$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d46be950-bc4a-4992-b4bf-926ccaf04be0.roa File: d46be950-bc4a-4992-b4bf-926ccaf04be0.roa (raw, json) Hash identifier: o8hCs5LnIDNiLW9ZospveD7xfQaSk4wfhcX+b0bUSpo= Subject key identifier: 47:80:33:74:E8:D4:DF:75:1C:8E:23:36:41:69:90:5B:80:99:B0:95 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 45467BAC343E34D9784734FC82994F0F6A719ED0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d46be950-bc4a-4992-b4bf-926ccaf04be0.roa Signing time: Tue 20 May 2025 15:20:14 +0000 ROA not before: Tue 20 May 2025 15:20:14 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 75.3.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:46:7b:ac:34:3e:34:d9:78:47:34:fc:82:99:4f:0f:6a:71:9e:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 15:20:14 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=f3c113b446955f401f66aafe4c50a1545c60a7a8a5189af94f62917973453952, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:97:8a:c0:22:24:88:85:f0:4a:e5:7d:19:4e: 45:1d:13:d1:db:c0:0f:0b:b3:a6:df:8c:9e:22:3e: c1:f8:13:a7:c5:76:dd:0c:ca:b2:8f:ba:45:4d:09: 8f:de:92:25:fe:50:63:88:3f:ef:0f:40:b0:36:2c: 97:aa:7f:44:07:18:34:94:ac:c4:38:f5:4f:ac:5e: 24:04:a8:62:e8:d1:67:88:55:4f:4e:a1:f6:60:1f: 4e:64:86:27:ba:96:d8:0c:7b:d2:ae:54:75:3b:fb: d8:d4:eb:78:91:0e:6e:81:39:27:fa:50:e1:b2:56: 9a:07:fa:9b:cc:10:1f:b9:d4:12:63:b0:2e:07:c4: fc:2b:75:83:b3:57:e2:19:22:30:87:56:f8:67:83: a3:f5:8c:77:d8:fe:b8:98:dd:8a:36:67:36:ad:19: 56:85:a1:6b:da:28:26:67:fe:04:e6:ef:1c:8a:5c: 06:58:bf:f5:82:f5:d3:7c:cc:51:fd:db:40:c8:ef: 58:21:ad:97:1c:f0:da:6e:31:58:f5:b9:c1:1f:9e: e1:90:23:3d:56:c1:01:3d:dc:3b:55:dd:0d:05:cf: 13:dd:9a:dc:f8:12:2f:d8:c8:d2:2d:7e:a7:9f:58: 46:c6:d3:f7:d4:bd:c5:d1:53:ba:ba:6f:98:74:57: c4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:80:33:74:E8:D4:DF:75:1C:8E:23:36:41:69:90:5B:80:99:B0:95 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d46be950-bc4a-4992-b4bf-926ccaf04be0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.3.32.0/19 Signature Algorithm: sha256WithRSAEncryption 0c:8c:13:b9:b4:48:0f:58:32:15:69:99:20:37:c9:24:18:34: 75:8d:64:c0:e5:5e:37:21:74:73:6c:32:28:55:15:6f:9c:0a: bb:2d:3d:55:06:f0:e7:9f:82:78:4d:14:d5:7f:28:de:17:b9: e5:53:15:ae:aa:1c:b8:7f:10:7c:23:1f:02:85:a2:a3:73:5c: 32:ca:ad:06:be:cc:fc:89:3b:88:db:a6:eb:fd:97:d7:40:92: df:7d:30:ae:d2:d9:f4:11:7c:2c:d3:7a:82:66:05:78:53:0b: 2b:24:85:67:b4:8f:c9:50:cf:3c:90:71:6d:ae:73:ff:55:7e: c2:7d:d3:e0:30:a9:9a:6d:2a:b8:1f:c1:04:e4:85:b1:e9:b9: e6:bb:77:16:35:72:02:7d:8d:a4:fe:1c:bd:56:9a:23:99:b8: 13:f0:af:56:d7:3a:06:c7:45:4c:66:e5:e5:f3:c5:94:ba:d3: 2c:f2:9c:5a:24:2f:6a:60:58:d7:78:91:ce:0b:24:e0:e3:2b: a5:46:4d:ed:68:6e:bf:fb:0e:77:77:f5:72:c9:a2:38:9f:7e: 71:51:20:82:52:e0:ab:53:f5:55:d2:75:94:9d:c6:7b:51:b9: f4:42:09:b6:8e:f7:1d:86:8e:4d:69:5f:c5:17:c7:5b:8e:17: 21:37:a0:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURUZ7rDQ+NNl4RzT8gplPD2pxntAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMTUyMDE0WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmM2MxMTNiNDQ2OTU1ZjQwMWY2NmFhZmU0YzUwYTE1NDVj NjBhN2E4YTUxODlhZjk0ZjYyOTE3OTczNDUzOTUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJl4rAIiSIhfBK5X0ZTkUdE9HbwA8Ls6bfjJ4iPsH4E6fF dt0MyrKPukVNCY/ekiX+UGOIP+8PQLA2LJeqf0QHGDSUrMQ49U+sXiQEqGLo0WeI VU9OofZgH05khie6ltgMe9KuVHU7+9jU63iRDm6BOSf6UOGyVpoH+pvMEB+51BJj sC4HxPwrdYOzV+IZIjCHVvhng6P1jHfY/riY3Yo2ZzatGVaFoWvaKCZn/gTm7xyK XAZYv/WC9dN8zFH920DI71ghrZcc8NpuMVj1ucEfnuGQIz1WwQE93DtV3Q0FzxPd mtz4Ei/YyNItfqefWEbG0/fUvcXRU7q6b5h0V8QZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUR4AzdOjU33UcjiM2QWmQW4CZsJUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q0NmJlOTUwLWJjNGEtNDk5Mi1iNGJmLTkyNmNjYWYwNGJlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVLAyAwDQYJKoZIhvcNAQELBQADggEBAAyME7m0SA9YMhVpmSA3ySQYNHWN ZMDlXjchdHNsMihVFW+cCrstPVUG8OefgnhNFNV/KN4XueVTFa6qHLh/EHwjHwKF oqNzXDLKrQa+zPyJO4jbpuv9l9dAkt99MK7S2fQRfCzTeoJmBXhTCyskhWe0j8lQ zzyQcW2uc/9VfsJ90+AwqZptKrgfwQTkhbHpuea7dxY1cgJ9jaT+HL1WmiOZuBPw r1bXOgbHRUxm5eXzxZS60yzynFokL2pgWNd4kc4LJODjK6VGTe1obr/7Dnd39XLJ ojiffnFRIIJS4KtT9VXSdZSdxntRufRCCbaO9x2Gjk1pX8UXx1uOFyE3oOU= -----END CERTIFICATE-----Generated at Sun Jun 1 04:55:28 2025 by rpki-client