$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b856ae51-66ec-4600-b64a-768473b00d4c.roa File: b856ae51-66ec-4600-b64a-768473b00d4c.roa (raw, json) Hash identifier: 5qvbvSpwSYtYYZrIcz2/5zFCR4fbrCX1SFtAJnVTZV4= Subject key identifier: 2E:D1:2B:1B:0D:43:60:58:BA:AA:7B:6B:3E:5F:9C:16:AE:FF:FB:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0495760ABB622FF6B6B2DD681BEF8D914E301C29 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b856ae51-66ec-4600-b64a-768473b00d4c.roa Signing time: Fri 30 May 2025 00:30:19 +0000 ROA not before: Fri 30 May 2025 00:30:19 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:95:76:0a:bb:62:2f:f6:b6:b2:dd:68:1b:ef:8d:91:4e:30:1c:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:30:19 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=35e0c49240891d327ae9ff301076b2dfe8a8087a1b1f380cb2c01166fd36f52b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:49:31:a3:43:f9:a9:5b:f7:81:78:f0:fb:bd: ec:3b:8d:2d:b1:47:0f:02:1d:8f:8c:d9:7d:50:3d: 1a:0c:60:98:47:68:df:6e:02:3f:27:eb:d3:32:c5: c8:88:17:62:1a:b6:62:2e:1d:5c:4d:6a:47:6e:de: 0e:01:90:1d:fa:28:c7:9a:ac:69:99:b7:4c:f9:57: 9b:4f:22:25:5d:4e:c4:05:36:46:5d:58:1b:22:f7: 49:05:81:48:a1:cc:a8:8f:68:c9:71:3a:83:0d:77: 97:56:27:8e:62:89:e2:6e:4f:e0:89:02:de:8c:96: 6e:8e:01:c1:2a:e9:a3:ed:18:68:aa:a1:50:7b:45: 61:73:45:aa:7b:98:9c:90:39:25:e2:63:aa:91:29: 8c:b3:fd:e3:2a:2f:3b:c2:94:fe:b9:50:12:2e:21: 83:93:3c:20:e1:b4:44:cc:4c:78:c5:1c:4a:26:e7: 5d:74:42:4a:17:11:2f:1e:9c:0b:8b:c4:5d:21:ca: e9:56:c9:5d:ab:1b:5e:a5:82:76:f9:3a:76:1a:4e: 15:00:84:dd:aa:59:94:60:74:63:52:14:e6:fc:fe: ab:dd:1a:93:cc:0d:a9:bf:93:55:5e:38:70:9b:69: 92:8d:0c:74:51:b6:0c:68:26:2d:cc:ae:93:dc:fd: fc:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:D1:2B:1B:0D:43:60:58:BA:AA:7B:6B:3E:5F:9C:16:AE:FF:FB:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b856ae51-66ec-4600-b64a-768473b00d4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.123.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:3a:c4:33:18:ca:4b:32:cf:75:6c:19:a1:9e:d7:4e:4d:c6: 0c:4f:a4:a5:7b:4e:e9:e5:f0:b9:82:c8:fa:b0:11:23:6f:59: a4:59:55:a1:62:66:51:5b:37:95:94:97:63:ce:0a:68:8f:8e: 71:21:3a:09:92:74:73:a2:d2:e6:74:8e:3f:51:8c:cd:99:6c: e5:c6:8d:af:88:c2:e0:b0:04:58:6d:1f:71:97:ad:7d:a6:63: 97:71:2d:ce:a6:9b:e0:41:27:a7:60:6e:73:3a:e6:a6:21:2c: 5f:20:bc:0d:8f:ca:39:69:5e:f6:2b:92:ac:c7:6f:fd:2f:f6: 94:8e:38:3f:8a:92:46:39:ed:78:97:03:17:8f:fb:c3:02:46: 27:c8:cc:56:94:a4:88:df:6d:06:e7:f7:62:65:d8:b2:26:d0: 38:2b:ff:99:6f:97:87:3c:02:3e:fb:28:2d:96:7d:5c:d6:ba: 58:bf:db:e9:25:e4:50:fc:62:92:23:a4:c1:c7:5b:d0:a2:59: 2f:66:74:79:42:46:88:da:4a:fa:6e:b0:de:eb:b3:4f:ef:77: f4:8c:f5:bc:4d:53:59:59:9c:0f:ac:f1:b9:81:26:52:af:3a: fa:4f:e4:8f:8d:04:b7:43:ad:2e:de:d6:bc:87:f9:30:1c:32: 5f:ce:8e:d0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBJV2CrtiL/a2st1oG++NkU4wHCkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAzMDE5WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNWUwYzQ5MjQwODkxZDMyN2FlOWZmMzAxMDc2YjJkZmU4 YTgwODdhMWIxZjM4MGNiMmMwMTE2NmZkMzZmNTJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtSTGjQ/mpW/eBePD7vew7jS2xRw8CHY+M2X1QPRoMYJhH aN9uAj8n69MyxciIF2IatmIuHVxNakdu3g4BkB36KMearGmZt0z5V5tPIiVdTsQF NkZdWBsi90kFgUihzKiPaMlxOoMNd5dWJ45iieJuT+CJAt6Mlm6OAcEq6aPtGGiq oVB7RWFzRap7mJyQOSXiY6qRKYyz/eMqLzvClP65UBIuIYOTPCDhtETMTHjFHEom 5110QkoXES8enAuLxF0hyulWyV2rG16lgnb5OnYaThUAhN2qWZRgdGNSFOb8/qvd GpPMDam/k1VeOHCbaZKNDHRRtgxoJi3MrpPc/fx5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULtErGw1DYFi6qntrPl+cFq7/+8wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4NTZhZTUxLTY2ZWMtNDYwMC1iNjRhLTc2ODQ3M2IwMGQ0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/HswDQYJKoZIhvcNAQELBQADggEBAB46xDMYyksyz3VsGaGe105NxgxP pKV7Tunl8LmCyPqwESNvWaRZVaFiZlFbN5WUl2POCmiPjnEhOgmSdHOi0uZ0jj9R jM2ZbOXGja+IwuCwBFhtH3GXrX2mY5dxLc6mm+BBJ6dgbnM65qYhLF8gvA2Pyjlp XvYrkqzHb/0v9pSOOD+KkkY57XiXAxeP+8MCRifIzFaUpIjfbQbn92Jl2LIm0Dgr /5lvl4c8Aj77KC2WfVzWuli/2+kl5FD8YpIjpMHHW9CiWS9mdHlCRojaSvpusN7r s0/vd/SM9bxNU1lZnA+s8bmBJlKvOvpP5I+NBLdDrS7e1ryH+TAcMl/OjtA= -----END CERTIFICATE-----Generated at Sun Jun 1 05:09:27 2025 by rpki-client