$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/825fa423-a735-4a65-a380-17d1eb42f29a.roa File: 825fa423-a735-4a65-a380-17d1eb42f29a.roa (raw, json) Hash identifier: QFUIEaUVVOXkS4lf12IDSEBT3tdWNRLS849XjAxkCU4= Subject key identifier: 29:53:DF:23:19:E0:74:65:B1:EC:2A:7F:2D:EA:0C:7B:4A:55:40:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B5D2C245E9DE486524D0C539691F899B256A741 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/825fa423-a735-4a65-a380-17d1eb42f29a.roa Signing time: Tue 20 May 2025 15:20:21 +0000 ROA not before: Tue 20 May 2025 15:20:21 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:5d:2c:24:5e:9d:e4:86:52:4d:0c:53:96:91:f8:99:b2:56:a7:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 15:20:21 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=bd1d81c61bf9c2e48f058a6d054eaeb853461def5cb6d6160965d5fd7039e343, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3e:0e:43:f2:e0:77:ea:15:76:0a:f8:dc:43: 58:31:7f:26:67:e1:b7:78:f2:57:79:89:7b:ae:2f: 7d:57:a0:f3:9c:58:06:e6:87:23:53:d0:56:16:f1: 87:fe:81:69:4e:18:18:47:e6:e6:b1:86:f2:ea:92: bf:d6:b4:4f:f3:3a:b1:37:4d:93:45:68:8a:e7:e1: e2:89:22:56:d2:ed:ba:3c:55:d1:49:4f:ef:26:ad: 75:00:3b:77:7c:21:c7:b3:06:82:30:11:4b:61:37: 16:73:3c:fe:16:5f:54:30:a6:15:28:9c:05:df:5f: 72:55:16:ef:f5:c7:ad:59:16:ba:c6:43:20:5c:d4: 42:fc:9f:c6:47:52:cd:2c:bf:20:8e:3c:79:24:0e: 97:ce:8d:8c:d1:ef:fc:d3:97:8e:99:59:d6:31:ff: 7c:92:66:15:a7:7e:7c:6e:53:e1:69:96:20:a6:3d: 16:74:94:64:14:5e:19:b9:b3:4e:49:50:36:9e:11: 75:cc:98:2a:f6:32:b5:16:4d:21:22:7e:25:a4:aa: e5:eb:e7:da:2c:ad:57:19:5e:6c:99:9c:e9:4a:18: e2:ae:15:e0:45:64:d6:03:7e:5f:6d:c8:de:26:7b: f6:0a:e7:8b:be:fb:30:4a:a2:0a:51:1d:af:ec:d0: b4:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:53:DF:23:19:E0:74:65:B1:EC:2A:7F:2D:EA:0C:7B:4A:55:40:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/825fa423-a735-4a65-a380-17d1eb42f29a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.0.0/17 Signature Algorithm: sha256WithRSAEncryption 33:ed:ca:7b:ce:b5:49:9c:53:dc:ba:1f:90:79:77:00:98:77: 9e:d1:c5:48:2c:cf:02:17:9a:50:2a:ca:8f:1d:77:02:c0:f6: 0b:67:77:66:5d:19:6c:34:70:4a:b2:b3:4b:7a:0e:3a:fe:e0: 44:96:35:06:f0:81:7c:bf:ed:59:bb:11:63:8b:7b:03:88:d4: cc:93:59:68:15:08:7e:ab:e4:da:f7:56:0d:4f:eb:9c:18:89: 74:40:05:27:bb:4c:01:42:c0:60:fb:15:30:70:d5:23:16:92: 13:21:22:05:48:19:35:63:88:54:60:d2:ac:e9:42:c1:59:9b: 36:be:0b:96:14:15:12:b1:9e:65:21:82:0a:25:ca:19:88:b1: 82:46:cf:56:9f:92:c2:fa:09:9e:e1:6a:e5:be:a2:32:fd:57: 1f:94:e1:89:99:ad:7c:a5:40:8f:d6:ed:3d:24:78:80:e7:32: 73:21:8b:0f:3c:03:da:d7:60:00:5b:39:84:3f:fa:4a:34:f3: 83:2c:f7:12:4e:c9:7e:10:15:11:fb:36:50:4a:5a:ca:9d:9b: 45:88:f4:44:0b:53:fe:14:fc:23:b2:dc:3b:1b:ba:e9:71:8c: aa:dc:b7:bc:5d:7c:12:e9:24:df:41:bd:32:80:54:88:b1:05: bf:14:cd:df -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa10sJF6d5IZSTQxTlpH4mbJWp0EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMTUyMDIxWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDFkODFjNjFiZjljMmU0OGYwNThhNmQwNTRlYWViODUz NDYxZGVmNWNiNmQ2MTYwOTY1ZDVmZDcwMzllMzQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzPg5D8uB36hV2CvjcQ1gxfyZn4bd48ld5iXuuL31XoPOc WAbmhyNT0FYW8Yf+gWlOGBhH5uaxhvLqkr/WtE/zOrE3TZNFaIrn4eKJIlbS7bo8 VdFJT+8mrXUAO3d8IcezBoIwEUthNxZzPP4WX1QwphUonAXfX3JVFu/1x61ZFrrG QyBc1EL8n8ZHUs0svyCOPHkkDpfOjYzR7/zTl46ZWdYx/3ySZhWnfnxuU+FpliCm PRZ0lGQUXhm5s05JUDaeEXXMmCr2MrUWTSEifiWkquXr59osrVcZXmyZnOlKGOKu FeBFZNYDfl9tyN4me/YK54u++zBKogpRHa/s0LTpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKVPfIxngdGWx7Cp/LeoMe0pVQFAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgyNWZhNDIzLWE3MzUtNGE2NS1hMzgwLTE3ZDFlYjQyZjI5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdM3wAwDQYJKoZIhvcNAQELBQADggEBADPtynvOtUmcU9y6H5B5dwCYd57R xUgszwIXmlAqyo8ddwLA9gtnd2ZdGWw0cEqys0t6Djr+4ESWNQbwgXy/7Vm7EWOL ewOI1MyTWWgVCH6r5Nr3Vg1P65wYiXRABSe7TAFCwGD7FTBw1SMWkhMhIgVIGTVj iFRg0qzpQsFZmza+C5YUFRKxnmUhggolyhmIsYJGz1afksL6CZ7hauW+ojL9Vx+U 4YmZrXylQI/W7T0keIDnMnMhiw88A9rXYABbOYQ/+ko084Ms9xJOyX4QFRH7NlBK Wsqdm0WI9EQLU/4U/COy3DsbuulxjKrct7xdfBLpJN9BvTKAVIixBb8Uzd8= -----END CERTIFICATE-----Generated at Sun Jun 1 04:52:20 2025 by rpki-client