$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf0c1deb-beae-436c-b486-1229da733efa.roa File: cf0c1deb-beae-436c-b486-1229da733efa.roa (raw, json) Hash identifier: 4hNBkH4uQoqE6sdmdT00hKuzH8UH9hXgyX4yfrM1S2I= Subject key identifier: C8:A4:3C:6D:9E:81:55:F9:7E:AB:9A:6C:08:1A:1A:14:01:91:3E:94 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 33FEC8B46D2AFA30649F3A95815133FDE2E8DD11 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf0c1deb-beae-436c-b486-1229da733efa.roa Signing time: Sat 14 Jun 2025 00:30:20 +0000 ROA not before: Sat 14 Jun 2025 00:30:20 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.22.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 19 Jun 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:fe:c8:b4:6d:2a:fa:30:64:9f:3a:95:81:51:33:fd:e2:e8:dd:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:30:20 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=db344669f73256bd677358dd034111e94db2d9a353fc5321c84575f2aaf8639f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:5c:e1:9b:90:3f:2a:0e:ae:62:05:3f:70:d6: c5:03:50:3a:cd:14:09:d7:b2:e8:53:02:5d:7d:93: cf:1c:57:d6:5e:df:5f:d1:34:d9:04:66:e0:82:ed: 1b:c4:71:92:99:8d:96:88:f0:32:7b:6a:0b:f3:f8: fc:e5:8e:82:91:0a:48:97:f1:d7:91:53:f3:39:d5: 4d:d5:b5:c6:c6:05:22:20:a1:f2:42:3d:d1:cc:52: bc:2a:1f:03:a0:b3:fb:63:fb:9a:2f:2f:39:75:f2: 8f:50:bc:d7:b0:aa:39:08:31:cc:50:b4:d8:f2:06: 63:6d:e6:a4:cd:b7:f9:08:f4:a3:42:e9:2b:3e:c7: 15:31:88:91:6d:a6:10:89:ff:a8:88:57:24:79:cb: bf:0a:ba:e1:ab:6b:89:05:eb:ee:f2:c8:00:c2:2b: 89:46:7f:b6:04:dd:d6:5a:b1:b4:87:12:f2:b9:d8: 5f:76:0e:d6:e3:0b:3c:79:b2:1c:1f:25:36:fa:7a: 2f:49:d4:87:ad:d7:13:76:3d:66:18:a8:68:51:58: 13:af:32:45:ee:03:69:e5:38:87:87:b8:0d:a7:c1: 32:90:c8:ec:2f:f9:f9:5f:b4:b8:ac:d3:27:17:9b: 1f:fb:93:0e:0f:92:21:61:f3:dd:4e:90:70:30:bc: 84:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:A4:3C:6D:9E:81:55:F9:7E:AB:9A:6C:08:1A:1A:14:01:91:3E:94 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf0c1deb-beae-436c-b486-1229da733efa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.22.128.0/17 Signature Algorithm: sha256WithRSAEncryption 96:2a:8f:c1:00:97:f7:6d:14:34:b8:01:9b:b7:44:ab:ff:53: b6:14:da:e0:22:06:09:44:dc:e9:54:b3:ad:c6:4b:23:db:1c: 11:81:c3:e8:1d:b0:1e:13:88:5b:2b:d2:3e:8d:2c:f2:d9:2b: e4:14:5d:59:a2:08:f7:9a:da:74:2e:d5:56:5d:72:c6:79:2b: c1:a8:8b:28:d4:b7:fc:06:43:a1:1b:5a:b1:28:56:92:d4:93: 7f:c2:b7:e0:b5:2a:4d:38:78:c1:d9:88:ba:0c:0d:c2:2c:5c: 2b:e7:95:8a:de:ff:68:ca:7c:33:99:ce:8e:11:a3:a9:87:70: 8f:2b:28:2f:f1:8f:4c:c6:f3:14:02:14:00:b6:cf:53:34:f8: 22:c5:64:c6:a8:2f:96:05:a0:ce:41:9d:4f:cf:2b:2d:ff:18: e4:27:fc:b2:81:ee:12:51:01:21:c2:41:9b:c5:a0:b6:8d:52: 6f:d8:4c:8d:90:65:ff:d4:ef:32:b1:ba:27:49:e9:1a:02:88: 07:34:4a:a5:c6:ce:6e:a5:fd:f8:81:e6:6a:24:8a:af:64:e8: 90:d3:9c:08:fa:91:f3:55:d5:6c:8e:ad:fc:94:08:68:eb:14: dc:a3:c3:2c:6b:a6:c2:a1:c1:ad:4a:74:8e:1f:5d:0d:ec:bf: 6f:4b:3c:9c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM/7ItG0q+jBknzqVgVEz/eLo3REwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDAzMDIwWhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjM0NDY2OWY3MzI1NmJkNjc3MzU4ZGQwMzQxMTFlOTRk YjJkOWEzNTNmYzUzMjFjODQ1NzVmMmFhZjg2MzlmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUXOGbkD8qDq5iBT9w1sUDUDrNFAnXsuhTAl19k88cV9Ze 31/RNNkEZuCC7RvEcZKZjZaI8DJ7agvz+PzljoKRCkiX8deRU/M51U3VtcbGBSIg ofJCPdHMUrwqHwOgs/tj+5ovLzl18o9QvNewqjkIMcxQtNjyBmNt5qTNt/kI9KNC 6Ss+xxUxiJFtphCJ/6iIVyR5y78KuuGra4kF6+7yyADCK4lGf7YE3dZasbSHEvK5 2F92DtbjCzx5shwfJTb6ei9J1Iet1xN2PWYYqGhRWBOvMkXuA2nlOIeHuA2nwTKQ yOwv+flftLis0ycXmx/7kw4PkiFh891OkHAwvIRfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyKQ8bZ6BVfl+q5psCBoaFAGRPpQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmMGMxZGViLWJlYWUtNDM2Yy1iNDg2LTEyMjlkYTczM2VmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcXFoAwDQYJKoZIhvcNAQELBQADggEBAJYqj8EAl/dtFDS4AZu3RKv/U7YU 2uAiBglE3OlUs63GSyPbHBGBw+gdsB4TiFsr0j6NLPLZK+QUXVmiCPea2nQu1VZd csZ5K8GoiyjUt/wGQ6EbWrEoVpLUk3/Ct+C1Kk04eMHZiLoMDcIsXCvnlYre/2jK fDOZzo4Ro6mHcI8rKC/xj0zG8xQCFAC2z1M0+CLFZMaoL5YFoM5BnU/PKy3/GOQn /LKB7hJRASHCQZvFoLaNUm/YTI2QZf/U7zKxuidJ6RoCiAc0SqXGzm6l/fiB5mok iq9k6JDTnAj6kfNV1WyOrfyUCGjrFNyjwyxrpsKhwa1KdI4fXQ3sv29LPJw= -----END CERTIFICATE-----Generated at Tue Jun 17 20:15:32 2025 by rpki-client