$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45a29cb5-ef36-49b6-8d84-d87fbb54fd2e.roa File: 45a29cb5-ef36-49b6-8d84-d87fbb54fd2e.roa (raw, json) Hash identifier: ZwAW5badkWzFZH6IrTDHmGgN8vr9+PUSpBGdKY+hRKE= Subject key identifier: 5C:FD:53:83:08:9C:97:EB:4E:29:19:8D:17:24:F8:2D:28:AF:2A:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 621DBEE6DE6F9B7448967D250A676E8B9A6B5158 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45a29cb5-ef36-49b6-8d84-d87fbb54fd2e.roa Signing time: Tue 20 May 2025 00:31:29 +0000 ROA not before: Tue 20 May 2025 00:31:29 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.20.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:1d:be:e6:de:6f:9b:74:48:96:7d:25:0a:67:6e:8b:9a:6b:51:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:31:29 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=06eea95bac2988f6d537a4b0892218ced09e7949dafbb262b492f9c8935d5676, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:29:76:14:f6:98:93:db:c2:22:7a:ef:a6:78: 86:fb:c6:47:f8:85:36:34:38:2a:72:a6:89:89:a4: 3d:a3:02:e3:49:8f:0b:94:3a:05:80:6e:df:a0:1d: 0f:b0:d3:e5:92:e5:1a:e3:aa:df:4a:6b:57:59:97: 60:4f:22:b9:f6:59:2d:67:e3:ee:0c:d6:e6:c4:dc: 1d:f3:e6:47:49:19:7e:a6:c1:08:c7:91:8a:35:a8: 15:47:b6:4f:73:75:69:62:af:16:73:9a:88:42:d5: 6a:d7:e0:c1:bd:e6:6b:bc:d6:ad:b2:56:01:da:ec: 7c:11:c0:72:7a:20:cc:fb:37:ad:08:bd:1e:dd:76: ab:6f:5a:37:48:93:0e:61:a0:15:14:1b:89:af:f1: ce:fb:44:81:8e:fd:41:05:cf:e2:f6:78:cb:2e:f8: ef:ec:4f:c6:42:54:70:33:a5:84:4a:85:2c:69:9f: 63:78:99:e0:31:3a:2d:44:2c:dd:83:e4:85:38:74: 21:05:27:e5:b4:a0:77:dd:e5:3a:49:b3:b4:32:38: 70:6d:7d:24:7a:01:ee:dd:14:08:75:93:f7:a6:e6: d0:0c:69:dc:a0:cb:cf:29:30:67:30:ee:a5:a1:3a: 2a:6e:6c:1a:5d:b5:b9:bc:40:25:50:2e:a6:19:7b: 96:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:FD:53:83:08:9C:97:EB:4E:29:19:8D:17:24:F8:2D:28:AF:2A:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45a29cb5-ef36-49b6-8d84-d87fbb54fd2e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption 74:26:79:07:cf:ca:9a:d4:3d:f1:a4:9c:17:66:43:ee:67:f4: 08:29:14:e0:fa:da:6f:67:1c:cb:a1:fd:17:e3:99:04:34:d0: 2d:b0:fb:02:0e:6e:40:6f:4a:6b:53:9e:d2:a5:ab:a9:f9:eb: e6:61:f3:11:f0:b3:7a:bb:fb:1b:19:ef:27:32:b1:3c:0c:59: 80:17:36:97:33:d8:e4:21:dc:7a:f4:40:0e:a3:5c:27:df:c3: 35:6b:65:9c:84:c2:03:43:12:7f:c8:6c:d4:c5:d2:ac:f5:0f: 1b:cb:6c:8a:b9:05:21:d4:a7:9a:91:a1:73:24:b4:da:77:9b: ee:8d:e7:cf:98:bb:a6:42:8f:26:d5:e7:cc:7e:e6:ff:67:74: c5:2a:f5:9c:09:58:d9:4e:20:e3:96:9c:1f:a9:9d:40:01:b2: 81:1e:78:7a:7e:b8:88:c9:a1:e8:c9:89:de:dc:83:4a:b2:dc: f9:39:e2:0c:33:f5:1a:9d:3c:21:14:a1:49:be:0a:2c:1d:6d: 36:7f:22:e1:1b:bd:1a:0c:99:06:c4:5c:28:0b:a1:b2:c5:79: 07:7e:94:bc:21:fa:bd:6b:02:d3:7d:78:dd:ec:1c:7c:b1:ea: 98:bb:dc:6f:85:1d:6f:d0:97:fd:11:66:37:10:b8:57:ba:e1: 41:58:a5:97 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYh2+5t5vm3RIln0lCmdui5prUVgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAzMTI5WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNmVlYTk1YmFjMjk4OGY2ZDUzN2E0YjA4OTIyMThjZWQw OWU3OTQ5ZGFmYmIyNjJiNDkyZjljODkzNWQ1Njc2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtKXYU9piT28Iieu+meIb7xkf4hTY0OCpypomJpD2jAuNJ jwuUOgWAbt+gHQ+w0+WS5Rrjqt9Ka1dZl2BPIrn2WS1n4+4M1ubE3B3z5kdJGX6m wQjHkYo1qBVHtk9zdWlirxZzmohC1WrX4MG95mu81q2yVgHa7HwRwHJ6IMz7N60I vR7ddqtvWjdIkw5hoBUUG4mv8c77RIGO/UEFz+L2eMsu+O/sT8ZCVHAzpYRKhSxp n2N4meAxOi1ELN2D5IU4dCEFJ+W0oHfd5TpJs7QyOHBtfSR6Ae7dFAh1k/em5tAM adygy88pMGcw7qWhOipubBpdtbm8QCVQLqYZe5bhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUXP1Tgwicl+tOKRmNFyT4LSivKgMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ1YTI5Y2I1LWVmMzYtNDliNi04ZDg0LWQ4N2ZiYjU0ZmQyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAXFDANBgkqhkiG9w0BAQsFAAOCAQEAdCZ5B8/KmtQ98aScF2ZD7mf0CCkU 4Prab2ccy6H9F+OZBDTQLbD7Ag5uQG9Ka1Oe0qWrqfnr5mHzEfCzerv7GxnvJzKx PAxZgBc2lzPY5CHcevRADqNcJ9/DNWtlnITCA0MSf8hs1MXSrPUPG8tsirkFIdSn mpGhcyS02neb7o3nz5i7pkKPJtXnzH7m/2d0xSr1nAlY2U4g45acH6mdQAGygR54 en64iMmh6MmJ3tyDSrLc+TniDDP1Gp08IRShSb4KLB1tNn8i4Ru9GgyZBsRcKAuh ssV5B36UvCH6vWsC03143ewcfLHqmLvcb4Udb9CX/RFmNxC4V7rhQVillw== -----END CERTIFICATE-----Generated at Sun Jun 1 05:13:05 2025 by rpki-client