$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/425642c2-ae67-4aad-931d-f508fb8f82b3.roa File: 425642c2-ae67-4aad-931d-f508fb8f82b3.roa (raw, json) Hash identifier: OIb2HERK7HmaA1/wchhO+t+kY+4hUEDouOUNJYS4+CI= Subject key identifier: 73:14:B3:D0:87:B3:9A:40:58:1C:AC:C7:C8:A6:78:02:23:66:72:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BCA3C049A3AFF8C68518F235106E4D3C1DCBC70 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/425642c2-ae67-4aad-931d-f508fb8f82b3.roa Signing time: Sat 17 May 2025 00:01:51 +0000 ROA not before: Sat 17 May 2025 00:01:51 +0000 ROA not after: Sat 21 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.195.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:ca:3c:04:9a:3a:ff:8c:68:51:8f:23:51:06:e4:d3:c1:dc:bc:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:01:51 2025 GMT Not After : Jun 21 23:59:59 2025 GMT Subject: serialNumber=785784bac3216974cc0ef2c81909f1222bd34aa91a672ed65e5b9cb9050667a2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2d:a7:2c:df:82:55:df:92:ba:da:8d:cf:b7: 4b:7e:bb:48:dd:da:36:4e:60:ba:e4:11:7e:2d:4f: a7:6b:9f:ad:92:03:46:b7:c6:29:f9:9b:f8:f6:7f: a4:8d:67:81:62:71:31:40:c6:97:c6:dd:26:85:f8: 88:53:e9:6d:9a:f7:6d:3d:a0:a5:cd:8c:db:70:7e: af:f8:25:4c:a2:b2:79:ff:5c:e2:a5:07:cf:48:73: 68:6a:a2:45:4b:b4:73:ba:b1:e2:84:80:06:90:78: c5:a2:fa:28:ac:db:c5:ce:98:fa:11:ca:47:30:5b: ed:8f:3b:45:80:2a:a6:78:4a:7a:6e:b5:c3:c4:26: fb:60:27:cd:29:59:18:52:4c:7f:07:bd:ad:ff:55: 46:b6:67:19:ec:d4:57:2f:66:d0:04:21:85:6f:e8: 0d:b5:57:15:d4:67:86:b9:16:8b:7b:8e:28:12:d6: 4e:5c:1b:d3:90:b7:94:e3:56:59:a7:ec:d0:89:7b: 30:69:bd:1f:74:7a:43:2c:f4:7d:2f:95:3a:17:1e: a1:61:35:16:ca:fd:47:76:48:90:ce:76:8b:53:13: ed:13:be:15:79:a1:ca:a3:a4:65:8c:42:b9:aa:13: a3:a6:22:78:c6:e4:75:18:72:d0:af:81:65:ca:87: d9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:14:B3:D0:87:B3:9A:40:58:1C:AC:C7:C8:A6:78:02:23:66:72:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/425642c2-ae67-4aad-931d-f508fb8f82b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.195.0.0/16 Signature Algorithm: sha256WithRSAEncryption 17:2c:b5:9c:9e:5c:a7:78:11:27:4b:63:59:ba:05:79:83:f0: b5:84:23:af:88:65:8a:9b:cc:22:e5:5e:88:d0:7b:f0:f4:2d: 83:ac:b9:41:bb:a8:cd:1a:0d:87:53:4b:79:44:46:1b:86:60: 98:9d:0e:b9:66:09:da:f5:3c:30:94:13:14:93:a8:16:f7:cf: 95:35:8c:48:de:86:79:fd:95:f2:14:62:de:3e:84:80:5b:d4: 1a:3f:dc:d0:4e:1b:f0:7b:70:48:8e:6a:97:ec:fa:73:ec:8f: 74:25:13:f3:b7:fb:fc:cb:f5:d3:76:f7:f9:cd:5e:40:94:9b: a9:23:f4:8d:49:8c:c8:f9:4b:5c:96:b9:45:43:fd:77:29:ad: fe:d4:fb:4b:e5:85:dd:3c:f4:cb:43:09:e8:df:ca:ab:7e:86: 09:c0:0a:a6:b1:68:a9:5a:04:94:08:15:3c:f9:34:fb:49:40: 08:b8:a0:69:bf:50:a9:b2:7b:72:97:3f:d5:ec:b0:b6:2a:8b: 51:69:c4:d6:0a:49:05:39:6f:7e:7b:28:61:96:8a:0c:08:c9: 7d:3e:e0:64:3c:3b:e7:10:86:1c:01:1e:cd:f7:0f:47:9f:ef: be:47:fa:4b:86:4b:48:a4:1a:fa:a0:f1:d9:db:8f:9a:25:3d: eb:61:04:b2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUW8o8BJo6/4xoUY8jUQbk08HcvHAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE3MDAwMTUxWhcNMjUwNjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODU3ODRiYWMzMjE2OTc0Y2MwZWYyYzgxOTA5ZjEyMjJi ZDM0YWE5MWE2NzJlZDY1ZTViOWNiOTA1MDY2N2EyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKLacs34JV35K62o3Pt0t+u0jd2jZOYLrkEX4tT6drn62S A0a3xin5m/j2f6SNZ4FicTFAxpfG3SaF+IhT6W2a9209oKXNjNtwfq/4JUyisnn/ XOKlB89Ic2hqokVLtHO6seKEgAaQeMWi+iis28XOmPoRykcwW+2PO0WAKqZ4Snpu tcPEJvtgJ80pWRhSTH8Hva3/VUa2Zxns1FcvZtAEIYVv6A21VxXUZ4a5Fot7jigS 1k5cG9OQt5TjVlmn7NCJezBpvR90ekMs9H0vlToXHqFhNRbK/Ud2SJDOdotTE+0T vhV5ocqjpGWMQrmqE6OmInjG5HUYctCvgWXKh9kHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUcxSz0IezmkBYHKzHyKZ4AiNmctQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyNTY0MmMyLWFlNjctNGFhZC05MzFkLWY1MDhmYjhmODJiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQwzANBgkqhkiG9w0BAQsFAAOCAQEAFyy1nJ5cp3gRJ0tjWboFeYPwtYQj r4hlipvMIuVeiNB78PQtg6y5QbuozRoNh1NLeURGG4ZgmJ0OuWYJ2vU8MJQTFJOo FvfPlTWMSN6Gef2V8hRi3j6EgFvUGj/c0E4b8HtwSI5ql+z6c+yPdCUT87f7/Mv1 03b3+c1eQJSbqSP0jUmMyPlLXJa5RUP9dymt/tT7S+WF3Tz0y0MJ6N/Kq36GCcAK prFoqVoElAgVPPk0+0lACLigab9QqbJ7cpc/1eywtiqLUWnE1gpJBTlvfnsoYZaK DAjJfT7gZDw75xCGHAEezfcPR5/vvkf6S4ZLSKQa+qDx2duPmiU962EEsg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:44:56 2025 by rpki-client