$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cdb704b6-b401-4fcf-a13c-0891a9c175c2.roa File: cdb704b6-b401-4fcf-a13c-0891a9c175c2.roa (raw, json) Hash identifier: K7SvtpBap521xWiBbvJuWDq2XVHr8NXOhDVCVdFKAeQ= Subject key identifier: DF:ED:BB:52:B5:8D:72:01:CA:7D:3C:62:0D:76:8E:8E:D5:57:E8:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B188253C7F3CB53D439136AE54C46E04879F8F7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cdb704b6-b401-4fcf-a13c-0891a9c175c2.roa Signing time: Tue 20 May 2025 00:32:16 +0000 ROA not before: Tue 20 May 2025 00:32:16 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.22.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:18:82:53:c7:f3:cb:53:d4:39:13:6a:e5:4c:46:e0:48:79:f8:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:32:16 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=fcf16ebfd126bb9968c9413e7329e9335b52d45efcb337af9d917ea8e82ab6ed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9a:bc:d1:10:9c:6f:e8:e9:bf:03:03:61:c7: 30:74:41:db:3a:61:38:95:45:fd:32:52:7c:21:ea: 69:86:b9:b4:fe:3d:33:d0:da:3c:dc:56:45:aa:45: c1:4b:d3:43:b6:12:7c:3b:3f:39:7a:ce:34:a6:1c: 35:24:f7:ad:82:c7:63:5d:e8:c2:98:b2:5d:78:58: a5:44:85:e4:c7:95:c5:bf:66:3b:ce:27:bf:fd:62: 6a:ea:9d:0d:07:d9:e2:55:b8:df:d5:5c:54:81:b7: 7f:ab:12:f6:8d:eb:3c:f3:eb:ba:aa:9a:f8:60:16: d9:52:28:15:90:d8:69:c6:30:36:02:b0:69:ce:bf: 16:d9:31:25:f3:2e:7c:df:a5:21:89:67:e8:52:72: 27:70:92:c1:e3:ea:36:a5:61:71:fd:d8:d5:9f:be: e8:1a:db:86:12:af:e9:b5:92:f9:b4:25:52:3c:c9: c2:5b:5c:34:67:50:4d:c1:ee:7a:fa:50:75:ca:a7: fd:72:75:3c:ed:5c:dc:07:03:36:a9:97:d7:22:f8: 40:ac:cf:d1:94:b9:43:1b:b4:51:4e:a8:b9:86:83: 2b:1c:03:3d:1b:67:f5:9f:4d:f6:e0:c0:b0:6f:48: 5a:eb:87:99:1a:a9:85:c9:38:47:fe:83:b6:af:e5: 2d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:ED:BB:52:B5:8D:72:01:CA:7D:3C:62:0D:76:8E:8E:D5:57:E8:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cdb704b6-b401-4fcf-a13c-0891a9c175c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.22.0.0/15 Signature Algorithm: sha256WithRSAEncryption 6f:ec:1b:43:96:2e:f9:00:14:67:05:43:dc:ea:01:94:24:dd: 46:0c:79:23:f7:d5:1c:42:8f:c5:90:0c:c0:d1:d2:5d:bd:c3: 3f:d3:98:eb:e7:ee:e6:dd:f7:20:88:f8:f8:5f:17:25:7a:ea: 96:be:2c:0c:45:97:ca:b5:ac:f7:52:05:ac:fd:ba:aa:8a:fa: ca:d4:06:fd:8d:eb:58:fb:bb:84:0f:03:51:33:2b:cb:44:ac: 55:bc:90:6e:57:af:c9:c6:b5:b8:51:6e:93:39:27:ee:21:5a: f7:8e:3d:e6:b8:09:ae:65:fc:b0:76:45:69:75:29:81:e1:56: 6b:c5:f1:52:74:2b:b0:52:23:40:d9:6d:76:af:47:85:a0:4b: b5:8b:7d:48:a2:0a:dd:c3:3b:90:4d:6e:b1:c6:0a:24:02:8d: 92:e9:39:ff:4c:64:79:95:fe:34:b0:e7:42:ed:53:fc:a9:6e: c5:86:ad:16:0c:e8:fa:5a:09:70:52:3f:6c:7f:b6:52:62:4b: 9a:81:85:fe:c1:0c:52:cd:3c:2e:3f:62:d8:0e:e5:fe:ad:b6: 9c:ee:3a:32:8d:6f:e7:28:2c:3b:a3:ce:b5:51:e3:bc:1f:d1: 1c:d4:76:2a:b7:26:b4:a6:f0:52:f4:fc:12:c0:82:47:87:d3: bd:ea:83:42 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKxiCU8fzy1PUORNq5UxG4Eh5+PcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAzMjE2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmY2YxNmViZmQxMjZiYjk5NjhjOTQxM2U3MzI5ZTkzMzVi NTJkNDVlZmNiMzM3YWY5ZDkxN2VhOGU4MmFiNmVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6mrzREJxv6Om/AwNhxzB0Qds6YTiVRf0yUnwh6mmGubT+ PTPQ2jzcVkWqRcFL00O2Enw7Pzl6zjSmHDUk962Cx2Nd6MKYsl14WKVEheTHlcW/ ZjvOJ7/9YmrqnQ0H2eJVuN/VXFSBt3+rEvaN6zzz67qqmvhgFtlSKBWQ2GnGMDYC sGnOvxbZMSXzLnzfpSGJZ+hScidwksHj6jalYXH92NWfvuga24YSr+m1kvm0JVI8 ycJbXDRnUE3B7nr6UHXKp/1ydTztXNwHAzapl9ci+ECsz9GUuUMbtFFOqLmGgysc Az0bZ/WfTfbgwLBvSFrrh5kaqYXJOEf+g7av5S33AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3+27UrWNcgHKfTxiDXaOjtVX6BYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkYjcwNGI2LWI0MDEtNGZjZi1hMTNjLTA4OTFhOWMxNzVjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEXFjANBgkqhkiG9w0BAQsFAAOCAQEAb+wbQ5Yu+QAUZwVD3OoBlCTdRgx5 I/fVHEKPxZAMwNHSXb3DP9OY6+fu5t33IIj4+F8XJXrqlr4sDEWXyrWs91IFrP26 qor6ytQG/Y3rWPu7hA8DUTMry0SsVbyQblevyca1uFFukzkn7iFa94495rgJrmX8 sHZFaXUpgeFWa8XxUnQrsFIjQNltdq9HhaBLtYt9SKIK3cM7kE1uscYKJAKNkuk5 /0xkeZX+NLDnQu1T/KluxYatFgzo+loJcFI/bH+2UmJLmoGF/sEMUs08Lj9i2A7l /q22nO46Mo1v5ygsO6POtVHjvB/RHNR2KrcmtKbwUvT8EsCCR4fTveqDQg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:37:33 2025 by rpki-client