$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f40d8929-a106-4a2c-86d0-d2f5d7650e99.roa File: f40d8929-a106-4a2c-86d0-d2f5d7650e99.roa (raw, json) Hash identifier: lC/ftgIhguG0Zjarez+hwYeOJaX0XodjKXtl4gsqKq4= Subject key identifier: CB:B7:F1:BA:AA:6A:18:1F:A1:18:F6:D1:67:14:1A:1F:6D:DB:80:51 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 692FD766765575407451A411BC2FDBFBCA47796C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f40d8929-a106-4a2c-86d0-d2f5d7650e99.roa Signing time: Tue 20 May 2025 15:11:31 +0000 ROA not before: Tue 20 May 2025 15:11:31 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 72.44.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:2f:d7:66:76:55:75:40:74:51:a4:11:bc:2f:db:fb:ca:47:79:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 15:11:31 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=4a6ca8be51fe3869e7089bc5e6ee8134a6fbc46e45c21344321c160aff08fdbc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:01:ac:6c:b1:58:43:f0:99:a6:2a:51:bc:9b: fd:50:fa:e1:ce:e4:f4:1c:84:f8:1c:cd:c5:60:87: f9:51:2e:f6:20:99:7c:fd:59:cf:f1:8c:46:11:f0: 9d:1f:55:d5:b8:65:df:a6:39:9e:92:5c:67:13:f2: f9:55:26:eb:c0:c8:9b:70:38:4b:77:01:2f:9a:67: a3:89:61:b3:eb:c3:73:9b:dc:e0:79:1e:48:e9:a7: 4b:b5:ce:f4:e2:73:c7:d1:9b:fa:0b:ef:28:8e:53: 52:57:f5:8e:b2:08:c2:9f:69:f5:ed:12:3e:6a:f0: 44:17:39:43:9e:b2:17:29:e8:23:99:fb:d9:cb:25: b1:9c:44:ed:d7:8a:51:09:23:98:1e:2d:35:d8:df: 6a:6c:28:4d:98:8f:7a:6e:d0:12:10:15:41:83:17: 9c:5d:33:2d:e9:b6:90:11:30:c1:85:e8:85:56:ea: db:fb:8e:ce:7d:9a:72:9a:87:73:bb:ec:a9:49:2d: be:56:e6:b3:a9:3e:18:d3:46:e1:9f:fd:58:03:93: 3d:b4:0c:41:4d:b3:03:73:6a:b8:c1:c6:93:54:b2: c4:61:b9:65:61:d7:57:b8:60:cf:26:ff:94:b1:d5: 1e:57:2e:3c:07:8f:59:e4:63:01:cb:8d:1f:f2:29: f8:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:B7:F1:BA:AA:6A:18:1F:A1:18:F6:D1:67:14:1A:1F:6D:DB:80:51 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f40d8929-a106-4a2c-86d0-d2f5d7650e99.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.44.48.0/20 Signature Algorithm: sha256WithRSAEncryption 75:ae:bb:2f:4e:4b:ba:b4:8e:87:2f:3f:99:c5:d4:42:90:12: 55:9c:72:c0:ba:2c:0d:c3:f5:80:3a:45:69:7a:4e:79:fa:dd: bf:81:1a:9c:85:8c:72:f1:2a:92:42:0d:9b:d6:ef:37:b9:3f: 37:1f:79:8c:06:7a:00:17:23:eb:b1:9f:e7:d9:d1:34:6a:c4: d7:f0:d7:c8:4e:e3:65:91:e8:88:84:4c:08:da:75:fb:ae:ca: 7d:87:f5:9f:80:f6:fb:0e:ad:0c:08:a1:00:a0:1e:1b:ee:34: cc:d6:8e:66:ac:30:6a:d6:75:13:02:bd:9e:e3:85:c5:55:a2: 22:30:1e:db:4c:99:ff:28:e9:61:c8:4c:7a:e0:71:aa:be:48: 97:ee:10:cb:5c:7c:24:70:a0:de:08:06:c5:88:26:7e:1e:08: 45:e3:46:43:55:93:37:18:65:7a:01:8e:a9:a3:9d:d0:9d:23: dc:ce:ae:c4:9d:0e:59:05:3b:b9:c3:a9:04:d0:ab:ff:1d:55: e3:a6:8e:a6:37:42:0d:12:02:80:52:ed:98:7a:eb:46:0d:0a: 05:6d:a3:38:43:ee:8e:8d:16:84:6a:e7:de:4f:88:15:89:13: 5f:6e:46:23:10:31:2f:bf:ed:47:3d:cf:7c:33:14:aa:d9:62: 5e:fa:0d:90 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaS/XZnZVdUB0UaQRvC/b+8pHeWwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMTUxMTMxWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTZjYThiZTUxZmUzODY5ZTcwODliYzVlNmVlODEzNGE2 ZmJjNDZlNDVjMjEzNDQzMjFjMTYwYWZmMDhmZGJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXAaxssVhD8JmmKlG8m/1Q+uHO5PQchPgczcVgh/lRLvYg mXz9Wc/xjEYR8J0fVdW4Zd+mOZ6SXGcT8vlVJuvAyJtwOEt3AS+aZ6OJYbPrw3Ob 3OB5Hkjpp0u1zvTic8fRm/oL7yiOU1JX9Y6yCMKfafXtEj5q8EQXOUOeshcp6COZ +9nLJbGcRO3XilEJI5geLTXY32psKE2Yj3pu0BIQFUGDF5xdMy3ptpARMMGF6IVW 6tv7js59mnKah3O77KlJLb5W5rOpPhjTRuGf/VgDkz20DEFNswNzarjBxpNUssRh uWVh11e4YM8m/5Sx1R5XLjwHj1nkYwHLjR/yKfjDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUy7fxuqpqGB+hGPbRZxQaH23bgFEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y0MGQ4OTI5LWExMDYtNGEyYy04NmQwLWQyZjVkNzY1MGU5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARILDAwDQYJKoZIhvcNAQELBQADggEBAHWuuy9OS7q0jocvP5nF1EKQElWc csC6LA3D9YA6RWl6Tnn63b+BGpyFjHLxKpJCDZvW7ze5PzcfeYwGegAXI+uxn+fZ 0TRqxNfw18hO42WR6IiETAjadfuuyn2H9Z+A9vsOrQwIoQCgHhvuNMzWjmasMGrW dRMCvZ7jhcVVoiIwHttMmf8o6WHITHrgcaq+SJfuEMtcfCRwoN4IBsWIJn4eCEXj RkNVkzcYZXoBjqmjndCdI9zOrsSdDlkFO7nDqQTQq/8dVeOmjqY3Qg0SAoBS7Zh6 60YNCgVtozhD7o6NFoRq595PiBWJE19uRiMQMS+/7Uc9z3wzFKrZYl76DZA= -----END CERTIFICATE-----Generated at Sun Jun 1 04:29:23 2025 by rpki-client