$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a62da10-7a91-4f00-8d90-807e784a45e8.roa File: 6a62da10-7a91-4f00-8d90-807e784a45e8.roa (raw, json) Hash identifier: /2e6WnZYZcY4M9RyQvgDzRJSFt+I7Mu6CcOgTk6geW0= Subject key identifier: 2E:A9:B0:1D:78:19:83:CE:FA:A4:FD:B3:C6:2D:EA:53:12:7B:AC:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 73690DD40C0E08D70B17A54D77E53E948D9919DC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a62da10-7a91-4f00-8d90-807e784a45e8.roa Signing time: Tue 20 May 2025 00:32:25 +0000 ROA not before: Tue 20 May 2025 00:32:25 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.23.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:69:0d:d4:0c:0e:08:d7:0b:17:a5:4d:77:e5:3e:94:8d:99:19:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:32:25 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=6ddf6f45a4861ce0f7196912c70f40c5102b235a87a5e9d5ed041620215c1020, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:9b:a9:3b:d7:20:23:bc:ed:c9:6c:bf:e1:91: 14:f5:a9:08:dd:cd:07:b4:09:91:c4:0a:d4:d9:93: dd:74:cc:3d:56:3c:e6:6a:2c:11:c6:b3:1e:6c:09: 45:c9:d3:d1:dc:2c:b2:46:27:25:82:cb:d8:a4:2c: 7e:ff:9a:0e:0a:1b:5f:a2:df:a5:a3:af:b7:03:17: 10:17:f4:3d:0d:8e:da:b5:33:50:85:e0:41:7e:48: d2:be:c4:61:1a:03:d3:52:ca:5a:6a:13:0f:d7:2c: 53:0c:f2:4f:4d:d5:a0:eb:9c:c9:d5:10:05:25:18: 7d:31:74:35:96:66:15:b5:69:f4:84:26:52:6e:1b: 71:39:ad:9c:b7:41:d6:2a:d8:35:13:b4:06:21:3e: f2:6a:98:68:10:b8:4d:08:86:40:3c:a1:8c:1a:ba: d1:0d:eb:bb:f1:33:1b:a1:11:a2:ed:b4:50:ec:2f: 6b:35:3e:0f:4e:72:de:00:b7:a3:d2:e6:ef:44:32: be:a1:f6:0a:30:74:46:9a:ae:00:5a:b7:5f:4a:35: 3a:21:c6:b1:23:96:76:97:fd:f2:63:ac:13:41:42: bc:42:40:4b:6c:1b:12:76:bd:60:b6:9f:b6:b5:13: 9d:01:23:bf:c4:78:72:25:e2:b2:c6:df:c0:08:b1: 86:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:A9:B0:1D:78:19:83:CE:FA:A4:FD:B3:C6:2D:EA:53:12:7B:AC:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a62da10-7a91-4f00-8d90-807e784a45e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.96.0/19 Signature Algorithm: sha256WithRSAEncryption 77:26:cd:b4:50:8c:2b:4d:75:70:68:71:29:38:7f:62:5b:78: 6f:61:c0:bb:1b:21:24:0e:38:cf:60:08:49:90:ac:4e:91:6a: 17:72:a7:85:6d:81:37:30:48:c7:d0:65:81:f2:61:a2:0e:c2: 5b:f5:5e:2f:e6:cc:08:47:df:f1:d3:de:93:a5:38:60:62:28: 7a:aa:87:de:64:e8:04:66:15:fa:40:46:21:2a:c1:4b:2b:0a: 07:a4:4e:ee:88:45:7f:2d:93:b2:5f:85:e4:05:86:e5:99:c5: 93:69:d5:f1:f9:f8:28:b7:1c:84:d2:02:7d:91:87:5e:38:41: ad:1c:67:94:6a:15:e1:6d:2d:0f:73:33:39:e3:79:ab:3c:f4: 97:61:00:16:3a:a9:2e:df:e5:71:36:29:30:a4:bc:c6:5c:ff: a0:d4:48:5b:1b:1e:50:5c:53:49:cf:94:f6:b1:2f:a2:8a:33: 52:75:22:f4:48:8c:f1:81:9b:e7:a5:bb:8b:a2:e7:a5:61:70: 4c:61:a9:7a:7f:7a:c5:22:bd:c1:5d:18:af:15:c3:9d:0e:c9: f7:9e:42:2f:c9:86:92:54:26:c8:62:32:79:55:4b:26:92:c8: b4:06:13:9a:85:e8:a7:33:1d:54:12:a8:81:30:da:81:a6:1d: 12:48:58:fd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc2kN1AwOCNcLF6VNd+U+lI2ZGdwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAzMjI1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZGRmNmY0NWE0ODYxY2UwZjcxOTY5MTJjNzBmNDBjNTEw MmIyMzVhODdhNWU5ZDVlZDA0MTYyMDIxNWMxMDIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCFm6k71yAjvO3JbL/hkRT1qQjdzQe0CZHECtTZk910zD1W POZqLBHGsx5sCUXJ09HcLLJGJyWCy9ikLH7/mg4KG1+i36Wjr7cDFxAX9D0Njtq1 M1CF4EF+SNK+xGEaA9NSylpqEw/XLFMM8k9N1aDrnMnVEAUlGH0xdDWWZhW1afSE JlJuG3E5rZy3QdYq2DUTtAYhPvJqmGgQuE0IhkA8oYwautEN67vxMxuhEaLttFDs L2s1Pg9Oct4At6PS5u9EMr6h9gowdEaargBat19KNTohxrEjlnaX/fJjrBNBQrxC QEtsGxJ2vWC2n7a1E50BI7/EeHIl4rLG38AIsYbXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULqmwHXgZg876pP2zxi3qUxJ7rBAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhNjJkYTEwLTdhOTEtNGYwMC04ZDkwLTgwN2U3ODRhNDVlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUXF2AwDQYJKoZIhvcNAQELBQADggEBAHcmzbRQjCtNdXBocSk4f2JbeG9h wLsbISQOOM9gCEmQrE6Rahdyp4VtgTcwSMfQZYHyYaIOwlv1Xi/mzAhH3/HT3pOl OGBiKHqqh95k6ARmFfpARiEqwUsrCgekTu6IRX8tk7JfheQFhuWZxZNp1fH5+Ci3 HITSAn2Rh144Qa0cZ5RqFeFtLQ9zMznjeas89JdhABY6qS7f5XE2KTCkvMZc/6DU SFsbHlBcU0nPlPaxL6KKM1J1IvRIjPGBm+elu4ui56VhcExhqXp/esUivcFdGK8V w50OyfeeQi/JhpJUJshiMnlVSyaSyLQGE5qF6KczHVQSqIEw2oGmHRJIWP0= -----END CERTIFICATE-----Generated at Sun Jun 1 05:17:32 2025 by rpki-client