$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfd5c5b2-690e-40ea-b59a-87fc663904a6.roa File: bfd5c5b2-690e-40ea-b59a-87fc663904a6.roa (raw, json) Hash identifier: +e/vsu2N942yg/VUo98GuFQQ7lRZKjm6Mo5GqGCxl1A= Subject key identifier: 09:B7:A2:69:33:8B:D6:6A:75:C7:87:A3:3E:A4:DC:6B:91:4E:1C:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 160CE3385E48113427EBCBF34D2134B1BC9231AC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfd5c5b2-690e-40ea-b59a-87fc663904a6.roa Signing time: Tue 01 Jul 2025 00:20:21 +0000 ROA not before: Tue 01 Jul 2025 00:20:21 +0000 ROA not after: Tue 05 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 95.40.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:0c:e3:38:5e:48:11:34:27:eb:cb:f3:4d:21:34:b1:bc:92:31:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 1 00:20:21 2025 GMT Not After : Aug 5 23:59:59 2025 GMT Subject: serialNumber=5cefff70f546796e025a13a2a4a6bdca0932c00f4f530bb17c623bec553bbfbe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:18:b7:77:51:2a:64:0c:2d:ad:f3:e7:a3:b6: d6:3b:d8:07:d4:fe:14:a2:6d:93:6d:62:3a:cd:92: 47:36:70:66:7f:ff:ac:51:87:6f:cd:b5:05:c2:71: 65:46:e8:16:58:7c:84:1c:e7:6e:80:e2:17:23:b0: 2c:2c:32:b7:0a:a6:03:4a:ac:e7:92:dd:2c:03:de: 07:f1:40:5c:57:d9:b8:ed:d0:d8:67:38:b6:6c:35: 16:7c:3f:a5:ac:d6:3b:d0:cf:22:78:23:fc:43:8b: dd:71:22:c8:38:c6:fe:c9:30:39:64:36:e9:d3:a2: 1e:aa:1e:c5:45:ce:f4:c7:04:2a:c5:aa:36:e9:d3: 97:cf:80:58:0a:93:9a:c2:5c:98:45:ea:ba:24:ed: 86:86:0e:bf:91:a4:ef:20:8b:c9:74:7b:1a:71:ee: 83:b4:97:40:9a:5e:90:eb:5d:87:48:ea:87:f6:ea: b8:3b:59:01:74:d5:98:98:19:62:5b:c4:23:21:c9: 4c:aa:95:10:b4:a9:37:ea:be:5b:cd:ff:19:f2:06: 8b:52:eb:85:1b:1f:c9:45:af:fb:3f:cc:bc:e8:24: 3d:06:f2:f0:31:ec:7b:8a:a4:02:76:2e:4d:1f:ad: 0d:8f:04:0b:e5:35:49:51:38:a7:5e:3e:ac:a8:94: 6f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:B7:A2:69:33:8B:D6:6A:75:C7:87:A3:3E:A4:DC:6B:91:4E:1C:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bfd5c5b2-690e-40ea-b59a-87fc663904a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.40.0.0/15 Signature Algorithm: sha256WithRSAEncryption b7:61:a2:bb:16:47:7d:82:ec:78:fe:17:f6:2f:bc:a9:b7:d0: 7e:a7:77:c6:7d:bc:7f:bd:98:ef:c0:2d:66:e6:cc:25:66:d8: f1:46:34:26:e1:74:12:b1:95:67:d5:01:43:80:ac:b2:26:0f: ee:0c:18:55:1e:68:54:92:0c:24:0f:ab:72:9c:b8:f7:ee:8e: e0:69:07:52:aa:e3:c5:72:50:64:d6:e3:5f:3e:5e:f8:ec:06: ed:e5:45:6a:7c:41:6a:48:6a:c8:0d:af:61:ef:d7:8c:30:73: 7c:d0:77:eb:f4:55:a8:7d:b5:2f:a1:7d:df:86:4d:23:c6:77: 93:22:8a:a0:c4:67:d9:ee:e8:0d:ac:54:0a:c1:68:dd:9f:20: 5c:fd:e9:ee:c0:cc:72:af:3f:2e:f7:95:79:d4:b4:97:74:31: 00:80:7c:c3:3d:0d:74:f8:06:d9:40:4d:98:9c:f8:76:23:3b: 2d:58:32:ef:ef:a9:18:35:ce:e7:de:97:01:f6:ad:29:93:45: 79:1d:54:20:dd:a7:72:6a:5c:db:0d:89:f3:dd:ed:4a:a6:69: a3:c2:ba:a2:a0:43:59:78:ae:9b:7b:d2:98:f7:ff:c7:59:38: ac:e4:4f:22:c0:b7:36:81:40:81:ee:b6:7d:ac:54:f4:d5:aa: d2:20:3f:0f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFgzjOF5IETQn68vzTSE0sbySMawwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzAxMDAyMDIxWhcNMjUwODA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1Y2VmZmY3MGY1NDY3OTZlMDI1YTEzYTJhNGE2YmRjYTA5 MzJjMDBmNGY1MzBiYjE3YzYyM2JlYzU1M2JiZmJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/GLd3USpkDC2t8+ejttY72AfU/hSibZNtYjrNkkc2cGZ/ /6xRh2/NtQXCcWVG6BZYfIQc526A4hcjsCwsMrcKpgNKrOeS3SwD3gfxQFxX2bjt 0NhnOLZsNRZ8P6Ws1jvQzyJ4I/xDi91xIsg4xv7JMDlkNunToh6qHsVFzvTHBCrF qjbp05fPgFgKk5rCXJhF6rok7YaGDr+RpO8gi8l0expx7oO0l0CaXpDrXYdI6of2 6rg7WQF01ZiYGWJbxCMhyUyqlRC0qTfqvlvN/xnyBotS64UbH8lFr/s/zLzoJD0G 8vAx7HuKpAJ2Lk0frQ2PBAvlNUlROKdePqyolG/DAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUCbeiaTOL1mp1x4ejPqTca5FOHDIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmZDVjNWIyLTY5MGUtNDBlYS1iNTlhLTg3ZmM2NjM5MDRhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFfKDANBgkqhkiG9w0BAQsFAAOCAQEAt2GiuxZHfYLseP4X9i+8qbfQfqd3 xn28f72Y78AtZubMJWbY8UY0JuF0ErGVZ9UBQ4CssiYP7gwYVR5oVJIMJA+rcpy4 9+6O4GkHUqrjxXJQZNbjXz5e+OwG7eVFanxBakhqyA2vYe/XjDBzfNB36/RVqH21 L6F934ZNI8Z3kyKKoMRn2e7oDaxUCsFo3Z8gXP3p7sDMcq8/LveVedS0l3QxAIB8 wz0NdPgG2UBNmJz4diM7LVgy7++pGDXO596XAfatKZNFeR1UIN2ncmpc2w2J893t SqZpo8K6oqBDWXium3vSmPf/x1k4rORPIsC3NoFAge62faxU9NWq0iA/Dw== -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:43 2025 by rpki-client