$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22e0224f-add1-4750-9889-4168c3af1743.roa File: 22e0224f-add1-4750-9889-4168c3af1743.roa (raw, json) Hash identifier: PRSRxY0T7M2SKbsL85HJ6WyC0g7cH13aklowt8Hs0GY= Subject key identifier: DB:29:F7:D7:D1:1D:E3:24:2A:78:CE:9D:21:F6:AC:C0:9D:A0:7E:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E7CC6DEEE0F9E925F552EE9D2636378A8639BDC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22e0224f-add1-4750-9889-4168c3af1743.roa Signing time: Mon 05 May 2025 15:00:15 +0000 ROA not before: Mon 05 May 2025 15:00:15 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:7c:c6:de:ee:0f:9e:92:5f:55:2e:e9:d2:63:63:78:a8:63:9b:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:00:15 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=0a6b344826abe931e2301b52c335ba78d6e35533156abac1dfa99e51fb74e94e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c8:b5:a6:2e:7f:ef:81:a9:9c:e8:b0:85:62: f3:74:86:79:e3:53:dd:1c:24:ee:75:3c:3c:b3:f8: d5:f6:04:2c:f4:07:84:55:36:88:ca:37:e3:3b:d9: f9:5b:a3:6e:ac:98:c3:53:02:83:1b:04:bc:67:5b: 67:2d:7c:fc:4c:2b:31:0e:fd:0d:1c:28:2d:04:b9: df:87:75:11:c1:24:02:27:8c:a3:b0:75:ab:e1:de: b5:0f:6f:26:cd:20:6c:41:ec:85:29:ab:b6:66:67: c6:69:94:96:d5:b2:d5:d3:02:bc:2c:7a:4d:e1:f9: ac:c8:ce:e4:6b:a6:7b:46:89:c8:9e:b5:7d:30:9a: fc:52:3c:f2:23:d6:99:4d:c4:07:33:51:b7:51:04: b7:db:6f:b4:33:da:bb:16:1e:24:6e:88:d9:4d:09: c5:50:1e:6f:cb:99:42:f4:83:f3:09:78:e8:89:98: 2c:d7:d5:e6:48:14:d1:e3:41:7b:00:e4:b1:ee:4b: 79:b2:fa:50:88:1b:be:42:d2:a0:55:fb:a8:a1:ef: 54:8a:02:84:36:23:ab:e6:93:97:fb:78:7a:39:8c: 35:25:6e:d8:e1:0e:c0:ce:4e:3b:11:6b:8f:45:8b: 7a:20:92:33:1d:3d:23:bb:ab:09:80:36:ac:f6:60: 30:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:29:F7:D7:D1:1D:E3:24:2A:78:CE:9D:21:F6:AC:C0:9D:A0:7E:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22e0224f-add1-4750-9889-4168c3af1743.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.112.0/21 Signature Algorithm: sha256WithRSAEncryption 04:1c:f1:60:17:a6:38:44:f1:f7:1f:b4:75:5f:32:04:ca:0e: 02:79:74:81:7f:3b:e8:f3:16:57:b7:c1:0c:aa:8c:60:08:26: 57:d8:50:9b:cc:73:59:00:2e:df:6a:a8:4f:d6:77:dd:75:11: f4:d7:10:e1:5f:e6:a7:d5:23:81:96:09:ee:2c:7d:1f:fd:0c: b2:44:9e:6c:99:a7:d6:e3:f4:b9:3e:a1:0e:2c:3d:b5:d9:b8: 13:2a:3e:06:0c:f1:71:1e:e5:94:04:37:74:47:3a:2e:33:23: ca:7d:36:84:89:4f:f1:12:83:0b:69:f9:37:57:91:e9:e5:81: 2e:1f:88:44:9e:1c:84:38:04:ec:13:b7:f3:5a:0d:2b:53:ce: 1f:70:00:de:1e:da:9d:c4:51:fc:8d:93:05:80:6b:9f:1c:46: 7b:33:45:15:d6:b6:32:58:fd:07:58:aa:83:8f:fb:39:37:35: ca:0c:b8:16:87:e7:8c:70:62:c5:b0:b3:f9:c3:94:76:54:5a: 1c:09:0f:cf:0f:e9:8b:6a:b2:4d:5a:ff:72:c5:f6:ca:05:82: 14:4e:49:fc:9d:94:34:5d:8d:c6:12:14:7d:41:b0:2c:f7:d3: 61:af:a7:02:bd:3a:c5:73:3f:17:e6:cd:c3:6f:09:61:5d:57: c3:f4:54:43 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTnzG3u4PnpJfVS7p0mNjeKhjm9wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTUwMDE1WhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTZiMzQ0ODI2YWJlOTMxZTIzMDFiNTJjMzM1YmE3OGQ2 ZTM1NTMzMTU2YWJhYzFkZmE5OWU1MWZiNzRlOTRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+yLWmLn/vgamc6LCFYvN0hnnjU90cJO51PDyz+NX2BCz0 B4RVNojKN+M72flbo26smMNTAoMbBLxnW2ctfPxMKzEO/Q0cKC0Eud+HdRHBJAIn jKOwdavh3rUPbybNIGxB7IUpq7ZmZ8ZplJbVstXTArwsek3h+azIzuRrpntGicie tX0wmvxSPPIj1plNxAczUbdRBLfbb7Qz2rsWHiRuiNlNCcVQHm/LmUL0g/MJeOiJ mCzX1eZIFNHjQXsA5LHuS3my+lCIG75C0qBV+6ih71SKAoQ2I6vmk5f7eHo5jDUl btjhDsDOTjsRa49Fi3ogkjMdPSO7qwmANqz2YDCnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2yn319Ed4yQqeM6dIfaswJ2gfgQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyZTAyMjRmLWFkZDEtNDc1MC05ODg5LTQxNjhjM2FmMTc0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANomXAwDQYJKoZIhvcNAQELBQADggEBAAQc8WAXpjhE8fcftHVfMgTKDgJ5 dIF/O+jzFle3wQyqjGAIJlfYUJvMc1kALt9qqE/Wd911EfTXEOFf5qfVI4GWCe4s fR/9DLJEnmyZp9bj9Lk+oQ4sPbXZuBMqPgYM8XEe5ZQEN3RHOi4zI8p9NoSJT/ES gwtp+TdXkenlgS4fiESeHIQ4BOwTt/NaDStTzh9wAN4e2p3EUfyNkwWAa58cRnsz RRXWtjJY/QdYqoOP+zk3NcoMuBaH54xwYsWws/nDlHZUWhwJD88P6Ytqsk1a/3LF 9soFghROSfydlDRdjcYSFH1BsCz302GvpwK9OsVzPxfmzcNvCWFdV8P0VEM= -----END CERTIFICATE-----Generated at Sun May 11 12:43:23 2025 by rpki-client