$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59637748-f9e2-4c44-86a6-89a1c02f3f23.roa File: 59637748-f9e2-4c44-86a6-89a1c02f3f23.roa (raw, json) Hash identifier: A5k0mXQXXHyDxZhh/xNO+KG2htEJNIbOd8dYgYUDJ8c= Subject key identifier: DF:00:97:00:24:A2:9F:A4:C5:3F:9C:E0:82:54:04:44:AD:3C:EC:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D633A9AD02AF03254B739AA4C04C4C4C9E7F692 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59637748-f9e2-4c44-86a6-89a1c02f3f23.roa Signing time: Mon 02 Jun 2025 15:31:35 +0000 ROA not before: Mon 02 Jun 2025 15:31:35 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 44.203.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:63:3a:9a:d0:2a:f0:32:54:b7:39:aa:4c:04:c4:c4:c9:e7:f6:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 2 15:31:35 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=65316e73426ff28f790d37a08181ae7dae61ead5d4e215dabdd3cf8e804ea304, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1c:aa:7f:2b:f0:0c:60:2f:9e:37:f3:12:1e: 87:ee:e6:af:76:a4:2a:f9:0b:5c:62:92:87:9b:5e: 6b:54:41:5b:3b:0b:86:5a:9b:db:01:8a:4c:69:fc: 35:2c:eb:2d:e2:73:d9:1c:3f:d4:33:b4:d9:e9:b4: d8:94:fb:19:7d:6e:87:cf:7b:6a:c5:1f:5e:c4:d6: 44:d0:48:18:d8:38:dd:68:e7:08:f6:24:59:90:89: fa:1b:da:0d:a4:2e:c0:ef:fc:50:7b:75:34:f7:67: f0:0a:0c:98:d9:f9:a8:1a:e8:f8:b7:ef:f7:5d:59: 3d:8d:29:35:19:0a:22:79:4a:4a:33:63:c3:e7:3d: 86:de:bf:fa:ba:16:8b:01:0d:49:41:03:ba:8f:97: f9:fd:11:38:bf:50:a9:26:33:26:a4:f9:b4:7c:cc: 82:67:7e:6a:fd:57:0b:a0:61:70:19:5f:70:62:f2: 7a:a6:30:9f:e0:80:91:18:c4:d2:3a:ee:b4:71:6e: 1e:f6:cb:8a:1c:d6:d7:4e:69:b8:aa:35:a8:aa:c8: 65:61:e2:e0:61:df:c9:d8:4d:1c:cb:c1:22:6f:e8: f8:92:7c:b7:02:24:e9:4f:75:8f:df:7a:ed:a5:6a: d3:69:49:15:3d:6a:06:98:b6:ee:06:d1:61:c6:ec: 56:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:00:97:00:24:A2:9F:A4:C5:3F:9C:E0:82:54:04:44:AD:3C:EC:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59637748-f9e2-4c44-86a6-89a1c02f3f23.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.203.128.0/23 Signature Algorithm: sha256WithRSAEncryption 30:bf:97:e9:2f:51:cf:eb:cf:fa:a4:d1:b1:90:a8:0b:f1:42: 3b:e6:d7:ad:c8:b7:56:0c:f4:42:30:75:e8:a2:7a:8e:64:8c: 0b:a5:83:27:3d:14:08:cc:20:96:b3:77:89:af:57:31:a0:09: 6a:9a:06:20:4b:f8:f5:f3:80:af:53:d9:71:18:49:d9:28:5d: cb:3f:36:58:e2:c5:2c:3e:ef:6a:9b:4b:42:32:63:83:4e:40: 12:bf:78:03:6b:f1:4e:43:9e:5a:7c:c4:6d:45:68:bb:00:20: 39:c7:06:d5:e0:89:ba:0b:6e:eb:85:91:66:34:73:38:a2:92: d0:83:d5:68:92:99:40:0c:66:ea:12:ff:49:e3:f4:1e:11:7a: 4d:2e:30:d2:47:df:e8:7d:90:41:c8:bc:b0:6a:54:f0:7c:dd: be:0e:3e:77:c0:d2:ba:8e:ac:28:eb:95:24:0f:a7:a3:4b:ed: df:1b:a8:d6:d1:a8:7a:d2:ae:2c:d8:03:98:52:76:3f:b5:e9: ec:73:0e:47:50:ad:dc:f1:bc:92:51:81:b6:2f:3c:fa:a4:4d: 28:32:51:a7:9b:f8:39:3b:fc:d1:b5:86:26:97:81:a1:29:fe: 0c:c7:e3:8a:d8:48:29:40:11:85:fb:08:1d:4b:b6:e5:8d:bf: a7:25:93:51 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHWM6mtAq8DJUtzmqTATExMnn9pIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAyMTUzMTM1WhcNMjUwNzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NTMxNmU3MzQyNmZmMjhmNzkwZDM3YTA4MTgxYWU3ZGFl NjFlYWQ1ZDRlMjE1ZGFiZGQzY2Y4ZTgwNGVhMzA0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYHKp/K/AMYC+eN/MSHofu5q92pCr5C1xikoebXmtUQVs7 C4Zam9sBikxp/DUs6y3ic9kcP9QztNnptNiU+xl9bofPe2rFH17E1kTQSBjYON1o 5wj2JFmQifob2g2kLsDv/FB7dTT3Z/AKDJjZ+aga6Pi37/ddWT2NKTUZCiJ5Skoz Y8PnPYbev/q6FosBDUlBA7qPl/n9ETi/UKkmMyak+bR8zIJnfmr9VwugYXAZX3Bi 8nqmMJ/ggJEYxNI67rRxbh72y4oc1tdOabiqNaiqyGVh4uBh38nYTRzLwSJv6PiS fLcCJOlPdY/feu2latNpSRU9agaYtu4G0WHG7FaHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3wCXACSin6TFP5zgglQERK087JwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5NjM3NzQ4LWY5ZTItNGM0NC04NmE2LTg5YTFjMDJmM2YyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEsy4AwDQYJKoZIhvcNAQELBQADggEBADC/l+kvUc/rz/qk0bGQqAvxQjvm 163It1YM9EIwdeiieo5kjAulgyc9FAjMIJazd4mvVzGgCWqaBiBL+PXzgK9T2XEY SdkoXcs/NljixSw+72qbS0IyY4NOQBK/eANr8U5Dnlp8xG1FaLsAIDnHBtXgiboL buuFkWY0cziiktCD1WiSmUAMZuoS/0nj9B4Rek0uMNJH3+h9kEHIvLBqVPB83b4O PnfA0rqOrCjrlSQPp6NL7d8bqNbRqHrSrizYA5hSdj+16exzDkdQrdzxvJJRgbYv PPqkTSgyUaeb+Dk7/NG1hiaXgaEp/gzH44rYSClAEYX7CB1LtuWNv6clk1E= -----END CERTIFICATE-----Generated at Sat Jun 14 06:44:16 2025 by rpki-client