$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa File: 42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa (raw, json) Hash identifier: cDW6rrBxNaVEjKzXbB2uzJC4GwAc+tMN/HU3tlgMZZY= Subject key identifier: 95:D3:D4:69:0C:5C:34:0C:67:E6:DD:6E:4B:FF:BD:E4:99:20:89:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14A0C206A76ED57C2E20A7BC1F3356FED1843C67 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa Signing time: Tue 20 May 2025 00:40:15 +0000 ROA not before: Tue 20 May 2025 00:40:15 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.166.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:a0:c2:06:a7:6e:d5:7c:2e:20:a7:bc:1f:33:56:fe:d1:84:3c:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:40:15 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=68c456020859509e368dc6e925d08195d2721a55bb16fef5d4d3d08ce3d8ea34, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:68:44:b1:98:70:cd:55:46:0a:3d:0f:64:8e: 39:a1:06:dd:34:87:a8:23:83:39:7b:02:a0:1a:11: 77:85:61:65:c8:7c:99:b4:d3:31:90:a4:c9:10:a9: c0:ab:4a:1c:8e:38:59:89:e9:02:69:6e:16:16:b8: f8:8d:01:06:63:1b:e5:44:4d:55:85:11:35:4a:08: 00:30:fc:54:2e:58:8f:cf:8b:df:43:46:e9:76:65: 61:b0:2c:59:b2:5c:83:8a:e9:31:0d:89:18:86:1c: 4a:36:fd:e4:3a:6e:1f:0c:cd:5d:18:b9:a7:07:a7: 4a:e1:9b:9a:10:4f:71:29:1a:8a:b2:2b:41:9c:d1: 25:49:4d:d0:f8:83:f7:eb:bf:ac:4b:d5:a4:0f:40: 21:dc:ff:85:42:08:16:d8:64:53:e2:55:30:76:f8: 57:b0:81:ed:48:52:91:d1:8c:88:87:41:10:9b:d3: 97:7d:83:58:fb:85:5e:52:55:57:33:f7:23:c0:50: 54:b1:42:17:07:ab:9b:31:e6:a3:1f:a3:8a:9d:a0: e2:7a:9b:2d:06:cf:a3:b4:cb:0a:07:c9:e0:08:87: d6:84:4d:f4:a9:88:36:92:a7:f9:70:3d:ef:62:45: 1f:ec:22:0d:ad:0b:ec:c0:3a:37:88:7e:a3:14:9a: c5:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:D3:D4:69:0C:5C:34:0C:67:E6:DD:6E:4B:FF:BD:E4:99:20:89:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.166.0.0/16 Signature Algorithm: sha256WithRSAEncryption 01:b7:c4:12:94:eb:2c:61:2d:11:0c:fe:9b:10:60:07:9f:4d: be:e4:bf:73:e7:8f:09:62:a5:73:24:b5:8f:bc:a6:e4:0e:53: 4c:e0:72:9b:98:3f:a4:5f:7c:72:22:9c:85:06:a4:53:7c:53: 0c:2d:b0:24:3d:eb:00:35:ee:33:b8:79:21:39:34:9a:17:89: 2a:77:be:8e:d0:b7:a4:7f:d4:01:1a:d0:37:77:93:ab:d4:cd: bb:a2:20:3f:36:b8:10:fb:4f:d4:d0:3f:cd:f0:56:e4:6c:90: 23:c7:0c:35:7c:9b:b7:25:7e:f3:6c:94:57:e2:29:3f:58:f9: ed:49:92:1d:b7:2f:d8:2d:41:29:9c:0f:df:6d:c2:52:d5:1b: d6:f9:e9:c5:5a:f3:37:4f:2b:70:46:77:dc:a7:9a:f0:15:54: af:aa:60:0d:cd:b2:cd:6f:b2:10:eb:83:78:ed:51:7d:4f:ba: a4:b8:5e:c2:a4:d3:d7:04:02:15:20:63:89:66:69:50:87:2e: 2a:20:8d:1b:fd:56:2a:d8:0b:a8:f1:40:cd:a1:24:d3:c6:4e: e6:47:9a:25:ea:06:f7:58:59:9f:e5:9d:fd:57:af:9a:53:d0: c4:0c:04:6f:a1:09:6b:d5:35:7e:2e:3f:ff:8c:3b:34:9c:7c: 75:3e:ad:1a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFKDCBqdu1XwuIKe8HzNW/tGEPGcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDA0MDE1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OGM0NTYwMjA4NTk1MDllMzY4ZGM2ZTkyNWQwODE5NWQy NzIxYTU1YmIxNmZlZjVkNGQzZDA4Y2UzZDhlYTM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDuaESxmHDNVUYKPQ9kjjmhBt00h6gjgzl7AqAaEXeFYWXI fJm00zGQpMkQqcCrShyOOFmJ6QJpbhYWuPiNAQZjG+VETVWFETVKCAAw/FQuWI/P i99DRul2ZWGwLFmyXIOK6TENiRiGHEo2/eQ6bh8MzV0YuacHp0rhm5oQT3EpGoqy K0Gc0SVJTdD4g/frv6xL1aQPQCHc/4VCCBbYZFPiVTB2+Fewge1IUpHRjIiHQRCb 05d9g1j7hV5SVVcz9yPAUFSxQhcHq5sx5qMfo4qdoOJ6my0Gz6O0ywoHyeAIh9aE TfSpiDaSp/lwPe9iRR/sIg2tC+zAOjeIfqMUmsVrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUldPUaQxcNAxn5t1uS/+95JkgiWIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyY2ZjOGY4LWE0YjYtNDhjMi1hYWMzLTk1ZTExMTZhNjMwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAopjANBgkqhkiG9w0BAQsFAAOCAQEAAbfEEpTrLGEtEQz+mxBgB59NvuS/ c+ePCWKlcyS1j7ym5A5TTOBym5g/pF98ciKchQakU3xTDC2wJD3rADXuM7h5ITk0 mheJKne+jtC3pH/UARrQN3eTq9TNu6IgPza4EPtP1NA/zfBW5GyQI8cMNXybtyV+ 82yUV+IpP1j57UmSHbcv2C1BKZwP323CUtUb1vnpxVrzN08rcEZ33Kea8BVUr6pg Dc2yzW+yEOuDeO1RfU+6pLhewqTT1wQCFSBjiWZpUIcuKiCNG/1WKtgLqPFAzaEk 08ZO5keaJeoG91hZn+Wd/VevmlPQxAwEb6EJa9U1fi4//4w7NJx8dT6tGg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:48:45 2025 by rpki-client