$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/034c3528-4b36-4ade-a86b-759701bbc55c.roa File: 034c3528-4b36-4ade-a86b-759701bbc55c.roa (raw, json) Hash identifier: /O7C9I86Aj4orLDJOAg9P3JVoZAcDtfKvSgC5KSufrc= Subject key identifier: 87:67:47:10:A1:10:99:84:10:B3:F3:B2:5B:19:8F:B9:D3:CB:B2:C3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 23A8E15350F21BE5707A73A89D266E05756A71F4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/034c3528-4b36-4ade-a86b-759701bbc55c.roa Signing time: Tue 20 May 2025 00:32:14 +0000 ROA not before: Tue 20 May 2025 00:32:14 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.23.80.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:a8:e1:53:50:f2:1b:e5:70:7a:73:a8:9d:26:6e:05:75:6a:71:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:32:14 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=e7a44435cca172c0eeea1151f7935470e5c2c8688735b14335076a84a540f426, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:94:b7:fb:69:22:24:de:5c:13:59:1c:32:d1: 2f:a8:3a:4f:e0:5f:fb:67:df:09:8c:89:8c:93:72: b5:2b:bd:c6:91:eb:b7:b3:30:dd:a3:f1:40:57:f0: 60:52:63:85:0c:91:80:c6:68:4c:84:e5:14:a8:ec: 40:81:0b:62:14:cd:1c:b3:6a:75:94:74:f6:b9:6e: 77:89:c7:08:bf:d4:db:0c:2f:a3:2a:c1:52:8f:17: 77:f8:33:15:f6:ed:08:1c:79:4a:a3:55:cb:90:d7: b2:b4:11:98:4f:64:15:36:fc:c9:54:07:79:52:6e: 98:f5:97:7f:92:37:3b:d2:0b:2a:f8:e5:89:ba:e9: ce:b2:bd:b0:f8:ad:3e:e2:dd:e6:12:d0:d5:23:7b: 21:a4:bb:43:e6:ea:3c:eb:71:6d:27:9e:c9:17:2a: a8:48:22:55:f7:77:c4:56:32:bf:65:9a:37:8c:60: f2:76:7b:1e:e5:5c:88:3d:15:bf:a9:c2:83:42:9a: 23:62:9b:3e:d0:98:50:8a:9a:7d:35:58:3e:be:4d: b9:69:da:be:7c:6f:e5:b1:e9:0c:32:b1:de:2f:cf: 4e:e3:8d:63:7e:46:77:8e:30:55:c7:d6:d2:76:97: 51:55:06:e8:31:88:c0:d3:77:d8:f8:71:46:fe:87: 98:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:67:47:10:A1:10:99:84:10:B3:F3:B2:5B:19:8F:B9:D3:CB:B2:C3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/034c3528-4b36-4ade-a86b-759701bbc55c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.80.0/20 Signature Algorithm: sha256WithRSAEncryption ce:5a:56:dd:66:ad:36:66:2c:81:f1:fa:94:d3:bf:a2:ba:27: 7e:83:79:0c:e6:62:8c:63:83:8a:d4:b4:6b:b0:bc:9a:6f:bb: 9d:80:42:f6:6b:f2:c2:4f:3b:57:54:ac:75:a3:75:66:36:46: 2d:8b:f6:2d:8f:58:68:21:e2:88:bd:d1:78:43:7b:54:ae:75: ce:77:88:90:a3:b6:7c:40:4e:5c:fb:01:5f:42:83:92:2e:48: 7e:6d:a5:f6:ce:c3:08:64:07:70:21:65:e1:b2:b1:97:ae:7f: f8:17:95:ba:7a:16:28:9e:8e:95:58:e0:b5:54:89:21:01:4f: 3b:a6:84:b4:29:4f:b2:a9:59:20:20:3e:55:ff:1d:56:f7:d4: d0:4d:3b:25:9b:98:36:b1:46:0a:16:da:5b:f1:44:4d:b2:93: 4e:2b:e8:a2:03:33:99:a8:27:15:f7:c0:e7:34:21:c2:fa:c5: 23:09:cb:11:b7:96:94:77:38:b9:57:3b:f5:8d:b1:b2:37:8b: 63:49:72:55:bc:47:8a:b1:32:a7:f7:47:f3:1d:5e:a5:59:f5: ca:ed:ea:9f:61:b2:84:16:77:76:3c:b3:20:b6:d5:de:d4:b8: fc:16:e1:6e:8e:0e:c9:a8:4d:fd:1d:17:00:89:d5:44:58:c3: 47:34:4b:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUI6jhU1DyG+VwenOonSZuBXVqcfQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAzMjE0WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlN2E0NDQzNWNjYTE3MmMwZWVlYTExNTFmNzkzNTQ3MGU1 YzJjODY4ODczNWIxNDMzNTA3NmE4NGE1NDBmNDI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmlLf7aSIk3lwTWRwy0S+oOk/gX/tn3wmMiYyTcrUrvcaR 67ezMN2j8UBX8GBSY4UMkYDGaEyE5RSo7ECBC2IUzRyzanWUdPa5bneJxwi/1NsM L6MqwVKPF3f4MxX27QgceUqjVcuQ17K0EZhPZBU2/MlUB3lSbpj1l3+SNzvSCyr4 5Ym66c6yvbD4rT7i3eYS0NUjeyGku0Pm6jzrcW0nnskXKqhIIlX3d8RWMr9lmjeM YPJ2ex7lXIg9Fb+pwoNCmiNimz7QmFCKmn01WD6+Tblp2r58b+Wx6Qwysd4vz07j jWN+RneOMFXH1tJ2l1FVBugxiMDTd9j4cUb+h5ilAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUh2dHEKEQmYQQs/OyWxmPudPLssMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzNGMzNTI4LTRiMzYtNGFkZS1hODZiLTc1OTcwMWJiYzU1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQXF1AwDQYJKoZIhvcNAQELBQADggEBAM5aVt1mrTZmLIHx+pTTv6K6J36D eQzmYoxjg4rUtGuwvJpvu52AQvZr8sJPO1dUrHWjdWY2Ri2L9i2PWGgh4oi90XhD e1Sudc53iJCjtnxATlz7AV9Cg5IuSH5tpfbOwwhkB3AhZeGysZeuf/gXlbp6Fiie jpVY4LVUiSEBTzumhLQpT7KpWSAgPlX/HVb31NBNOyWbmDaxRgoW2lvxRE2yk04r 6KIDM5moJxX3wOc0IcL6xSMJyxG3lpR3OLlXO/WNsbI3i2NJclW8R4qxMqf3R/Md XqVZ9crt6p9hsoQWd3Y8syC21d7UuPwW4W6ODsmoTf0dFwCJ1URYw0c0S/c= -----END CERTIFICATE-----Generated at Sun Jun 1 05:02:14 2025 by rpki-client