$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07333264-bbed-4b83-9c69-a27eb4a7b8a9.roa File: 07333264-bbed-4b83-9c69-a27eb4a7b8a9.roa (raw, json) Hash identifier: Eluzx3296gngaOirTO4gft9sDsz6tZ90tHMSJAYw+58= Subject key identifier: 11:AB:42:11:DD:6C:2A:27:23:17:88:CB:34:31:08:5E:E6:FD:72:4B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 618B894A5FFB3C3308AF0DC4B16621B220BB8D1E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07333264-bbed-4b83-9c69-a27eb4a7b8a9.roa Signing time: Wed 28 May 2025 00:30:36 +0000 ROA not before: Wed 28 May 2025 00:30:36 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 64.252.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:8b:89:4a:5f:fb:3c:33:08:af:0d:c4:b1:66:21:b2:20:bb:8d:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:30:36 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=5a28a11d8b8df03584bf30dc4c1ea99124eac8e7418a261c1ec01a37b3a5a830, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a5:d2:b4:3b:30:fe:e8:48:82:09:49:5a:75: dc:58:e8:e4:94:25:8d:ca:de:8d:7c:0a:7f:28:8a: 70:30:89:c6:80:f1:74:3f:80:83:bf:d6:1d:8f:cb: 75:cb:c9:36:e1:5d:db:ed:4b:31:96:17:39:a8:f0: c0:8e:af:8a:2c:76:a9:f9:79:7c:d2:69:99:2c:0b: d7:88:8d:b4:87:c2:5b:9a:3c:1b:36:d0:17:da:c6: 0e:48:e2:fa:6d:8d:05:0e:39:ad:d5:bf:b8:ce:31: 92:65:db:c0:51:c9:d7:09:25:dc:9a:64:00:c3:78: c7:58:3a:bf:45:e7:76:03:13:4a:41:df:6d:48:97: 1a:fb:3c:2b:da:44:90:1d:d0:bf:2d:cc:4d:ee:9f: e7:c8:6b:ec:0f:10:39:57:b5:8b:2b:d5:13:62:7e: 46:0e:16:31:c8:63:8b:a1:b3:28:e0:ec:fa:1c:54: 81:37:ad:4c:84:98:b7:84:08:b2:a4:f5:bf:e3:4a: fe:d3:6c:3c:88:83:6b:16:f7:a2:de:56:70:d9:c2: 57:96:5a:09:96:7f:2c:04:25:29:23:6a:8d:ad:45: ef:9c:d8:75:da:b0:f1:4f:c0:a2:d5:f9:f9:dc:5c: e7:f7:dc:00:fc:c7:6f:18:71:63:7a:4d:c8:3d:9a: a1:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:AB:42:11:DD:6C:2A:27:23:17:88:CB:34:31:08:5E:E6:FD:72:4B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07333264-bbed-4b83-9c69-a27eb4a7b8a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.66.0/24 Signature Algorithm: sha256WithRSAEncryption 63:fb:a7:c6:ef:ea:e2:8c:19:fe:46:91:57:4c:e3:b3:61:f8: 46:5c:9b:a8:71:42:83:d8:f7:9f:65:06:8d:46:a9:f0:d2:2e: 73:f1:90:27:4e:b3:ac:12:c0:7b:63:0f:0e:bb:cd:5e:7c:94: 48:38:2c:7c:68:a2:09:aa:5f:d9:30:e4:49:84:2f:f8:b4:43: df:34:01:e5:d3:58:9d:7a:3b:39:50:45:77:01:08:39:73:09: 9b:db:e9:14:b3:a4:12:d5:2b:8c:bc:e8:ec:9e:7d:32:88:b3: a7:d3:36:54:df:9a:1c:d2:24:1b:76:87:16:10:70:50:8f:ec: 3e:4c:ab:e0:35:90:61:8c:e5:9f:8d:b0:31:77:00:91:12:37: 42:8b:f1:0c:8f:f2:57:f4:a5:90:f0:25:16:70:c4:07:46:0d: 82:50:87:78:0c:ee:75:a6:53:d1:dd:58:18:fd:22:ff:69:47: 89:ef:66:c4:5d:d4:f4:0c:45:da:b4:b2:5c:48:28:d1:f4:7c: d9:82:d5:f3:39:52:1c:b8:0d:c5:4f:e6:55:5f:55:73:5a:80: 01:d8:79:9d:4a:b2:31:ae:ab:a2:da:01:c2:46:0f:52:e0:16: f6:e5:4b:f0:8e:e2:63:89:9a:52:64:ac:86:1a:2d:14:ae:22: 67:c2:04:1f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYYuJSl/7PDMIrw3EsWYhsiC7jR4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAzMDM2WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YTI4YTExZDhiOGRmMDM1ODRiZjMwZGM0YzFlYTk5MTI0 ZWFjOGU3NDE4YTI2MWMxZWMwMWEzN2IzYTVhODMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjpdK0OzD+6EiCCUladdxY6OSUJY3K3o18Cn8oinAwicaA 8XQ/gIO/1h2Py3XLyTbhXdvtSzGWFzmo8MCOr4osdqn5eXzSaZksC9eIjbSHwlua PBs20Bfaxg5I4vptjQUOOa3Vv7jOMZJl28BRydcJJdyaZADDeMdYOr9F53YDE0pB 321Ilxr7PCvaRJAd0L8tzE3un+fIa+wPEDlXtYsr1RNifkYOFjHIY4uhsyjg7Poc VIE3rUyEmLeECLKk9b/jSv7TbDyIg2sW96LeVnDZwleWWgmWfywEJSkjao2tRe+c 2HXasPFPwKLV+fncXOf33AD8x28YcWN6Tcg9mqEHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEatCEd1sKicjF4jLNDEIXub9ckswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3MzMzMjY0LWJiZWQtNGI4My05YzY5LWEyN2ViNGE3YjhhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/EIwDQYJKoZIhvcNAQELBQADggEBAGP7p8bv6uKMGf5GkVdM47Nh+EZc m6hxQoPY959lBo1GqfDSLnPxkCdOs6wSwHtjDw67zV58lEg4LHxoogmqX9kw5EmE L/i0Q980AeXTWJ16OzlQRXcBCDlzCZvb6RSzpBLVK4y86OyefTKIs6fTNlTfmhzS JBt2hxYQcFCP7D5Mq+A1kGGM5Z+NsDF3AJESN0KL8QyP8lf0pZDwJRZwxAdGDYJQ h3gM7nWmU9HdWBj9Iv9pR4nvZsRd1PQMRdq0slxIKNH0fNmC1fM5Uhy4DcVP5lVf VXNagAHYeZ1KsjGuq6LaAcJGD1LgFvblS/CO4mOJmlJkrIYaLRSuImfCBB8= -----END CERTIFICATE-----Generated at Sun Jun 1 04:37:34 2025 by rpki-client