$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab21c5f9-ce84-4471-a364-da93073d3430.roa File: ab21c5f9-ce84-4471-a364-da93073d3430.roa (raw, json) Hash identifier: PMRcZ98cOxtpkpihrkIP4KNjDgDNKZiyZ4gG4vbz35U= Subject key identifier: 23:BE:6D:2E:62:86:3B:9B:CA:31:E5:B3:E7:82:FF:7E:EC:19:50:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43A017D44E80551B235C23FCDF7C20AAC6A35C68 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab21c5f9-ce84-4471-a364-da93073d3430.roa Signing time: Fri 30 May 2025 00:01:21 +0000 ROA not before: Fri 30 May 2025 00:01:21 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 199.35.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:a0:17:d4:4e:80:55:1b:23:5c:23:fc:df:7c:20:aa:c6:a3:5c:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:01:21 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=9d135013b0fab322669aa81c9a3961107eb15ff9639bf2935240febce4080056, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:e0:df:64:12:aa:b8:dd:bd:bf:41:5b:60:c9: cb:89:a1:fb:44:ee:40:08:ff:d3:e1:65:ce:f3:f4: a3:aa:5f:c6:92:df:bb:e6:5f:e1:e5:2f:d9:f2:ef: 74:1c:ae:f6:1f:a3:51:64:58:07:d2:11:e6:a2:58: 90:54:f6:64:67:6c:06:ee:02:1e:4d:3b:66:8f:1f: 7f:56:71:bb:81:50:d6:5c:80:6c:cc:35:66:e5:80: 41:1a:45:1c:d1:4c:17:6c:ce:40:44:7d:c4:d6:eb: 08:56:8a:b5:c0:5e:f0:f4:0e:9b:68:76:f3:b1:b7: 02:22:ec:78:d8:0b:3b:f7:9a:cf:d8:c8:5a:b5:75: 46:05:7e:2b:fd:88:9f:b6:a6:6e:e8:eb:68:d9:b5: 7a:a7:d4:50:34:a1:82:ff:ce:0e:a4:2d:78:07:d8: ca:ef:a5:31:00:b0:23:1f:9a:c6:a1:a6:f9:78:51: 90:27:0d:13:c5:85:f8:32:19:6b:f0:b2:7f:74:54: 43:29:8a:e8:ad:e8:f9:64:5e:b6:b6:19:30:78:f6: a3:c0:0c:b0:94:24:a7:b4:82:ae:2e:22:ba:c4:1b: ed:76:49:d4:5d:ef:e7:12:5e:77:b2:47:c7:5f:3b: 66:e9:fe:71:61:91:50:7c:fe:28:36:54:2c:99:10: 22:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:BE:6D:2E:62:86:3B:9B:CA:31:E5:B3:E7:82:FF:7E:EC:19:50:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab21c5f9-ce84-4471-a364-da93073d3430.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.35.64.0/19 Signature Algorithm: sha256WithRSAEncryption 98:ef:e2:a5:50:51:cb:ce:9f:cc:00:45:b9:25:bb:51:38:16: a7:5b:b5:1e:6a:3e:df:4a:a0:3c:c5:8e:12:94:fd:bf:93:3c: 06:d2:a9:7a:e1:58:e8:08:94:45:c8:cb:04:5a:6a:d8:e4:cd: 5c:34:3c:83:a9:5d:a4:f2:75:96:88:30:68:11:76:42:29:4f: 9f:82:2b:ae:ba:91:95:1b:d5:87:64:da:1b:54:61:58:0f:28: 79:29:b4:92:3d:b2:b6:46:79:55:3f:a6:20:f6:38:3f:e5:64: 49:65:ed:3f:64:c4:ab:cc:be:d9:a1:3e:23:2b:cb:fa:3c:d0: 42:24:f7:85:83:38:1b:90:bb:0e:e6:52:35:66:08:07:be:0b: c7:cc:09:be:d2:d6:e4:23:d8:5e:e6:32:32:0e:db:9e:78:58: 17:c9:a9:bf:3a:3d:c8:9d:84:27:b6:cc:ea:17:61:ce:b3:62: b7:58:0c:c2:08:04:d4:43:5f:86:47:f9:98:74:21:3e:2f:e2: dc:41:94:a6:f3:06:7a:10:d1:e9:5e:40:99:ca:dd:5a:53:ff: 0e:fa:36:6d:03:39:ba:4b:ff:a2:10:b1:db:ea:b7:c1:c9:17: 3d:80:4c:d0:e5:a3:41:72:4d:be:c2:d6:6a:30:01:0d:6a:bd: 61:f6:56:69 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ6AX1E6AVRsjXCP833wgqsajXGgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAwMTIxWhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDEzNTAxM2IwZmFiMzIyNjY5YWE4MWM5YTM5NjExMDdl YjE1ZmY5NjM5YmYyOTM1MjQwZmViY2U0MDgwMDU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDx4N9kEqq43b2/QVtgycuJoftE7kAI/9PhZc7z9KOqX8aS 37vmX+HlL9ny73QcrvYfo1FkWAfSEeaiWJBU9mRnbAbuAh5NO2aPH39WcbuBUNZc gGzMNWblgEEaRRzRTBdszkBEfcTW6whWirXAXvD0DptodvOxtwIi7HjYCzv3ms/Y yFq1dUYFfiv9iJ+2pm7o62jZtXqn1FA0oYL/zg6kLXgH2MrvpTEAsCMfmsahpvl4 UZAnDRPFhfgyGWvwsn90VEMpiuit6PlkXra2GTB49qPADLCUJKe0gq4uIrrEG+12 SdRd7+cSXneyR8dfO2bp/nFhkVB8/ig2VCyZECJJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUI75tLmKGO5vKMeWz54L/fuwZULAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FiMjFjNWY5LWNlODQtNDQ3MS1hMzY0LWRhOTMwNzNkMzQzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXHI0AwDQYJKoZIhvcNAQELBQADggEBAJjv4qVQUcvOn8wARbklu1E4Fqdb tR5qPt9KoDzFjhKU/b+TPAbSqXrhWOgIlEXIywRaatjkzVw0PIOpXaTydZaIMGgR dkIpT5+CK666kZUb1Ydk2htUYVgPKHkptJI9srZGeVU/piD2OD/lZEll7T9kxKvM vtmhPiMry/o80EIk94WDOBuQuw7mUjVmCAe+C8fMCb7S1uQj2F7mMjIO2554WBfJ qb86PcidhCe2zOoXYc6zYrdYDMIIBNRDX4ZH+Zh0IT4v4txBlKbzBnoQ0eleQJnK 3VpT/w76Nm0DObpL/6IQsdvqt8HJFz2ATNDlo0FyTb7C1mowAQ1qvWH2Vmk= -----END CERTIFICATE-----Generated at Fri Jun 6 19:47:27 2025 by rpki-client