$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1961c89e-9444-43ce-a7aa-2c38d465b29d.roa File: 1961c89e-9444-43ce-a7aa-2c38d465b29d.roa (raw, json) Hash identifier: rJcgyavSgBgmzJTiakO3zqcHms5ZKZgqt8D1SjkU34w= Subject key identifier: 1B:6C:0F:0C:4C:41:52:F7:2F:C5:4A:5E:0A:02:37:A0:8E:DD:3B:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 426A6EF7726C14505A7DD441929ECA462449D54A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1961c89e-9444-43ce-a7aa-2c38d465b29d.roa Signing time: Tue 20 May 2025 00:21:22 +0000 ROA not before: Tue 20 May 2025 00:21:22 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.22.74.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:6a:6e:f7:72:6c:14:50:5a:7d:d4:41:92:9e:ca:46:24:49:d5:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:21:22 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=32aa3a768b82bd95e0b485c6c14c1b2281c21252408ca4d6891d061357bdd2df, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:ca:45:1b:df:11:36:7d:fe:36:74:4e:2f:21: 43:0d:58:e9:2c:1e:8a:cf:62:8f:cd:72:92:b8:e2: 53:ba:a3:39:4f:6d:8e:36:32:99:ea:be:2d:ff:f6: 8a:8b:4a:12:43:c3:c2:ed:2c:a9:a8:c5:78:90:75: 5b:8f:6a:f1:66:ff:6a:a0:03:5b:a4:cb:20:41:2d: 75:07:5a:e7:9e:ff:80:89:43:72:37:a4:7c:39:0d: e8:39:cb:af:40:5a:a5:07:56:bf:04:85:5a:f5:f4: de:05:20:9f:67:9d:0f:fb:5f:8a:f2:56:1d:be:7d: 79:93:11:40:58:0a:7f:5a:8d:27:a9:73:10:85:d4: 51:76:e9:65:8b:44:c4:1c:0b:d4:8d:d8:b2:e1:85: 13:c3:ec:67:71:b1:a4:0e:cc:15:12:3e:52:54:ad: 08:76:37:be:3a:64:b7:56:65:94:aa:d1:ae:90:a2: e3:7e:bc:ba:4a:cc:b3:f3:51:eb:a4:6f:9e:a8:c2: 8c:c1:ee:13:a0:35:9c:89:2e:40:04:35:47:ce:5d: df:ab:bd:09:4d:c1:f9:6d:ac:be:aa:c2:f5:e6:8e: 1f:a4:fe:f8:3c:e1:91:db:7e:60:ae:1b:6f:3e:b1: cd:e2:2a:a4:1b:dd:20:34:83:7c:00:dd:60:fe:f3: 45:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:6C:0F:0C:4C:41:52:F7:2F:C5:4A:5E:0A:02:37:A0:8E:DD:3B:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1961c89e-9444-43ce-a7aa-2c38d465b29d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.22.74.0/23 Signature Algorithm: sha256WithRSAEncryption 81:5c:b3:5d:db:87:37:01:b5:19:50:30:57:db:f8:c1:db:2f: 77:af:78:49:72:18:31:47:1a:cf:74:b2:eb:00:e2:2c:2a:a4: b9:31:f5:50:f9:62:48:2a:74:b5:57:1a:89:95:ed:fb:b7:0b: 90:a7:5c:f7:28:8c:ea:df:76:97:01:fa:12:00:ce:c8:58:00: 3b:6b:3c:72:29:03:df:cb:88:d2:e9:0f:f9:67:58:b0:0c:c1: 0f:ab:6c:b0:2e:4b:49:d4:d9:4d:e2:04:ff:ed:08:69:cf:1d: 8a:53:f4:28:c5:39:99:8f:88:a6:9d:2c:e7:9f:7e:f7:4d:1d: 05:09:72:3b:31:30:27:1e:f9:f9:76:86:e2:e4:9a:03:5f:4b: 98:a2:25:1a:a0:7c:83:76:a9:7f:02:c7:61:b5:2a:df:84:36: 56:4a:1b:37:1b:c9:9d:06:f9:e9:01:e9:3e:a1:46:24:07:80: a2:50:34:f6:21:f0:9f:a0:d5:36:6a:ce:8d:f0:44:79:9c:ea: b1:65:cf:08:e9:d4:4f:cd:33:6d:c9:fe:ee:f7:11:d0:79:27: 6a:c7:9f:a5:61:63:28:42:ca:32:b5:d2:68:88:31:bf:ba:be: 3c:db:de:77:80:77:d9:03:09:b5:aa:c0:ee:65:d1:ed:ec:45: c3:5a:0b:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQmpu93JsFFBafdRBkp7KRiRJ1UowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAyMTIyWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMmFhM2E3NjhiODJiZDk1ZTBiNDg1YzZjMTRjMWIyMjgx YzIxMjUyNDA4Y2E0ZDY4OTFkMDYxMzU3YmRkMmRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD8ykUb3xE2ff42dE4vIUMNWOksHorPYo/NcpK44lO6ozlP bY42Mpnqvi3/9oqLShJDw8LtLKmoxXiQdVuPavFm/2qgA1ukyyBBLXUHWuee/4CJ Q3I3pHw5Deg5y69AWqUHVr8EhVr19N4FIJ9nnQ/7X4ryVh2+fXmTEUBYCn9ajSep cxCF1FF26WWLRMQcC9SN2LLhhRPD7GdxsaQOzBUSPlJUrQh2N746ZLdWZZSq0a6Q ouN+vLpKzLPzUeukb56owozB7hOgNZyJLkAENUfOXd+rvQlNwfltrL6qwvXmjh+k /vg84ZHbfmCuG28+sc3iKqQb3SA0g3wA3WD+80VLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG2wPDExBUvcvxUpeCgI3oI7dO3YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE5NjFjODllLTk0NDQtNDNjZS1hN2FhLTJjMzhkNDY1YjI5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEXFkowDQYJKoZIhvcNAQELBQADggEBAIFcs13bhzcBtRlQMFfb+MHbL3ev eElyGDFHGs90susA4iwqpLkx9VD5YkgqdLVXGomV7fu3C5CnXPcojOrfdpcB+hIA zshYADtrPHIpA9/LiNLpD/lnWLAMwQ+rbLAuS0nU2U3iBP/tCGnPHYpT9CjFOZmP iKadLOeffvdNHQUJcjsxMCce+fl2huLkmgNfS5iiJRqgfIN2qX8Cx2G1Kt+ENlZK GzcbyZ0G+ekB6T6hRiQHgKJQNPYh8J+g1TZqzo3wRHmc6rFlzwjp1E/NM23J/u73 EdB5J2rHn6VhYyhCyjK10miIMb+6vjzb3neAd9kDCbWqwO5l0e3sRcNaC24= -----END CERTIFICATE-----Generated at Sun Jun 1 04:40:52 2025 by rpki-client