$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d33539b3-75f5-4d3f-b4c6-fc82d221db42.roa File: d33539b3-75f5-4d3f-b4c6-fc82d221db42.roa (raw, json) Hash identifier: dMJrc7NYtiKmWNNABoP/oQdgX7sSHurHDAhNqxp6J70= Subject key identifier: 65:06:D3:95:3F:30:6F:B0:FE:8C:BE:B5:8C:7A:B3:D7:F2:6E:18:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C7FCF2B66653694CB35C8DABD2DD37F54F902BC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d33539b3-75f5-4d3f-b4c6-fc82d221db42.roa Signing time: Mon 02 Jun 2025 15:11:13 +0000 ROA not before: Mon 02 Jun 2025 15:11:13 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.162.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:7f:cf:2b:66:65:36:94:cb:35:c8:da:bd:2d:d3:7f:54:f9:02:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 2 15:11:13 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=7173bf25df024a2241cafc9ca55b235f33f9057098d61706d291fa8d3de1fcfc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:6e:7c:81:d3:00:54:8e:f6:b2:fc:73:6f:65: 00:b8:75:d3:39:6e:c3:a8:c0:1b:3f:f8:0f:31:2c: 10:34:0e:d5:7c:02:09:de:49:6a:90:f7:3b:62:44: e5:03:a4:f8:13:6e:ec:df:59:02:24:48:9e:9d:03: eb:b4:83:a9:27:79:7a:45:e2:c2:b8:5a:5f:e9:10: e4:11:44:0c:a1:38:a0:15:a5:45:d2:3e:65:50:01: f2:b1:eb:0d:a0:fd:a2:8f:60:94:4d:1e:4b:6f:3b: fe:33:90:15:a8:c3:d0:4f:60:52:d8:d9:9f:81:c6: 68:79:ed:d1:28:bc:f2:55:e1:45:e0:de:f9:3b:1e: ac:41:71:9e:3c:90:33:94:b6:39:99:d3:38:12:39: 43:d9:2e:c1:4a:54:ba:22:45:a5:3a:39:9c:02:be: fd:23:a4:43:22:39:eb:f0:21:80:76:e9:c1:f8:0e: 80:bb:3a:25:80:a5:0b:cb:02:07:3b:4b:90:80:b7: 54:f7:ad:9a:76:2b:e5:ad:ed:59:cf:89:57:83:1b: 76:ef:25:29:7e:72:6b:fa:32:f2:ab:04:8a:ff:77: 0e:3f:49:2a:94:4a:67:e7:8c:69:4e:b1:84:ec:00: f2:01:38:2f:ea:ac:4f:44:fb:a6:bb:14:d1:6a:45: a9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:06:D3:95:3F:30:6F:B0:FE:8C:BE:B5:8C:7A:B3:D7:F2:6E:18:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d33539b3-75f5-4d3f-b4c6-fc82d221db42.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.162.88.0/21 Signature Algorithm: sha256WithRSAEncryption 1f:f7:5b:9c:dd:ad:54:52:9f:98:f2:c1:87:ab:d3:64:b8:9b: 7a:a6:58:29:6d:32:96:07:e7:b4:e4:32:48:c1:58:3b:b3:82: f6:0f:91:ae:fa:34:fc:04:09:47:6c:49:40:ac:5c:f7:18:01: 91:26:c6:c4:b2:de:83:da:ba:d2:e6:be:a9:4f:a1:47:7f:85: b0:20:98:f1:56:9e:97:d4:34:36:d3:c6:c4:f8:fc:c9:2f:73: ee:eb:0b:f5:d4:23:4f:97:84:ec:4f:81:62:8f:87:07:f8:19: 6f:b9:70:b8:e2:66:79:c3:29:fe:47:30:54:f2:3f:01:a9:d5: 90:4f:98:43:3a:27:fa:59:26:47:26:6b:9d:2c:ef:43:8c:a4: d1:90:99:b4:9c:65:1e:3c:4a:93:3a:48:64:f5:03:9e:10:c1: fe:81:90:9c:0e:2d:11:ff:6f:fc:14:ec:76:34:e6:5d:0b:6f: fe:4a:2b:78:fd:9f:07:75:55:69:85:99:f6:29:7d:04:0f:40: fa:c3:dd:fe:dc:8f:e2:74:23:0e:4f:95:ab:d9:da:7c:7e:c9: e6:33:22:5a:23:25:6a:9f:ef:3c:70:c6:f2:93:e3:95:d5:6e: f4:fb:08:6a:78:81:e9:37:61:37:15:a3:7f:27:4d:94:02:b6: 71:e7:60:52 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbH/PK2ZlNpTLNcjavS3Tf1T5ArwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAyMTUxMTEzWhcNMjUwNzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MTczYmYyNWRmMDI0YTIyNDFjYWZjOWNhNTViMjM1ZjMz ZjkwNTcwOThkNjE3MDZkMjkxZmE4ZDNkZTFmY2ZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSbnyB0wBUjvay/HNvZQC4ddM5bsOowBs/+A8xLBA0DtV8 AgneSWqQ9ztiROUDpPgTbuzfWQIkSJ6dA+u0g6kneXpF4sK4Wl/pEOQRRAyhOKAV pUXSPmVQAfKx6w2g/aKPYJRNHktvO/4zkBWow9BPYFLY2Z+Bxmh57dEovPJV4UXg 3vk7HqxBcZ48kDOUtjmZ0zgSOUPZLsFKVLoiRaU6OZwCvv0jpEMiOevwIYB26cH4 DoC7OiWApQvLAgc7S5CAt1T3rZp2K+Wt7VnPiVeDG3bvJSl+cmv6MvKrBIr/dw4/ SSqUSmfnjGlOsYTsAPIBOC/qrE9E+6a7FNFqRampAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZQbTlT8wb7D+jL61jHqz1/JuGBAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzMzUzOWIzLTc1ZjUtNGQzZi1iNGM2LWZjODJkMjIxZGI0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMNolgwDQYJKoZIhvcNAQELBQADggEBAB/3W5zdrVRSn5jywYer02S4m3qm WCltMpYH57TkMkjBWDuzgvYPka76NPwECUdsSUCsXPcYAZEmxsSy3oPautLmvqlP oUd/hbAgmPFWnpfUNDbTxsT4/Mkvc+7rC/XUI0+XhOxPgWKPhwf4GW+5cLjiZnnD Kf5HMFTyPwGp1ZBPmEM6J/pZJkcma50s70OMpNGQmbScZR48SpM6SGT1A54Qwf6B kJwOLRH/b/wU7HY05l0Lb/5KK3j9nwd1VWmFmfYpfQQPQPrD3f7cj+J0Iw5PlavZ 2nx+yeYzIlojJWqf7zxwxvKT45XVbvT7CGp4gek3YTcVo38nTZQCtnHnYFI= -----END CERTIFICATE-----Generated at Sat Jun 14 06:47:37 2025 by rpki-client