$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53b9504e-a82e-4bf9-be01-2560b7b49d15.roa File: 53b9504e-a82e-4bf9-be01-2560b7b49d15.roa (raw, json) Hash identifier: NorWYRXQKlZaPFk/ougvrDxBTlYxv+2cmyu61nxSdAs= Subject key identifier: 81:B1:7C:03:5F:64:8E:80:EE:24:A8:97:3B:63:D2:5B:01:06:0F:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 50E7FB61AF284DA51F712187B93F0CA79FD82EFE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53b9504e-a82e-4bf9-be01-2560b7b49d15.roa Signing time: Wed 04 Jun 2025 00:20:18 +0000 ROA not before: Wed 04 Jun 2025 00:20:18 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:e7:fb:61:af:28:4d:a5:1f:71:21:87:b9:3f:0c:a7:9f:d8:2e:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 4 00:20:18 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=f6f500b3deff927f1163271106e24632d271a54fb96218e1b73ad35ab2e43f9c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1b:ec:8c:e0:99:1b:9e:13:c9:d3:6d:1c:28: 98:3e:17:9e:d1:6f:3c:8c:03:6a:74:4f:23:65:50: 26:e1:35:68:c1:fe:0c:16:91:06:81:c5:06:b1:8a: 79:0b:b4:f5:67:f4:95:1b:d4:70:a1:fe:ba:ef:95: 95:05:e7:d0:ab:1e:4c:30:d1:aa:6e:37:a4:80:0a: c7:f4:77:cb:ff:28:e8:2e:8e:ac:1e:af:72:4f:5c: 9a:47:a5:5b:18:dc:e2:3a:5b:a0:fb:34:90:fa:e1: 97:43:b6:29:76:a3:38:62:65:e4:6a:b2:e8:7e:7b: 35:f5:a4:d7:96:03:6c:40:d5:e3:b8:f2:b3:b1:76: 10:85:08:61:35:55:bf:f6:68:d5:3b:8a:f1:b1:50: b2:fd:60:dc:4f:9e:02:2d:ea:f4:65:81:90:af:c9: d9:87:62:30:bb:d7:50:80:f5:cc:7a:1b:95:80:5f: aa:d9:80:bf:14:3f:18:16:57:26:a0:84:d3:c7:98: ff:62:bd:b8:6b:15:dc:df:54:bd:34:65:3f:60:8f: 85:a3:33:88:0a:62:d4:1b:e1:89:cb:1d:c8:85:8f: e2:a2:ca:5f:23:cf:5c:38:3d:7e:09:a0:4e:e2:ba: 81:ec:ff:c6:87:cb:5d:d4:2e:fe:33:01:80:19:a5: 05:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:B1:7C:03:5F:64:8E:80:EE:24:A8:97:3B:63:D2:5B:01:06:0F:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53b9504e-a82e-4bf9-be01-2560b7b49d15.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.114.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:50:4d:25:de:f5:36:12:7c:7c:e7:28:08:f3:49:6c:b1:b3: 4c:b0:cd:74:92:04:07:fd:fe:0d:ae:79:4c:3c:e7:96:c8:5f: 92:ae:99:dd:37:03:71:68:c2:64:ac:ce:ee:f5:a9:99:1b:b9: 04:5d:de:4f:61:aa:18:89:07:0d:f1:60:0e:a5:0d:04:18:ab: 59:83:00:b4:92:a3:1a:d2:c2:da:f9:aa:00:1a:e9:8c:e0:94: f8:6f:cb:6a:ef:16:c1:d1:2f:a7:7b:83:95:fd:1f:77:b7:8e: 4f:41:22:03:af:e5:a1:94:c2:b0:bf:06:ec:7b:2d:84:7f:d6: f8:3a:cb:41:44:ed:a5:3c:76:97:8c:3b:67:9a:9c:21:10:e5: aa:1a:9b:28:b4:62:37:4d:21:30:ae:a9:98:15:58:36:da:a7: 43:99:fe:40:0e:23:1e:54:56:fa:d0:6b:8c:05:82:40:a6:d0: fe:22:6a:18:1b:60:bb:a0:e8:2a:76:1c:75:8a:f1:63:84:a0: 93:db:c0:e3:e9:f3:b3:c7:7e:49:ac:3b:f5:02:81:96:7b:7e: 23:16:62:f6:89:19:dd:22:fc:78:0a:dc:55:5a:42:79:5c:00: 4d:0d:d3:38:1f:81:2a:b5:0f:25:db:c8:9e:ae:cb:81:d6:26: 49:13:98:c6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUOf7Ya8oTaUfcSGHuT8Mp5/YLv4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA0MDAyMDE4WhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNmY1MDBiM2RlZmY5MjdmMTE2MzI3MTEwNmUyNDYzMmQy NzFhNTRmYjk2MjE4ZTFiNzNhZDM1YWIyZTQzZjljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWG+yM4JkbnhPJ020cKJg+F57RbzyMA2p0TyNlUCbhNWjB /gwWkQaBxQaxinkLtPVn9JUb1HCh/rrvlZUF59CrHkww0apuN6SACsf0d8v/KOgu jqwer3JPXJpHpVsY3OI6W6D7NJD64ZdDtil2ozhiZeRqsuh+ezX1pNeWA2xA1eO4 8rOxdhCFCGE1Vb/2aNU7ivGxULL9YNxPngIt6vRlgZCvydmHYjC711CA9cx6G5WA X6rZgL8UPxgWVyaghNPHmP9ivbhrFdzfVL00ZT9gj4WjM4gKYtQb4YnLHciFj+Ki yl8jz1w4PX4JoE7iuoHs/8aHy13ULv4zAYAZpQUDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgbF8A19kjoDuJKiXO2PSWwEGDwMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzYjk1MDRlLWE4MmUtNGJmOS1iZTAxLTI1NjBiN2I0OWQxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjlnIwDQYJKoZIhvcNAQELBQADggEBAI1QTSXe9TYSfHznKAjzSWyxs0yw zXSSBAf9/g2ueUw855bIX5Kumd03A3FowmSszu71qZkbuQRd3k9hqhiJBw3xYA6l DQQYq1mDALSSoxrSwtr5qgAa6YzglPhvy2rvFsHRL6d7g5X9H3e3jk9BIgOv5aGU wrC/Bux7LYR/1vg6y0FE7aU8dpeMO2eanCEQ5aoamyi0YjdNITCuqZgVWDbap0OZ /kAOIx5UVvrQa4wFgkCm0P4iahgbYLug6Cp2HHWK8WOEoJPbwOPp87PHfkmsO/UC gZZ7fiMWYvaJGd0i/HgK3FVaQnlcAE0N0zgfgSq1DyXbyJ6uy4HWJkkTmMY= -----END CERTIFICATE-----Generated at Sat Jun 14 06:18:18 2025 by rpki-client