$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e00517b8-99d8-4957-a0d5-9380af850fc2.roa File: e00517b8-99d8-4957-a0d5-9380af850fc2.roa (raw, json) Hash identifier: NmEo4CIK1CDUHEt1KiVJuf+KTQtlLfkf9c9T5v/Funo= Subject key identifier: 8B:78:F8:70:2F:69:BB:31:D0:1C:E3:C8:76:E5:4E:2F:27:36:7F:C3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FA5A1E3D7E61E84AB39A472C0927F2E2B9533BB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e00517b8-99d8-4957-a0d5-9380af850fc2.roa Signing time: Wed 04 Jun 2025 00:21:14 +0000 ROA not before: Wed 04 Jun 2025 00:21:14 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 66.7.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:a5:a1:e3:d7:e6:1e:84:ab:39:a4:72:c0:92:7f:2e:2b:95:33:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 4 00:21:14 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=bec668a391df838281cbb985c588257d857989d9d704d0b7b625fdccb71ef7ff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:37:b0:21:24:fc:0a:93:a5:94:8f:1a:08:5c: 46:b3:f7:76:ee:cd:bc:86:6c:b0:51:15:83:f1:b5: a6:8a:58:de:f0:0d:a9:52:89:de:13:04:22:ee:06: 23:60:70:db:26:31:55:10:a9:e4:16:62:70:28:b8: c6:62:e5:39:e2:10:97:97:70:49:70:c6:56:ce:38: 9a:60:6c:49:50:95:ea:97:6c:8d:aa:e9:c0:d3:a1: 0a:34:cc:72:ec:d7:bd:00:7d:71:84:50:b3:64:1a: 7c:56:2b:b6:d4:4b:6e:6d:4b:ad:42:8a:77:97:90: b3:b1:e8:5c:b5:4a:c7:e8:1b:fd:c1:c0:4e:ef:5b: 51:a8:d0:d2:25:9d:66:12:c8:c1:6f:41:cc:66:b2: ed:a6:a1:84:31:f9:d5:38:de:6b:60:93:f2:7e:63: 1b:81:df:e8:cd:c1:50:e8:d4:32:c5:8e:2b:12:b9: fd:8d:28:ee:ab:9f:82:23:d1:13:1f:20:f5:0c:d7: 69:d6:a6:4d:f1:54:94:a4:d2:28:0f:5e:eb:5b:a0: 05:55:c9:a0:37:31:32:13:49:d0:9b:4f:74:00:46: 27:72:61:2e:e4:10:f9:1c:b2:4d:ab:b8:ad:64:d3: 05:b1:08:a3:19:c4:57:62:93:59:b5:31:87:d4:48: da:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:78:F8:70:2F:69:BB:31:D0:1C:E3:C8:76:E5:4E:2F:27:36:7F:C3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e00517b8-99d8-4957-a0d5-9380af850fc2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.7.0.0/18 Signature Algorithm: sha256WithRSAEncryption 5d:59:fb:0b:55:12:f9:33:f7:8b:dd:e2:33:09:45:2b:25:7c: b8:f9:94:94:ac:cd:12:45:76:0c:52:c4:96:4a:1b:c8:0f:1d: e5:a7:95:b3:05:77:54:f3:dc:32:31:48:8a:f5:b9:35:e4:f7: cc:39:15:7b:31:7f:4f:c3:52:f3:f9:fb:22:7f:42:86:16:fb: c3:5c:30:86:72:61:cb:63:dd:62:58:ce:67:da:cd:14:33:3a: 95:16:fd:8d:b6:7b:b7:ae:bd:79:a9:1a:16:21:b2:c7:3c:21: ad:c0:2a:d7:9e:01:b8:7c:2c:f4:d9:21:6d:8e:ac:5b:3f:1b: 28:6f:6e:d1:e9:b3:d8:5f:94:e6:86:2c:c2:bd:07:23:96:b8: e6:b1:ca:aa:ad:4d:03:20:76:33:a0:9d:3b:db:ba:4d:e2:99: 00:b9:31:41:e9:2a:65:05:38:f6:dc:6c:2d:1b:a7:86:6d:70: 09:5a:49:e4:02:58:8e:06:86:c9:1d:7c:22:6b:de:3f:95:e1: 38:16:a1:0c:03:0a:7c:73:4b:8d:48:6b:d4:17:58:01:c8:74: 42:77:d2:a7:b2:3d:7c:1b:08:ce:79:17:5e:a0:c4:f5:6d:fc: fb:e3:1a:78:1d:75:64:b4:37:60:54:e4:30:6c:f2:47:ec:fc: d0:9c:e8:5c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD6Wh49fmHoSrOaRywJJ/LiuVM7swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA0MDAyMTE0WhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZWM2NjhhMzkxZGY4MzgyODFjYmI5ODVjNTg4MjU3ZDg1 Nzk4OWQ5ZDcwNGQwYjdiNjI1ZmRjY2I3MWVmN2ZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLN7AhJPwKk6WUjxoIXEaz93buzbyGbLBRFYPxtaaKWN7w DalSid4TBCLuBiNgcNsmMVUQqeQWYnAouMZi5TniEJeXcElwxlbOOJpgbElQleqX bI2q6cDToQo0zHLs170AfXGEULNkGnxWK7bUS25tS61CineXkLOx6Fy1SsfoG/3B wE7vW1Go0NIlnWYSyMFvQcxmsu2moYQx+dU43mtgk/J+YxuB3+jNwVDo1DLFjisS uf2NKO6rn4Ij0RMfIPUM12nWpk3xVJSk0igPXutboAVVyaA3MTITSdCbT3QARidy YS7kEPkcsk2ruK1k0wWxCKMZxFdik1m1MYfUSNq1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUi3j4cC9puzHQHOPIduVOLyc2f8MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UwMDUxN2I4LTk5ZDgtNDk1Ny1hMGQ1LTkzODBhZjg1MGZjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZCBwAwDQYJKoZIhvcNAQELBQADggEBAF1Z+wtVEvkz94vd4jMJRSslfLj5 lJSszRJFdgxSxJZKG8gPHeWnlbMFd1Tz3DIxSIr1uTXk98w5FXsxf0/DUvP5+yJ/ QoYW+8NcMIZyYctj3WJYzmfazRQzOpUW/Y22e7euvXmpGhYhssc8Ia3AKteeAbh8 LPTZIW2OrFs/GyhvbtHps9hflOaGLMK9ByOWuOaxyqqtTQMgdjOgnTvbuk3imQC5 MUHpKmUFOPbcbC0bp4ZtcAlaSeQCWI4GhskdfCJr3j+V4TgWoQwDCnxzS41Ia9QX WAHIdEJ30qeyPXwbCM55F16gxPVt/PvjGngddWS0N2BU5DBs8kfs/NCc6Fw= -----END CERTIFICATE-----Generated at Sat Jun 14 19:07:22 2025 by rpki-client