$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3a1c600-199e-451d-b216-427176bb5382.roa File: d3a1c600-199e-451d-b216-427176bb5382.roa (raw, json) Hash identifier: kK1LFJmQQjItgq0BWPb/XNDfDXmtYBC7LgmOPIv2O6E= Subject key identifier: C4:30:31:E6:E8:04:7B:E2:20:6A:19:60:BC:08:3E:B6:50:02:8E:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C2946EAD48980EE35C70C709C329F7D53A4E0BF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3a1c600-199e-451d-b216-427176bb5382.roa Signing time: Sat 07 Jun 2025 00:41:46 +0000 ROA not before: Sat 07 Jun 2025 00:41:46 +0000 ROA not after: Sat 12 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:29:46:ea:d4:89:80:ee:35:c7:0c:70:9c:32:9f:7d:53:a4:e0:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 7 00:41:46 2025 GMT Not After : Jul 12 23:59:59 2025 GMT Subject: serialNumber=d7944ba9ccec8ada67c2efce260ae4e3e95e9b8284d3c5d1c3593cd17affc721, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:60:b9:de:5f:70:f4:bc:eb:48:57:a2:d2:24: 65:65:dc:bb:be:98:38:59:f5:61:1f:2b:dd:76:10: 0f:07:84:e9:23:5e:43:fc:4b:f1:b3:55:01:e8:b1: 18:2b:a6:84:de:d3:27:fb:bb:7c:b3:9a:76:8a:ae: d6:4b:44:12:ed:25:0d:3c:a2:e7:ae:59:52:f3:aa: 3e:7e:b7:ba:42:de:82:ac:ce:f1:d2:43:c1:0f:54: cd:d3:6c:15:fd:08:91:2c:d5:5c:9a:72:68:86:d5: 14:e0:49:bc:22:65:63:c8:a2:c8:ad:38:08:f0:b2: c7:c4:94:a9:9c:3e:58:59:35:9c:8a:b6:ab:d8:3f: 2a:d8:36:f1:6d:f3:0e:77:37:ec:1c:e0:ef:56:a5: c9:75:7a:79:fb:91:e8:49:ca:bd:06:51:e1:dd:dd: ee:bc:57:a0:65:38:98:d5:0a:37:3f:13:35:72:78: 62:51:91:7d:c3:db:c1:7d:cd:ca:6a:c4:ba:57:f8: 05:dc:49:ec:07:d2:0d:4a:f6:97:46:ee:72:f6:36: 39:71:16:55:6c:7e:19:9a:e9:94:d4:0a:3c:b7:b6: 7b:2b:70:50:81:35:ca:5d:33:32:fe:18:0f:60:4a: e4:09:a5:87:af:85:86:50:87:c7:13:e2:78:fe:e4: 5c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:30:31:E6:E8:04:7B:E2:20:6A:19:60:BC:08:3E:B6:50:02:8E:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3a1c600-199e-451d-b216-427176bb5382.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.220.0/22 Signature Algorithm: sha256WithRSAEncryption ad:08:9d:3c:59:8f:38:15:46:b5:62:53:84:92:d1:71:eb:21: bc:73:61:bf:ca:11:32:92:69:32:45:1d:7d:2f:88:27:de:a9: 63:83:8c:88:ad:d6:ed:c4:d1:c9:10:bd:57:e9:fb:b9:bb:0e: aa:62:32:ad:7c:46:47:0f:d9:c9:ad:ee:58:fb:d5:85:85:30: 30:d3:08:28:a2:2c:57:d5:76:df:1f:86:36:58:ab:c4:b8:6a: 68:b3:0e:c1:06:d6:3e:cc:82:b2:62:f2:3a:bf:3b:8e:96:56: 63:34:bb:57:67:ed:d6:f0:61:dd:65:be:6f:44:cc:4d:c1:ca: 77:0e:af:ff:ed:f6:71:72:83:3e:62:da:57:45:83:2c:4c:d7: 2e:61:ce:43:bd:b9:9f:b0:a1:47:8e:49:3a:95:75:43:80:f4: e6:32:6b:ba:c8:94:38:ed:81:34:cd:df:a4:b2:9c:f5:bd:34: 4d:57:99:30:ba:a7:68:d1:c7:ca:cd:68:df:13:9f:c9:a3:c5: 25:fc:cf:d2:be:7c:6f:f9:ae:20:52:6b:f7:34:7a:b6:5a:cf: 99:c5:ee:b7:f8:03:29:be:eb:73:38:e0:30:29:42:3e:55:80: 23:f5:2f:a2:fb:4a:99:3e:fd:be:23:04:3f:ef:4e:e8:fc:ad: 0f:51:cf:e3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXClG6tSJgO41xwxwnDKffVOk4L8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA3MDA0MTQ2WhcNMjUwNzEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzk0NGJhOWNjZWM4YWRhNjdjMmVmY2UyNjBhZTRlM2U5 NWU5YjgyODRkM2M1ZDFjMzU5M2NkMTdhZmZjNzIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD6YLneX3D0vOtIV6LSJGVl3Lu+mDhZ9WEfK912EA8HhOkj XkP8S/GzVQHosRgrpoTe0yf7u3yzmnaKrtZLRBLtJQ08oueuWVLzqj5+t7pC3oKs zvHSQ8EPVM3TbBX9CJEs1VyacmiG1RTgSbwiZWPIositOAjwssfElKmcPlhZNZyK tqvYPyrYNvFt8w53N+wc4O9Wpcl1enn7kehJyr0GUeHd3e68V6BlOJjVCjc/EzVy eGJRkX3D28F9zcpqxLpX+AXcSewH0g1K9pdG7nL2NjlxFlVsfhma6ZTUCjy3tnsr cFCBNcpdMzL+GA9gSuQJpYevhYZQh8cT4nj+5FxnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxDAx5ugEe+IgahlgvAg+tlACjjowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzYTFjNjAwLTE5OWUtNDUxZC1iMjE2LTQyNzE3NmJiNTM4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJFANwwDQYJKoZIhvcNAQELBQADggEBAK0InTxZjzgVRrViU4SS0XHrIbxz Yb/KETKSaTJFHX0viCfeqWODjIit1u3E0ckQvVfp+7m7DqpiMq18RkcP2cmt7lj7 1YWFMDDTCCiiLFfVdt8fhjZYq8S4amizDsEG1j7MgrJi8jq/O46WVmM0u1dn7dbw Yd1lvm9EzE3ByncOr//t9nFygz5i2ldFgyxM1y5hzkO9uZ+woUeOSTqVdUOA9OYy a7rIlDjtgTTN36SynPW9NE1XmTC6p2jRx8rNaN8Tn8mjxSX8z9K+fG/5riBSa/c0 erZaz5nF7rf4Aym+63M44DApQj5VgCP1L6L7Spk+/b4jBD/vTuj8rQ9Rz+M= -----END CERTIFICATE-----Generated at Sat Jun 14 07:11:46 2025 by rpki-client