$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22e0224f-add1-4750-9889-4168c3af1743.roa File: 22e0224f-add1-4750-9889-4168c3af1743.roa (raw, json) Hash identifier: TBxZAy54DAJUEzqW3X5HY2ztrotqdPGvghmnuw1K0/E= Subject key identifier: AF:13:D3:CC:CC:BC:91:6B:83:0C:51:DC:0E:1D:95:DF:92:68:4C:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2256AEB75D84A8DAE5AA3E4D73D174D5DBD66314 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22e0224f-add1-4750-9889-4168c3af1743.roa Signing time: Fri 30 May 2025 00:00:20 +0000 ROA not before: Fri 30 May 2025 00:00:20 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 10 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:56:ae:b7:5d:84:a8:da:e5:aa:3e:4d:73:d1:74:d5:db:d6:63:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:00:20 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=7af68a660777ef2e8b3d1379e075919c4b19b1f9643ba7614faf2eabfd827c59, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e5:1e:72:ff:a0:61:9e:f9:d9:9a:72:be:5b: 5d:e1:7f:d5:da:e3:0b:f1:85:db:d6:b2:62:c0:23: cd:e3:1c:f6:67:74:6d:dd:f6:ae:1e:7f:73:96:a5: bc:41:13:c5:49:bb:43:dd:b5:7c:25:b0:12:42:12: 9a:ff:5c:b3:82:c6:05:25:f7:1b:a4:21:d9:d4:ac: fa:0f:a8:41:5c:36:be:5a:52:3c:aa:57:2b:c0:98: 4a:61:d7:cb:f9:6c:16:50:8a:dc:d2:18:62:55:46: 22:3a:07:45:3f:0b:7d:11:c0:d9:44:0b:2b:35:cf: 02:41:48:77:1a:1d:f8:97:ac:b5:f5:50:ae:0d:8e: 40:fd:7a:fb:3e:29:1e:26:87:c1:25:23:c0:7b:c1: cc:74:6e:ac:20:b1:0c:57:28:69:f7:c5:75:4d:47: 68:31:71:50:7d:3d:05:9b:5a:53:b5:0b:65:25:9f: 59:60:1f:5d:72:79:55:6a:d9:eb:be:d3:1a:f5:69: e5:76:ec:dc:e2:9a:82:04:a0:88:77:31:14:ae:3c: 51:4a:50:de:ed:5e:bf:2a:ce:ac:b2:81:5c:eb:5a: 8e:4f:95:df:c8:b5:8b:1d:48:2c:10:f3:d1:87:1b: a8:28:e7:4f:b7:ac:f4:41:b5:92:33:c2:08:b7:34: 82:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:13:D3:CC:CC:BC:91:6B:83:0C:51:DC:0E:1D:95:DF:92:68:4C:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22e0224f-add1-4750-9889-4168c3af1743.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.112.0/21 Signature Algorithm: sha256WithRSAEncryption cc:14:1c:cc:c1:0a:8c:e2:3c:cc:19:b0:bb:ff:07:9c:19:e0: f8:4d:3a:0a:09:bf:8f:50:f6:f0:3d:48:11:45:ba:5b:0f:de: 39:39:db:be:ce:ec:73:5f:34:eb:ea:a6:13:13:66:a3:8a:bb: a8:4f:10:60:b8:c0:2d:f2:f7:84:35:17:58:d8:c5:04:af:de: 45:73:5e:94:94:ff:2f:f6:bd:89:59:af:be:34:31:5f:da:99: 74:3c:44:41:74:39:b6:ac:04:1a:3c:9b:2a:6a:76:c0:95:5f: d4:5f:11:8e:bb:de:d2:d2:70:bc:b5:19:68:fa:33:28:8e:58: cc:28:a4:db:d0:b8:81:84:23:73:81:f9:35:fc:af:eb:4f:92: 0f:ab:5a:de:d3:ee:18:69:c4:3b:4d:07:6d:9b:c2:be:a5:5a: 50:01:ff:8c:ad:44:d9:e2:2c:f0:5c:49:d3:92:52:85:64:30: b5:3b:8a:7c:c2:f4:46:d1:aa:40:9c:dc:49:70:da:db:b4:dd: d3:8d:06:31:8f:17:e2:70:27:65:e2:ea:bc:e8:92:00:ac:b6: ba:85:1e:9c:2d:91:c9:0a:43:9c:24:82:a9:f8:c2:15:98:83: 0c:93:2a:75:d7:68:fa:9c:4b:8b:d9:72:c0:f0:a4:65:ff:48: 79:10:af:fa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIlaut12EqNrlqj5Nc9F01dvWYxQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAwMDIwWhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWY2OGE2NjA3NzdlZjJlOGIzZDEzNzllMDc1OTE5YzRi MTliMWY5NjQzYmE3NjE0ZmFmMmVhYmZkODI3YzU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDT5R5y/6BhnvnZmnK+W13hf9Xa4wvxhdvWsmLAI83jHPZn dG3d9q4ef3OWpbxBE8VJu0PdtXwlsBJCEpr/XLOCxgUl9xukIdnUrPoPqEFcNr5a UjyqVyvAmEph18v5bBZQitzSGGJVRiI6B0U/C30RwNlECys1zwJBSHcaHfiXrLX1 UK4NjkD9evs+KR4mh8ElI8B7wcx0bqwgsQxXKGn3xXVNR2gxcVB9PQWbWlO1C2Ul n1lgH11yeVVq2eu+0xr1aeV27NzimoIEoIh3MRSuPFFKUN7tXr8qzqyygVzrWo5P ld/ItYsdSCwQ89GHG6go50+3rPRBtZIzwgi3NIJJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrxPTzMy8kWuDDFHcDh2V35JoTLAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyZTAyMjRmLWFkZDEtNDc1MC05ODg5LTQxNjhjM2FmMTc0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANomXAwDQYJKoZIhvcNAQELBQADggEBAMwUHMzBCoziPMwZsLv/B5wZ4PhN OgoJv49Q9vA9SBFFulsP3jk5277O7HNfNOvqphMTZqOKu6hPEGC4wC3y94Q1F1jY xQSv3kVzXpSU/y/2vYlZr740MV/amXQ8REF0ObasBBo8mypqdsCVX9RfEY673tLS cLy1GWj6MyiOWMwopNvQuIGEI3OB+TX8r+tPkg+rWt7T7hhpxDtNB22bwr6lWlAB /4ytRNniLPBcSdOSUoVkMLU7inzC9EbRqkCc3Elw2tu03dONBjGPF+JwJ2Xi6rzo kgCstrqFHpwtkckKQ5wkgqn4whWYgwyTKnXXaPqcS4vZcsDwpGX/SHkQr/o= -----END CERTIFICATE-----Generated at Sun Jun 8 17:12:33 2025 by rpki-client