$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0114a896-9728-46a0-a9f2-a6fdf1c6fb94.roa File: 0114a896-9728-46a0-a9f2-a6fdf1c6fb94.roa (raw, json) Hash identifier: F0XrXcy2r5+8UjZS9lGO4LgWoJlXPu5VIaxMJIpV5oA= Subject key identifier: E4:C9:18:68:51:30:98:71:2E:78:31:47:E0:63:F4:0D:C7:03:D3:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14D1B2834E123312CCF48EA085A55C89134ADBF1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0114a896-9728-46a0-a9f2-a6fdf1c6fb94.roa Signing time: Mon 19 May 2025 18:41:13 +0000 ROA not before: Mon 19 May 2025 18:41:13 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 92.201.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:d1:b2:83:4e:12:33:12:cc:f4:8e:a0:85:a5:5c:89:13:4a:db:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 18:41:13 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=56047509faca9014066ebda78b63c9bec328dd2062ca5267a6eea507d3789cfe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f2:00:e0:47:71:9d:1b:cc:c4:cf:1e:f7:eb: f8:fa:07:10:34:90:67:16:f8:6a:f3:b2:23:03:cb: ab:41:01:2b:1f:83:21:2e:05:ae:ec:af:72:f4:6e: ca:c9:eb:95:80:0d:28:13:92:85:1c:d8:81:d3:84: 90:b0:7a:92:e7:31:97:40:40:8d:9a:3f:2e:15:4b: 33:db:c9:b7:7f:92:a6:45:26:2a:68:59:b7:7d:81: de:8d:b5:88:b6:43:7f:a4:ac:3f:7e:5d:12:59:fb: 87:b4:d3:e3:d3:0d:b0:ca:f6:d8:35:aa:36:8b:6d: aa:27:63:c3:84:13:5e:5b:78:4b:7f:81:f7:58:ae: 0e:4a:d6:92:35:1e:f1:6a:3a:9c:2a:93:a7:34:16: 29:2e:d2:4c:c4:4a:c3:78:e1:24:69:e1:ec:30:66: e4:44:ec:f4:f8:89:a6:0d:44:bb:e7:f2:1c:d6:34: 1b:1f:e2:82:f0:c3:88:42:c0:10:36:72:87:9e:8b: 81:08:e7:26:e2:a0:84:50:74:c0:48:27:58:c6:6f: 20:88:d1:a7:c2:ec:27:db:70:d2:c1:28:ad:60:ea: 0f:d2:3c:26:10:dc:cd:be:b2:e1:5f:76:8b:1f:75: fb:8c:b8:6d:f1:26:a8:0c:cc:79:31:54:b1:d7:bc: c5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:C9:18:68:51:30:98:71:2E:78:31:47:E0:63:F4:0D:C7:03:D3:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0114a896-9728-46a0-a9f2-a6fdf1c6fb94.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 92.201.128.0/17 Signature Algorithm: sha256WithRSAEncryption 93:f3:12:91:5e:69:a0:94:59:4f:1a:3e:d1:d3:7a:8e:d0:ac: 92:8c:36:9f:6c:83:53:2d:27:92:11:d8:ed:db:fd:a7:0b:88: 67:5a:a7:42:10:21:1d:e0:26:a7:d3:0c:cb:98:83:f5:4e:b4: b0:e8:93:9b:aa:df:9c:42:ad:55:2c:4e:a6:2c:bf:b6:76:c7: 9b:e7:01:d4:1b:fc:71:0e:15:a9:98:a5:26:6d:a5:7c:93:4c: c8:a9:de:d4:34:32:b5:3b:dd:42:93:f7:4b:7c:62:ba:8d:09: 2b:a8:7d:20:78:bb:5c:50:3c:fd:be:ba:e7:1b:16:8e:1e:ca: c4:ab:1f:7d:61:56:af:82:a9:57:f1:1d:68:e7:9a:59:3c:1d: 3a:a2:df:d2:a0:23:e6:f9:93:cb:f1:bc:bd:c8:e7:c5:47:21: b6:85:85:57:57:4c:9e:57:91:1b:7d:98:aa:5a:5c:58:4e:9d: a6:c3:ca:15:6d:7c:1b:64:63:33:46:61:7d:a7:27:e8:99:ec: 19:87:82:5c:c8:5f:49:b3:f1:44:de:01:44:05:77:e0:e8:fc: 81:07:15:52:ad:bf:5a:2a:22:15:f8:8a:ad:e4:12:f9:32:89: df:46:48:8f:12:13:9c:8a:9c:29:51:69:57:2f:0f:ea:b0:b8: e2:44:5f:1c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFNGyg04SMxLM9I6ghaVciRNK2/EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTg0MTEzWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjA0NzUwOWZhY2E5MDE0MDY2ZWJkYTc4YjYzYzliZWMz MjhkZDIwNjJjYTUyNjdhNmVlYTUwN2QzNzg5Y2ZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDF8gDgR3GdG8zEzx736/j6BxA0kGcW+GrzsiMDy6tBASsf gyEuBa7sr3L0bsrJ65WADSgTkoUc2IHThJCwepLnMZdAQI2aPy4VSzPbybd/kqZF JipoWbd9gd6NtYi2Q3+krD9+XRJZ+4e00+PTDbDK9tg1qjaLbaonY8OEE15beEt/ gfdYrg5K1pI1HvFqOpwqk6c0Fiku0kzESsN44SRp4ewwZuRE7PT4iaYNRLvn8hzW NBsf4oLww4hCwBA2coeei4EI5ybioIRQdMBIJ1jGbyCI0afC7CfbcNLBKK1g6g/S PCYQ3M2+suFfdosfdfuMuG3xJqgMzHkxVLHXvMWlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5MkYaFEwmHEueDFH4GP0DccD04AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAxMTRhODk2LTk3MjgtNDZhMC1hOWYyLWE2ZmRmMWM2ZmI5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdcyYAwDQYJKoZIhvcNAQELBQADggEBAJPzEpFeaaCUWU8aPtHTeo7QrJKM Np9sg1MtJ5IR2O3b/acLiGdap0IQIR3gJqfTDMuYg/VOtLDok5uq35xCrVUsTqYs v7Z2x5vnAdQb/HEOFamYpSZtpXyTTMip3tQ0MrU73UKT90t8YrqNCSuofSB4u1xQ PP2+uucbFo4eysSrH31hVq+CqVfxHWjnmlk8HTqi39KgI+b5k8vxvL3I58VHIbaF hVdXTJ5XkRt9mKpaXFhOnabDyhVtfBtkYzNGYX2nJ+iZ7BmHglzIX0mz8UTeAUQF d+Do/IEHFVKtv1oqIhX4iq3kEvkyid9GSI8SE5yKnClRaVcvD+qwuOJEXxw= -----END CERTIFICATE-----Generated at Sun Jun 1 04:25:55 2025 by rpki-client