$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c519af15-33bf-4884-a6c5-459c9023ad53.roa File: c519af15-33bf-4884-a6c5-459c9023ad53.roa (raw, json) Hash identifier: iXBMLYJDXlutvWoaRhULb5FD3byXR1lr79+MHI9V3tg= Subject key identifier: 05:D1:4C:CE:DA:DF:C2:2D:40:76:8C:AF:D2:EF:94:20:8A:B9:42:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6E4C597C28DCDFC4F20C2AF3CF4302AE13BE3228 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c519af15-33bf-4884-a6c5-459c9023ad53.roa Signing time: Fri 02 May 2025 00:20:21 +0000 ROA not before: Fri 02 May 2025 00:20:21 +0000 ROA not after: Fri 06 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 199.61.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:4c:59:7c:28:dc:df:c4:f2:0c:2a:f3:cf:43:02:ae:13:be:32:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:20:21 2025 GMT Not After : Jun 6 23:59:59 2025 GMT Subject: serialNumber=a08852c0fe48b3c42ddc70d4f524f5f61cc846272a0ab8f0bac63d83fa478592, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:61:89:b7:56:ff:75:36:8e:cf:23:33:83:3e: ec:0a:01:6f:de:7b:27:91:8f:00:be:98:64:82:5f: bc:a9:86:93:7e:2c:a6:9a:9d:9e:c4:12:51:cd:2f: b2:a5:1b:df:5b:71:89:db:87:00:d5:9e:f5:5a:f2: 0c:d8:c5:71:90:38:83:4c:d6:7a:f0:29:b5:ed:c5: 1a:bb:dc:b3:d0:91:ca:8c:43:2b:03:30:84:1c:13: 91:f5:54:bc:7a:7e:54:ed:0d:cd:d8:46:43:1b:76: 0c:09:b3:18:a1:3c:69:73:36:c5:7e:b8:a9:a3:b7: b9:ef:79:5b:d1:ef:94:41:36:d7:c5:7d:40:43:dd: b0:c3:ed:8c:08:7b:89:66:15:c1:19:a8:7a:1a:11: f8:4a:4c:2f:65:b8:c4:2c:6e:9d:3c:e0:60:1a:73: 94:b5:05:d1:06:28:35:94:8a:ac:60:ca:cb:b8:0e: 72:b0:6d:73:37:0a:03:56:e4:a2:87:97:b8:7b:7b: c1:ce:a1:48:de:be:f5:71:5a:51:fa:6d:06:0a:0d: 0e:d4:04:81:60:20:ba:8d:02:ec:75:60:35:04:22: f6:ea:e4:59:5d:08:a9:2c:86:79:89:e4:6f:bd:c7: 37:75:f7:34:ba:08:94:f5:9f:1c:8c:7a:61:07:bc: cb:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:D1:4C:CE:DA:DF:C2:2D:40:76:8C:AF:D2:EF:94:20:8A:B9:42:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c519af15-33bf-4884-a6c5-459c9023ad53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.61.0.0/16 Signature Algorithm: sha256WithRSAEncryption 07:9a:a6:4f:34:f9:6a:7f:60:e7:ff:37:ee:ee:6b:e3:b2:08: 91:0e:a0:6d:1d:a5:a8:58:7e:46:4f:e7:39:d4:b4:d6:24:2a: 1e:cb:ab:05:b6:3c:09:af:64:9d:a2:fa:5e:ba:e3:a5:53:37: e8:00:e7:97:1b:ef:60:2c:b8:e0:3e:0c:9d:20:2e:24:87:ce: 18:bc:fe:24:23:a9:5f:c1:38:48:3d:f8:e3:5e:ad:a6:a7:24: e5:b3:8c:18:7a:f4:c3:d9:8f:09:39:30:e8:da:48:41:3d:c9: ce:49:03:e5:ac:66:8b:f0:37:c7:10:8e:ac:f6:2d:de:3c:32: d7:50:ca:7f:7a:61:94:14:9d:fe:87:57:d8:0d:f5:26:fb:b3: 0c:2e:0a:7c:7a:b7:b6:82:c9:9c:75:44:36:6c:3b:a8:e9:7e: 15:e5:47:e6:5f:f3:4a:64:0d:b8:15:68:db:f7:4a:b0:1b:f2: 2e:14:3b:fb:2e:b4:88:38:7e:b8:67:2f:0f:ad:d9:24:21:79: 6c:cf:30:58:90:d6:46:cb:a0:66:5e:90:1b:e6:cb:af:7d:8b: 08:dd:b2:39:c3:a6:be:91:59:29:97:9b:9f:fd:57:eb:e9:25: 1c:f1:f5:55:07:52:ce:72:a2:36:74:40:c3:02:72:70:e9:01: 53:52:bf:ef -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbkxZfCjc38TyDCrzz0MCrhO+MigwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAyMDAyMDIxWhcNMjUwNjA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMDg4NTJjMGZlNDhiM2M0MmRkYzcwZDRmNTI0ZjVmNjFj Yzg0NjI3MmEwYWI4ZjBiYWM2M2Q4M2ZhNDc4NTkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZYYm3Vv91No7PIzODPuwKAW/eeyeRjwC+mGSCX7yphpN+ LKaanZ7EElHNL7KlG99bcYnbhwDVnvVa8gzYxXGQOINM1nrwKbXtxRq73LPQkcqM QysDMIQcE5H1VLx6flTtDc3YRkMbdgwJsxihPGlzNsV+uKmjt7nveVvR75RBNtfF fUBD3bDD7YwIe4lmFcEZqHoaEfhKTC9luMQsbp084GAac5S1BdEGKDWUiqxgysu4 DnKwbXM3CgNW5KKHl7h7e8HOoUjevvVxWlH6bQYKDQ7UBIFgILqNAux1YDUEIvbq 5FldCKkshnmJ5G+9xzd19zS6CJT1nxyMemEHvMt9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBdFMztrfwi1Adoyv0u+UIIq5QsUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1MTlhZjE1LTMzYmYtNDg4NC1hNmM1LTQ1OWM5MDIzYWQ1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDHPTANBgkqhkiG9w0BAQsFAAOCAQEAB5qmTzT5an9g5/837u5r47IIkQ6g bR2lqFh+Rk/nOdS01iQqHsurBbY8Ca9knaL6XrrjpVM36ADnlxvvYCy44D4MnSAu JIfOGLz+JCOpX8E4SD34416tpqck5bOMGHr0w9mPCTkw6NpIQT3JzkkD5axmi/A3 xxCOrPYt3jwy11DKf3phlBSd/odX2A31JvuzDC4KfHq3toLJnHVENmw7qOl+FeVH 5l/zSmQNuBVo2/dKsBvyLhQ7+y60iDh+uGcvD63ZJCF5bM8wWJDWRsugZl6QG+bL r32LCN2yOcOmvpFZKZebn/1X6+klHPH1VQdSznKiNnRAwwJycOkBU1K/7w== -----END CERTIFICATE-----Generated at Tue May 13 04:33:01 2025 by rpki-client