$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f9218d-a97e-4a82-9cc0-be9236a27d63.roa File: 54f9218d-a97e-4a82-9cc0-be9236a27d63.roa (raw, json) Hash identifier: LxnALXL7zdh5whlRy63hzt/ZW0CwjmUnXrhvFv3ZTTk= Subject key identifier: E5:C3:8C:04:CA:44:82:8D:06:B4:3A:1F:66:A2:ED:33:8F:FF:DF:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3CCC030B47330EFFFEDA8BB63CA504D524F79750 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f9218d-a97e-4a82-9cc0-be9236a27d63.roa Signing time: Mon 19 May 2025 16:20:12 +0000 ROA not before: Mon 19 May 2025 16:20:12 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 157.175.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:cc:03:0b:47:33:0e:ff:fe:da:8b:b6:3c:a5:04:d5:24:f7:97:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:20:12 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=74bdace4a43e3ebc2f6ca8b0f38fd1153de76939268bb8b30936a06819655f28, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:75:ed:f9:7c:51:e3:7e:57:8b:fe:6f:f0:d8: bf:b6:88:a9:9a:aa:fd:22:7a:31:99:46:45:50:06: 00:ee:96:6e:63:a5:4f:c9:9b:61:0e:06:e0:79:8c: c9:8a:2a:39:1b:dd:17:f4:1d:c6:3f:19:50:19:39: 88:66:a4:c1:59:8b:3e:fd:ee:bc:84:70:89:e4:16: ee:86:5e:24:79:b3:cb:1d:94:1d:0b:13:ce:2b:b0: 0b:5b:f1:78:59:c2:57:5f:aa:3d:c8:01:74:a1:f0: 09:bd:bc:6d:bb:25:5f:f5:e0:6b:98:c7:00:c5:38: 20:c6:6c:99:92:2a:ee:ab:80:d4:2a:82:fa:e6:22: 3a:57:af:0b:ce:77:67:50:85:3a:6a:5a:03:79:cd: 9b:5f:ad:fd:93:f2:83:17:c0:12:6a:97:fb:78:9f: 42:fd:d3:f1:ca:1c:eb:a2:67:6e:99:81:92:64:d0: 9e:4b:67:e9:83:44:81:f4:b5:22:5a:7d:2c:e1:03: d9:72:73:b1:fc:12:db:db:64:76:44:41:20:69:d4: 3e:2a:e5:59:19:a9:a4:4a:44:3e:c0:c9:b2:f7:11: a3:ab:f8:99:b3:ae:07:34:c2:7e:80:be:2b:5f:36: 6f:a6:b6:db:0b:02:d3:71:c2:25:23:3f:45:45:06: a2:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:C3:8C:04:CA:44:82:8D:06:B4:3A:1F:66:A2:ED:33:8F:FF:DF:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54f9218d-a97e-4a82-9cc0-be9236a27d63.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.175.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0d:74:fe:c0:07:f0:d3:ac:cb:ce:8a:92:b6:5f:81:4d:00:39: 30:53:e5:c9:69:09:5a:fe:78:2c:94:52:f1:79:f0:dc:bd:e0: cf:9e:e1:e9:c8:44:a4:34:ac:10:cf:4d:70:23:4e:fa:87:45: e3:c9:39:ed:d7:86:cd:14:e2:b0:e6:b7:6a:20:1e:87:c5:09: 5c:4e:47:56:84:c1:fc:05:d7:40:13:ed:00:20:d2:6b:6e:c4: c4:ca:70:0b:0d:34:7a:12:34:5f:76:42:01:ba:d9:63:24:7d: e4:2b:d9:6e:06:bc:4a:2a:34:73:c4:e1:1c:50:4b:bb:8e:ff: d3:e1:26:5d:cb:ca:ac:1c:62:92:13:cc:87:53:11:de:2e:48: 41:81:ef:24:51:ab:11:26:e3:c0:87:dd:25:29:f4:6d:ee:f0: 04:5c:d5:d6:c3:3d:f9:0a:98:6c:93:dd:bb:81:f3:fd:eb:ec: 4b:12:92:2b:3f:5b:11:6c:22:5f:ce:17:21:c9:3f:f7:6d:14: 7b:dd:e1:6c:4d:15:dc:de:3c:cf:02:60:f0:71:e3:47:d8:8d: fd:00:85:dd:d0:8e:c0:8e:aa:18:94:76:80:3a:3f:b4:d6:4b: c8:fb:0e:2f:87:7b:58:45:4d:67:38:44:3e:0f:91:c0:cf:bc: bc:0b:57:94 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPMwDC0czDv/+2ou2PKUE1ST3l1AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTYyMDEyWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NGJkYWNlNGE0M2UzZWJjMmY2Y2E4YjBmMzhmZDExNTNk ZTc2OTM5MjY4YmI4YjMwOTM2YTA2ODE5NjU1ZjI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4de35fFHjfleL/m/w2L+2iKmaqv0iejGZRkVQBgDulm5j pU/Jm2EOBuB5jMmKKjkb3Rf0HcY/GVAZOYhmpMFZiz797ryEcInkFu6GXiR5s8sd lB0LE84rsAtb8XhZwldfqj3IAXSh8Am9vG27JV/14GuYxwDFOCDGbJmSKu6rgNQq gvrmIjpXrwvOd2dQhTpqWgN5zZtfrf2T8oMXwBJql/t4n0L90/HKHOuiZ26ZgZJk 0J5LZ+mDRIH0tSJafSzhA9lyc7H8EtvbZHZEQSBp1D4q5VkZqaRKRD7AybL3EaOr +Jmzrgc0wn6AvitfNm+mttsLAtNxwiUjP0VFBqJzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5cOMBMpEgo0GtDofZqLtM4//3ywwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0ZjkyMThkLWE5N2UtNGE4Mi05Y2MwLWJlOTIzNmEyN2Q2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCdrzANBgkqhkiG9w0BAQsFAAOCAQEADXT+wAfw06zLzoqStl+BTQA5MFPl yWkJWv54LJRS8Xnw3L3gz57h6chEpDSsEM9NcCNO+odF48k57deGzRTisOa3aiAe h8UJXE5HVoTB/AXXQBPtACDSa27ExMpwCw00ehI0X3ZCAbrZYyR95CvZbga8Sio0 c8ThHFBLu47/0+EmXcvKrBxikhPMh1MR3i5IQYHvJFGrESbjwIfdJSn0be7wBFzV 1sM9+QqYbJPdu4Hz/evsSxKSKz9bEWwiX84XIck/920Ue93hbE0V3N48zwJg8HHj R9iN/QCF3dCOwI6qGJR2gDo/tNZLyPsOL4d7WEVNZzhEPg+RwM+8vAtXlA== -----END CERTIFICATE-----Generated at Sun Jun 1 04:37:28 2025 by rpki-client