$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa File: 0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa (raw, json) Hash identifier: 6HeB7SlSDK1OMLm2YSOI1kgOfLSNJJTHvbJE9Gy3JAs= Subject key identifier: E2:F5:D6:7E:A4:49:AB:29:3E:47:CB:59:5B:19:06:94:FA:21:8E:85 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 08287AA8F91707E388E8908E4BABE68D4A4B190F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa Signing time: Sat 24 May 2025 00:21:44 +0000 ROA not before: Sat 24 May 2025 00:21:44 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:28:7a:a8:f9:17:07:e3:88:e8:90:8e:4b:ab:e6:8d:4a:4b:19:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 24 00:21:44 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=8d720b6572b37071686a5d488591b41231396f7ada085712c51259e112c6fa32, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f8:d2:69:04:92:91:2a:a7:95:de:af:c4:ed: 1a:04:46:87:e2:51:4e:ac:05:d4:cd:e2:33:5a:2a: 48:44:c8:55:a4:30:73:af:8c:76:73:19:24:4d:fa: f1:f1:a6:87:24:27:b8:61:b9:a2:c2:b0:2e:97:2f: b7:72:28:f5:3f:08:74:07:d3:31:68:94:c1:7c:eb: 8c:00:0e:09:ae:8d:17:7d:7d:dd:b5:a0:b4:b0:9d: 92:96:b1:4b:5b:6d:7a:65:6e:c1:1d:7f:45:67:3e: 3f:f8:01:73:a4:b2:49:41:9f:e4:e7:41:2e:85:5d: 4d:da:3e:72:55:0f:98:da:cb:37:1e:b5:aa:f8:01: 29:e2:43:8f:41:30:dc:71:2e:16:2e:26:0b:f5:ab: bd:0f:5c:6a:6b:75:da:a3:33:35:97:d7:ec:f0:52: 60:37:dd:c3:71:f9:92:3d:87:a7:b1:51:59:28:4c: b8:36:9c:b8:7f:07:fc:6c:d0:c3:a8:63:81:d3:39: 2d:3f:89:ce:ea:1d:b8:dc:eb:87:3e:7a:99:05:b8: 32:82:aa:f1:ca:3f:16:d1:2b:2d:3b:59:a5:30:04: 1d:7f:98:e7:41:3b:e6:9b:e8:b2:96:a5:7c:a8:9f: 3f:c9:17:fb:c2:56:7d:10:3d:4d:a9:b8:df:b9:3d: 28:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:F5:D6:7E:A4:49:AB:29:3E:47:CB:59:5B:19:06:94:FA:21:8E:85 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0edc2521-a53e-4b05-b534-8b3be9d9f8ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.128.0/18 Signature Algorithm: sha256WithRSAEncryption 98:52:5f:09:b7:0a:7b:73:e7:40:22:f3:e2:8f:f0:8e:00:e8: e6:bf:94:e2:a9:30:1d:a4:9f:2b:73:f4:65:7d:53:3f:2e:32: 74:18:24:45:02:3a:4b:f9:60:07:fd:ba:80:d6:dd:c8:1b:eb: a0:04:10:b2:b9:cc:03:d9:92:86:2f:fa:87:2a:37:f7:54:48: 3d:05:ed:db:c0:84:45:2b:cd:af:62:a6:26:5b:12:30:f7:87: ea:1e:98:ce:d1:3a:0c:4d:b1:c3:e7:ff:75:4d:4b:45:fe:84: da:8f:72:28:50:33:49:6d:79:6e:d0:ae:98:aa:a6:7e:70:76: c6:e0:f8:f2:d0:37:ac:c6:2f:20:81:31:f0:7e:d1:a5:cb:30: c5:09:54:2b:44:b2:05:6f:b0:7c:2f:16:34:28:9a:17:8c:65: cb:01:ef:8f:a0:79:26:4b:fa:34:1f:40:68:96:1b:3f:64:e3: 9e:9d:12:61:d9:e9:48:b8:f7:16:6d:2b:0f:09:4c:a9:a9:69: f6:60:fb:d3:cf:02:ad:b9:e2:33:fb:7a:c5:59:aa:61:17:37: 40:ae:53:12:e9:3d:94:be:2a:cc:77:2d:69:e2:9a:8f:f9:8a: e0:6d:9c:1c:3b:7f:0f:c3:68:0a:bf:2f:70:66:a1:bc:4c:0d: ff:5c:d4:91 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCCh6qPkXB+OI6JCOS6vmjUpLGQ8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI0MDAyMTQ0WhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDcyMGI2NTcyYjM3MDcxNjg2YTVkNDg4NTkxYjQxMjMx Mzk2ZjdhZGEwODU3MTJjNTEyNTllMTEyYzZmYTMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCb+NJpBJKRKqeV3q/E7RoERofiUU6sBdTN4jNaKkhEyFWk MHOvjHZzGSRN+vHxpockJ7hhuaLCsC6XL7dyKPU/CHQH0zFolMF864wADgmujRd9 fd21oLSwnZKWsUtbbXplbsEdf0VnPj/4AXOksklBn+TnQS6FXU3aPnJVD5jayzce tar4ASniQ49BMNxxLhYuJgv1q70PXGprddqjMzWX1+zwUmA33cNx+ZI9h6exUVko TLg2nLh/B/xs0MOoY4HTOS0/ic7qHbjc64c+epkFuDKCqvHKPxbRKy07WaUwBB1/ mOdBO+ab6LKWpXyonz/JF/vCVn0QPU2puN+5PSi1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4vXWfqRJqyk+R8tZWxkGlPohjoUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlZGMyNTIxLWE1M2UtNGIwNS1iNTM0LThiM2JlOWQ5ZjhlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZA/IAwDQYJKoZIhvcNAQELBQADggEBAJhSXwm3Cntz50Ai8+KP8I4A6Oa/ lOKpMB2knytz9GV9Uz8uMnQYJEUCOkv5YAf9uoDW3cgb66AEELK5zAPZkoYv+ocq N/dUSD0F7dvAhEUrza9ipiZbEjD3h+oemM7ROgxNscPn/3VNS0X+hNqPcihQM0lt eW7Qrpiqpn5wdsbg+PLQN6zGLyCBMfB+0aXLMMUJVCtEsgVvsHwvFjQomheMZcsB 74+geSZL+jQfQGiWGz9k456dEmHZ6Ui49xZtKw8JTKmpafZg+9PPAq254jP7esVZ qmEXN0CuUxLpPZS+Ksx3LWnimo/5iuBtnBw7fw/DaAq/L3BmobxMDf9c1JE= -----END CERTIFICATE-----Generated at Sun Jun 1 04:24:17 2025 by rpki-client