$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7855769-3437-40b2-8e8d-b2138da3a551.roa File: c7855769-3437-40b2-8e8d-b2138da3a551.roa (raw, json) Hash identifier: 1rbK5ZpoUCGjvDVaujGvLj5MNlb2RUdqn3DgZSh57SE= Subject key identifier: 88:EC:70:B4:AF:CB:A2:EF:F7:4A:39:53:FA:FC:3A:B3:01:83:3F:18 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3992A0FB03F2142D1E565F8B45FD5FA47B904D27 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7855769-3437-40b2-8e8d-b2138da3a551.roa Signing time: Tue 20 May 2025 00:51:07 +0000 ROA not before: Tue 20 May 2025 00:51:07 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.46.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:92:a0:fb:03:f2:14:2d:1e:56:5f:8b:45:fd:5f:a4:7b:90:4d:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:51:07 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=4332007b557535ef05c2610437af07b7dcad5671e81dba02b1a5bb9c3954dc08, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:57:58:e3:a9:34:cd:00:b2:15:ed:dd:ae:4c: 7e:04:ad:89:57:3a:11:0d:82:b0:d2:7f:88:42:b6: d8:cc:79:50:e1:b2:ed:74:a1:7b:ad:df:1d:7e:87: e8:3f:b2:ed:3c:24:a7:a3:78:a3:b0:4b:f3:3b:59: 81:3f:7c:da:46:14:4d:ec:0f:99:38:12:31:2e:06: 67:13:ec:a8:24:b1:7c:f1:a7:a2:3f:30:d3:21:7e: 5c:ae:aa:2b:4a:09:8b:c7:3a:42:6f:ff:16:f5:83: d3:94:79:d4:cc:ab:fe:61:a0:a4:52:ad:ef:ec:f3: 87:ff:60:b7:98:c1:a2:9e:1f:6c:c2:87:d8:78:14: d5:af:0c:fb:71:3b:37:54:e9:d5:6b:d2:91:2c:38: 9b:ed:c1:53:e4:00:6b:3b:e1:ad:eb:fc:e5:89:96: e4:bc:d1:d2:c0:10:27:a9:eb:6c:b4:f0:94:67:07: d0:23:c8:78:d3:ba:8b:df:ce:79:84:18:e0:58:9d: 78:98:fe:2f:0e:1a:17:a7:5e:16:30:0b:bd:fb:99: 82:03:6c:dc:bd:b0:4e:f2:f6:ab:8b:c2:b3:e5:9e: a2:39:fa:ee:4a:63:6d:44:8b:8b:ff:90:19:c9:0a: 32:1b:d2:3b:34:08:1e:e4:f0:1c:fe:e7:32:86:78: 29:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:EC:70:B4:AF:CB:A2:EF:F7:4A:39:53:FA:FC:3A:B3:01:83:3F:18 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7855769-3437-40b2-8e8d-b2138da3a551.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.46.0.0/15 Signature Algorithm: sha256WithRSAEncryption 7a:88:37:de:5f:9f:2c:4f:2d:d3:f4:b2:cb:29:cd:4f:2a:f8: e5:6e:c8:51:46:93:8d:41:0a:22:5b:4b:ca:0b:d2:48:18:7a: 72:77:9a:43:e5:66:e4:14:ff:1f:8b:96:82:58:1c:eb:77:b2: 60:2d:c1:5c:b7:83:94:7b:91:19:eb:1d:5b:d5:8b:f4:11:20: 26:81:ef:f5:53:a4:26:69:66:53:74:21:14:f1:56:37:46:fb: db:c9:34:65:6e:b4:d1:86:d7:5a:c1:b2:2c:e5:b8:44:9f:67: 93:c0:10:a7:ba:03:78:a3:de:fd:21:83:18:4c:8b:a3:65:ba: af:47:e1:20:7c:7e:44:f9:a2:09:9e:e9:86:2d:d1:58:eb:1c: 5b:d7:15:0e:2d:d5:51:84:eb:29:09:a3:8e:25:41:96:be:2c: ed:52:23:86:44:df:cc:3e:c6:82:3c:cd:53:69:a1:dc:a8:d0: b0:84:2a:76:84:7a:1a:ed:4b:b5:16:df:33:50:35:df:1e:d2: a9:f7:27:48:c7:3a:b0:33:d8:05:5f:ed:aa:6a:9d:47:c9:e4: a1:ed:5b:b4:45:6f:1f:4e:c2:1c:07:85:fd:11:97:25:12:8e: c4:22:3a:17:d9:e3:43:1e:5c:59:ad:54:37:23:8d:40:ac:c3: d3:5d:85:f7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOZKg+wPyFC0eVl+LRf1fpHuQTScwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDA1MTA3WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzMyMDA3YjU1NzUzNWVmMDVjMjYxMDQzN2FmMDdiN2Rj YWQ1NjcxZTgxZGJhMDJiMWE1YmI5YzM5NTRkYzA4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxV1jjqTTNALIV7d2uTH4ErYlXOhENgrDSf4hCttjMeVDh su10oXut3x1+h+g/su08JKejeKOwS/M7WYE/fNpGFE3sD5k4EjEuBmcT7KgksXzx p6I/MNMhflyuqitKCYvHOkJv/xb1g9OUedTMq/5hoKRSre/s84f/YLeYwaKeH2zC h9h4FNWvDPtxOzdU6dVr0pEsOJvtwVPkAGs74a3r/OWJluS80dLAECep62y08JRn B9AjyHjTuovfznmEGOBYnXiY/i8OGhenXhYwC737mYIDbNy9sE7y9quLwrPlnqI5 +u5KY21Ei4v/kBnJCjIb0js0CB7k8Bz+5zKGeClNAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUiOxwtK/Lou/3SjlT+vw6swGDPxgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M3ODU1NzY5LTM0MzctNDBiMi04ZThkLWIyMTM4ZGEzYTU1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwE2LjANBgkqhkiG9w0BAQsFAAOCAQEAeog33l+fLE8t0/SyyynNTyr45W7I UUaTjUEKIltLygvSSBh6cneaQ+Vm5BT/H4uWglgc63eyYC3BXLeDlHuRGesdW9WL 9BEgJoHv9VOkJmlmU3QhFPFWN0b728k0ZW600YbXWsGyLOW4RJ9nk8AQp7oDeKPe /SGDGEyLo2W6r0fhIHx+RPmiCZ7phi3RWOscW9cVDi3VUYTrKQmjjiVBlr4s7VIj hkTfzD7GgjzNU2mh3KjQsIQqdoR6Gu1LtRbfM1A13x7SqfcnSMc6sDPYBV/tqmqd R8nkoe1btEVvH07CHAeF/RGXJRKOxCI6F9njQx5cWa1UNyONQKzD012F9w== -----END CERTIFICATE-----Generated at Sun Jun 1 04:56:24 2025 by rpki-client