$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e391ffe-063f-4b2a-b745-4959f176bca3.roa File: 1e391ffe-063f-4b2a-b745-4959f176bca3.roa (raw, json) Hash identifier: w16vV5q/yaMPgB+Hb/JVk/bccKRllmHAfztMfFgYYLY= Subject key identifier: 78:D4:D7:3A:72:C6:81:C8:32:1D:05:29:69:C9:A3:26:18:1A:F8:BE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B0B2B218829F0A5E581A1438DB0CDC6B15E077B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e391ffe-063f-4b2a-b745-4959f176bca3.roa Signing time: Mon 19 May 2025 17:11:42 +0000 ROA not before: Mon 19 May 2025 17:11:42 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.21.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:0b:2b:21:88:29:f0:a5:e5:81:a1:43:8d:b0:cd:c6:b1:5e:07:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 17:11:42 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=27e5facef3cd5869eca365f3e8d5283f18238ab273dc39796340236a526d9c7e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:33:1a:e6:8a:1e:72:f7:9e:35:f9:3c:52:13: 2a:ae:d9:e4:86:01:9c:da:69:7e:9b:23:f9:aa:26: d1:41:30:9c:71:c8:be:bc:52:42:60:ee:41:2c:be: 77:04:89:76:c3:27:5a:b6:64:3e:08:50:e7:9a:16: 52:49:c0:00:f4:21:1a:a0:77:b1:81:a3:b1:5a:a5: f6:71:fa:37:4b:81:5a:a9:51:e0:c9:0f:83:59:9c: 51:1a:17:f2:ba:b1:b6:f8:fa:01:87:98:f9:4e:63: b6:36:6b:57:ab:89:d8:46:4e:64:cf:53:ad:f8:f0: 5a:13:c7:59:40:83:c5:e1:e8:4a:a9:bd:24:97:f0: 67:ae:fc:5b:4b:03:2b:17:8e:2d:e3:8e:0d:0a:9b: 6b:5a:1c:02:63:a5:5b:60:6d:bc:84:ce:6b:43:de: 17:ed:17:c9:7a:49:6d:48:d6:38:e2:8a:02:6a:6f: 1b:4f:8c:cb:f0:cc:59:47:a5:fc:fd:54:9e:36:95: 7e:8e:66:0b:b2:0a:da:b0:13:53:77:38:23:03:a0: 6c:85:8f:34:eb:7b:8a:bc:65:d1:57:70:b6:3d:44: 98:e9:8c:55:f8:d9:af:c4:2e:2f:5d:5e:24:b4:34: 9a:84:0c:16:d8:cf:cd:61:d9:2c:57:a3:0b:e8:91: 36:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:D4:D7:3A:72:C6:81:C8:32:1D:05:29:69:C9:A3:26:18:1A:F8:BE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e391ffe-063f-4b2a-b745-4959f176bca3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.128.0/18 Signature Algorithm: sha256WithRSAEncryption 05:83:a4:5c:02:4c:6c:17:ba:00:ec:b4:1e:5a:57:75:80:39: b7:26:b9:ae:4a:60:b3:04:92:c3:62:81:cf:18:a8:20:bf:18: c2:24:40:b0:d4:0f:88:96:a0:b3:b4:1c:c3:eb:88:97:43:7d: b5:06:19:a0:e2:3b:09:5c:1f:ef:1a:d0:3d:28:03:3d:3b:37: 4a:45:64:b7:09:4c:11:d5:0d:af:b6:9d:41:d2:1c:30:68:a3: 66:4b:ee:30:07:66:9d:a3:3f:7d:de:9c:ad:14:a6:e9:85:f0: 44:a8:cb:53:28:7c:4b:17:d4:4e:15:ec:e1:c2:ff:b5:3b:fd: c3:c6:bc:fa:e5:ec:09:de:93:9b:4d:74:7f:fe:49:f8:88:a8: 37:c4:cf:e9:4f:52:1b:16:17:ed:62:93:18:ca:92:43:3e:80: b6:0a:94:1b:a3:1c:ba:7c:e0:f6:d2:85:df:44:0e:8a:1d:d8: 12:00:59:03:81:47:e8:b1:a4:db:a2:72:4e:f0:48:ae:6b:2e: 8a:e5:0c:8d:34:d0:10:e6:70:bc:d4:0b:cb:99:d1:28:d6:28: a5:1d:8d:01:ed:e3:24:ca:78:d9:3a:fc:0e:12:61:cc:91:6e: f5:dd:21:a5:ca:2a:f6:2e:c4:27:88:d9:d3:22:18:30:e0:77: 8a:15:78:8e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUawsrIYgp8KXlgaFDjbDNxrFeB3swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTcxMTQyWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyN2U1ZmFjZWYzY2Q1ODY5ZWNhMzY1ZjNlOGQ1MjgzZjE4 MjM4YWIyNzNkYzM5Nzk2MzQwMjM2YTUyNmQ5YzdlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbMxrmih5y9541+TxSEyqu2eSGAZzaaX6bI/mqJtFBMJxx yL68UkJg7kEsvncEiXbDJ1q2ZD4IUOeaFlJJwAD0IRqgd7GBo7FapfZx+jdLgVqp UeDJD4NZnFEaF/K6sbb4+gGHmPlOY7Y2a1eridhGTmTPU6348FoTx1lAg8Xh6Eqp vSSX8Geu/FtLAysXji3jjg0Km2taHAJjpVtgbbyEzmtD3hftF8l6SW1I1jjiigJq bxtPjMvwzFlHpfz9VJ42lX6OZguyCtqwE1N3OCMDoGyFjzTre4q8ZdFXcLY9RJjp jFX42a/ELi9dXiS0NJqEDBbYz81h2SxXowvokTYFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeNTXOnLGgcgyHQUpacmjJhga+L4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFlMzkxZmZlLTA2M2YtNGIyYS1iNzQ1LTQ5NTlmMTc2YmNhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZrFYAwDQYJKoZIhvcNAQELBQADggEBAAWDpFwCTGwXugDstB5aV3WAObcm ua5KYLMEksNigc8YqCC/GMIkQLDUD4iWoLO0HMPriJdDfbUGGaDiOwlcH+8a0D0o Az07N0pFZLcJTBHVDa+2nUHSHDBoo2ZL7jAHZp2jP33enK0UpumF8ESoy1MofEsX 1E4V7OHC/7U7/cPGvPrl7Anek5tNdH/+SfiIqDfEz+lPUhsWF+1ikxjKkkM+gLYK lBujHLp84PbShd9EDood2BIAWQOBR+ixpNuick7wSK5rLorlDI000BDmcLzUC8uZ 0SjWKKUdjQHt4yTKeNk6/A4SYcyRbvXdIaXKKvYuxCeI2dMiGDDgd4oVeI4= -----END CERTIFICATE-----Generated at Wed Jun 4 11:13:37 2025 by rpki-client