$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22d8d62c-46ea-4668-b9c2-042f62204cad.roa File: 22d8d62c-46ea-4668-b9c2-042f62204cad.roa (raw, json) Hash identifier: tL8jAJwJDvYrNuqq4ZOU21AN/3I2jxIAbWxKbm7ZhQY= Subject key identifier: 01:5B:D6:94:FA:B6:C3:76:1E:50:05:0D:D6:7E:24:AC:6D:7E:A5:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 739DEF5903EE1785E5C816ACC532E8BB6A48AE0B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22d8d62c-46ea-4668-b9c2-042f62204cad.roa Signing time: Sat 31 May 2025 00:11:01 +0000 ROA not before: Sat 31 May 2025 00:11:01 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.213.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:9d:ef:59:03:ee:17:85:e5:c8:16:ac:c5:32:e8:bb:6a:48:ae:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 31 00:11:01 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=e1297df0f0525580602c0841633cb6f394b8f83a2a685ddb8f8f96e1a2eca14b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:50:1d:36:1f:84:3d:b6:f3:0a:96:f1:c9:1a: 78:f1:31:46:9f:34:96:65:fc:cd:b6:3e:54:ff:8c: 1b:ab:81:a2:2e:75:47:1f:29:d6:c6:90:33:c0:98: 65:ee:b2:a6:cc:8c:66:3b:af:be:eb:84:38:a8:98: a5:5c:bd:4b:17:97:a2:f9:28:d1:cd:2e:bf:5f:89: 00:0d:d5:2f:c4:43:ef:3d:44:41:4e:a2:83:49:13: 83:7c:14:8a:a7:9d:6e:8f:64:87:ee:45:7c:49:28: ac:4a:f7:ea:ad:8d:95:01:e3:72:e6:89:86:c2:3f: 73:b0:83:11:da:73:d8:f0:96:8d:a3:6d:de:41:c1: cb:4d:90:9c:04:43:04:6a:e4:e7:17:83:2d:e5:b8: d4:d6:34:53:c9:27:03:e5:04:31:7a:af:9c:55:63: 60:7b:7b:de:37:e3:0e:8f:0a:db:00:00:89:19:f1: 70:a2:77:79:ce:a7:9b:0c:36:ce:07:20:c5:f3:be: 6e:70:11:fb:8a:df:78:79:bc:f5:d9:75:04:f1:14: ad:8b:52:d3:3b:35:82:dd:23:17:c7:72:04:af:df: 97:7a:95:ec:2d:09:b9:2a:4c:f2:ee:b9:79:6b:ae: 8e:8b:af:54:a6:eb:58:96:56:8b:2d:51:a9:70:4c: f4:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:5B:D6:94:FA:B6:C3:76:1E:50:05:0D:D6:7E:24:AC:6D:7E:A5:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22d8d62c-46ea-4668-b9c2-042f62204cad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.213.0.0/16 Signature Algorithm: sha256WithRSAEncryption 55:54:6a:b5:0b:52:c5:da:cf:3d:6d:10:9d:33:c2:a6:aa:31: 1b:03:f8:11:9d:60:f9:bb:dd:85:4b:11:41:4f:bd:4f:a2:52: 42:be:ff:4e:61:a5:3b:45:28:cc:f3:68:9a:4b:f1:7b:51:94: b7:ea:33:24:01:c2:f9:fd:33:5a:4e:61:46:5a:d9:a5:81:e5: 00:16:c9:07:71:13:8a:cd:d2:42:c0:b0:3a:dc:69:49:d8:c0: 7f:bc:25:44:47:ad:3a:36:96:0e:ce:f2:e3:a9:aa:46:be:45: 13:1b:fb:8b:77:b0:07:f5:bb:99:38:69:33:5c:72:f0:ff:3c: ba:cb:10:0f:1c:54:c6:89:80:29:24:86:a5:b3:cb:2b:7a:32: e3:ce:92:a5:ad:74:dc:0c:71:f2:a8:58:3a:24:2f:88:57:28: 6f:59:f7:b3:9b:12:f0:88:c3:30:48:c9:24:86:2b:24:60:83: 0c:47:da:8d:13:f4:29:33:75:6e:5f:07:5a:e9:f2:6b:6d:96: 15:4b:b2:39:5f:3c:b1:fe:e2:d2:a6:44:87:3f:45:bd:ac:dd: 65:e2:57:92:f9:2a:0f:7e:7c:25:d0:a2:f5:19:63:98:55:24: 64:b6:11:dd:f4:55:fd:c5:6a:10:ff:cb:58:17:53:1a:51:c8: ea:8a:fe:d0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUc53vWQPuF4XlyBasxTLou2pIrgswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMxMDAxMTAxWhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMTI5N2RmMGYwNTI1NTgwNjAyYzA4NDE2MzNjYjZmMzk0 YjhmODNhMmE2ODVkZGI4ZjhmOTZlMWEyZWNhMTRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtUB02H4Q9tvMKlvHJGnjxMUafNJZl/M22PlT/jBurgaIu dUcfKdbGkDPAmGXusqbMjGY7r77rhDiomKVcvUsXl6L5KNHNLr9fiQAN1S/EQ+89 REFOooNJE4N8FIqnnW6PZIfuRXxJKKxK9+qtjZUB43LmiYbCP3OwgxHac9jwlo2j bd5BwctNkJwEQwRq5OcXgy3luNTWNFPJJwPlBDF6r5xVY2B7e9434w6PCtsAAIkZ 8XCid3nOp5sMNs4HIMXzvm5wEfuK33h5vPXZdQTxFK2LUtM7NYLdIxfHcgSv35d6 lewtCbkqTPLuuXlrro6Lr1Sm61iWVostUalwTPRPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAVvWlPq2w3YeUAUN1n4krG1+peAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyZDhkNjJjLTQ2ZWEtNDY2OC1iOWMyLTA0MmY2MjIwNGNhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQ1TANBgkqhkiG9w0BAQsFAAOCAQEAVVRqtQtSxdrPPW0QnTPCpqoxGwP4 EZ1g+bvdhUsRQU+9T6JSQr7/TmGlO0UozPNomkvxe1GUt+ozJAHC+f0zWk5hRlrZ pYHlABbJB3ETis3SQsCwOtxpSdjAf7wlREetOjaWDs7y46mqRr5FExv7i3ewB/W7 mThpM1xy8P88ussQDxxUxomAKSSGpbPLK3oy486Spa103Axx8qhYOiQviFcob1n3 s5sS8IjDMEjJJIYrJGCDDEfajRP0KTN1bl8HWunya22WFUuyOV88sf7i0qZEhz9F vazdZeJXkvkqD358JdCi9RljmFUkZLYR3fRV/cVqEP/LWBdTGlHI6or+0A== -----END CERTIFICATE-----Generated at Sat Jun 14 06:34:18 2025 by rpki-client