$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e4ba4487-895e-4189-99e6-4440d5b19295.roa File: e4ba4487-895e-4189-99e6-4440d5b19295.roa (raw, json) Hash identifier: vZvU8eiDJixIBctMEzESrwuOmEqnZ3+TgTQa1Tafdzc= Subject key identifier: B5:2D:87:D0:ED:A9:12:63:0F:E1:19:0B:3A:C5:56:98:38:46:BC:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6653F9FA3F45C5D94B07669D1AAC84DC19C8598F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e4ba4487-895e-4189-99e6-4440d5b19295.roa Signing time: Mon 02 Jun 2025 15:20:20 +0000 ROA not before: Mon 02 Jun 2025 15:20:20 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.143.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:53:f9:fa:3f:45:c5:d9:4b:07:66:9d:1a:ac:84:dc:19:c8:59:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 2 15:20:20 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=daa95f81fd393b710344f6fcd300dc044aeeb6c30705b918eae383b2b1cdb430, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0b:4a:05:70:be:c0:d8:b9:bc:0a:ea:55:a5: 65:54:3d:45:dc:7f:0f:0e:34:e9:f7:62:1a:af:84: 72:3c:44:89:98:c6:b7:bd:98:32:12:e5:57:1e:61: 15:a2:56:95:48:c7:80:ff:52:9d:dc:14:c4:90:26: db:a4:cf:64:e1:40:9b:8b:ac:d8:8c:5d:0e:de:59: d8:ea:1b:ba:cd:c4:dc:ef:92:c9:32:74:a8:61:55: 23:e0:6f:ce:97:3a:1d:9d:91:cc:c3:23:bb:10:24: 84:9b:3b:83:5f:04:36:c0:cf:b7:c7:3a:9a:e2:26: cc:ea:6d:62:ba:99:0c:6e:09:82:dc:c0:9d:ab:bd: a4:6c:94:ef:15:70:9b:ef:e3:05:ab:0d:59:86:4b: 0f:b0:c4:2d:59:35:08:6b:f8:0f:9d:91:06:9f:0c: 6e:c4:ad:fc:29:bd:21:19:a6:e9:86:79:00:4c:60: b5:22:ce:d0:05:4c:e6:6e:5d:0d:72:0d:c7:2a:5e: a5:56:bc:39:fb:76:08:fd:a8:a5:07:7f:dc:6a:b3: d5:d8:93:da:ac:fa:63:85:df:82:b3:d3:3a:45:4d: fb:59:c3:4e:a6:f3:21:d8:9a:ea:42:5e:b0:0b:b3: 6c:c0:43:ac:cc:74:14:43:95:8a:2a:c5:f1:5f:ce: 5a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:2D:87:D0:ED:A9:12:63:0F:E1:19:0B:3A:C5:56:98:38:46:BC:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e4ba4487-895e-4189-99e6-4440d5b19295.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.143.64.0/21 Signature Algorithm: sha256WithRSAEncryption 17:2f:ac:8a:6d:a9:22:81:6a:25:cb:31:83:cd:16:81:12:37: 74:ef:d4:08:90:71:4b:73:55:a7:9e:63:06:11:26:70:db:68: a7:ba:bb:af:f3:bc:0d:dc:a6:a7:cc:e6:b6:5e:22:ea:30:0e: e1:d8:e5:a1:11:b3:62:e9:f5:8c:50:51:45:8e:6f:9e:f6:67: 3b:f6:2d:b0:9c:38:9d:57:e1:fa:cd:58:6b:da:58:fc:c8:80: 5c:c3:a3:54:d0:a8:cd:6e:b7:05:f1:31:b6:65:a9:74:ea:bd: 12:ca:27:a0:ee:df:ea:7c:d1:f2:9d:ac:5d:a4:b5:ec:1b:cb: 5e:80:22:15:0d:6f:89:13:a4:11:88:37:e2:63:ba:eb:e1:3e: 79:64:98:c1:7a:b9:47:26:c4:0e:cb:29:3c:df:0f:5b:07:7b: b5:53:56:bc:3a:65:0b:b1:26:b1:f5:25:e8:b4:c6:31:b7:1d: 20:eb:dc:76:3d:dc:ea:cf:37:3d:31:9f:97:59:3e:f9:95:51: 19:89:11:da:97:e1:08:a8:08:92:70:82:1c:71:06:86:be:37: 77:6b:f9:d2:aa:35:38:bf:b8:6f:7b:29:0c:f6:a1:fe:39:63: 47:32:ac:1f:b3:82:61:48:9c:22:dc:bd:79:9a:fc:f1:ea:2e: 5d:d1:6b:12 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZlP5+j9FxdlLB2adGqyE3BnIWY8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAyMTUyMDIwWhcNMjUwNzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYWE5NWY4MWZkMzkzYjcxMDM0NGY2ZmNkMzAwZGMwNDRh ZWViNmMzMDcwNWI5MThlYWUzODNiMmIxY2RiNDMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZC0oFcL7A2Lm8CupVpWVUPUXcfw8ONOn3YhqvhHI8RImY xre9mDIS5VceYRWiVpVIx4D/Up3cFMSQJtukz2ThQJuLrNiMXQ7eWdjqG7rNxNzv kskydKhhVSPgb86XOh2dkczDI7sQJISbO4NfBDbAz7fHOpriJszqbWK6mQxuCYLc wJ2rvaRslO8VcJvv4wWrDVmGSw+wxC1ZNQhr+A+dkQafDG7ErfwpvSEZpumGeQBM YLUiztAFTOZuXQ1yDccqXqVWvDn7dgj9qKUHf9xqs9XYk9qs+mOF34Kz0zpFTftZ w06m8yHYmupCXrALs2zAQ6zMdBRDlYoqxfFfzlqvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtS2H0O2pEmMP4RkLOsVWmDhGvCIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U0YmE0NDg3LTg5NWUtNDE4OS05OWU2LTQ0NDBkNWIxOTI5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMoj0AwDQYJKoZIhvcNAQELBQADggEBABcvrIptqSKBaiXLMYPNFoESN3Tv 1AiQcUtzVaeeYwYRJnDbaKe6u6/zvA3cpqfM5rZeIuowDuHY5aERs2Lp9YxQUUWO b572Zzv2LbCcOJ1X4frNWGvaWPzIgFzDo1TQqM1utwXxMbZlqXTqvRLKJ6Du3+p8 0fKdrF2ktewby16AIhUNb4kTpBGIN+JjuuvhPnlkmMF6uUcmxA7LKTzfD1sHe7VT Vrw6ZQuxJrH1Jei0xjG3HSDr3HY93OrPNz0xn5dZPvmVURmJEdqX4QioCJJwghxx Boa+N3dr+dKqNTi/uG97KQz2of45Y0cyrB+zgmFInCLcvXma/PHqLl3RaxI= -----END CERTIFICATE-----Generated at Sun Jun 15 08:28:18 2025 by rpki-client