$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51b3f021-a7b7-49f6-8173-528075001f81.roa File: 51b3f021-a7b7-49f6-8173-528075001f81.roa (raw, json) Hash identifier: JyRY8e5dgDfZmvkFqZ6YVk9JEiSV0pMUjynMTxr+3p4= Subject key identifier: 19:AD:01:18:99:F1:31:6A:1F:5F:08:79:1B:B2:EC:B9:64:2C:6F:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BD595C532379D033CA1677D664AE085428F92A1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51b3f021-a7b7-49f6-8173-528075001f81.roa Signing time: Fri 13 Jun 2025 00:10:16 +0000 ROA not before: Fri 13 Jun 2025 00:10:16 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 107.21.80.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:d5:95:c5:32:37:9d:03:3c:a1:67:7d:66:4a:e0:85:42:8f:92:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 00:10:16 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=e509c274e1855f1256a1e60de175dc03138336bb08690337bcb4a7b183aa4a04, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:11:63:8c:36:9e:73:be:87:2c:9c:9d:4d:a1: b1:36:c3:d4:ad:cb:e7:ec:05:50:c5:35:1d:cf:a7: d0:50:43:dc:b9:dc:15:7b:fe:90:f9:fb:ce:6f:a6: 59:2a:33:cc:34:cd:21:0d:97:7a:a0:e1:9f:75:ad: 5f:53:e8:2e:77:3b:52:ab:03:20:bb:fb:7c:5d:63: ab:ca:1f:a0:bf:6a:74:1a:62:e7:cf:0a:a1:ed:ec: ef:f4:c2:76:8b:da:75:2b:eb:55:77:d1:5f:fb:ca: 40:2d:13:52:60:4a:fc:11:ea:07:d1:10:22:34:0c: 02:43:69:c4:91:05:b8:49:28:2c:38:70:1b:6b:d5: 39:ab:7f:a0:ee:ea:85:35:8e:93:10:a2:3d:27:a9: 02:a6:a1:88:e8:77:aa:d2:a0:2c:11:af:17:07:c2: bd:b4:c3:c0:d8:d5:20:72:41:54:ba:6d:30:7b:19: cf:fd:40:d7:ae:94:a4:45:1c:f2:3b:a4:95:88:7b: c4:35:43:0e:43:d0:30:51:fd:fe:d6:ad:7d:06:6c: b4:52:a3:f6:a1:95:44:78:68:a7:4a:e8:f3:1a:a3: 51:fa:da:7a:86:d4:2d:a4:f7:34:e1:56:23:f5:da: 47:9a:eb:89:29:7c:bd:cb:0c:cd:b3:c5:d7:d3:b6: 31:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:AD:01:18:99:F1:31:6A:1F:5F:08:79:1B:B2:EC:B9:64:2C:6F:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51b3f021-a7b7-49f6-8173-528075001f81.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.80.0/21 Signature Algorithm: sha256WithRSAEncryption 1a:4d:02:c0:2c:8c:d0:f1:3b:5f:58:5b:b9:b9:8e:ff:15:76: 79:0e:9a:8d:1c:7d:68:b7:8d:98:bb:4e:fa:bc:b5:4a:41:7d: 0a:70:91:d2:fc:57:73:5a:5f:ef:49:32:41:63:fc:67:b2:6c: 3a:a9:fa:58:15:0c:4d:b1:63:09:33:43:a4:39:44:20:60:ff: 16:ff:88:b2:b7:fd:37:6b:04:f1:17:b3:dd:b9:89:09:02:f0: 0e:b7:55:be:90:d9:f8:0c:1a:2f:d3:9d:c3:4d:27:ce:37:9d: 28:ef:3e:00:41:85:78:8a:a0:d7:1a:51:0c:88:e4:1d:39:b0: f2:30:0e:03:94:22:0f:b7:87:6b:09:14:6c:ea:d8:0c:bb:43: 1d:2c:8a:a6:e3:78:57:df:81:c9:c5:f1:ff:99:64:91:8e:2c: 8f:ad:f0:29:23:ce:d6:ec:7e:53:21:aa:ec:9f:5c:7c:fd:93: 99:9b:25:f7:51:03:4c:95:78:39:fe:fc:39:19:95:03:c9:bd: bf:8c:8e:32:d6:70:ed:8b:3f:e2:d9:ea:56:ba:6a:db:49:15: 43:01:ce:de:cd:9b:f2:f8:e8:3f:b8:df:10:d2:a3:db:0d:2f: b7:36:2a:09:b0:e0:46:da:85:c3:d0:19:30:c9:14:01:56:b3: 9e:5f:8d:3b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa9WVxTI3nQM8oWd9ZkrghUKPkqEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMDAxMDE2WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTA5YzI3NGUxODU1ZjEyNTZhMWU2MGRlMTc1ZGMwMzEz ODMzNmJiMDg2OTAzMzdiY2I0YTdiMTgzYWE0YTA0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEEWOMNp5zvocsnJ1NobE2w9Sty+fsBVDFNR3Pp9BQQ9y5 3BV7/pD5+85vplkqM8w0zSENl3qg4Z91rV9T6C53O1KrAyC7+3xdY6vKH6C/anQa YufPCqHt7O/0wnaL2nUr61V30V/7ykAtE1JgSvwR6gfRECI0DAJDacSRBbhJKCw4 cBtr1Tmrf6Du6oU1jpMQoj0nqQKmoYjod6rSoCwRrxcHwr20w8DY1SByQVS6bTB7 Gc/9QNeulKRFHPI7pJWIe8Q1Qw5D0DBR/f7WrX0GbLRSo/ahlUR4aKdK6PMao1H6 2nqG1C2k9zThViP12kea64kpfL3LDM2zxdfTtjHNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGa0BGJnxMWofXwh5G7LsuWQsbzcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUxYjNmMDIxLWE3YjctNDlmNi04MTczLTUyODA3NTAwMWY4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANrFVAwDQYJKoZIhvcNAQELBQADggEBABpNAsAsjNDxO19YW7m5jv8VdnkO mo0cfWi3jZi7Tvq8tUpBfQpwkdL8V3NaX+9JMkFj/GeybDqp+lgVDE2xYwkzQ6Q5 RCBg/xb/iLK3/TdrBPEXs925iQkC8A63Vb6Q2fgMGi/TncNNJ843nSjvPgBBhXiK oNcaUQyI5B05sPIwDgOUIg+3h2sJFGzq2Ay7Qx0siqbjeFffgcnF8f+ZZJGOLI+t 8CkjztbsflMhquyfXHz9k5mbJfdRA0yVeDn+/DkZlQPJvb+MjjLWcO2LP+LZ6la6 attJFUMBzt7Nm/L46D+43xDSo9sNL7c2Kgmw4EbahcPQGTDJFAFWs55fjTs= -----END CERTIFICATE-----Generated at Sun Jun 15 00:34:10 2025 by rpki-client