$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f13d14a2-c781-4f14-97b1-44c231676d28.roa File: f13d14a2-c781-4f14-97b1-44c231676d28.roa (raw, json) Hash identifier: LKDX3Emiu48SfNG69DUqWpynrn2tkrX8USZincqTwC8= Subject key identifier: F4:D5:75:2B:96:54:4A:0F:3A:50:EA:A9:91:4D:6D:FF:50:A5:2E:C1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6238A365031D6D49FD1AB3C5B536B2C465DB1FF2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f13d14a2-c781-4f14-97b1-44c231676d28.roa Signing time: Tue 20 May 2025 00:11:31 +0000 ROA not before: Tue 20 May 2025 00:11:31 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 167.97.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:38:a3:65:03:1d:6d:49:fd:1a:b3:c5:b5:36:b2:c4:65:db:1f:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:11:31 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=e79a7ff28c69527114d3653200bbc0e57e3ee8707d2616ca5904f462dd6670e5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:69:57:d0:e0:a4:bd:cc:13:55:f6:6f:bd:c2: 56:b9:ca:5c:55:b9:b5:25:67:e1:fe:3d:18:e8:9a: 57:5c:6f:4a:e7:92:39:8c:a0:7f:6c:54:3b:43:26: 89:3c:e5:c8:b3:23:f0:f7:a8:91:a2:a5:08:27:f9: f1:2b:c7:04:5d:aa:81:ab:b8:39:98:78:40:a9:6b: 75:02:08:86:79:0a:64:2b:4d:a9:ab:55:1e:56:d1: 09:67:1d:79:a1:ea:e4:82:9d:ec:de:8c:ad:6d:c4: 00:9a:21:0b:ff:97:a0:c5:26:ab:06:66:53:a5:ee: 44:04:6c:96:dd:33:21:59:46:15:67:55:e9:c8:7c: 08:3e:a7:f1:f9:a6:2c:a3:00:7a:e4:9c:b3:2c:cf: 63:e9:07:79:bf:34:9d:44:75:c8:ae:74:92:a9:13: 23:99:4d:73:ab:49:1c:69:50:b1:21:86:1d:3a:9d: c4:e3:00:9f:a9:df:20:5c:59:42:4c:95:5c:3b:1b: 8f:c4:da:bb:ce:c0:7b:80:b7:df:79:eb:75:a2:a1: 41:ae:b7:f1:98:33:d4:b9:fd:b8:22:a8:e7:72:0d: aa:ea:2c:dc:db:2e:77:f9:bd:14:c7:5f:fc:fb:ad: 60:60:95:10:fe:f9:fa:c8:9d:d5:66:86:67:af:4a: a3:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:D5:75:2B:96:54:4A:0F:3A:50:EA:A9:91:4D:6D:FF:50:A5:2E:C1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f13d14a2-c781-4f14-97b1-44c231676d28.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 167.97.0.0/16 Signature Algorithm: sha256WithRSAEncryption b5:68:65:c7:89:81:ee:b8:43:d2:7a:b9:f7:0c:ed:f2:4b:2c: 5c:18:8d:ae:83:93:95:79:a8:7c:ee:c9:4f:f0:b9:5c:06:6b: 89:e6:83:eb:e4:f0:e7:10:a7:25:0d:91:1a:af:16:15:ba:f9: 1a:78:3d:11:c4:1d:de:e1:40:d7:22:fd:19:dd:40:c8:a4:7b: 5b:47:ce:61:4b:64:33:3b:10:3e:30:84:c1:4c:fe:12:fa:4b: 0d:19:d6:30:81:bb:ec:0a:71:94:24:e7:e8:d1:ed:1a:61:1b: 84:c1:dc:d0:c6:f6:f3:4e:49:32:64:f1:ba:a7:8d:c0:0d:48: 30:18:41:1b:45:ca:c4:02:37:08:a3:6d:3a:c3:b5:ca:1f:e2: 05:f2:98:c7:97:40:ed:db:be:8e:65:28:12:30:d9:f3:79:fa: 05:b8:ca:3b:79:49:fa:12:b7:4b:24:ac:57:93:e6:82:39:08: 07:72:22:31:3d:54:63:84:1d:35:42:0c:b5:be:b6:42:b0:d1: b6:ef:56:3c:47:e0:ac:7f:33:0b:6c:e2:a3:e7:02:6e:61:bc: 02:b5:3f:15:46:53:f5:97:1b:f8:f2:c9:a2:dd:7a:0c:23:c4: 30:8b:a3:81:ef:21:6d:ad:06:6f:fa:47:ff:a9:a7:95:74:57: cb:bc:31:db -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYjijZQMdbUn9GrPFtTayxGXbH/IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAxMTMxWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzlhN2ZmMjhjNjk1MjcxMTRkMzY1MzIwMGJiYzBlNTdl M2VlODcwN2QyNjE2Y2E1OTA0ZjQ2MmRkNjY3MGU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1aVfQ4KS9zBNV9m+9wla5ylxVubUlZ+H+PRjomldcb0rn kjmMoH9sVDtDJok85cizI/D3qJGipQgn+fErxwRdqoGruDmYeECpa3UCCIZ5CmQr TamrVR5W0QlnHXmh6uSCnezejK1txACaIQv/l6DFJqsGZlOl7kQEbJbdMyFZRhVn VenIfAg+p/H5piyjAHrknLMsz2PpB3m/NJ1EdciudJKpEyOZTXOrSRxpULEhhh06 ncTjAJ+p3yBcWUJMlVw7G4/E2rvOwHuAt99563WioUGut/GYM9S5/bgiqOdyDarq LNzbLnf5vRTHX/z7rWBglRD++frIndVmhmevSqNjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9NV1K5ZUSg86UOqpkU1t/1ClLsEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxM2QxNGEyLWM3ODEtNGYxNC05N2IxLTQ0YzIzMTY3NmQyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCnYTANBgkqhkiG9w0BAQsFAAOCAQEAtWhlx4mB7rhD0nq59wzt8kssXBiN roOTlXmofO7JT/C5XAZrieaD6+Tw5xCnJQ2RGq8WFbr5Gng9EcQd3uFA1yL9Gd1A yKR7W0fOYUtkMzsQPjCEwUz+EvpLDRnWMIG77ApxlCTn6NHtGmEbhMHc0Mb2805J MmTxuqeNwA1IMBhBG0XKxAI3CKNtOsO1yh/iBfKYx5dA7du+jmUoEjDZ83n6BbjK O3lJ+hK3SySsV5PmgjkIB3IiMT1UY4QdNUIMtb62QrDRtu9WPEfgrH8zC2zio+cC bmG8ArU/FUZT9Zcb+PLJot16DCPEMIujge8hba0Gb/pH/6mnlXRXy7wx2w== -----END CERTIFICATE-----Generated at Sun Jun 1 04:35:27 2025 by rpki-client