$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1adf4d9d-eda9-4fe8-8f93-4b6c05e8aba4.roa File: 1adf4d9d-eda9-4fe8-8f93-4b6c05e8aba4.roa (raw, json) Hash identifier: 4TANmmg/JCOCIQEpyo1fHQNxe0ISZ3Hn+Cc6tm2Ag3Y= Subject key identifier: 7C:32:62:35:06:F0:BF:91:F2:43:A8:45:7D:D9:F7:04:4C:AD:06:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 40CAE316DDF72D11ABD51FC75AB3A8C121B3F4B4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1adf4d9d-eda9-4fe8-8f93-4b6c05e8aba4.roa Signing time: Wed 21 May 2025 00:01:42 +0000 ROA not before: Wed 21 May 2025 00:01:42 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 26982 IP address blocks: 192.31.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:ca:e3:16:dd:f7:2d:11:ab:d5:1f:c7:5a:b3:a8:c1:21:b3:f4:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 21 00:01:42 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=1ecd584cb1915ff172cb66780dfe7bf6f5140fb5d1521f0a5e25e450476439de, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:09:04:b5:b6:24:26:ca:40:92:8e:a4:32:f8: 22:af:0a:64:13:ea:8e:48:9c:63:d2:1d:d5:43:95: 3a:d5:10:be:95:f2:dd:0b:21:8e:18:7c:17:63:49: a4:bd:10:f9:67:1e:10:e0:63:7f:a5:94:f1:a1:cc: 3a:75:4d:1f:3a:69:d8:3b:f9:5c:39:a5:e2:0b:57: 39:01:e9:33:61:64:f1:b1:5c:62:e6:1c:ea:9d:6a: 69:e5:3c:46:d7:74:7b:75:b5:62:55:15:2d:8d:7d: 91:bd:6a:2e:49:bd:c3:84:de:01:da:c9:2d:9e:3f: 02:72:61:27:bb:21:1c:a6:f7:6d:05:28:0f:11:c8: 6a:3b:d8:9e:0a:bf:78:4b:8e:6f:c3:16:f7:b4:f0: ec:83:ad:b4:68:90:f1:99:26:86:d2:c0:60:0e:ce: 59:20:80:7b:b1:20:61:10:f3:9d:83:99:e4:66:5e: 68:38:aa:43:da:4c:b9:3d:eb:5a:60:12:0f:0b:8e: 72:c6:4c:8b:84:87:61:73:1c:9c:1d:5a:e1:eb:02: 47:2c:cc:37:6e:44:85:15:7a:9f:e6:dc:7d:27:af: a9:b4:c9:d6:e4:49:af:78:e8:a2:0c:76:16:4c:c9: c7:7c:99:e5:0d:27:f4:0a:a2:05:b9:b5:00:07:26: fe:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:32:62:35:06:F0:BF:91:F2:43:A8:45:7D:D9:F7:04:4C:AD:06:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1adf4d9d-eda9-4fe8-8f93-4b6c05e8aba4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.31.212.0/24 Signature Algorithm: sha256WithRSAEncryption a4:05:a2:33:74:3e:a9:4a:52:bc:f2:e5:00:79:35:3a:ca:1e: dc:cc:1b:88:23:1d:7d:da:0d:08:45:ab:a2:8f:89:87:58:38: d6:4a:78:76:c0:c6:ad:b7:e6:df:36:7d:47:1c:c7:1c:0d:0b: b8:82:32:1d:79:f2:d6:ef:fa:eb:5c:9e:8f:03:f2:ed:41:de: bd:50:cf:f8:4f:ea:e9:e0:9c:0c:d8:1e:1a:75:f0:2a:3f:0b: 79:bd:d3:ea:fa:9f:df:4a:a3:8a:6e:c2:ed:2b:9e:74:c3:30: 46:45:e6:a4:32:a1:13:b1:3e:c4:65:68:c5:50:eb:72:05:6c: 5a:9f:bb:05:d4:a7:bc:95:e9:5e:5e:b9:3b:26:5e:62:f3:ce: 17:96:ed:29:31:68:79:cf:cb:ae:f9:0b:cc:ca:f4:46:de:e9: 8c:d7:b2:65:3b:fd:78:62:45:99:e4:6d:78:90:2f:52:76:01: 12:69:16:5d:41:60:f6:53:e0:50:99:77:8b:d4:86:05:a2:05: d6:31:dd:51:fb:b1:fb:cb:68:ce:1c:95:e4:2f:ff:76:f6:ad: e3:e8:32:a8:4f:96:df:89:00:ed:ce:cf:ae:9c:7c:47:eb:a1: 7d:81:f9:5c:e7:35:65:50:56:74:ce:98:b1:f9:32:c7:ad:fb: 69:25:e4:66 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQMrjFt33LRGr1R/HWrOowSGz9LQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIxMDAwMTQyWhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZWNkNTg0Y2IxOTE1ZmYxNzJjYjY2NzgwZGZlN2JmNmY1 MTQwZmI1ZDE1MjFmMGE1ZTI1ZTQ1MDQ3NjQzOWRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqCQS1tiQmykCSjqQy+CKvCmQT6o5InGPSHdVDlTrVEL6V 8t0LIY4YfBdjSaS9EPlnHhDgY3+llPGhzDp1TR86adg7+Vw5peILVzkB6TNhZPGx XGLmHOqdamnlPEbXdHt1tWJVFS2NfZG9ai5JvcOE3gHayS2ePwJyYSe7IRym920F KA8RyGo72J4Kv3hLjm/DFve08OyDrbRokPGZJobSwGAOzlkggHuxIGEQ852DmeRm Xmg4qkPaTLk961pgEg8LjnLGTIuEh2FzHJwdWuHrAkcszDduRIUVep/m3H0nr6m0 ydbkSa946KIMdhZMycd8meUNJ/QKogW5tQAHJv4nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfDJiNQbwv5HyQ6hFfdn3BEytBlowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFhZGY0ZDlkLWVkYTktNGZlOC04ZjkzLTRiNmMwNWU4YWJhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAH9QwDQYJKoZIhvcNAQELBQADggEBAKQFojN0PqlKUrzy5QB5NTrKHtzM G4gjHX3aDQhFq6KPiYdYONZKeHbAxq235t82fUccxxwNC7iCMh158tbv+utcno8D 8u1B3r1Qz/hP6ungnAzYHhp18Co/C3m90+r6n99Ko4puwu0rnnTDMEZF5qQyoROx PsRlaMVQ63IFbFqfuwXUp7yV6V5euTsmXmLzzheW7SkxaHnPy675C8zK9Ebe6YzX smU7/XhiRZnkbXiQL1J2ARJpFl1BYPZT4FCZd4vUhgWiBdYx3VH7sfvLaM4cleQv /3b2rePoMqhPlt+JAO3Oz66cfEfroX2B+VznNWVQVnTOmLH5Mset+2kl5GY= -----END CERTIFICATE-----Generated at Sun Jun 1 04:24:15 2025 by rpki-client