$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9da330c-0bd7-48d2-a30f-06354eeb87e5.roa File: b9da330c-0bd7-48d2-a30f-06354eeb87e5.roa (raw, json) Hash identifier: v4qSBNz0wvYlW1f3+HqqgBHaH+1Ump74nHzooGu9//g= Subject key identifier: FA:95:21:B5:AB:25:40:6D:D9:49:2B:B6:64:B5:79:09:30:0E:9C:90 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F3081BE427F86524C3E76FD04357855F62BFD40 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9da330c-0bd7-48d2-a30f-06354eeb87e5.roa Signing time: Tue 20 May 2025 15:21:42 +0000 ROA not before: Tue 20 May 2025 15:21:42 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 75.2.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:30:81:be:42:7f:86:52:4c:3e:76:fd:04:35:78:55:f6:2b:fd:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 15:21:42 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=fd579dd0311b3e5e618b79c4446b06169a0848dd366fe01b7e59ed3a188dc672, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:64:95:35:81:87:47:2c:4d:ce:60:01:f7:06: 50:e7:10:b9:bc:77:21:ca:35:4a:4e:f2:3e:a2:ae: ea:c7:b5:4b:19:aa:9b:25:2e:a5:5d:ce:0e:27:a7: 1a:64:21:8d:1b:5d:a9:bf:71:f3:d4:be:0f:c8:2e: 32:99:9e:e0:48:b0:2c:15:97:6f:8c:5f:57:48:c8: 58:7a:c4:1a:57:ec:e0:1d:c3:e2:62:4c:95:a9:ba: c3:ee:9b:cd:82:22:42:06:e2:31:04:18:c3:f2:d0: 0b:29:0b:26:1e:e8:f7:7e:b7:9e:3d:01:c7:7d:9b: 71:0c:a8:b4:bb:76:76:b2:04:2c:1b:cd:90:fe:0c: 3b:a3:7d:c2:c5:a3:db:81:1a:a2:f2:55:7c:ae:c6: 81:4d:56:d4:81:ce:a1:ce:e8:83:df:8d:51:37:98: f6:85:4f:f3:ca:57:55:e4:0c:3e:a3:88:40:f3:7d: 03:a4:64:f5:7d:6c:0f:c3:8e:03:ad:33:59:2e:47: 29:18:13:e9:14:56:8b:11:b9:8f:8a:89:df:e4:cf: 8e:42:25:cf:c7:f1:00:6e:f5:db:d7:c4:86:0c:0f: 9c:01:f8:8e:b5:06:4b:5b:3b:fa:5a:56:a7:5c:38: e5:48:d7:b3:81:0a:cd:f3:3d:7e:20:05:3a:25:e4: 3b:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:95:21:B5:AB:25:40:6D:D9:49:2B:B6:64:B5:79:09:30:0E:9C:90 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9da330c-0bd7-48d2-a30f-06354eeb87e5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.2.128.0/19 Signature Algorithm: sha256WithRSAEncryption ab:b0:09:33:15:0d:7f:60:c0:f7:d8:f4:b6:a7:bb:5b:89:6a: 33:54:86:ad:93:1e:b1:45:f8:75:62:26:34:dc:8a:a5:fd:21: 42:c1:ba:bd:78:34:76:81:b5:1b:86:d3:76:ea:06:12:bc:8c: 1d:d5:ab:04:3b:be:82:f0:05:b3:46:e3:6b:62:70:51:6c:26: 01:50:7d:f8:f0:0d:c8:63:2e:ca:80:86:64:1d:01:99:7f:88: 10:dd:c6:47:e7:08:cd:9d:c5:bb:f6:40:51:2a:81:47:f8:03: 2c:26:38:b9:d0:34:82:30:9f:eb:87:c4:48:fd:d8:d1:ab:4a: 47:93:8b:31:ce:81:db:a0:e2:b3:ae:3f:31:a4:03:ce:be:c9: 7b:23:16:41:da:49:64:06:b6:78:35:a5:bb:61:07:f4:a3:c3: a0:31:91:6c:57:4e:0c:e7:f9:85:e0:51:64:4c:3b:5e:62:49: 95:c3:d5:d9:e0:7d:4f:67:63:42:7b:22:05:8e:2e:98:90:82: c0:f8:57:1e:48:c2:42:25:d4:72:19:24:18:13:41:22:7f:b0: 3f:bf:8b:0f:27:19:68:a9:35:f9:76:56:89:91:17:b9:f6:93: 12:77:4b:64:5a:33:5e:b4:99:b6:06:e6:a1:54:93:4c:21:c0: 69:5d:72:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfzCBvkJ/hlJMPnb9BDV4VfYr/UAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMTUyMTQyWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDU3OWRkMDMxMWIzZTVlNjE4Yjc5YzQ0NDZiMDYxNjlh MDg0OGRkMzY2ZmUwMWI3ZTU5ZWQzYTE4OGRjNjcyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjZJU1gYdHLE3OYAH3BlDnELm8dyHKNUpO8j6irurHtUsZ qpslLqVdzg4npxpkIY0bXam/cfPUvg/ILjKZnuBIsCwVl2+MX1dIyFh6xBpX7OAd w+JiTJWpusPum82CIkIG4jEEGMPy0AspCyYe6Pd+t549Acd9m3EMqLS7dnayBCwb zZD+DDujfcLFo9uBGqLyVXyuxoFNVtSBzqHO6IPfjVE3mPaFT/PKV1XkDD6jiEDz fQOkZPV9bA/DjgOtM1kuRykYE+kUVosRuY+Kid/kz45CJc/H8QBu9dvXxIYMD5wB +I61BktbO/paVqdcOOVI17OBCs3zPX4gBTol5Dt1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+pUhtaslQG3ZSSu2ZLV5CTAOnJAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I5ZGEzMzBjLTBiZDctNDhkMi1hMzBmLTA2MzU0ZWViODdlNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVLAoAwDQYJKoZIhvcNAQELBQADggEBAKuwCTMVDX9gwPfY9Lanu1uJajNU hq2THrFF+HViJjTciqX9IULBur14NHaBtRuG03bqBhK8jB3VqwQ7voLwBbNG42ti cFFsJgFQffjwDchjLsqAhmQdAZl/iBDdxkfnCM2dxbv2QFEqgUf4AywmOLnQNIIw n+uHxEj92NGrSkeTizHOgdug4rOuPzGkA86+yXsjFkHaSWQGtng1pbthB/Sjw6Ax kWxXTgzn+YXgUWRMO15iSZXD1dngfU9nY0J7IgWOLpiQgsD4Vx5IwkIl1HIZJBgT QSJ/sD+/iw8nGWipNfl2VomRF7n2kxJ3S2RaM160mbYG5qFUk0whwGldcrA= -----END CERTIFICATE-----Generated at Sat Jun 14 23:51:34 2025 by rpki-client