$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe854d45-8c44-4bb7-a36e-e2812050ea1a.roa File: fe854d45-8c44-4bb7-a36e-e2812050ea1a.roa (raw, json) Hash identifier: wkCylGPbggtb4pkxNK5czOJaONsky54aHfqKc8eVSM8= Subject key identifier: 6B:40:C2:FA:1B:6C:8D:5F:E6:BE:F4:12:24:97:A7:9A:D1:7B:DD:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D7DB922C1DC0793D5F000BF79FE7C2770CA4F18 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe854d45-8c44-4bb7-a36e-e2812050ea1a.roa Signing time: Tue 20 May 2025 00:32:27 +0000 ROA not before: Tue 20 May 2025 00:32:27 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 23.21.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:7d:b9:22:c1:dc:07:93:d5:f0:00:bf:79:fe:7c:27:70:ca:4f:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:32:27 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=6e1b387a900b1af7639edfb1643e33e432ec680e27b865f532a179f039ea44e9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3b:70:ae:4c:3c:9a:7a:92:5e:47:5f:31:50: 14:cf:6d:e9:c5:cb:2f:78:ab:9e:04:a6:67:c6:1a: b7:e8:b9:de:60:fd:f5:67:a0:32:85:b4:52:8e:40: 06:83:2e:61:09:e9:77:21:60:7a:e4:a5:dc:98:6a: 14:d2:5d:37:ea:1e:2b:e0:11:7b:42:e2:12:8b:b2: 44:82:32:c4:f9:bd:e7:e3:f6:89:26:0c:f0:2c:1c: 58:ac:7a:4d:f3:5f:5d:5e:af:19:ea:e6:8d:f1:4c: 12:79:c2:f6:da:43:c0:7e:b7:d7:3e:47:06:bb:20: 44:7d:21:59:f6:79:11:0d:ee:57:04:f9:51:04:f2: e9:6b:c8:f6:17:9e:f9:4d:60:e0:7c:5c:5b:12:15: ad:80:db:91:55:4b:fd:15:59:83:15:59:28:45:89: 09:c6:6e:33:4c:bd:92:1c:76:03:53:a8:e9:b3:a4: 95:a4:f2:ad:9c:90:dc:6a:8f:34:e2:4a:d9:3d:32: 81:2e:6c:33:d9:8a:ca:73:38:97:53:7c:06:08:80: 77:eb:3c:d6:d0:03:c6:fe:dc:61:fe:ad:94:ab:08: bf:25:5c:65:c4:3d:94:c4:d5:f8:6f:31:81:51:6f: f8:60:79:be:59:be:98:bc:0c:93:46:f3:23:46:63: 94:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:40:C2:FA:1B:6C:8D:5F:E6:BE:F4:12:24:97:A7:9A:D1:7B:DD:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe854d45-8c44-4bb7-a36e-e2812050ea1a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.21.64.0/18 Signature Algorithm: sha256WithRSAEncryption af:e7:39:fd:e3:85:ed:a5:f7:93:53:96:9c:7a:7e:85:22:9c: 6d:72:51:8d:b6:c3:6d:5c:94:8f:9b:90:e7:01:a1:91:ec:40: b2:1f:df:2c:5b:2e:e5:2a:98:76:ac:d0:ac:e3:0b:c5:67:5d: 24:29:a9:8a:d2:51:71:19:45:0d:cd:e1:65:8a:8c:45:8b:26: f5:09:e5:93:f3:4e:fb:cc:45:d0:db:0a:4a:3d:85:be:1d:7b: 35:5f:65:a4:11:c4:f9:a6:6c:da:4f:79:51:07:dc:46:97:4a: 88:b8:89:0e:2c:23:73:b5:0a:3b:d5:8c:ff:32:20:38:a3:e8: 85:a8:6b:ac:15:35:1d:55:90:aa:b0:82:df:2e:77:b9:a3:92: b0:70:e4:51:15:7c:ce:a6:c2:1a:c7:06:e9:17:5d:72:62:53: ef:33:d7:a0:a5:0d:4a:8a:d3:76:86:32:bd:06:03:9a:97:1d: 13:f0:52:3b:4f:88:7e:0b:bf:b3:1b:33:6a:de:3d:22:1a:c2: da:c9:9d:51:b4:ab:c8:3f:0d:6b:81:97:dc:9c:4f:97:01:a5: ca:1d:e4:bc:6d:ec:94:1c:e5:38:e2:e3:35:2e:01:a0:cd:33: 22:a5:1d:a7:06:bf:d2:10:f0:a6:94:84:4f:2a:d3:72:07:ba: 3f:f5:88:92 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPX25IsHcB5PV8AC/ef58J3DKTxgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAzMjI3WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTFiMzg3YTkwMGIxYWY3NjM5ZWRmYjE2NDNlMzNlNDMy ZWM2ODBlMjdiODY1ZjUzMmExNzlmMDM5ZWE0NGU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgO3CuTDyaepJeR18xUBTPbenFyy94q54EpmfGGrfoud5g /fVnoDKFtFKOQAaDLmEJ6XchYHrkpdyYahTSXTfqHivgEXtC4hKLskSCMsT5vefj 9okmDPAsHFisek3zX11erxnq5o3xTBJ5wvbaQ8B+t9c+Rwa7IER9IVn2eREN7lcE +VEE8ulryPYXnvlNYOB8XFsSFa2A25FVS/0VWYMVWShFiQnGbjNMvZIcdgNTqOmz pJWk8q2ckNxqjzTiStk9MoEubDPZispzOJdTfAYIgHfrPNbQA8b+3GH+rZSrCL8l XGXEPZTE1fhvMYFRb/hgeb5Zvpi8DJNG8yNGY5RjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUa0DC+htsjV/mvvQSJJenmtF73SwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZlODU0ZDQ1LThjNDQtNGJiNy1hMzZlLWUyODEyMDUwZWExYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYXFUAwDQYJKoZIhvcNAQELBQADggEBAK/nOf3jhe2l95NTlpx6foUinG1y UY22w21clI+bkOcBoZHsQLIf3yxbLuUqmHas0KzjC8VnXSQpqYrSUXEZRQ3N4WWK jEWLJvUJ5ZPzTvvMRdDbCko9hb4dezVfZaQRxPmmbNpPeVEH3EaXSoi4iQ4sI3O1 CjvVjP8yIDij6IWoa6wVNR1VkKqwgt8ud7mjkrBw5FEVfM6mwhrHBukXXXJiU+8z 16ClDUqK03aGMr0GA5qXHRPwUjtPiH4Lv7MbM2rePSIawtrJnVG0q8g/DWuBl9yc T5cBpcod5Lxt7JQc5Tji4zUuAaDNMyKlHacGv9IQ8KaUhE8q03IHuj/1iJI= -----END CERTIFICATE-----Generated at Sun Jun 1 04:25:59 2025 by rpki-client