$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fc5eba9-ba1e-4271-a295-a0083fa60075.roa File: 1fc5eba9-ba1e-4271-a295-a0083fa60075.roa (raw, json) Hash identifier: vEOrNYYeUQH0zjylPXvXHQvTT2B04dbXbLQdd4GVbNE= Subject key identifier: 0B:C4:52:56:26:64:8B:3D:5E:D5:ED:2F:09:5D:92:23:EE:00:EC:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4386C96DCFECCDB1DC9227DF4084F056B904FD36 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fc5eba9-ba1e-4271-a295-a0083fa60075.roa Signing time: Wed 28 May 2025 00:01:16 +0000 ROA not before: Wed 28 May 2025 00:01:16 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 206.131.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:86:c9:6d:cf:ec:cd:b1:dc:92:27:df:40:84:f0:56:b9:04:fd:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:01:16 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=601c2a4f7851d2ea640a91c5c1b983d99fe56bea481f9eeb5e1f62b7a95a5160, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f9:a8:ea:44:ca:f9:e9:c0:34:cb:70:bc:cf: 5f:cf:44:c1:fd:9c:6c:32:65:ef:79:47:cc:5e:d6: 36:e9:bf:e8:14:bd:e2:20:56:1d:fb:ee:ce:5f:19: 9f:eb:0d:21:18:49:95:cd:4d:12:44:b4:6b:3c:d9: 41:bd:e2:e0:86:62:86:ed:30:5d:4c:1d:1f:6b:65: 95:3d:fa:e0:c0:32:0f:2f:67:c5:f1:57:ce:da:c2: 26:d1:ea:50:d0:06:df:c0:8e:c2:4d:ae:da:fa:e1: a3:11:6d:a3:0f:be:53:13:7a:65:c3:bf:85:e4:95: 2b:3b:94:35:71:7f:10:b8:b8:37:ef:99:24:da:4f: 62:95:57:64:42:30:3f:fb:78:3f:e4:33:20:58:49: b9:1e:d2:33:fc:fd:ec:a9:0f:bd:c2:94:22:75:d8: 95:6b:48:86:6b:da:01:aa:2c:80:78:b4:75:85:19: c2:49:50:9c:2f:20:8d:45:42:43:41:76:86:85:e5: 43:b6:ac:c8:0b:08:50:7f:1d:7a:0b:e4:24:26:31: 63:61:24:4e:c8:cf:45:48:91:25:07:83:6e:8b:81: 59:c2:d3:94:5c:2d:d5:31:b7:0b:e2:8b:d3:09:d2: f7:08:8d:38:87:68:71:f8:fe:33:52:68:34:c3:f5: aa:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:C4:52:56:26:64:8B:3D:5E:D5:ED:2F:09:5D:92:23:EE:00:EC:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fc5eba9-ba1e-4271-a295-a0083fa60075.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.131.128.0/19 Signature Algorithm: sha256WithRSAEncryption 52:e7:86:dc:39:44:f0:b6:16:1b:a5:6c:b3:a3:3d:47:6e:a9: 93:05:87:26:18:81:ae:30:7f:a5:a0:75:30:fd:7e:97:19:3d: 86:8f:6d:24:45:cb:43:8b:2d:54:97:db:93:95:7c:6b:2b:44: 30:a4:8b:95:8f:54:1a:c8:1c:46:cc:7c:f1:ba:bf:3b:13:a6: 2e:58:c2:0a:20:9f:6d:0a:6e:77:27:c0:55:8c:b4:7f:e4:7b: 74:09:4a:aa:9d:a6:1f:aa:91:51:6e:0f:e1:63:c5:49:cd:b8: b0:88:84:a8:bc:1d:8f:8d:61:fd:b5:67:48:06:f2:15:24:a9: 11:63:11:28:fb:dd:9a:9f:b5:c8:83:45:d1:fa:fb:4f:d9:4f: f1:0b:d0:df:9c:07:f5:6e:e7:a3:4b:61:0d:b4:cc:fd:0b:9b: da:a1:7e:d0:55:49:41:fc:46:6a:d7:69:bb:c0:e5:da:19:bc: 05:f9:87:51:b8:cd:3f:fb:56:25:ca:cf:48:31:30:c8:c3:7d: bd:af:f9:21:6c:3b:4a:52:8c:74:7b:38:a0:4f:e1:91:be:15: 29:b3:85:ab:4c:5f:8a:cd:04:36:46:ac:1a:d1:01:3b:10:55: 6f:ce:39:dc:f5:a2:40:a3:12:04:6e:28:d6:46:a3:d1:52:ac: 98:05:71:27 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ4bJbc/szbHckiffQITwVrkE/TYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAwMTE2WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDFjMmE0Zjc4NTFkMmVhNjQwYTkxYzVjMWI5ODNkOTlm ZTU2YmVhNDgxZjllZWI1ZTFmNjJiN2E5NWE1MTYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDT+ajqRMr56cA0y3C8z1/PRMH9nGwyZe95R8xe1jbpv+gU veIgVh377s5fGZ/rDSEYSZXNTRJEtGs82UG94uCGYobtMF1MHR9rZZU9+uDAMg8v Z8XxV87awibR6lDQBt/AjsJNrtr64aMRbaMPvlMTemXDv4XklSs7lDVxfxC4uDfv mSTaT2KVV2RCMD/7eD/kMyBYSbke0jP8/eypD73ClCJ12JVrSIZr2gGqLIB4tHWF GcJJUJwvII1FQkNBdoaF5UO2rMgLCFB/HXoL5CQmMWNhJE7Iz0VIkSUHg26LgVnC 05RcLdUxtwvii9MJ0vcIjTiHaHH4/jNSaDTD9apJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUC8RSViZkiz1e1e0vCV2SI+4A7IIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmYzVlYmE5LWJhMWUtNDI3MS1hMjk1LWEwMDgzZmE2MDA3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXOg4AwDQYJKoZIhvcNAQELBQADggEBAFLnhtw5RPC2FhulbLOjPUduqZMF hyYYga4wf6WgdTD9fpcZPYaPbSRFy0OLLVSX25OVfGsrRDCki5WPVBrIHEbMfPG6 vzsTpi5Ywgogn20KbncnwFWMtH/ke3QJSqqdph+qkVFuD+FjxUnNuLCIhKi8HY+N Yf21Z0gG8hUkqRFjESj73ZqftciDRdH6+0/ZT/EL0N+cB/Vu56NLYQ20zP0Lm9qh ftBVSUH8RmrXabvA5doZvAX5h1G4zT/7ViXKz0gxMMjDfb2v+SFsO0pSjHR7OKBP 4ZG+FSmzhatMX4rNBDZGrBrRATsQVW/OOdz1okCjEgRuKNZGo9FSrJgFcSc= -----END CERTIFICATE-----Generated at Sun Jun 1 04:41:51 2025 by rpki-client