$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61065a77-618e-47cc-a114-a9c0237ae690.roa File: 61065a77-618e-47cc-a114-a9c0237ae690.roa (raw, json) Hash identifier: 8QusF3m5F7kjzfDkWIuIT+Z2wbESThLPmlbii83ZA0U= Subject key identifier: CC:DF:A8:C3:F7:1A:5D:F9:98:D9:71:36:EC:70:08:F6:4B:E6:C4:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06148FE492BB946DDD97957C82DFDC8E1DFEB772 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61065a77-618e-47cc-a114-a9c0237ae690.roa Signing time: Mon 02 Jun 2025 15:32:31 +0000 ROA not before: Mon 02 Jun 2025 15:32:31 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 5.174.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:14:8f:e4:92:bb:94:6d:dd:97:95:7c:82:df:dc:8e:1d:fe:b7:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 2 15:32:31 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=bf219f174600697685d14aef430880010df841ffdd539aa6793879efdd32f1aa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:eb:46:7a:56:28:e2:a5:1b:7e:30:dc:4f:50: b0:5d:84:29:8f:04:56:2f:f5:a2:f3:ce:79:b6:b6: b6:e2:94:26:5e:8c:fe:65:9f:34:68:06:69:b0:b9: 9c:5a:81:f4:be:fa:53:f3:00:96:0b:11:6f:34:14: c7:24:70:28:3a:2e:91:c4:ca:d9:e2:96:9d:a8:61: 36:c4:61:16:dc:1a:17:84:d0:5c:0d:a8:bf:ab:dc: 07:dc:ef:b4:8d:5e:79:1c:89:58:09:74:23:3c:25: ce:98:b4:e7:67:9f:e8:ca:b3:6d:74:3a:9f:27:1d: ca:8f:98:a3:17:c8:aa:bc:a3:56:f6:ab:29:90:6d: e1:e2:7b:9e:b5:0b:12:ff:49:48:7c:f1:a4:e1:62: af:05:b1:11:eb:a9:1b:68:36:1d:7b:bb:43:18:d0: d3:21:96:73:30:07:03:e5:1b:e4:6f:58:36:1a:90: e0:7c:a8:8b:69:8f:c2:1f:42:12:79:94:ec:d3:ce: 32:2c:05:c1:61:69:b5:65:a7:8f:a1:36:c5:40:a9: b2:cd:8c:7c:ea:c4:84:67:98:26:11:11:2c:b9:e5: b4:c7:34:bd:fc:fe:27:cd:33:71:ff:24:b8:3c:70: 39:69:0d:35:4d:df:96:7f:e3:d2:74:db:a7:e4:65: 3f:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:DF:A8:C3:F7:1A:5D:F9:98:D9:71:36:EC:70:08:F6:4B:E6:C4:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61065a77-618e-47cc-a114-a9c0237ae690.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.174.64.0/20 Signature Algorithm: sha256WithRSAEncryption 97:b0:95:ac:9d:f2:23:84:f4:58:6a:00:c5:e2:df:3a:55:3d: 5d:d4:8d:18:a4:3c:e0:95:25:c0:a9:4f:80:0f:b4:e3:4a:49: 58:78:0b:2e:62:d4:ba:f7:50:4c:de:fe:78:cb:d4:74:c8:af: ea:ce:ca:b4:b4:73:e8:4d:7d:e3:24:93:a0:8a:25:ab:f5:92: 49:b0:32:a0:e4:c8:08:3e:28:d8:9f:fa:be:16:49:99:a7:97: 39:6d:f4:f9:aa:fa:7b:df:27:76:9b:e7:e4:d5:70:c6:3b:f8: 29:7c:39:d7:a3:35:60:54:f2:48:34:f0:d3:aa:03:a6:55:14: 09:59:be:f2:6b:9c:9d:db:ef:ff:96:0f:c3:38:8c:87:91:c9: 62:61:63:db:0f:3c:67:77:3f:a4:ee:1e:19:e5:8e:8e:f2:2f: 94:16:60:e8:25:55:8c:0b:e7:42:ed:1d:5b:81:22:47:0d:97: 0e:a8:ab:d3:6c:e0:ec:c6:ae:e7:3a:e3:e0:bd:b7:8f:71:28: c8:4f:93:bf:d5:3d:12:cf:12:6a:dd:2d:dd:8e:11:54:44:02: 15:05:b4:2d:10:d8:db:78:9e:cc:04:25:77:5e:b8:e5:4d:a1: a0:2f:b1:f2:ad:53:42:ef:88:4e:d8:c6:30:03:14:e6:22:10: 5a:a0:93:66 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBhSP5JK7lG3dl5V8gt/cjh3+t3IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAyMTUzMjMxWhcNMjUwNzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjIxOWYxNzQ2MDA2OTc2ODVkMTRhZWY0MzA4ODAwMTBk Zjg0MWZmZGQ1MzlhYTY3OTM4NzllZmRkMzJmMWFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC160Z6VijipRt+MNxPULBdhCmPBFYv9aLzznm2trbilCZe jP5lnzRoBmmwuZxagfS++lPzAJYLEW80FMckcCg6LpHEytnilp2oYTbEYRbcGheE 0FwNqL+r3Afc77SNXnkciVgJdCM8Jc6YtOdnn+jKs210Op8nHcqPmKMXyKq8o1b2 qymQbeHie561CxL/SUh88aThYq8FsRHrqRtoNh17u0MY0NMhlnMwBwPlG+RvWDYa kOB8qItpj8IfQhJ5lOzTzjIsBcFhabVlp4+hNsVAqbLNjHzqxIRnmCYRESy55bTH NL38/ifNM3H/JLg8cDlpDTVN35Z/49J026fkZT+rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzN+ow/caXfmY2XE27HAI9kvmxFAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxMDY1YTc3LTYxOGUtNDdjYy1hMTE0LWE5YzAyMzdhZTY5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQFrkAwDQYJKoZIhvcNAQELBQADggEBAJewlayd8iOE9FhqAMXi3zpVPV3U jRikPOCVJcCpT4APtONKSVh4Cy5i1Lr3UEze/njL1HTIr+rOyrS0c+hNfeMkk6CK Jav1kkmwMqDkyAg+KNif+r4WSZmnlzlt9Pmq+nvfJ3ab5+TVcMY7+Cl8OdejNWBU 8kg08NOqA6ZVFAlZvvJrnJ3b7/+WD8M4jIeRyWJhY9sPPGd3P6TuHhnljo7yL5QW YOglVYwL50LtHVuBIkcNlw6oq9Ns4OzGruc64+C9t49xKMhPk7/VPRLPEmrdLd2O EVREAhUFtC0Q2Nt4nswEJXdeuOVNoaAvsfKtU0LviE7YxjADFOYiEFqgk2Y= -----END CERTIFICATE-----Generated at Sat Jun 14 07:08:06 2025 by rpki-client