$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/735b18b1-7bb9-4007-926a-d1af3130164e.roa File: 735b18b1-7bb9-4007-926a-d1af3130164e.roa (raw, json) Hash identifier: KkcQ7DCQjFwnF0pj0J8pgfNe3gFa94S4kibBjR7XpgE= Subject key identifier: 1F:07:07:8C:91:7E:6C:80:42:DC:06:95:05:2F:D0:F5:0F:88:4B:79 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68D3663480EF585C9E0B06432B4EB6264976FA00 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/735b18b1-7bb9-4007-926a-d1af3130164e.roa Signing time: Wed 28 May 2025 00:42:11 +0000 ROA not before: Wed 28 May 2025 00:42:11 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 72.21.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:d3:66:34:80:ef:58:5c:9e:0b:06:43:2b:4e:b6:26:49:76:fa:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:42:11 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=139eb37cd8c4b0141487475f5a7fce2718a55e05c4a80cfd658a7f0c1506c8a0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9d:1f:82:c2:d4:d4:35:25:42:e2:6f:a4:6a: be:d7:bc:08:51:96:bd:c3:1c:01:96:6c:2c:bc:d3: e1:1a:81:a0:98:8b:cf:d2:ba:52:16:16:fa:a2:65: df:a5:04:96:02:5b:23:d1:be:d4:c8:a5:14:2a:f9: 82:4f:8f:9d:77:1e:00:74:22:1d:13:e0:ae:a7:b5: d9:c9:75:ac:7e:0f:64:0c:84:95:c6:a3:99:25:6d: 24:cb:5a:58:72:ec:0e:c5:75:fa:93:35:cd:62:c3: 59:e3:b1:d7:ac:ad:32:40:1f:98:59:80:89:57:f9: de:60:f9:d6:ad:15:3d:c8:df:8c:1d:d2:bb:21:f0: 25:4d:53:02:83:a5:b7:6f:c9:ec:61:69:13:64:99: 3a:3e:dd:48:b5:a6:57:dd:0c:16:66:84:2d:09:3a: b6:32:fb:ac:d0:aa:2e:1d:3b:ef:b5:9a:7d:ec:19: 5e:7f:a4:fe:92:3f:0d:ed:19:a8:53:74:fe:04:ef: c7:ac:9e:00:35:f0:7a:49:3d:e6:e4:e7:17:fa:a9: 89:d5:38:de:4e:17:0e:69:82:4e:3b:c4:d1:05:89: 97:ed:46:7d:cb:40:16:86:b1:cb:67:e9:ef:ee:73: eb:ca:a9:c3:e9:5a:bc:d8:c5:91:36:52:ae:89:30: e2:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:07:07:8C:91:7E:6C:80:42:DC:06:95:05:2F:D0:F5:0F:88:4B:79 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/735b18b1-7bb9-4007-926a-d1af3130164e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.21.128.0/19 Signature Algorithm: sha256WithRSAEncryption 29:ad:f6:98:75:ef:e6:c2:a5:cf:3b:c3:cf:cb:d0:f7:7a:66: cb:c3:86:ae:fe:aa:eb:3d:2e:0f:cd:50:89:73:ab:4d:5c:ee: 39:88:2d:f7:57:15:bd:ca:af:ef:7e:c3:7a:74:24:64:1e:ad: 65:68:1c:10:ea:e1:1b:29:31:88:a4:f0:0d:39:42:52:72:bb: a9:7e:f6:f8:d9:60:b0:73:9d:c0:36:1d:b7:5f:dc:83:6f:09: 2d:01:91:a7:07:60:0e:83:b9:9f:06:55:f2:7c:25:f8:f9:32: 4a:7b:6f:c0:97:15:d3:d4:e1:50:e8:22:a5:d1:de:3b:48:ac: dc:8f:e6:98:b3:b8:93:e0:4c:08:31:61:c3:86:a2:ac:00:61: 1b:8b:2d:66:0a:e8:28:46:9e:be:34:37:48:25:de:51:18:96: 04:f7:8c:d0:16:27:a0:a8:01:af:2d:fb:f6:cd:82:9a:24:38: d4:c7:67:2d:91:d9:b9:9f:1a:c0:56:db:64:f2:8d:24:ea:31: 3e:92:80:34:43:5d:4c:bc:8a:44:0b:4e:0c:0e:b8:1b:e4:64: 69:8d:89:43:51:05:38:61:11:7a:32:9a:13:a8:04:6e:9c:de: 23:3a:9e:ce:b0:91:14:9b:88:2f:8e:56:fc:1d:fa:94:1b:d1: a7:f9:0e:79 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaNNmNIDvWFyeCwZDK062Jkl2+gAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDA0MjExWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzllYjM3Y2Q4YzRiMDE0MTQ4NzQ3NWY1YTdmY2UyNzE4 YTU1ZTA1YzRhODBjZmQ2NThhN2YwYzE1MDZjOGEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+nR+CwtTUNSVC4m+kar7XvAhRlr3DHAGWbCy80+EagaCY i8/SulIWFvqiZd+lBJYCWyPRvtTIpRQq+YJPj513HgB0Ih0T4K6ntdnJdax+D2QM hJXGo5klbSTLWlhy7A7FdfqTNc1iw1njsdesrTJAH5hZgIlX+d5g+datFT3I34wd 0rsh8CVNUwKDpbdvyexhaRNkmTo+3Ui1plfdDBZmhC0JOrYy+6zQqi4dO++1mn3s GV5/pP6SPw3tGahTdP4E78esngA18HpJPebk5xf6qYnVON5OFw5pgk47xNEFiZft Rn3LQBaGsctn6e/uc+vKqcPpWrzYxZE2Uq6JMOKpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHwcHjJF+bIBC3AaVBS/Q9Q+IS3kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzczNWIxOGIxLTdiYjktNDAwNy05MjZhLWQxYWYzMTMwMTY0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVIFYAwDQYJKoZIhvcNAQELBQADggEBACmt9ph17+bCpc87w8/L0Pd6ZsvD hq7+qus9Lg/NUIlzq01c7jmILfdXFb3Kr+9+w3p0JGQerWVoHBDq4RspMYik8A05 QlJyu6l+9vjZYLBzncA2Hbdf3INvCS0BkacHYA6DuZ8GVfJ8Jfj5Mkp7b8CXFdPU 4VDoIqXR3jtIrNyP5pizuJPgTAgxYcOGoqwAYRuLLWYK6ChGnr40N0gl3lEYlgT3 jNAWJ6CoAa8t+/bNgpokONTHZy2R2bmfGsBW22TyjSTqMT6SgDRDXUy8ikQLTgwO uBvkZGmNiUNRBThhEXoymhOoBG6c3iM6ns6wkRSbiC+OVvwd+pQb0af5Dnk= -----END CERTIFICATE-----Generated at Sun Jun 1 05:10:59 2025 by rpki-client