$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ccf275ae-7935-4f0a-b4e1-9b0bd0532ac8.roa File: ccf275ae-7935-4f0a-b4e1-9b0bd0532ac8.roa (raw, json) Hash identifier: Qspf/miVmhqtRKFJ1LChLxDi43OSKSvOOe8ouGoN5nM= Subject key identifier: 24:2F:3F:09:B1:96:95:2B:7F:54:19:E3:F4:B6:01:57:C1:27:F9:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1779010D0EF5E2734A8A12BAF32B83EA5E39DF77 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ccf275ae-7935-4f0a-b4e1-9b0bd0532ac8.roa Signing time: Sat 14 Jun 2025 00:41:22 +0000 ROA not before: Sat 14 Jun 2025 00:41:22 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.176.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:79:01:0d:0e:f5:e2:73:4a:8a:12:ba:f3:2b:83:ea:5e:39:df:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:41:22 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=ab147b536281f36dd4a44f7bdeed814af361abd1ee541482ab2039d1f530e17c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f3:83:b4:a8:83:93:4a:60:9f:71:c1:96:bd: e2:b7:f2:5e:97:be:19:7c:3b:e7:59:a5:22:c2:a8: 2a:77:db:41:fd:0f:48:c7:78:69:2e:c9:50:bb:0e: 1c:99:f9:01:1c:86:5e:ed:01:6f:21:4d:34:66:8d: ab:bd:e8:62:8e:48:bf:63:96:1a:df:c3:09:48:63: 04:dc:79:6c:e3:3e:ee:59:92:a0:3e:c9:91:dc:3e: 8f:e9:ea:8e:7b:f9:d0:1c:bc:73:15:c3:01:06:00: bd:2b:43:49:03:32:8b:4c:cb:56:f2:b0:66:a7:59: 69:03:b1:a2:c7:85:da:e3:4c:71:96:a8:18:45:cd: 8f:41:dd:a1:db:c9:47:44:c8:e9:41:80:b9:44:3a: 75:ac:0f:11:32:a8:14:7f:ad:b1:b4:c2:91:10:3c: 01:cc:a1:da:10:f1:1b:99:8a:70:18:ba:24:a7:68: b9:0c:45:c8:16:83:80:37:c3:d5:54:ce:7d:73:fd: f2:17:9f:6a:ea:f2:e5:0b:53:d7:8b:12:66:2f:90: 5c:5a:20:e3:60:e6:98:d6:b5:f7:53:9d:6f:f8:53: 4a:bc:ca:38:57:b1:19:f0:fc:99:16:4f:1a:ca:41: 46:11:2c:89:f7:af:b5:34:96:2a:52:a0:1a:6b:30: 19:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:2F:3F:09:B1:96:95:2B:7F:54:19:E3:F4:B6:01:57:C1:27:F9:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ccf275ae-7935-4f0a-b4e1-9b0bd0532ac8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.176.82.0/24 Signature Algorithm: sha256WithRSAEncryption ae:40:0b:c2:74:a9:75:c6:34:1f:2f:b2:f0:32:78:cd:99:1d: 0a:31:fb:ea:cf:82:28:c1:d3:97:53:2a:8b:b7:e7:48:9e:81: 2a:10:df:20:a6:2d:40:e8:86:34:97:6a:82:39:59:e4:c7:b4: ac:d8:53:b4:80:30:3c:0e:30:6c:e3:be:6b:0a:4e:02:cf:4c: eb:2c:e1:cf:cd:a9:53:6b:5a:73:2e:0a:31:f0:a7:4f:64:c5: 51:a7:6f:40:3e:b2:f9:33:09:3d:5f:57:f2:42:e0:81:fe:80: d8:85:ae:0a:d8:71:7f:30:c8:4d:e7:69:3b:f7:22:c9:f4:6b: 85:d4:c7:8c:a7:50:81:70:69:67:44:81:e1:ea:5c:f7:c6:ac: fd:47:f4:94:b7:dd:74:f4:d4:9c:07:d7:de:55:24:f1:b7:b2: 21:c7:37:6d:0c:e2:ea:d7:1a:a2:fc:4a:4f:d5:95:10:94:b3: 96:58:c4:00:ea:69:31:63:0d:b6:f8:a6:6c:4d:61:d2:40:59: e7:8d:79:da:fa:fb:9a:e8:8c:29:fc:59:6f:87:75:7d:48:33: ab:b0:35:07:30:c8:51:8e:34:ec:6a:e2:10:a9:66:48:af:a3: ae:41:9c:a8:4b:c9:03:97:b2:00:c1:95:cb:aa:b0:9e:4b:86: d0:a8:92:56 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF3kBDQ714nNKihK68yuD6l4533cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDA0MTIyWhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYjE0N2I1MzYyODFmMzZkZDRhNDRmN2JkZWVkODE0YWYz NjFhYmQxZWU1NDE0ODJhYjIwMzlkMWY1MzBlMTdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDV84O0qIOTSmCfccGWveK38l6Xvhl8O+dZpSLCqCp320H9 D0jHeGkuyVC7DhyZ+QEchl7tAW8hTTRmjau96GKOSL9jlhrfwwlIYwTceWzjPu5Z kqA+yZHcPo/p6o57+dAcvHMVwwEGAL0rQ0kDMotMy1bysGanWWkDsaLHhdrjTHGW qBhFzY9B3aHbyUdEyOlBgLlEOnWsDxEyqBR/rbG0wpEQPAHModoQ8RuZinAYuiSn aLkMRcgWg4A3w9VUzn1z/fIXn2rq8uULU9eLEmYvkFxaIONg5pjWtfdTnW/4U0q8 yjhXsRnw/JkWTxrKQUYRLIn3r7U0lipSoBprMBn/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJC8/CbGWlSt/VBnj9LYBV8En+dQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NjZjI3NWFlLTc5MzUtNGYwYS1iNGUxLTliMGJkMDUzMmFjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAosFIwDQYJKoZIhvcNAQELBQADggEBAK5AC8J0qXXGNB8vsvAyeM2ZHQox ++rPgijB05dTKou350iegSoQ3yCmLUDohjSXaoI5WeTHtKzYU7SAMDwOMGzjvmsK TgLPTOss4c/NqVNrWnMuCjHwp09kxVGnb0A+svkzCT1fV/JC4IH+gNiFrgrYcX8w yE3naTv3Isn0a4XUx4ynUIFwaWdEgeHqXPfGrP1H9JS33XT01JwH195VJPG3siHH N20M4urXGqL8Sk/VlRCUs5ZYxADqaTFjDbb4pmxNYdJAWeeNedr6+5rojCn8WW+H dX1IM6uwNQcwyFGONOxq4hCpZkivo65BnKhLyQOXsgDBlcuqsJ5LhtCoklY= -----END CERTIFICATE-----Generated at Sat Jun 14 07:11:09 2025 by rpki-client