$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/207dcce0-1750-41a4-8164-90b5719783b7.roa File: 207dcce0-1750-41a4-8164-90b5719783b7.roa (raw, json) Hash identifier: VCy3KqBfg9VPqpGwG/kh/FGKDEk8Ctyyl1S5fV2ECjk= Subject key identifier: 11:6A:13:8E:03:8F:2F:50:41:AE:72:59:24:D2:91:F1:E7:4C:B7:4A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49A92FEFF3B8C3ECC80CD3F4A1898B3D172EBB89 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/207dcce0-1750-41a4-8164-90b5719783b7.roa Signing time: Mon 19 May 2025 16:40:21 +0000 ROA not before: Mon 19 May 2025 16:40:21 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.193.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:a9:2f:ef:f3:b8:c3:ec:c8:0c:d3:f4:a1:89:8b:3d:17:2e:bb:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:40:21 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=345f09cf2d57fc2d4b139e83681f273d626ee4a5e820696419f09a83128aef76, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:1b:c9:4b:9d:40:b7:7c:5d:8a:72:f1:58:b2: 54:d5:ab:d9:74:6d:25:59:7c:ea:04:18:b2:5c:d8: 2c:62:53:7c:fd:57:e0:d9:f5:6b:2c:4a:f8:30:de: d7:7d:f8:e2:e4:61:e1:12:eb:96:54:4a:68:6d:42: 1d:3f:42:9f:c7:98:08:2d:3e:b3:b9:bf:5c:96:6f: 5d:c0:c9:66:c1:5f:21:c8:fd:08:2a:d5:f8:9f:e8: 10:2a:8b:84:0f:d6:6d:d8:27:fe:bb:01:d3:72:fa: dc:55:20:14:d8:62:ad:51:1c:ba:79:78:72:d0:9b: a7:ba:b0:f3:53:21:38:79:7c:01:2c:0d:6b:9b:76: 88:e4:54:3f:3c:ee:b4:ac:e5:15:a2:93:7b:8f:8f: c5:30:68:13:60:f3:e3:e1:61:57:07:e2:f1:42:01: 28:3d:d8:de:34:8a:b2:49:42:23:e5:af:c3:20:a2: e0:4a:12:ef:08:16:2b:c7:f1:4f:d4:6c:f2:42:d2: d3:93:dc:09:96:e0:68:c9:c8:1b:7e:d0:57:60:46: 7f:c1:48:a5:37:4e:c6:bc:48:0e:6d:d2:7a:bf:da: d2:82:95:f6:56:0a:00:45:52:1f:db:ff:79:5a:43: 0a:85:cf:ee:9f:2f:d9:56:ee:7f:5f:2b:27:3c:5d: 39:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:6A:13:8E:03:8F:2F:50:41:AE:72:59:24:D2:91:F1:E7:4C:B7:4A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/207dcce0-1750-41a4-8164-90b5719783b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.193.160.0/19 Signature Algorithm: sha256WithRSAEncryption 2e:a1:bb:75:44:ad:e0:7d:2f:8a:7c:4f:bb:f1:41:11:41:b9: 7b:54:f2:b5:9d:73:1f:76:aa:84:d5:93:37:09:7a:43:f7:c5: 44:e2:78:cc:da:64:71:94:bf:f0:8a:c0:7c:88:dc:b7:ee:b4: 7f:91:5d:c7:05:60:6a:b6:0e:d8:a2:dd:b2:4f:8b:ff:9c:b9: f7:83:be:c6:00:34:5a:f4:8d:39:e0:37:8c:a7:69:23:4c:d9: 30:fd:b4:50:31:08:75:ae:06:95:c3:a3:d8:72:91:fb:a1:15: 97:da:b0:3d:95:f0:ee:83:88:97:58:f3:f5:4d:bf:12:0f:56: 9f:d6:2c:11:55:6b:d2:30:23:e5:89:23:df:0e:d2:70:36:4d: a7:06:73:f7:43:ce:32:6d:f9:56:a9:b3:fa:4e:89:df:66:96: e6:a7:98:ab:3b:7d:14:cf:0c:89:2e:ba:5f:58:9a:64:ff:cb: b5:bd:58:21:54:4e:a0:fa:15:c4:61:32:1d:7b:bb:cf:39:b2: 32:9f:6a:88:1c:b3:1f:a2:41:9d:90:22:73:5b:98:80:1d:27: e3:86:ed:32:a6:d5:a7:2f:f7:c8:2b:60:a6:c9:9d:88:c7:70: 4a:74:30:fc:90:9d:f1:db:1f:e0:80:38:04:1f:0d:10:3d:47: 2a:5c:f0:57 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSakv7/O4w+zIDNP0oYmLPRcuu4kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTY0MDIxWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDVmMDljZjJkNTdmYzJkNGIxMzllODM2ODFmMjczZDYy NmVlNGE1ZTgyMDY5NjQxOWYwOWE4MzEyOGFlZjc2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZG8lLnUC3fF2KcvFYslTVq9l0bSVZfOoEGLJc2CxiU3z9 V+DZ9WssSvgw3td9+OLkYeES65ZUSmhtQh0/Qp/HmAgtPrO5v1yWb13AyWbBXyHI /Qgq1fif6BAqi4QP1m3YJ/67AdNy+txVIBTYYq1RHLp5eHLQm6e6sPNTITh5fAEs DWubdojkVD887rSs5RWik3uPj8UwaBNg8+PhYVcH4vFCASg92N40irJJQiPlr8Mg ouBKEu8IFivH8U/UbPJC0tOT3AmW4GjJyBt+0FdgRn/BSKU3Tsa8SA5t0nq/2tKC lfZWCgBFUh/b/3laQwqFz+6fL9lW7n9fKyc8XTnJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEWoTjgOPL1BBrnJZJNKR8edMt0owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIwN2RjY2UwLTE3NTAtNDFhNC04MTY0LTkwYjU3MTk3ODNiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWhwaAwDQYJKoZIhvcNAQELBQADggEBAC6hu3VEreB9L4p8T7vxQRFBuXtU 8rWdcx92qoTVkzcJekP3xUTieMzaZHGUv/CKwHyI3LfutH+RXccFYGq2Dtii3bJP i/+cufeDvsYANFr0jTngN4ynaSNM2TD9tFAxCHWuBpXDo9hykfuhFZfasD2V8O6D iJdY8/VNvxIPVp/WLBFVa9IwI+WJI98O0nA2TacGc/dDzjJt+Vaps/pOid9mluan mKs7fRTPDIkuul9YmmT/y7W9WCFUTqD6FcRhMh17u885sjKfaogcsx+iQZ2QInNb mIAdJ+OG7TKm1acv98grYKbJnYjHcEp0MPyQnfHbH+CAOAQfDRA9Rypc8Fc= -----END CERTIFICATE-----Generated at Wed Jun 4 11:27:01 2025 by rpki-client