$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/20f17517-4992-480d-9d79-b11ee8e9ff75.roa File: 20f17517-4992-480d-9d79-b11ee8e9ff75.roa (raw, json) Hash identifier: 5VpVMzmjRRrPlUvF1uOyPHoQdYKc8J0KbU0mw4HxhHY= Subject key identifier: 4C:11:47:B4:57:A4:9F:48:80:8C:21:EA:A5:2E:30:E7:36:E0:6D:FD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4C61DDB27F508A3BF3E0FE8DF123F3C9012030D3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/20f17517-4992-480d-9d79-b11ee8e9ff75.roa Signing time: Fri 13 Jun 2025 00:51:20 +0000 ROA not before: Fri 13 Jun 2025 00:51:20 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.236.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:61:dd:b2:7f:50:8a:3b:f3:e0:fe:8d:f1:23:f3:c9:01:20:30:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 00:51:20 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=ce76f4be7118ad6c9d8d1fa85a7f045e30bc7ab220f9c98677b93c99fec04880, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:90:0a:9a:7d:e6:16:66:f8:9e:d8:ea:2d:f7: 0a:bc:a6:01:1a:e7:17:3b:8f:0f:0c:bc:5f:40:e9: 2c:55:dc:ba:c7:98:13:34:9b:8b:16:96:8c:7a:ed: 1e:de:fd:42:fb:dc:ee:b4:4b:4a:ca:df:7a:96:38: 15:4c:b3:1b:a3:35:9b:96:ce:b0:cb:9c:da:00:ac: 84:97:49:b2:46:68:83:3b:5a:88:3d:2c:96:80:3a: 68:02:c6:73:c9:fc:1e:d0:76:75:b8:a8:23:f8:40: d7:93:30:c3:fe:eb:07:12:af:01:af:48:ec:eb:02: f4:b7:20:5f:b5:c9:63:96:7f:37:47:fc:77:82:87: b5:6c:42:19:bc:83:3e:59:7b:5b:99:6e:a4:8f:81: 0c:39:c5:4f:94:37:14:7f:a3:c9:94:39:e2:dd:49: c5:45:34:16:91:18:89:dc:60:22:f1:ad:4f:f2:56: 3d:c5:85:a4:60:56:43:03:63:4e:87:d4:3c:1f:d9: 9f:41:1e:20:53:b6:af:24:d4:fa:7b:b4:a8:11:45: 00:79:8a:be:0b:31:18:c4:17:3e:e2:91:a5:6c:aa: 04:e2:76:d3:8b:0c:24:32:d9:70:a1:1e:d2:f8:b6: 76:c7:05:f4:78:5a:67:bf:13:95:7a:d8:33:18:c3: be:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:11:47:B4:57:A4:9F:48:80:8C:21:EA:A5:2E:30:E7:36:E0:6D:FD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/20f17517-4992-480d-9d79-b11ee8e9ff75.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.136.0/21 Signature Algorithm: sha256WithRSAEncryption 7d:f2:53:b7:36:43:70:ea:8c:bd:3f:d1:fa:cf:2c:fb:75:d4: 9c:cc:a7:c9:9a:f7:92:97:c4:77:50:14:9f:16:e7:fe:94:c1: 99:cf:a2:ee:f8:b1:f1:b1:93:c2:67:0f:5f:f5:b9:54:f7:b5: 14:8f:b1:82:01:ec:25:c5:bd:31:6d:12:28:4c:3b:dc:fe:f7: c7:29:89:05:2a:c4:c8:13:56:97:b8:b6:65:e9:73:e9:f6:31: b5:63:4b:74:fc:c8:68:39:4c:8a:fa:f4:50:b9:cb:8e:a9:d0: 09:a3:ff:e7:94:f4:89:9b:05:43:3c:51:2f:48:d4:42:fa:01: 7e:d2:85:4b:8b:70:68:f4:a6:41:17:46:b5:cf:28:21:91:bd: 55:87:3b:52:0e:eb:62:07:8d:8a:06:52:4b:97:2f:ae:14:c5: 0c:f2:7d:13:1b:84:12:06:b5:d6:07:08:8b:7e:1d:cd:b7:a6: 9f:1f:1a:0f:1e:ee:ee:24:b8:2c:3f:4b:bd:62:9b:b7:ee:0c: b6:a8:43:5e:30:eb:9c:8f:a7:57:5f:75:58:7d:96:64:04:af: 80:a6:38:46:a7:b1:3e:7d:4e:30:32:45:91:ac:b0:b2:0c:b8: 6f:a3:8c:bf:be:c1:9e:0f:36:33:94:8b:50:c4:50:27:e7:33: dc:02:9e:83 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTGHdsn9Qijvz4P6N8SPzyQEgMNMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMDA1MTIwWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTc2ZjRiZTcxMThhZDZjOWQ4ZDFmYTg1YTdmMDQ1ZTMw YmM3YWIyMjBmOWM5ODY3N2I5M2M5OWZlYzA0ODgwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDukAqafeYWZvie2Oot9wq8pgEa5xc7jw8MvF9A6SxV3LrH mBM0m4sWlox67R7e/UL73O60S0rK33qWOBVMsxujNZuWzrDLnNoArISXSbJGaIM7 Wog9LJaAOmgCxnPJ/B7QdnW4qCP4QNeTMMP+6wcSrwGvSOzrAvS3IF+1yWOWfzdH /HeCh7VsQhm8gz5Ze1uZbqSPgQw5xU+UNxR/o8mUOeLdScVFNBaRGIncYCLxrU/y Vj3FhaRgVkMDY06H1Dwf2Z9BHiBTtq8k1Pp7tKgRRQB5ir4LMRjEFz7ikaVsqgTi dtOLDCQy2XChHtL4tnbHBfR4Wme/E5V62DMYw74FAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTBFHtFekn0iAjCHqpS4w5zbgbf0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIwZjE3NTE3LTQ5OTItNDgwZC05ZDc5LWIxMWVlOGU5ZmY3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPM7IgwDQYJKoZIhvcNAQELBQADggEBAH3yU7c2Q3DqjL0/0frPLPt11JzM p8ma95KXxHdQFJ8W5/6UwZnPou74sfGxk8JnD1/1uVT3tRSPsYIB7CXFvTFtEihM O9z+98cpiQUqxMgTVpe4tmXpc+n2MbVjS3T8yGg5TIr69FC5y46p0Amj/+eU9Imb BUM8US9I1EL6AX7ShUuLcGj0pkEXRrXPKCGRvVWHO1IO62IHjYoGUkuXL64UxQzy fRMbhBIGtdYHCIt+Hc23pp8fGg8e7u4kuCw/S71im7fuDLaoQ14w65yPp1dfdVh9 lmQEr4CmOEansT59TjAyRZGssLIMuG+jjL++wZ4PNjOUi1DEUCfnM9wCnoM= -----END CERTIFICATE-----Generated at Sat Jun 14 07:15:33 2025 by rpki-client