$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a08c855-4cd4-4fa5-b780-8a773463b987.roa File: 3a08c855-4cd4-4fa5-b780-8a773463b987.roa (raw, json) Hash identifier: YtOgZkl9zaoV+73pmXXHreXxEwiTYGXv+Br1vFuDDOU= Subject key identifier: B2:4E:67:2C:CC:45:00:D3:90:7C:F4:74:F9:8E:4E:ED:7C:39:64:18 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 190ECC2A942D5EDFF3D1C564362B855CC56EF8EB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a08c855-4cd4-4fa5-b780-8a773463b987.roa Signing time: Sat 31 May 2025 00:10:55 +0000 ROA not before: Sat 31 May 2025 00:10:55 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:0e:cc:2a:94:2d:5e:df:f3:d1:c5:64:36:2b:85:5c:c5:6e:f8:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 31 00:10:55 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=6c1f8b46cd220eb777096e61f20eac5a1cc0326f8a5641cfef806a25d025256f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:f5:64:90:7c:70:60:b1:b6:f0:78:2e:0e:7d: 64:82:61:11:eb:7c:a9:0b:e1:56:12:ec:a4:a9:0f: 88:2d:02:cc:fa:e6:03:03:b5:db:e3:d8:c0:6a:39: b9:55:7a:e8:b2:62:fd:5d:5d:08:6a:ea:6f:d2:34: 8c:00:92:52:37:7b:11:87:b4:45:5c:34:7e:24:92: 73:cb:f2:88:cb:fe:88:0d:30:9b:28:0a:58:ce:c5: c0:1a:06:ab:3a:8b:c2:ba:ec:eb:55:37:22:6a:80: 12:ef:bb:33:db:b4:31:e1:46:bf:eb:67:81:f5:0a: a6:dd:3b:77:91:5e:a5:58:75:b3:e7:23:ad:0c:a7: 4e:45:6f:f7:f6:71:49:e7:fb:2e:1a:41:87:1b:9c: 80:2f:74:8a:d6:56:71:b4:75:67:80:f6:ef:14:a9: c5:c7:b7:c4:89:00:51:a4:32:46:c5:63:29:4c:3e: cd:a4:1a:25:b3:cf:ce:29:65:bc:42:88:6f:aa:d1: b0:85:3a:5d:ab:26:fc:df:45:be:78:7f:e1:65:b4: 7b:df:cd:15:ac:87:59:62:27:7d:a2:1d:c0:c8:42: 86:d3:25:cc:f5:05:91:f6:79:b7:83:eb:49:52:0a: 04:49:84:24:10:6c:f4:be:cd:de:9a:10:06:2c:bf: 84:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:4E:67:2C:CC:45:00:D3:90:7C:F4:74:F9:8E:4E:ED:7C:39:64:18 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a08c855-4cd4-4fa5-b780-8a773463b987.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.16.0/20 Signature Algorithm: sha256WithRSAEncryption 86:6e:fb:35:2f:ce:8e:54:2b:30:c3:cf:3a:85:61:3b:f3:aa: b2:19:2b:06:a0:ce:27:5d:34:a6:47:71:c3:a9:8d:40:ed:78: ee:3f:57:39:85:89:11:ce:be:f1:2c:63:4e:01:84:93:a2:0c: 26:c4:eb:72:62:85:a8:49:22:ca:75:01:c2:76:ae:2f:34:c8: 78:e6:d5:ea:da:8d:d1:38:d6:1e:57:61:6f:08:3e:cd:c6:9d: f0:9c:48:6e:b2:dd:93:b6:b2:ce:30:76:d9:c7:6a:24:29:14: 4c:0c:35:17:dc:56:d7:60:4b:b8:6f:7a:bd:af:20:f3:b0:27: d5:01:93:44:7c:b4:cd:5e:71:c6:14:62:97:9a:a1:d4:c1:a2: 4b:9f:df:ea:40:9c:2b:97:20:8f:1c:ef:c3:da:3c:fb:15:95: 59:a6:b7:c1:b7:cd:d4:8c:87:9b:04:c7:0e:65:a7:65:33:25: ab:9c:6a:4f:68:fd:2b:09:1b:5d:c8:65:7e:0e:6a:42:7c:ea: 3a:7a:11:eb:24:f2:04:7e:a2:e6:d5:83:6c:2b:64:ed:c5:3e: 27:96:2e:18:a2:2b:12:b8:49:d7:b7:b4:ec:45:26:43:19:44: fe:a0:04:11:0f:31:bd:b8:b7:32:db:89:0b:2c:3f:cf:a2:e2: 75:24:92:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGQ7MKpQtXt/z0cVkNiuFXMVu+OswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMxMDAxMDU1WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YzFmOGI0NmNkMjIwZWI3NzcwOTZlNjFmMjBlYWM1YTFj YzAzMjZmOGE1NjQxY2ZlZjgwNmEyNWQwMjUyNTZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQ9WSQfHBgsbbweC4OfWSCYRHrfKkL4VYS7KSpD4gtAsz6 5gMDtdvj2MBqOblVeuiyYv1dXQhq6m/SNIwAklI3exGHtEVcNH4kknPL8ojL/ogN MJsoCljOxcAaBqs6i8K67OtVNyJqgBLvuzPbtDHhRr/rZ4H1CqbdO3eRXqVYdbPn I60Mp05Fb/f2cUnn+y4aQYcbnIAvdIrWVnG0dWeA9u8UqcXHt8SJAFGkMkbFYylM Ps2kGiWzz84pZbxCiG+q0bCFOl2rJvzfRb54f+FltHvfzRWsh1liJ32iHcDIQobT Jcz1BZH2ebeD60lSCgRJhCQQbPS+zd6aEAYsv4RFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsk5nLMxFANOQfPR0+Y5O7Xw5ZBgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNhMDhjODU1LTRjZDQtNGZhNS1iNzgwLThhNzczNDYzYjk4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASXlBAwDQYJKoZIhvcNAQELBQADggEBAIZu+zUvzo5UKzDDzzqFYTvzqrIZ KwagziddNKZHccOpjUDteO4/VzmFiRHOvvEsY04BhJOiDCbE63JihahJIsp1AcJ2 ri80yHjm1erajdE41h5XYW8IPs3GnfCcSG6y3ZO2ss4wdtnHaiQpFEwMNRfcVtdg S7hver2vIPOwJ9UBk0R8tM1eccYUYpeaodTBokuf3+pAnCuXII8c78PaPPsVlVmm t8G3zdSMh5sExw5lp2UzJaucak9o/SsJG13IZX4OakJ86jp6Eesk8gR+oubVg2wr ZO3FPieWLhiiKxK4Sde3tOxFJkMZRP6gBBEPMb24tzLbiQssP8+i4nUkkrw= -----END CERTIFICATE-----Generated at Sun Jun 1 05:09:52 2025 by rpki-client