$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d0d6a5a-16aa-4b09-a02b-98190290d009.roa File: 5d0d6a5a-16aa-4b09-a02b-98190290d009.roa (raw, json) Hash identifier: 9ECw50xW5bEQLRe5dYMUv44GR+1+p1ciLyi3OshyfFg= Subject key identifier: 9C:43:4B:1D:8B:39:54:DF:48:A9:7A:15:9F:94:82:6E:8A:51:A5:87 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2513A9C124B7887E8447056BC9BB183E0479649C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d0d6a5a-16aa-4b09-a02b-98190290d009.roa Signing time: Fri 13 Jun 2025 00:11:02 +0000 ROA not before: Fri 13 Jun 2025 00:11:02 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.22.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:13:a9:c1:24:b7:88:7e:84:47:05:6b:c9:bb:18:3e:04:79:64:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 00:11:02 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=8ad02e11856058f31f48447fc5c20f5689ef3ed7951b7f66fe7cceb9124a88ae, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:91:bc:d9:5f:0f:bc:b7:42:3a:e0:d1:93:ee: f5:14:59:eb:5b:5b:89:3f:05:93:ad:bc:74:7a:70: 2f:ac:b7:34:2b:26:85:61:5b:91:fe:96:f8:3c:8c: b2:8f:ab:28:71:36:a5:21:43:a6:a2:76:04:a3:46: 76:e5:b7:ef:7e:dd:94:6f:f2:8c:6b:40:8b:af:6e: 7a:89:50:69:d8:5a:78:3a:95:95:47:be:f0:41:6c: 82:86:43:7f:3e:34:17:4e:55:2a:ed:3c:83:0f:2e: 48:18:9c:43:14:e2:5d:44:d7:e3:30:2b:ea:25:85: 7b:7a:be:ff:45:97:e9:85:82:29:fd:4f:21:fa:1a: 91:32:83:7c:9b:4a:07:17:90:18:2a:1a:d1:0d:96: 68:e6:47:99:a7:0d:5b:1f:e1:a7:8b:00:80:75:fb: 8c:83:af:6f:24:ce:4a:e5:a9:4b:e1:ab:7a:c3:74: 68:fe:f8:f5:28:06:79:af:28:d3:f5:b1:0b:7f:24: 0c:12:e9:a5:e2:4a:fc:d0:10:f0:d2:f4:e5:f3:58: 48:03:e2:6f:86:8a:24:a9:f1:3f:0d:69:c7:47:18: 4e:ad:c6:b2:15:3b:10:aa:47:85:15:c5:b5:41:d6: cc:45:52:3c:7e:94:ad:b7:fc:18:f2:49:14:43:17: 20:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:43:4B:1D:8B:39:54:DF:48:A9:7A:15:9F:94:82:6E:8A:51:A5:87 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d0d6a5a-16aa-4b09-a02b-98190290d009.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.22.152.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:1d:2e:81:40:9f:28:1a:ce:ac:68:7a:6e:0d:b6:f0:ff:a9: 5c:bf:dd:3b:d7:d6:b2:47:50:20:7a:36:85:5c:39:94:a6:69: 34:af:08:29:f3:89:ce:ed:26:6e:bf:fa:df:91:a6:53:b5:1f: fa:d1:1d:ed:e8:4b:82:cf:33:12:8c:24:90:1f:55:ab:e3:ea: e9:1f:ce:fb:f8:53:67:99:24:f6:e4:18:63:55:ce:17:88:af: 74:39:ee:d1:cc:ba:a8:bd:53:cc:5b:e0:53:0d:1c:f0:34:52: 6c:ff:69:9f:a5:8e:72:49:da:c7:52:8c:c2:88:2c:0d:44:be: 8b:c7:4f:54:06:11:41:f2:e3:3d:e7:df:85:96:56:22:ba:a6: 28:1e:b5:00:08:6e:17:97:d2:1d:5a:4f:19:bb:39:c4:10:2c: 99:1e:98:46:f8:ec:6f:e0:a6:4c:3c:1c:a3:12:0d:d2:8c:42: 9d:b2:3d:61:a3:54:ef:41:61:5b:1e:c4:b0:32:e3:3e:65:ea: 2c:c6:74:d7:8f:e5:66:af:c0:75:71:ce:ea:1c:14:18:a9:06: b3:22:ed:f8:ba:11:1a:31:d5:f6:c9:cc:89:00:eb:cc:3b:35: 86:de:43:ea:ef:34:28:f9:d9:5d:71:8b:c6:93:21:2e:ae:24: a9:a0:76:eb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJROpwSS3iH6ERwVrybsYPgR5ZJwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMDAxMTAyWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YWQwMmUxMTg1NjA1OGYzMWY0ODQ0N2ZjNWMyMGY1Njg5 ZWYzZWQ3OTUxYjdmNjZmZTdjY2ViOTEyNGE4OGFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkkbzZXw+8t0I64NGT7vUUWetbW4k/BZOtvHR6cC+stzQr JoVhW5H+lvg8jLKPqyhxNqUhQ6aidgSjRnblt+9+3ZRv8oxrQIuvbnqJUGnYWng6 lZVHvvBBbIKGQ38+NBdOVSrtPIMPLkgYnEMU4l1E1+MwK+olhXt6vv9Fl+mFgin9 TyH6GpEyg3ybSgcXkBgqGtENlmjmR5mnDVsf4aeLAIB1+4yDr28kzkrlqUvhq3rD dGj++PUoBnmvKNP1sQt/JAwS6aXiSvzQEPDS9OXzWEgD4m+GiiSp8T8NacdHGE6t xrIVOxCqR4UVxbVB1sxFUjx+lK23/BjySRRDFyDDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnENLHYs5VN9IqXoVn5SCbopRpYcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVkMGQ2YTVhLTE2YWEtNGIwOS1hMDJiLTk4MTkwMjkwZDAwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJrFpgwDQYJKoZIhvcNAQELBQADggEBACodLoFAnygazqxoem4NtvD/qVy/ 3TvX1rJHUCB6NoVcOZSmaTSvCCnzic7tJm6/+t+RplO1H/rRHe3oS4LPMxKMJJAf Vavj6ukfzvv4U2eZJPbkGGNVzheIr3Q57tHMuqi9U8xb4FMNHPA0Umz/aZ+ljnJJ 2sdSjMKILA1EvovHT1QGEUHy4z3n34WWViK6pigetQAIbheX0h1aTxm7OcQQLJke mEb47G/gpkw8HKMSDdKMQp2yPWGjVO9BYVsexLAy4z5l6izGdNeP5WavwHVxzuoc FBipBrMi7fi6ERox1fbJzIkA68w7NYbeQ+rvNCj52V1xi8aTIS6uJKmgdus= -----END CERTIFICATE-----Generated at Sat Jun 14 06:48:58 2025 by rpki-client