$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fd7d999-5a79-41af-b232-35b042093d5f.roa File: 0fd7d999-5a79-41af-b232-35b042093d5f.roa (raw, json) Hash identifier: NBnYl2vihfTBO1x69WDC0047PumMYukjnSmow9i0ff4= Subject key identifier: 6C:23:64:F9:2E:85:D4:35:FB:79:BD:84:69:88:86:99:91:7F:AF:8A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3F0B54ED9CF5B3ED80A7CF4C6A95D857115F83A4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fd7d999-5a79-41af-b232-35b042093d5f.roa Signing time: Fri 30 May 2025 00:40:14 +0000 ROA not before: Fri 30 May 2025 00:40:14 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:0b:54:ed:9c:f5:b3:ed:80:a7:cf:4c:6a:95:d8:57:11:5f:83:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:40:14 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=b61378a7346a82660948e7b027508311d4d80dabbcd6abc15166435e827c57f2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:b1:a6:73:58:44:12:9d:ba:91:c5:1e:f3:0c: 8b:f3:8e:7d:85:33:8c:1c:3b:88:88:7e:5a:d8:02: 25:74:03:c9:e8:78:9c:d6:0b:02:5b:61:5e:5e:65: 06:4b:48:39:28:c0:53:92:58:15:8f:f4:b1:05:9d: b2:6f:be:6c:45:ec:54:ec:2a:a9:44:86:64:58:8c: 31:89:91:36:41:86:4e:5a:47:74:1d:d8:58:01:48: 04:90:b9:39:aa:cb:a2:ed:dc:22:e7:33:f8:30:70: 15:e7:69:7d:91:f1:54:f9:03:ae:5a:38:62:19:df: df:6f:76:0c:c3:47:56:65:e0:de:e9:ee:41:36:27: a0:cd:27:36:19:31:b6:ea:2d:00:ab:32:cf:c2:f8: 8b:be:d2:10:c6:e0:9d:00:f3:1e:88:58:d6:6d:d2: 12:c3:06:2e:4f:96:06:31:cd:aa:5b:7e:dc:0e:88: 55:5a:10:cf:43:4b:1f:0a:aa:4a:f6:7f:fd:5f:fc: 36:c9:e1:b3:fe:af:a1:5a:0d:71:d2:d5:a3:17:e7: 26:e4:81:93:64:51:9c:7f:79:90:fb:8c:2d:8f:e9: e6:27:18:43:61:c1:71:d8:b4:a6:fa:8b:32:4a:4c: 9a:9b:d5:10:fc:4d:5f:cc:cf:c0:4b:4e:e2:d8:c9: 74:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:23:64:F9:2E:85:D4:35:FB:79:BD:84:69:88:86:99:91:7F:AF:8A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fd7d999-5a79-41af-b232-35b042093d5f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.161.0/24 Signature Algorithm: sha256WithRSAEncryption b9:1f:49:e8:99:26:c5:d3:e5:40:63:d3:51:b5:61:47:32:6a: d9:6f:37:5b:93:21:63:77:01:0b:6f:25:ca:27:13:8f:55:83: ce:28:3f:50:c2:c3:19:7d:8d:5f:5d:57:df:8f:ea:a6:3a:6e: 01:02:5a:56:98:cb:fa:35:ae:27:e0:f7:da:48:1c:a0:0f:26: 8a:38:1f:79:4d:f9:4e:cb:b9:e9:3c:94:7f:36:e6:79:5d:a3: 1d:a3:d8:8d:6f:31:8a:28:63:79:3d:e6:c2:8a:2a:4c:a4:e5: ad:88:fa:8c:e0:ee:d5:65:7d:b2:93:a0:b9:21:9c:a2:43:53: 1d:54:03:81:39:97:36:5f:6a:d2:f0:0e:bd:a4:3e:b6:7f:0e: d5:75:84:4e:1e:34:54:72:df:63:fe:4f:9a:27:17:55:c4:9b: 34:3c:0c:d8:55:41:09:93:1e:b7:57:99:d5:26:95:84:0d:ce: 1f:53:9c:59:35:ec:e0:8f:a2:2e:77:bd:b8:28:37:0e:52:d3: e9:5c:01:85:46:eb:4c:c8:c5:56:f9:7e:f5:59:20:15:5f:67: 79:b3:bb:9d:3a:43:f5:8d:03:a8:e6:5d:0b:ea:98:02:a6:5b: 8c:59:ee:38:73:e6:81:08:79:90:6b:b6:f2:4a:13:0d:35:06: e4:7e:b3:63 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPwtU7Zz1s+2Ap89MapXYVxFfg6QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDA0MDE0WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjEzNzhhNzM0NmE4MjY2MDk0OGU3YjAyNzUwODMxMWQ0 ZDgwZGFiYmNkNmFiYzE1MTY2NDM1ZTgyN2M1N2YyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbsaZzWEQSnbqRxR7zDIvzjn2FM4wcO4iIflrYAiV0A8no eJzWCwJbYV5eZQZLSDkowFOSWBWP9LEFnbJvvmxF7FTsKqlEhmRYjDGJkTZBhk5a R3Qd2FgBSASQuTmqy6Lt3CLnM/gwcBXnaX2R8VT5A65aOGIZ399vdgzDR1Zl4N7p 7kE2J6DNJzYZMbbqLQCrMs/C+Iu+0hDG4J0A8x6IWNZt0hLDBi5PlgYxzapbftwO iFVaEM9DSx8Kqkr2f/1f/DbJ4bP+r6FaDXHS1aMX5ybkgZNkUZx/eZD7jC2P6eYn GENhwXHYtKb6izJKTJqb1RD8TV/Mz8BLTuLYyXRPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbCNk+S6F1DX7eb2EaYiGmZF/r4owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmZDdkOTk5LTVhNzktNDFhZi1iMjMyLTM1YjA0MjA5M2Q1Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36EwDQYJKoZIhvcNAQELBQADggEBALkfSeiZJsXT5UBj01G1YUcyatlv N1uTIWN3AQtvJconE49Vg84oP1DCwxl9jV9dV9+P6qY6bgECWlaYy/o1rifg99pI HKAPJoo4H3lN+U7Luek8lH825nldox2j2I1vMYooY3k95sKKKkyk5a2I+ozg7tVl fbKToLkhnKJDUx1UA4E5lzZfatLwDr2kPrZ/DtV1hE4eNFRy32P+T5onF1XEmzQ8 DNhVQQmTHrdXmdUmlYQNzh9TnFk17OCPoi53vbgoNw5S0+lcAYVG60zIxVb5fvVZ IBVfZ3mzu506Q/WNA6jmXQvqmAKmW4xZ7jhz5oEIeZBrtvJKEw01BuR+s2M= -----END CERTIFICATE-----Generated at Sun Jun 1 05:21:55 2025 by rpki-client