$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a128055-89f2-4d33-91a5-5d6fcff45064.roa File: 6a128055-89f2-4d33-91a5-5d6fcff45064.roa (raw, json) Hash identifier: wcl2WFLnixcFHLpbeDRQIN3mEPPcrbF0V0Dl7GPSI2o= Subject key identifier: F3:F3:96:17:B2:64:2B:7C:93:BD:6E:A5:32:19:26:9C:A5:90:A2:21 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59C0D38356E95C6902C493EF131AD2888033CD91 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a128055-89f2-4d33-91a5-5d6fcff45064.roa Signing time: Fri 09 May 2025 00:20:15 +0000 ROA not before: Fri 09 May 2025 00:20:15 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.177.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 13 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:c0:d3:83:56:e9:5c:69:02:c4:93:ef:13:1a:d2:88:80:33:cd:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:20:15 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=ddf0ae22df76bc89d5f573d590a2a8b8f31f25bf19ab49b72c103a9ef6377c59, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:8c:6a:fc:3d:49:88:66:59:86:51:f2:8f:39: 89:a3:31:b4:aa:3c:1e:6b:32:e7:d1:c2:e2:d0:2c: dd:08:71:97:4b:1c:85:21:3b:9b:ae:16:36:af:2d: 09:54:4a:33:4b:11:a4:b7:2e:95:68:6d:82:f8:2f: 39:2a:2a:40:b9:ba:d7:c0:76:c1:2d:23:8e:00:84: 38:68:c3:e0:10:29:9c:e1:63:f1:99:82:94:ab:e3: 91:54:93:e3:52:f9:b3:33:4b:9f:a8:05:86:00:a3: 1f:e1:f0:f6:19:b1:9f:6c:83:07:2f:84:dc:be:81: 6c:25:8e:0e:4a:de:23:42:ee:1b:8f:0e:80:94:8e: 47:57:34:ec:59:5f:8b:7b:83:9f:fa:a9:31:d8:4a: bd:42:eb:e6:14:fb:5f:20:4a:a0:1c:26:3c:ca:7e: 4f:18:0b:b1:09:de:89:df:a7:51:67:82:da:fc:7a: 4c:48:c5:0b:c6:24:d8:7d:f8:9a:e6:f4:6f:67:79: a0:63:ca:56:a3:df:41:c0:90:1c:92:17:bb:61:37: cc:af:7a:f1:04:8b:ba:8c:70:fe:7c:5b:73:88:ea: aa:32:98:32:73:d3:9c:2d:41:22:c5:aa:84:78:96: ef:23:e6:87:d3:57:0c:c2:56:46:db:b0:40:b2:aa: dc:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:F3:96:17:B2:64:2B:7C:93:BD:6E:A5:32:19:26:9C:A5:90:A2:21 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a128055-89f2-4d33-91a5-5d6fcff45064.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.177.32.0/19 Signature Algorithm: sha256WithRSAEncryption 4a:4c:5d:c7:89:cd:c2:5c:4b:02:53:83:ec:4f:e7:72:ba:9c: 91:88:87:73:11:50:a5:e4:ff:cc:19:1f:c7:6f:81:26:34:1b: fe:e4:fa:a4:a3:14:fd:a9:5f:36:15:6e:4d:b4:73:36:dd:ad: 42:a9:fd:7e:ea:3c:c1:32:d6:4f:5d:93:86:e2:9e:ec:8d:c4: 39:47:38:d1:ff:77:f1:16:16:43:fd:99:25:11:0c:7f:24:51: cc:2b:e7:dd:67:f3:b8:0c:1b:89:8a:ff:80:65:7c:04:a0:30: 78:00:cc:2e:74:4c:40:26:5e:07:79:75:4e:7c:b0:51:61:bb: dc:86:5a:b7:f9:3b:57:e3:5d:f0:85:37:42:de:fb:9d:0d:03: a6:ce:96:dd:fd:eb:24:ae:ba:29:2c:f6:f1:1e:a8:64:04:c3: 22:47:d2:ad:c3:a1:75:68:4e:e3:5b:ce:33:47:94:5e:74:00: 74:fd:92:e2:2c:b0:63:ca:d3:54:c6:65:66:e7:a2:b8:e2:53: 66:78:54:83:f9:3c:ea:84:7d:77:3e:18:11:7a:bb:f6:3d:54: 18:2b:c7:fc:5e:68:eb:8e:f1:15:1e:f7:6b:4d:17:f9:0f:d8: e5:2a:79:b1:08:cf:4c:80:24:e9:87:f0:64:ea:d0:9a:cd:8f: 7a:5f:53:3b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWcDTg1bpXGkCxJPvExrSiIAzzZEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAyMDE1WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZGYwYWUyMmRmNzZiYzg5ZDVmNTczZDU5MGEyYThiOGYz MWYyNWJmMTlhYjQ5YjcyYzEwM2E5ZWY2Mzc3YzU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzjGr8PUmIZlmGUfKPOYmjMbSqPB5rMufRwuLQLN0IcZdL HIUhO5uuFjavLQlUSjNLEaS3LpVobYL4LzkqKkC5utfAdsEtI44AhDhow+AQKZzh Y/GZgpSr45FUk+NS+bMzS5+oBYYAox/h8PYZsZ9sgwcvhNy+gWwljg5K3iNC7huP DoCUjkdXNOxZX4t7g5/6qTHYSr1C6+YU+18gSqAcJjzKfk8YC7EJ3onfp1Fngtr8 ekxIxQvGJNh9+Jrm9G9neaBjylaj30HAkBySF7thN8yvevEEi7qMcP58W3OI6qoy mDJz05wtQSLFqoR4lu8j5ofTVwzCVkbbsECyqtxtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8/OWF7JkK3yTvW6lMhkmnKWQoiEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhMTI4MDU1LTg5ZjItNGQzMy05MWE1LTVkNmZjZmY0NTA2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXRsSAwDQYJKoZIhvcNAQELBQADggEBAEpMXceJzcJcSwJTg+xP53K6nJGI h3MRUKXk/8wZH8dvgSY0G/7k+qSjFP2pXzYVbk20czbdrUKp/X7qPMEy1k9dk4bi nuyNxDlHONH/d/EWFkP9mSURDH8kUcwr591n87gMG4mK/4BlfASgMHgAzC50TEAm Xgd5dU58sFFhu9yGWrf5O1fjXfCFN0Le+50NA6bOlt396ySuuiks9vEeqGQEwyJH 0q3DoXVoTuNbzjNHlF50AHT9kuIssGPK01TGZWbnorjiU2Z4VIP5POqEfXc+GBF6 u/Y9VBgrx/xeaOuO8RUe92tNF/kP2OUqebEIz0yAJOmH8GTq0JrNj3pfUzs= -----END CERTIFICATE-----Generated at Mon May 12 04:18:47 2025 by rpki-client