$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9940d9a4-1e50-403f-b014-557b401a56ee.roa File: 9940d9a4-1e50-403f-b014-557b401a56ee.roa (raw, json) Hash identifier: cn5nhSfY9oKRMpK8fBa3yuTfq+YrUhQ9MUNbQpXWgt4= Subject key identifier: 09:46:AD:FB:9B:70:8A:FF:DF:2B:A7:BC:77:B0:6B:CF:B5:8B:6D:09 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 65DC2C9725860A2902EFCE6B5D72BF8219BA4D54 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9940d9a4-1e50-403f-b014-557b401a56ee.roa Signing time: Fri 16 May 2025 16:11:25 +0000 ROA not before: Fri 16 May 2025 16:11:25 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 162.120.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:dc:2c:97:25:86:0a:29:02:ef:ce:6b:5d:72:bf:82:19:ba:4d:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 16:11:25 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=e1d0b95fd316ce5bd9b3dfb965e85efff8e07f3b640c6e4283c4fd83c724ef12, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a3:e9:ae:ed:46:48:6c:c6:24:da:31:65:bd: 0f:18:7e:4c:6b:29:be:7c:5c:51:dc:bd:95:a6:19: ca:2a:b4:03:f3:41:a5:e6:ef:5b:a7:96:57:8f:2d: 78:7e:66:de:a5:37:22:30:49:48:67:39:10:cd:f9: b3:c2:b7:c4:ae:5e:88:fe:35:5e:ce:92:c2:e4:88: 31:b6:1b:05:03:ea:fa:83:b4:c7:f6:12:cd:fa:e9: 1a:60:ad:17:fe:95:c3:3f:a4:98:94:fb:e5:57:fe: 0b:73:cd:47:f9:74:39:a3:25:70:1e:e5:75:76:6c: 77:27:d9:b1:dd:fb:e6:fa:56:01:f3:60:de:4b:53: 4c:37:b8:31:1f:a5:c0:fd:71:25:31:81:d4:9b:82: 66:9b:f5:54:e2:ae:c5:a6:c0:1e:6a:72:eb:fd:ad: f7:a7:d7:de:10:7c:c7:b7:26:b1:0f:ff:af:e7:59: 31:5c:ed:2b:33:d1:61:0d:ce:f8:ca:a5:73:00:ed: a8:51:c2:eb:b1:69:fa:a7:f1:d5:98:68:bd:1a:1b: f1:d4:e5:cd:8b:8e:52:71:46:54:f1:d4:19:35:16: 62:d1:f0:c3:2b:25:c7:81:bc:4c:b2:f4:62:23:40: 59:2b:4e:93:91:85:80:ea:8b:54:da:ba:a5:a4:ba: 72:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:46:AD:FB:9B:70:8A:FF:DF:2B:A7:BC:77:B0:6B:CF:B5:8B:6D:09 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9940d9a4-1e50-403f-b014-557b401a56ee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.120.76.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:6c:bf:43:f9:a7:68:53:07:ee:95:72:08:10:12:c1:f1:7c: 55:bd:9f:4a:47:b2:64:53:5b:a2:7d:9e:53:7a:0e:bd:3e:ef: 9d:d3:78:0b:8b:fc:16:86:52:1c:2a:92:6c:78:8d:db:7c:47: a0:8b:89:52:af:52:df:ba:6e:cb:1d:ee:f1:d0:c9:7f:04:be: a5:bb:04:57:07:1c:6a:63:58:8d:22:ce:dd:44:d5:66:03:a7: 4f:7c:29:8d:fe:a4:75:de:f7:7e:19:40:e5:bd:33:75:82:32: cf:de:1f:ab:ea:f1:0c:51:c6:a0:75:ba:92:9a:3e:07:ab:e5: b1:ee:4e:e0:7c:e3:3e:cf:5e:f3:64:a4:e3:4c:44:4e:25:c0: c0:a5:c4:83:55:f1:2d:27:47:7b:35:28:b8:62:b9:cd:bb:b2: c3:73:89:b5:ee:88:71:20:f4:3a:3d:b5:28:db:d4:3e:5e:02: 07:51:ae:fb:7c:9a:f8:4c:13:5a:30:95:b5:c4:3c:33:b3:c0: 43:45:53:de:a4:bf:8a:24:09:19:64:f0:8d:94:ac:e7:19:c2: ad:92:d8:18:da:67:4d:8d:41:1f:e2:70:d6:67:93:31:94:16: 61:9d:49:af:84:c2:fd:57:dd:ea:f1:de:ad:31:29:30:de:b3: e3:60:0c:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZdwslyWGCikC785rXXK/ghm6TVQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE2MTYxMTI1WhcNMjUwNjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMWQwYjk1ZmQzMTZjZTViZDliM2RmYjk2NWU4NWVmZmY4 ZTA3ZjNiNjQwYzZlNDI4M2M0ZmQ4M2M3MjRlZjEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCno+mu7UZIbMYk2jFlvQ8YfkxrKb58XFHcvZWmGcoqtAPz QaXm71unllePLXh+Zt6lNyIwSUhnORDN+bPCt8SuXoj+NV7OksLkiDG2GwUD6vqD tMf2Es366RpgrRf+lcM/pJiU++VX/gtzzUf5dDmjJXAe5XV2bHcn2bHd++b6VgHz YN5LU0w3uDEfpcD9cSUxgdSbgmab9VTirsWmwB5qcuv9rfen194QfMe3JrEP/6/n WTFc7Ssz0WENzvjKpXMA7ahRwuuxafqn8dWYaL0aG/HU5c2LjlJxRlTx1Bk1FmLR 8MMrJceBvEyy9GIjQFkrTpORhYDqi1TauqWkunJpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCUat+5twiv/fK6e8d7Brz7WLbQkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5NDBkOWE0LTFlNTAtNDAzZi1iMDE0LTU1N2I0MDFhNTZlZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGieEwwDQYJKoZIhvcNAQELBQADggEBAJ1sv0P5p2hTB+6VcggQEsHxfFW9 n0pHsmRTW6J9nlN6Dr0+753TeAuL/BaGUhwqkmx4jdt8R6CLiVKvUt+6bssd7vHQ yX8EvqW7BFcHHGpjWI0izt1E1WYDp098KY3+pHXe934ZQOW9M3WCMs/eH6vq8QxR xqB1upKaPger5bHuTuB84z7PXvNkpONMRE4lwMClxINV8S0nR3s1KLhiuc27ssNz ibXuiHEg9Do9tSjb1D5eAgdRrvt8mvhME1owlbXEPDOzwENFU96kv4okCRlk8I2U rOcZwq2S2BjaZ02NQR/icNZnkzGUFmGdSa+Ewv1X3erx3q0xKTDes+NgDIE= -----END CERTIFICATE-----Generated at Sun Jun 1 05:06:58 2025 by rpki-client