$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9489bef2-0a21-4c24-8378-03322c296a7b.roa File: 9489bef2-0a21-4c24-8378-03322c296a7b.roa (raw, json) Hash identifier: 5uek4EGfccYA/kbOcac7j8FLhhHdnYYPuNEO9kWEUkM= Subject key identifier: B1:0D:6D:0E:DC:91:86:01:A6:8A:AC:7A:1A:23:76:C2:43:5B:9F:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F4DC6AB0EC6279B8263FEBD6F07CA09F4D6B821 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9489bef2-0a21-4c24-8378-03322c296a7b.roa Signing time: Wed 21 May 2025 23:21:55 +0000 ROA not before: Wed 21 May 2025 23:21:55 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 207.21.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:4d:c6:ab:0e:c6:27:9b:82:63:fe:bd:6f:07:ca:09:f4:d6:b8:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 21 23:21:55 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=20abc9e91d107423a62d200b0e2c0b0170a1045263f5292add028f5c044a4610, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:05:23:f2:a3:cb:d4:23:55:bc:8a:9c:d0:40: 06:dc:72:07:63:25:0f:48:82:01:2c:44:c5:5c:31: 59:31:55:ed:5d:c0:78:3b:70:ef:6c:a9:ae:52:72: f9:78:2d:12:6c:d8:4c:f9:54:1d:d2:c8:58:29:7a: 13:8d:3e:34:0f:76:bb:7b:0b:56:9a:5c:87:1d:48: 40:a2:01:ee:6a:8c:7e:d9:59:d6:28:29:63:bc:60: ee:19:9a:52:66:40:8b:19:20:08:c1:23:2f:f2:39: a0:f2:74:ec:a5:ec:1f:ea:1c:b0:1d:5b:df:7c:6d: c6:6c:83:f9:a0:5a:09:e0:7a:28:1c:7d:d9:7b:57: 5b:f1:cd:80:f4:b3:07:82:7b:bf:84:83:34:db:f0: c9:0f:2c:37:0c:63:aa:b5:3c:3b:88:ed:b3:32:c1: 87:1b:73:c3:a3:49:60:f7:bf:87:cc:4a:0e:da:93: ad:1b:da:59:2a:b2:70:99:60:04:de:94:65:1b:16: b8:a2:2b:55:50:07:c7:28:ad:19:7c:df:9b:26:f0: 28:8a:ac:ae:5d:c1:cb:18:3a:74:7c:5e:07:5e:52: 09:23:a0:8e:9a:91:df:ac:b6:86:99:10:34:26:ec: 21:6d:02:74:9f:56:c5:51:91:a0:ff:1a:ec:7a:12: 41:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:0D:6D:0E:DC:91:86:01:A6:8A:AC:7A:1A:23:76:C2:43:5B:9F:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9489bef2-0a21-4c24-8378-03322c296a7b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.21.211.0/24 Signature Algorithm: sha256WithRSAEncryption a8:9d:86:10:0e:db:21:38:9b:1a:5b:3b:bd:29:5d:74:b5:21: 9e:f9:f1:40:57:3f:22:a3:a6:fc:be:97:e0:a9:92:f5:70:62: a3:10:5d:37:67:68:97:46:bc:8e:eb:f3:0f:28:01:66:7c:aa: ee:c1:1e:9f:59:8b:7a:39:c9:37:8c:1c:f2:4b:67:1f:ac:d0: ec:29:6d:b8:82:4b:9a:ac:db:97:0d:73:5e:51:97:eb:fb:a9: 9f:91:ae:d8:d3:5a:50:6d:47:ae:01:76:bb:97:ec:ba:17:70: e4:55:fd:e1:7b:41:78:8e:66:69:42:b5:d0:cd:fa:7d:1e:fe: 67:35:0b:94:c9:26:b4:07:87:74:27:2f:ef:44:b0:17:aa:0c: bb:0d:66:47:a0:2d:e7:4d:3e:63:9b:e5:ce:99:27:3c:92:ea: 58:83:fe:c1:48:fa:2f:85:18:97:8d:c5:3d:e4:bb:0a:ab:99: f7:68:3b:1b:7b:24:3a:81:b2:9c:35:d0:54:9b:38:18:9e:8f: 65:23:df:31:94:c3:75:a7:7a:47:06:af:c1:e1:ec:5f:3a:48: bc:53:b4:c1:67:29:1f:5b:b5:0a:10:81:7b:4b:8f:ec:7e:28: 97:af:21:e2:9d:b4:af:a3:62:d6:8f:ad:35:20:f0:bb:ab:bc: 10:13:e2:93 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD03Gqw7GJ5uCY/69bwfKCfTWuCEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIxMjMyMTU1WhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMGFiYzllOTFkMTA3NDIzYTYyZDIwMGIwZTJjMGIwMTcw YTEwNDUyNjNmNTI5MmFkZDAyOGY1YzA0NGE0NjEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjBSPyo8vUI1W8ipzQQAbccgdjJQ9IggEsRMVcMVkxVe1d wHg7cO9sqa5Scvl4LRJs2Ez5VB3SyFgpehONPjQPdrt7C1aaXIcdSECiAe5qjH7Z WdYoKWO8YO4ZmlJmQIsZIAjBIy/yOaDydOyl7B/qHLAdW998bcZsg/mgWgngeigc fdl7V1vxzYD0sweCe7+EgzTb8MkPLDcMY6q1PDuI7bMywYcbc8OjSWD3v4fMSg7a k60b2lkqsnCZYATelGUbFriiK1VQB8corRl835sm8CiKrK5dwcsYOnR8XgdeUgkj oI6akd+stoaZEDQm7CFtAnSfVsVRkaD/Gux6EkFFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsQ1tDtyRhgGmiqx6GiN2wkNbnzQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0ODliZWYyLTBhMjEtNGMyNC04Mzc4LTAzMzIyYzI5NmE3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADPFdMwDQYJKoZIhvcNAQELBQADggEBAKidhhAO2yE4mxpbO70pXXS1IZ75 8UBXPyKjpvy+l+CpkvVwYqMQXTdnaJdGvI7r8w8oAWZ8qu7BHp9Zi3o5yTeMHPJL Zx+s0OwpbbiCS5qs25cNc15Rl+v7qZ+RrtjTWlBtR64BdruX7LoXcORV/eF7QXiO ZmlCtdDN+n0e/mc1C5TJJrQHh3QnL+9EsBeqDLsNZkegLedNPmOb5c6ZJzyS6liD /sFI+i+FGJeNxT3kuwqrmfdoOxt7JDqBspw10FSbOBiej2Uj3zGUw3WnekcGr8Hh 7F86SLxTtMFnKR9btQoQgXtLj+x+KJevIeKdtK+jYtaPrTUg8LurvBAT4pM= -----END CERTIFICATE-----Generated at Sun Jun 1 05:28:07 2025 by rpki-client