/eCGsHi1xOgj2zE8KP2lJm6FnteBX9k tgOsoMH0CBSyHCfuWacSNCyHrdlturI+v9+mr5fEMhxO2yESFBqaVQj6V36kHb4Z DYn9AT5CtRq1RP7GDXhos2F4ezZ3kqecaeAk0ho0E0cqXz06cqNF/HZvxw== -----END CERTIFICATE-----Generated at Mon Jun 16 02:24:05 2025 by rpki-client