$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c35551e-a01f-4f64-b39a-f1ada190eab2.roa File: 2c35551e-a01f-4f64-b39a-f1ada190eab2.roa (raw, json) Hash identifier: ZvLEq999FpeYIbhS0Ut54QsaZn6a9io3C1Zf4etVX18= Subject key identifier: 9F:79:09:1B:C8:ED:AA:ED:03:36:45:3B:D7:F1:E5:75:51:81:B8:F2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 50BCB71D628C9344F76DCD761B881A7E745D9B65 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c35551e-a01f-4f64-b39a-f1ada190eab2.roa Signing time: Fri 23 May 2025 00:00:16 +0000 ROA not before: Fri 23 May 2025 00:00:16 +0000 ROA not after: Fri 27 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 100.42.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:bc:b7:1d:62:8c:93:44:f7:6d:cd:76:1b:88:1a:7e:74:5d:9b:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 23 00:00:16 2025 GMT Not After : Jun 27 23:59:59 2025 GMT Subject: serialNumber=bc0970de5e2ade53688761eec9ab4754647b532c6f400ac71755eb6762bddd3f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:36:1e:6b:2b:89:6a:59:4b:0d:7a:85:48:15: 51:8a:8e:36:08:f6:35:94:fa:25:2a:72:1c:f9:08: 8a:2e:db:b8:3b:6f:4e:87:3d:6d:e3:62:96:81:17: 12:92:89:55:e6:12:3d:1d:57:85:45:46:c4:69:9b: 89:55:29:fd:28:94:f4:ac:50:47:22:d1:87:ba:ba: fb:7d:e4:1e:ac:47:35:52:a6:4d:f6:ec:85:80:12: 8c:fc:81:50:48:e1:bd:f7:e0:d4:45:00:27:4c:14: 62:2a:73:1b:b7:c4:22:89:1a:04:22:23:e4:f7:75: 5f:1d:85:4a:e7:06:22:00:27:3e:72:85:69:9b:69: 15:02:9f:a5:06:a3:5e:8a:30:57:9f:88:14:f8:2e: 1a:b8:4f:f1:57:cb:11:02:8e:1d:cf:fe:08:67:e1: c6:3e:c9:6c:5f:7e:99:42:96:57:97:99:b7:20:4f: 59:38:e9:70:0f:cb:4e:04:2e:76:a6:15:c7:95:28: 2e:de:b9:56:88:58:6c:8f:fa:b4:3d:68:32:a5:fb: 65:ff:ad:3b:0e:6a:e3:54:7e:e1:3b:49:ec:f3:a5: 1b:2a:c2:81:55:7a:a6:b3:fe:24:e6:79:2d:ac:25: 5e:13:a7:c2:33:c6:d4:c3:9c:c4:0e:cc:9d:c8:45: f9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:79:09:1B:C8:ED:AA:ED:03:36:45:3B:D7:F1:E5:75:51:81:B8:F2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c35551e-a01f-4f64-b39a-f1ada190eab2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 100.42.64.0/20 Signature Algorithm: sha256WithRSAEncryption 06:79:ed:96:28:f7:7c:df:c8:0b:5c:bf:9f:5b:45:24:a6:71: dd:f2:39:5a:38:bc:89:3a:f7:86:e9:48:4a:ac:39:1b:20:06: 43:9a:bf:a4:75:94:8b:e7:1f:b5:ef:e4:dc:0d:ab:9b:71:56: 68:ec:cd:dd:bf:7c:8d:a0:4f:17:ce:92:07:b1:17:32:0a:98: 92:85:5b:5e:9a:c3:40:b5:75:42:f1:d2:9f:1c:0f:70:8c:e8: 03:c2:cd:ca:4f:1e:62:e0:10:a2:9b:d1:76:f3:75:42:d9:63: 36:b9:62:99:7e:8f:ca:7b:b2:aa:fb:cd:16:f7:a9:76:7c:9b: 63:80:da:1b:40:5a:73:74:0f:e7:d4:6c:c4:f4:0e:03:9e:a5: 64:d9:46:55:dd:7e:8d:94:21:b8:3f:36:d0:0d:77:c1:10:c4: 37:d2:4c:b8:0b:ef:1e:18:69:7b:52:f3:08:d7:fb:60:0b:d5: de:5c:46:0b:e6:9d:17:25:24:05:6f:d5:4a:93:25:ea:64:67: 02:d0:ce:e3:f8:08:7d:f3:63:f6:8e:67:df:04:40:2d:60:ca: 06:e9:a6:51:55:5f:01:1e:ed:7f:46:10:a8:54:02:b1:aa:64: 55:a0:90:20:c5:92:83:7b:db:92:44:15:36:74:4b:ec:ed:99: 21:c4:cd:db -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUULy3HWKMk0T3bc12G4gafnRdm2UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIzMDAwMDE2WhcNMjUwNjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYzA5NzBkZTVlMmFkZTUzNjg4NzYxZWVjOWFiNDc1NDY0 N2I1MzJjNmY0MDBhYzcxNzU1ZWI2NzYyYmRkZDNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9Nh5rK4lqWUsNeoVIFVGKjjYI9jWU+iUqchz5CIou27g7 b06HPW3jYpaBFxKSiVXmEj0dV4VFRsRpm4lVKf0olPSsUEci0Ye6uvt95B6sRzVS pk327IWAEoz8gVBI4b334NRFACdMFGIqcxu3xCKJGgQiI+T3dV8dhUrnBiIAJz5y hWmbaRUCn6UGo16KMFefiBT4Lhq4T/FXyxECjh3P/ghn4cY+yWxffplClleXmbcg T1k46XAPy04ELnamFceVKC7euVaIWGyP+rQ9aDKl+2X/rTsOauNUfuE7SezzpRsq woFVeqaz/iTmeS2sJV4Tp8IzxtTDnMQOzJ3IRflbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUn3kJG8jtqu0DNkU71/HldVGBuPIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJjMzU1NTFlLWEwMWYtNGY2NC1iMzlhLWYxYWRhMTkwZWFiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARkKkAwDQYJKoZIhvcNAQELBQADggEBAAZ57ZYo93zfyAtcv59bRSSmcd3y OVo4vIk694bpSEqsORsgBkOav6R1lIvnH7Xv5NwNq5txVmjszd2/fI2gTxfOkgex FzIKmJKFW16aw0C1dULx0p8cD3CM6APCzcpPHmLgEKKb0XbzdULZYza5Ypl+j8p7 sqr7zRb3qXZ8m2OA2htAWnN0D+fUbMT0DgOepWTZRlXdfo2UIbg/NtANd8EQxDfS TLgL7x4YaXtS8wjX+2AL1d5cRgvmnRclJAVv1UqTJepkZwLQzuP4CH3zY/aOZ98E QC1gygbpplFVXwEe7X9GEKhUArGqZFWgkCDFkoN725JEFTZ0S+ztmSHEzds= -----END CERTIFICATE-----Generated at Sun Jun 1 04:35:28 2025 by rpki-client