$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1aa97ea8-217a-4007-8c5b-4157139bfb84.roa File: 1aa97ea8-217a-4007-8c5b-4157139bfb84.roa (raw, json) Hash identifier: gRY6Dl55DERlQif+/MUct2bbIaFd0VqWVoLRlLxr+Zc= Subject key identifier: 45:AD:FE:F6:89:D3:45:9A:4B:21:B5:C2:4A:67:16:52:6A:8C:70:7B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D2B922B9B5513AAA3470BC950E04C6D911D0794 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1aa97ea8-217a-4007-8c5b-4157139bfb84.roa Signing time: Fri 30 May 2025 00:31:13 +0000 ROA not before: Fri 30 May 2025 00:31:13 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:2b:92:2b:9b:55:13:aa:a3:47:0b:c9:50:e0:4c:6d:91:1d:07:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:31:13 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=78af9f422f4f711f2bf6c1e84231dcabe23d99f1171a7b872690043b1ed9abe0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1a:12:cd:3f:d9:a9:d0:50:cb:54:50:a6:5f: c4:44:e1:c0:99:72:e4:41:44:30:e7:e1:86:85:44: c7:29:2a:54:e7:c4:d7:c2:9a:a2:af:3f:50:4b:cf: 4a:86:4c:f1:e2:02:3e:d7:bf:4a:cc:49:58:8e:7a: a4:e2:c6:63:66:75:e7:ff:67:8b:3c:c4:8c:ab:a7: 09:ee:52:4a:96:80:10:a3:1e:30:b6:7c:32:33:6e: ce:7e:96:33:13:30:e0:fd:9a:b5:ce:fa:42:c0:39: a7:0e:cd:0e:c3:38:eb:a8:aa:1d:66:b3:5f:5d:fa: 78:7e:ec:32:11:32:9c:9f:3b:4b:d0:5b:a3:bd:f5: c4:ed:4d:68:67:87:75:ec:7f:e5:aa:53:11:ea:66: ef:82:b7:ea:cc:d2:df:db:ff:04:e3:89:f9:a2:04: 5b:a0:8f:1e:52:a0:9f:22:3a:fc:20:05:5d:96:21: 64:54:fc:10:2f:bf:e6:6a:3e:9e:90:74:d1:73:f1: 14:10:ec:cb:69:89:b8:bc:29:e5:52:c7:fd:63:04: 01:81:f5:99:c6:85:99:a7:b7:3e:51:af:5f:bb:5d: ca:ac:aa:db:17:02:a6:79:78:12:d4:cb:a3:ef:49: 22:06:c3:81:48:55:36:73:2e:75:0e:85:d2:6c:da: 0f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:AD:FE:F6:89:D3:45:9A:4B:21:B5:C2:4A:67:16:52:6A:8C:70:7B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1aa97ea8-217a-4007-8c5b-4157139bfb84.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.88.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:9d:46:a6:33:f0:a7:6b:81:de:86:4f:5d:4b:02:54:8b:37: 6f:8d:25:d6:b2:c9:2b:dc:2b:26:11:22:57:ab:e7:55:68:56: 27:f7:bd:63:33:68:d7:ab:ac:96:b7:9c:3d:11:20:a5:cb:c0: 14:31:02:e7:90:8e:db:8f:21:eb:d9:4d:c9:e8:80:96:af:21: f2:ae:e5:09:9c:cb:af:15:a4:e9:85:5d:a2:85:c3:b7:62:82: df:c3:1b:21:5a:68:a2:46:94:be:9d:a8:14:aa:f0:eb:2b:66: b2:37:5d:87:32:1c:64:90:e4:2d:4c:05:9e:0e:c9:fb:55:89: 06:2e:dc:b1:14:aa:47:8b:30:af:53:07:6d:1c:12:0b:4e:c3: 83:4a:12:c3:27:85:86:fd:1e:84:73:f8:fd:30:71:10:eb:8f: c7:7f:6e:4d:f9:97:96:bf:b9:c2:94:ac:5b:af:ea:f7:cc:35: f5:5e:d1:df:f9:4d:7f:42:0a:8f:d2:3b:20:33:c7:fc:1f:a5: 44:35:6b:61:48:fb:bc:da:83:5b:6c:be:14:58:2a:0e:10:0f: aa:b9:07:68:3d:87:43:ff:09:c0:fb:a1:55:54:66:7f:0b:09: 76:7e:01:02:95:19:f6:7d:01:ea:e5:8b:4d:e5:de:4f:b4:86: 88:d7:91:ea -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTSuSK5tVE6qjRwvJUOBMbZEdB5QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAzMTEzWhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OGFmOWY0MjJmNGY3MTFmMmJmNmMxZTg0MjMxZGNhYmUy M2Q5OWYxMTcxYTdiODcyNjkwMDQzYjFlZDlhYmUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfGhLNP9mp0FDLVFCmX8RE4cCZcuRBRDDn4YaFRMcpKlTn xNfCmqKvP1BLz0qGTPHiAj7Xv0rMSViOeqTixmNmdef/Z4s8xIyrpwnuUkqWgBCj HjC2fDIzbs5+ljMTMOD9mrXO+kLAOacOzQ7DOOuoqh1ms19d+nh+7DIRMpyfO0vQ W6O99cTtTWhnh3Xsf+WqUxHqZu+Ct+rM0t/b/wTjifmiBFugjx5SoJ8iOvwgBV2W IWRU/BAvv+ZqPp6QdNFz8RQQ7Mtpibi8KeVSx/1jBAGB9ZnGhZmntz5Rr1+7Xcqs qtsXAqZ5eBLUy6PvSSIGw4FIVTZzLnUOhdJs2g/5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURa3+9onTRZpLIbXCSmcWUmqMcHswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFhYTk3ZWE4LTIxN2EtNDAwNy04YzViLTQxNTcxMzliZmI4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/FgwDQYJKoZIhvcNAQELBQADggEBACydRqYz8Kdrgd6GT11LAlSLN2+N JdayySvcKyYRIler51VoVif3vWMzaNerrJa3nD0RIKXLwBQxAueQjtuPIevZTcno gJavIfKu5Qmcy68VpOmFXaKFw7digt/DGyFaaKJGlL6dqBSq8OsrZrI3XYcyHGSQ 5C1MBZ4OyftViQYu3LEUqkeLMK9TB20cEgtOw4NKEsMnhYb9HoRz+P0wcRDrj8d/ bk35l5a/ucKUrFuv6vfMNfVe0d/5TX9CCo/SOyAzx/wfpUQ1a2FI+7zag1tsvhRY Kg4QD6q5B2g9h0P/CcD7oVVUZn8LCXZ+AQKVGfZ9Aerli03l3k+0hojXkeo= -----END CERTIFICATE-----Generated at Sun Jun 1 05:24:11 2025 by rpki-client