$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a35d0647-2605-4403-a05f-ce8ec1db4ee8.roa File: a35d0647-2605-4403-a05f-ce8ec1db4ee8.roa (raw, json) Hash identifier: 415vBy150xTRCS4al+k5PUCJCU32NT29yWnwSlqIYUk= Subject key identifier: 2C:53:F6:5E:16:D0:DF:4C:0F:74:31:3F:AC:B8:E7:81:B3:96:0E:01 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 013A2116BD7975D057374611A089E76739305A8B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a35d0647-2605-4403-a05f-ce8ec1db4ee8.roa Signing time: Wed 21 May 2025 21:23:32 +0000 ROA not before: Wed 21 May 2025 21:23:32 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:3a:21:16:bd:79:75:d0:57:37:46:11:a0:89:e7:67:39:30:5a:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 21 21:23:32 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=2576c51a1ab801ccac82adda44fa67437f9e4cd7be1ba8cb099273d88ee0e9e6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0e:d6:10:74:bc:e1:83:36:66:0e:f7:0e:9f: 62:f8:98:01:04:30:fe:81:05:f0:1f:a8:9d:57:23: 26:8c:f6:fc:66:d9:2b:89:80:37:f1:0d:a7:13:7c: 20:40:93:0b:43:c3:e7:54:28:8c:91:b3:20:b8:6e: e6:bd:eb:44:99:11:ae:d8:2c:86:99:14:66:0c:26: a4:e0:36:35:2a:bd:0e:bf:a3:4a:04:59:fc:82:97: 22:5f:9e:ea:de:e8:1f:5f:81:aa:95:4b:c6:39:73: b8:a4:13:55:d9:eb:04:f4:12:07:c5:e0:83:63:bf: ac:d3:58:f9:9f:0d:77:58:ff:a3:dd:ee:e7:4a:5f: 17:4b:bb:86:5d:bc:41:68:b2:27:7e:e3:1a:a4:41: 94:71:6c:3b:05:b5:2e:f1:ae:69:87:4e:12:39:11: 4b:e9:fc:1c:ea:f5:80:9a:26:71:ba:88:7e:2d:ae: 9c:8c:ce:d6:cd:ec:d4:29:bd:37:87:34:b4:0b:62: 1a:9b:72:95:cd:e1:03:af:0a:2c:68:99:38:41:ca: 34:4c:ad:ef:16:dc:d3:ec:63:7b:b2:b5:10:52:bd: d5:dd:4f:a8:ae:c0:79:93:2d:b3:2f:7b:6e:ea:d1: 80:55:8e:e7:a0:17:2c:06:b8:af:81:40:65:cb:58: cc:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:53:F6:5E:16:D0:DF:4C:0F:74:31:3F:AC:B8:E7:81:B3:96:0E:01 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a35d0647-2605-4403-a05f-ce8ec1db4ee8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.184.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:df:e1:ea:a7:f9:aa:52:14:59:4d:d8:34:d4:60:75:d7:2c: 62:2e:a5:52:a0:4b:cf:10:b0:7f:5a:a5:a5:ba:38:59:bd:16: 2c:bd:e4:c7:7c:07:ac:2a:e8:23:04:a4:b1:ee:37:0f:1d:8b: 37:40:c6:df:49:3a:bb:21:99:8d:1d:e0:ce:81:4b:59:3b:89: 79:f9:b2:57:ad:d5:35:05:92:95:19:be:53:a7:8f:6e:46:39: 52:a9:7f:29:44:e3:93:8e:7f:b2:44:c1:d2:d5:b4:d7:f3:ed: 71:dd:c9:db:7e:3c:74:72:35:ee:0a:79:f9:8c:91:9a:81:6c: ec:a1:cf:51:66:40:14:5f:7c:e4:24:eb:9e:b9:19:f6:47:c6: f6:76:cb:60:b9:7b:eb:6c:b4:35:55:7c:da:ee:ef:74:ba:93: f7:ee:54:b9:18:3c:b2:54:29:c5:87:4b:d6:fc:b1:28:c3:6f: 5c:03:11:8a:e4:f3:5c:af:d3:49:a0:cf:18:fa:fa:50:b1:e4: 40:e2:1d:77:35:0e:fc:0b:22:5d:bc:ad:5f:4e:91:e5:ed:4f: dc:43:b9:4c:b1:6e:45:e8:48:a1:ab:eb:bb:6d:d8:88:49:8b: 30:38:fa:98:de:15:ce:36:31:8a:cf:cb:2b:f8:50:5c:95:58: 35:22:00:5e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUATohFr15ddBXN0YRoInnZzkwWoswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIxMjEyMzMyWhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNTc2YzUxYTFhYjgwMWNjYWM4MmFkZGE0NGZhNjc0Mzdm OWU0Y2Q3YmUxYmE4Y2IwOTkyNzNkODhlZTBlOWU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbDtYQdLzhgzZmDvcOn2L4mAEEMP6BBfAfqJ1XIyaM9vxm 2SuJgDfxDacTfCBAkwtDw+dUKIyRsyC4bua960SZEa7YLIaZFGYMJqTgNjUqvQ6/ o0oEWfyClyJfnure6B9fgaqVS8Y5c7ikE1XZ6wT0EgfF4INjv6zTWPmfDXdY/6Pd 7udKXxdLu4ZdvEFosid+4xqkQZRxbDsFtS7xrmmHThI5EUvp/Bzq9YCaJnG6iH4t rpyMztbN7NQpvTeHNLQLYhqbcpXN4QOvCixomThByjRMre8W3NPsY3uytRBSvdXd T6iuwHmTLbMve27q0YBVjuegFywGuK+BQGXLWMwNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULFP2XhbQ30wPdDE/rLjngbOWDgEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EzNWQwNjQ3LTI2MDUtNDQwMy1hMDVmLWNlOGVjMWRiNGVlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFALgwDQYJKoZIhvcNAQELBQADggEBAA7f4eqn+apSFFlN2DTUYHXXLGIu pVKgS88QsH9apaW6OFm9Fiy95Md8B6wq6CMEpLHuNw8dizdAxt9JOrshmY0d4M6B S1k7iXn5slet1TUFkpUZvlOnj25GOVKpfylE45OOf7JEwdLVtNfz7XHdydt+PHRy Ne4KefmMkZqBbOyhz1FmQBRffOQk6565GfZHxvZ2y2C5e+tstDVVfNru73S6k/fu VLkYPLJUKcWHS9b8sSjDb1wDEYrk81yv00mgzxj6+lCx5EDiHXc1DvwLIl28rV9O keXtT9xDuUyxbkXoSKGr67tt2IhJizA4+pjeFc42MYrPyyv4UFyVWDUiAF4= -----END CERTIFICATE-----Generated at Sun Jun 1 04:54:33 2025 by rpki-client