$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a931f43-76c7-4a61-9317-d9b5dcabea95.roa File: 1a931f43-76c7-4a61-9317-d9b5dcabea95.roa (raw, json) Hash identifier: 2UG7uGrEfEi/pDLwelULCtlx0zFHsnMD+CelDiw/Xy8= Subject key identifier: FA:77:83:03:C5:8E:C4:B4:76:6A:18:8A:AC:09:AE:A0:63:A8:EE:B2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A57DB42B9411EECC243872283301A8F4A859ED3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a931f43-76c7-4a61-9317-d9b5dcabea95.roa Signing time: Tue 13 May 2025 00:40:14 +0000 ROA not before: Tue 13 May 2025 00:40:14 +0000 ROA not after: Tue 17 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.52.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:57:db:42:b9:41:1e:ec:c2:43:87:22:83:30:1a:8f:4a:85:9e:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 13 00:40:14 2025 GMT Not After : Jun 17 23:59:59 2025 GMT Subject: serialNumber=5f9182807f7115ce1dd8baa32771ab7a3adfb8cf88b08b1fa0a595876d0a9104, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:5a:80:8d:e2:da:45:a8:00:4f:a1:83:ac:bf: d3:cb:a7:c5:7b:aa:4d:17:b4:83:5c:f4:6c:df:0e: 9d:c7:d9:b1:1c:a7:93:e3:1d:a8:2b:5d:74:e2:ee: 45:bd:a0:a7:82:b7:ea:17:8c:f0:19:43:b5:3f:8e: ee:e9:24:9c:f7:7f:fb:40:15:94:1b:8b:27:4b:dc: 08:d0:88:39:5a:95:01:93:ec:bc:86:01:8e:e4:0d: ea:b0:c0:28:d1:4f:55:9c:5f:b7:58:d5:36:eb:54: 12:9c:53:6a:7e:1d:8f:75:cf:6b:d4:b6:2c:3b:de: 7c:61:0a:8a:f9:f9:d0:01:08:41:d2:49:46:42:21: 2d:f2:b6:c4:66:1e:e0:50:00:f3:df:5c:59:6b:f7: 3c:f8:22:85:c3:20:16:46:5a:bf:c7:27:b1:fc:77: 3a:50:6e:ba:34:62:c3:42:1c:59:af:18:6a:63:46: 8a:bc:8f:70:7b:65:35:94:ad:f0:5f:66:6c:94:1a: a3:17:12:f2:02:a4:d1:f8:38:8f:e2:ec:e9:77:af: b3:d4:e8:d0:dc:55:a4:2a:82:a5:cc:92:41:29:c6: 4f:9b:00:b6:99:ac:97:30:07:29:f8:eb:44:09:94: 76:7a:06:2e:67:24:9b:9a:ad:92:c5:f1:d3:32:7b: ee:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:77:83:03:C5:8E:C4:B4:76:6A:18:8A:AC:09:AE:A0:63:A8:EE:B2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a931f43-76c7-4a61-9317-d9b5dcabea95.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.52.104.0/24 Signature Algorithm: sha256WithRSAEncryption 65:c2:72:5a:79:2c:dd:48:88:7d:ad:f4:05:47:b8:fb:4a:47: de:e9:ec:34:f2:b6:eb:e2:e5:7c:89:fd:7e:b3:f8:a2:bf:8a: 5e:66:50:18:b3:67:c6:6f:5d:f1:3f:88:94:bd:d0:69:d1:fe: c0:f9:34:9e:ea:12:25:d1:de:fe:b9:52:68:72:a9:2c:22:76: 09:d0:fb:cf:a6:7d:e7:7e:44:f2:8e:c4:b1:32:0c:54:76:e1: c5:52:ac:68:72:f8:0b:90:9d:b5:99:1e:06:ed:eb:f8:ea:74: 74:ce:89:ce:dd:63:92:ad:5c:93:b2:71:51:3f:8f:f1:7d:e5: 32:62:a2:a0:08:e0:f8:86:99:a8:e4:67:fe:27:22:a4:29:93: 06:4c:02:a2:d4:a1:a4:04:2d:c0:be:c3:25:ff:d0:32:34:04: f5:ab:e6:57:b9:22:1e:4e:db:82:dd:8d:01:bc:f5:2d:37:3a: e2:0c:31:81:78:4c:e8:a6:1f:ed:2f:1f:d9:f5:eb:8a:95:4c: 44:16:63:d9:6b:9e:ec:62:61:fa:ef:c1:f8:f9:0f:8e:2e:dd: 8f:33:bd:4c:6a:cb:e8:be:4a:76:3f:9e:2e:8e:b3:4b:0b:62: 24:73:97:df:f3:8e:94:8b:d8:2d:fa:dd:20:f2:8f:73:c0:7f: c7:33:60:33 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSlfbQrlBHuzCQ4cigzAaj0qFntMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEzMDA0MDE0WhcNMjUwNjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZjkxODI4MDdmNzExNWNlMWRkOGJhYTMyNzcxYWI3YTNh ZGZiOGNmODhiMDhiMWZhMGE1OTU4NzZkMGE5MTA0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRWoCN4tpFqABPoYOsv9PLp8V7qk0XtINc9GzfDp3H2bEc p5PjHagrXXTi7kW9oKeCt+oXjPAZQ7U/ju7pJJz3f/tAFZQbiydL3AjQiDlalQGT 7LyGAY7kDeqwwCjRT1WcX7dY1TbrVBKcU2p+HY91z2vUtiw73nxhCor5+dABCEHS SUZCIS3ytsRmHuBQAPPfXFlr9zz4IoXDIBZGWr/HJ7H8dzpQbro0YsNCHFmvGGpj Roq8j3B7ZTWUrfBfZmyUGqMXEvICpNH4OI/i7Ol3r7PU6NDcVaQqgqXMkkEpxk+b ALaZrJcwByn460QJlHZ6Bi5nJJuarZLF8dMye+41AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+neDA8WOxLR2ahiKrAmuoGOo7rIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFhOTMxZjQzLTc2YzctNGE2MS05MzE3LWQ5YjVkY2FiZWE5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABANGgwDQYJKoZIhvcNAQELBQADggEBAGXCclp5LN1IiH2t9AVHuPtKR97p 7DTytuvi5XyJ/X6z+KK/il5mUBizZ8ZvXfE/iJS90GnR/sD5NJ7qEiXR3v65Umhy qSwidgnQ+8+mfed+RPKOxLEyDFR24cVSrGhy+AuQnbWZHgbt6/jqdHTOic7dY5Kt XJOycVE/j/F95TJioqAI4PiGmajkZ/4nIqQpkwZMAqLUoaQELcC+wyX/0DI0BPWr 5le5Ih5O24LdjQG89S03OuIMMYF4TOimH+0vH9n164qVTEQWY9lrnuxiYfrvwfj5 D44u3Y8zvUxqy+i+SnY/ni6Os0sLYiRzl9/zjpSL2C363SDyj3PAf8czYDM= -----END CERTIFICATE-----Generated at Sun Jun 1 04:47:45 2025 by rpki-client