$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21bb0458-625d-4892-a4e1-e544b849201a.roa File: 21bb0458-625d-4892-a4e1-e544b849201a.roa (raw, json) Hash identifier: 4Dhl4dS01DZUYDXl0kgWRgRrVYLxZz5rrDL5rkJtRAQ= Subject key identifier: 4C:51:BE:C6:29:AF:53:85:8D:B6:33:73:D9:4F:36:D5:AF:74:82:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A7227131DDF8A7DE9D9C52E20407DD6DC79FB03 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21bb0458-625d-4892-a4e1-e544b849201a.roa Signing time: Fri 30 May 2025 00:22:36 +0000 ROA not before: Fri 30 May 2025 00:22:36 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 63.249.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:72:27:13:1d:df:8a:7d:e9:d9:c5:2e:20:40:7d:d6:dc:79:fb:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:22:36 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=0b1572f62112aa35cfe76df975c05480b51e9df322700f2bc85b561f259cd02a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:b1:23:30:6a:86:3b:12:20:ea:3d:5a:9b:8d: 9c:b1:b2:63:da:98:a7:95:ac:b4:3a:ad:00:02:61: 69:f3:d8:95:76:ee:39:16:be:fe:b9:ca:0c:8e:3f: b3:32:c6:1c:90:a4:48:39:2c:58:fc:de:64:d6:7d: ad:22:5d:32:b6:8b:d9:8a:e9:dd:1e:2c:79:d8:00: 38:9f:4d:6a:41:4e:d3:57:8d:58:8b:b3:d9:10:75: 33:64:a6:ff:c3:3c:0a:4e:e7:84:4f:6a:1b:c0:58: 72:2a:7f:a1:38:5d:53:05:73:a0:9a:9c:f0:d6:47: 66:9f:06:01:0d:67:a0:03:1a:23:85:a3:e7:65:d3: 54:16:da:b0:fc:30:af:1f:dc:63:12:e5:96:14:d7: 84:df:10:32:75:8c:c8:9c:9a:47:0b:2a:94:f6:8b: bc:e8:53:d8:45:66:68:37:e7:75:0e:f8:99:e6:66: 44:4d:d9:32:38:48:42:ee:f0:8b:a1:e7:ce:9b:c6: 54:b6:2b:2b:0e:35:b8:36:3c:78:2e:08:ed:f0:93: 1f:44:2d:d1:af:da:d4:94:d5:1d:6e:60:8c:9f:86: b3:c9:a4:1c:fb:39:90:9b:90:39:ff:7b:1d:e9:7c: 36:96:84:95:34:ac:a6:86:aa:7c:3e:1e:d0:73:95: 6e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:51:BE:C6:29:AF:53:85:8D:B6:33:73:D9:4F:36:D5:AF:74:82:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21bb0458-625d-4892-a4e1-e544b849201a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.249.128.0/17 Signature Algorithm: sha256WithRSAEncryption d8:fe:88:34:01:90:dd:03:ff:fc:10:ee:48:ea:97:c5:af:b4: 3e:6b:53:78:5e:a3:09:2e:7a:b5:fb:a3:2d:65:e0:e4:b6:fb: b2:dc:ad:90:c1:94:38:20:f8:d3:e5:ab:67:10:8d:34:17:4f: 1c:f4:b8:e0:57:09:4d:c9:4e:fd:05:3d:79:63:c5:06:21:68: df:54:97:cc:04:fc:ec:df:44:2c:1d:04:f3:2b:66:09:3c:95: ef:28:e6:ea:50:4b:5d:e2:a7:26:21:fd:2b:75:53:25:a7:6f: 22:39:96:fb:52:d2:b5:f9:4b:2c:50:c6:7d:6f:bf:5b:57:33: 3b:4d:de:9d:9f:5f:cf:ad:3c:5f:a0:79:0e:c3:f9:32:f5:83: 32:a0:e6:fb:42:00:36:ff:34:e0:80:c5:d8:38:03:c4:95:29: 3b:c9:5a:c7:32:1e:68:ae:27:96:2d:97:b1:15:24:11:60:be: 20:1b:37:eb:57:9a:1b:45:8c:76:fb:12:c5:c1:c2:8d:94:59: 50:07:19:94:15:20:04:57:b1:91:3c:df:d6:24:bf:9b:5e:79: 22:ec:70:2d:88:77:c4:1f:8a:74:75:07:99:c6:5a:fb:fb:a5: 5e:11:2b:4e:ae:73:ca:95:8e:0b:9f:c4:a5:dd:60:fb:8f:52: 2d:ef:e3:76 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOnInEx3fin3p2cUuIEB91tx5+wMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAyMjM2WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjE1NzJmNjIxMTJhYTM1Y2ZlNzZkZjk3NWMwNTQ4MGI1 MWU5ZGYzMjI3MDBmMmJjODViNTYxZjI1OWNkMDJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZsSMwaoY7EiDqPVqbjZyxsmPamKeVrLQ6rQACYWnz2JV2 7jkWvv65ygyOP7MyxhyQpEg5LFj83mTWfa0iXTK2i9mK6d0eLHnYADifTWpBTtNX jViLs9kQdTNkpv/DPApO54RPahvAWHIqf6E4XVMFc6CanPDWR2afBgENZ6ADGiOF o+dl01QW2rD8MK8f3GMS5ZYU14TfEDJ1jMicmkcLKpT2i7zoU9hFZmg353UO+Jnm ZkRN2TI4SELu8Iuh586bxlS2KysONbg2PHguCO3wkx9ELdGv2tSU1R1uYIyfhrPJ pBz7OZCbkDn/ex3pfDaWhJU0rKaGqnw+HtBzlW4dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTFG+ximvU4WNtjNz2U821a90gkUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxYmIwNDU4LTYyNWQtNDg5Mi1hNGUxLWU1NDRiODQ5MjAxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc/+YAwDQYJKoZIhvcNAQELBQADggEBANj+iDQBkN0D//wQ7kjql8WvtD5r U3heowkuerX7oy1l4OS2+7LcrZDBlDgg+NPlq2cQjTQXTxz0uOBXCU3JTv0FPXlj xQYhaN9Ul8wE/OzfRCwdBPMrZgk8le8o5upQS13ipyYh/St1UyWnbyI5lvtS0rX5 SyxQxn1vv1tXMztN3p2fX8+tPF+geQ7D+TL1gzKg5vtCADb/NOCAxdg4A8SVKTvJ WscyHmiuJ5Ytl7EVJBFgviAbN+tXmhtFjHb7EsXBwo2UWVAHGZQVIARXsZE839Yk v5teeSLscC2Id8QfinR1B5nGWvv7pV4RK06uc8qVjgufxKXdYPuPUi3v43Y= -----END CERTIFICATE-----Generated at Sun Jun 1 05:23:03 2025 by rpki-client