$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4227170-2265-45c8-950f-f4e81e32653b.roa File: a4227170-2265-45c8-950f-f4e81e32653b.roa (raw, json) Hash identifier: YBwdx6RYEyhPJlmWvYSH4TtQssx9Rarza6U+sBh4nsQ= Subject key identifier: 11:E3:C3:C7:34:88:FB:1D:5C:45:13:74:47:82:13:C8:1F:FA:34:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6971EF9297CB53049C9AF427EFA5D4FE44FFD63F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4227170-2265-45c8-950f-f4e81e32653b.roa Signing time: Fri 30 May 2025 00:41:11 +0000 ROA not before: Fri 30 May 2025 00:41:11 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:71:ef:92:97:cb:53:04:9c:9a:f4:27:ef:a5:d4:fe:44:ff:d6:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:41:11 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=15edf7bd403a9bde1547c91cfc9c5093a404a0f3e6bdc0d07a772f8f6310a96b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:c7:05:37:74:96:3f:70:e4:5d:95:58:bb:b9: bb:00:f4:72:f5:64:93:b8:47:82:9b:37:b8:0b:fb: f4:0e:12:62:8b:25:2c:5e:bb:60:ca:54:c4:d7:a5: ae:9d:11:70:db:21:29:0e:1c:7d:45:a4:2d:c1:98: 3a:ef:11:99:1e:38:62:0b:10:bb:66:db:51:0d:9b: bd:70:0c:f3:0c:b4:53:ec:64:0e:b8:41:28:66:20: 32:81:57:6b:ac:66:53:44:de:cd:15:3b:0c:b9:9c: cc:0b:b8:aa:de:fd:f7:8d:f8:86:7f:0c:10:71:e1: 86:20:3f:87:ac:a9:f3:36:cf:63:df:37:75:ef:55: 74:50:8b:e3:0c:d8:a1:6d:b5:9d:cb:aa:e3:70:e5: eb:21:c5:99:81:fd:a7:6d:52:d6:dc:7a:df:9a:de: 7c:54:68:1e:d7:b7:83:93:07:6c:cf:d0:8f:f4:95: 49:26:3d:df:c8:fd:74:84:89:a6:c9:b4:d6:d9:7a: 3e:dd:67:d5:35:54:a2:74:4e:17:fc:68:b9:56:7f: 73:39:b1:7b:e3:3a:d7:bf:67:2d:49:37:c2:82:aa: c4:9e:64:33:20:24:9f:5d:87:b1:d4:b7:29:6f:07: 35:f6:72:de:69:78:55:e8:7a:89:c8:a5:25:d0:ca: d3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:E3:C3:C7:34:88:FB:1D:5C:45:13:74:47:82:13:C8:1F:FA:34:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4227170-2265-45c8-950f-f4e81e32653b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.0.0/16 Signature Algorithm: sha256WithRSAEncryption 21:c9:cb:18:29:ec:68:8f:aa:00:6e:e2:dd:7d:e9:51:61:56: 2b:6a:1b:a7:b0:5c:5f:da:08:2e:35:00:fe:42:dd:e4:bb:35: e0:c4:54:c9:68:c6:50:d3:e4:db:df:c9:31:7b:65:dc:26:ba: 2c:9b:5e:e9:57:92:cf:94:88:74:5c:b3:05:5d:0d:38:8b:63: 2e:9d:27:53:4f:b4:47:3c:9c:c9:6c:90:57:db:79:cf:49:ee: 1d:b7:87:da:f0:91:a8:7d:aa:7e:b4:22:85:18:a8:1c:96:7f: 73:57:51:11:ba:7f:70:6c:dd:5d:4e:ff:a8:9e:2a:48:5d:54: 30:52:7f:55:3c:be:a2:44:0b:9a:f2:bc:b3:ae:6f:07:c8:a4: 7a:24:37:55:f0:70:64:5b:da:8a:e7:cd:6e:0b:cc:24:4b:77: 68:19:1b:97:d3:20:91:8f:2b:b8:7f:98:db:c6:3a:28:26:65: 42:d4:13:88:0e:ed:ac:59:0e:ae:b7:90:2d:7f:c0:7f:bc:75: e8:e3:c1:26:38:23:df:a1:33:b1:4b:e3:d5:46:86:9c:97:1c: 93:73:ac:80:98:13:be:db:81:0b:9a:2c:53:8f:62:a0:04:f6: 07:10:ad:32:3c:bf:9c:8f:d1:0c:d7:f5:0a:45:c3:56:54:93: 45:75:58:d0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaXHvkpfLUwScmvQn76XU/kT/1j8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDA0MTExWhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNWVkZjdiZDQwM2E5YmRlMTU0N2M5MWNmYzljNTA5M2E0 MDRhMGYzZTZiZGMwZDA3YTc3MmY4ZjYzMTBhOTZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwxwU3dJY/cORdlVi7ubsA9HL1ZJO4R4KbN7gL+/QOEmKL JSxeu2DKVMTXpa6dEXDbISkOHH1FpC3BmDrvEZkeOGILELtm21ENm71wDPMMtFPs ZA64QShmIDKBV2usZlNE3s0VOwy5nMwLuKre/feN+IZ/DBBx4YYgP4esqfM2z2Pf N3XvVXRQi+MM2KFttZ3LquNw5eshxZmB/adtUtbcet+a3nxUaB7Xt4OTB2zP0I/0 lUkmPd/I/XSEiabJtNbZej7dZ9U1VKJ0Thf8aLlWf3M5sXvjOte/Zy1JN8KCqsSe ZDMgJJ9dh7HUtylvBzX2ct5peFXoeonIpSXQytPfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUEePDxzSI+x1cRRN0R4ITyB/6NJwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E0MjI3MTcwLTIyNjUtNDVjOC05NTBmLWY0ZTgxZTMyNjUzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBgADANBgkqhkiG9w0BAQsFAAOCAQEAIcnLGCnsaI+qAG7i3X3pUWFWK2ob p7BcX9oILjUA/kLd5Ls14MRUyWjGUNPk29/JMXtl3Ca6LJte6VeSz5SIdFyzBV0N OItjLp0nU0+0RzycyWyQV9t5z0nuHbeH2vCRqH2qfrQihRioHJZ/c1dREbp/cGzd XU7/qJ4qSF1UMFJ/VTy+okQLmvK8s65vB8ikeiQ3VfBwZFvaiufNbgvMJEt3aBkb l9MgkY8ruH+Y28Y6KCZlQtQTiA7trFkOrreQLX/Af7x16OPBJjgj36EzsUvj1UaG nJcck3OsgJgTvtuBC5osU49ioAT2BxCtMjy/nI/RDNf1CkXDVlSTRXVY0A== -----END CERTIFICATE-----Generated at Sun Jun 1 05:19:36 2025 by rpki-client