$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4010916-729f-4bdb-aa5b-7cdcaa762cb8.roa File: f4010916-729f-4bdb-aa5b-7cdcaa762cb8.roa (raw, json) Hash identifier: ywSyVedRYfFYTBOlal/CxJkIkQexfjqkOebC0W+DRk4= Subject key identifier: AD:7F:E4:AB:51:53:04:4C:AE:AD:EC:BD:0C:95:D5:45:6C:48:BB:44 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 19A3FAD465117B1995C823FEFD87DDACF5D1D1B3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4010916-729f-4bdb-aa5b-7cdcaa762cb8.roa Signing time: Mon 02 Jun 2025 15:32:35 +0000 ROA not before: Mon 02 Jun 2025 15:32:35 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 5.174.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:a3:fa:d4:65:11:7b:19:95:c8:23:fe:fd:87:dd:ac:f5:d1:d1:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 2 15:32:35 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=35b38f0335cacffe9d5fc9510f4ac90a1605863491d3f6b7a856aed8c19de0eb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:32:8d:4d:d1:2c:8b:49:03:83:38:db:93:ce: ab:08:26:95:f4:2f:a0:dd:01:d1:8c:df:18:7c:e7: b1:b2:86:14:1d:87:57:e4:44:6f:cf:5c:f1:0a:f1: 2c:1d:f5:8d:0e:85:c0:c4:58:c4:75:a3:3a:9f:48: 4b:75:12:de:a2:cf:8e:e5:73:80:25:e0:8f:61:b7: 4f:ac:7f:9e:ec:aa:29:d4:92:95:e3:09:90:6c:ed: e4:3d:22:b1:62:eb:03:36:6a:96:4a:eb:72:00:99: c6:00:cf:8e:65:06:5e:49:1a:5f:59:fc:e6:a0:0b: c4:c1:6c:04:a7:2e:13:d8:0f:1f:66:66:ba:77:01: 38:7a:2b:5d:ca:47:1e:ed:8c:74:c4:98:b2:d5:33: c3:f7:35:5b:ca:8a:db:d3:dd:2a:22:5d:f0:97:03: b2:1f:c2:cf:9b:d1:f8:47:91:00:68:b1:8d:55:87: 6b:c2:fe:95:31:36:fe:d4:f2:bd:94:47:8f:b8:fc: 41:dd:6e:18:db:44:85:d3:95:e9:85:2e:c3:76:fb: 96:89:93:90:e5:ed:9e:ca:5a:e4:fe:d7:72:f8:30: 35:3d:ee:c9:47:ce:79:fa:b6:3d:32:91:c1:ad:43: 32:13:63:22:4c:fb:5c:6c:10:cf:4b:b4:67:8c:29: 8d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:7F:E4:AB:51:53:04:4C:AE:AD:EC:BD:0C:95:D5:45:6C:48:BB:44 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f4010916-729f-4bdb-aa5b-7cdcaa762cb8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.174.80.0/20 Signature Algorithm: sha256WithRSAEncryption 80:4c:2b:49:7b:40:20:60:b8:f1:5e:0e:b1:17:ff:3b:f2:d6: fa:ef:b4:a3:7c:a9:f9:b3:a0:ca:1d:24:42:a9:ca:a2:fb:12: 4f:81:96:84:ab:ab:85:93:b1:af:02:06:27:5f:4a:ab:2f:55: fd:fb:36:63:b6:4d:b8:b0:8c:fd:77:15:96:21:75:6f:e6:cc: 8b:21:34:21:38:96:8b:2a:10:7d:99:98:ff:86:9d:c8:5c:a5: 9b:dc:7a:20:7b:f8:8c:9c:20:3d:74:60:11:84:cc:8d:cc:45: 50:c3:3b:31:1e:92:44:ee:ae:b6:01:5a:69:b0:6e:89:08:2c: 9e:7d:9b:39:32:a3:ae:b1:5b:50:20:e5:1b:28:af:fb:9e:b5: f5:c7:bc:ed:48:d7:d8:e1:30:31:1d:e8:ab:06:76:59:f7:3f: 59:61:4f:2f:cf:17:c4:4d:e3:fb:ac:63:97:bd:fa:34:45:99: f0:06:0e:e3:f3:2d:33:a3:49:31:16:87:ae:b7:06:13:27:a0: 5d:8b:34:e2:a4:d3:0f:ae:2f:8a:2c:df:47:de:13:f9:e8:88: 21:42:7c:53:3e:af:b4:68:62:01:d4:aa:7d:6d:41:1a:7c:e3: fa:b7:71:63:e9:33:42:e2:12:36:93:ce:f6:38:4a:b2:38:68: ef:2a:7b:ea -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGaP61GURexmVyCP+/YfdrPXR0bMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAyMTUzMjM1WhcNMjUwNzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNWIzOGYwMzM1Y2FjZmZlOWQ1ZmM5NTEwZjRhYzkwYTE2 MDU4NjM0OTFkM2Y2YjdhODU2YWVkOGMxOWRlMGViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCMo1N0SyLSQODONuTzqsIJpX0L6DdAdGM3xh857GyhhQd h1fkRG/PXPEK8Swd9Y0OhcDEWMR1ozqfSEt1Et6iz47lc4Al4I9ht0+sf57sqinU kpXjCZBs7eQ9IrFi6wM2apZK63IAmcYAz45lBl5JGl9Z/OagC8TBbASnLhPYDx9m Zrp3ATh6K13KRx7tjHTEmLLVM8P3NVvKitvT3SoiXfCXA7Ifws+b0fhHkQBosY1V h2vC/pUxNv7U8r2UR4+4/EHdbhjbRIXTlemFLsN2+5aJk5Dl7Z7KWuT+13L4MDU9 7slHznn6tj0ykcGtQzITYyJM+1xsEM9LtGeMKY0nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrX/kq1FTBEyurey9DJXVRWxIu0QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y0MDEwOTE2LTcyOWYtNGJkYi1hYTViLTdjZGNhYTc2MmNiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQFrlAwDQYJKoZIhvcNAQELBQADggEBAIBMK0l7QCBguPFeDrEX/zvy1vrv tKN8qfmzoModJEKpyqL7Ek+BloSrq4WTsa8CBidfSqsvVf37NmO2TbiwjP13FZYh dW/mzIshNCE4losqEH2ZmP+GnchcpZvceiB7+IycID10YBGEzI3MRVDDOzEekkTu rrYBWmmwbokILJ59mzkyo66xW1Ag5Rsor/uetfXHvO1I19jhMDEd6KsGdln3P1lh Ty/PF8RN4/usY5e9+jRFmfAGDuPzLTOjSTEWh663BhMnoF2LNOKk0w+uL4os30fe E/noiCFCfFM+r7RoYgHUqn1tQRp84/q3cWPpM0LiEjaTzvY4SrI4aO8qe+o= -----END CERTIFICATE-----Generated at Sat Jun 14 06:36:23 2025 by rpki-client