$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2309db7a-9533-458b-bc2b-77dd1708ae8a.roa File: 2309db7a-9533-458b-bc2b-77dd1708ae8a.roa (raw, json) Hash identifier: NYx8PVdyU9IDmDKLiFel9CDQQ107c+aiH2wXfC5vzWg= Subject key identifier: 76:B8:4A:06:0E:86:A2:CC:F1:F4:C1:C4:D1:CE:71:BD:C3:FB:34:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 503FAB7B35AB05ED5B95FC995ABA15BC54BEB9BC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2309db7a-9533-458b-bc2b-77dd1708ae8a.roa Signing time: Wed 28 May 2025 00:30:28 +0000 ROA not before: Wed 28 May 2025 00:30:28 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:3f:ab:7b:35:ab:05:ed:5b:95:fc:99:5a:ba:15:bc:54:be:b9:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:30:28 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=43dbba7ebd7903286b34352b49b324e9601b8c2c9cc828e7c028ac8ebf22eec8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:93:c4:23:60:c2:51:66:e8:6b:d0:d9:07:e0: d6:1d:a1:5f:90:c4:41:cb:5a:48:91:0e:d8:ed:10: a9:98:da:3d:c4:eb:27:ad:78:b9:af:13:cc:c1:d6: 7b:a1:4d:1f:a5:08:e9:79:e8:0c:6f:ba:ab:a7:92: 69:ea:e3:fb:70:50:93:3f:a0:d9:f2:2a:f2:5c:d8: 44:62:42:1e:71:aa:3e:89:9e:0e:c6:ea:ea:ce:79: 42:58:33:93:f2:21:e3:51:35:f1:17:58:df:75:22: 3e:b3:fe:c8:df:2d:a8:2d:f8:bd:92:8a:4e:4d:62: c8:4f:c8:44:dd:65:41:33:e8:0c:9c:05:ff:9e:1d: 9e:bf:25:d0:71:0b:bc:4d:dc:5a:41:9b:df:7b:00: 83:78:0e:f1:2a:c7:f0:67:df:2f:d7:e0:01:ed:77: 05:9b:c7:c3:ab:70:ab:9f:0d:05:eb:c1:20:c0:51: 58:06:11:52:64:32:8e:24:d6:14:59:8c:d8:42:ed: 17:0f:93:9d:f2:96:d5:0a:3a:86:46:dd:2f:99:4b: 39:2b:11:9b:16:10:02:e3:d2:7b:b2:ed:98:c1:08: 91:03:f8:f0:8b:42:dd:49:ae:14:c8:ee:e8:4a:bd: 2e:1d:ba:1e:87:5f:bc:5c:71:cc:7d:65:f8:f3:59: 91:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:B8:4A:06:0E:86:A2:CC:F1:F4:C1:C4:D1:CE:71:BD:C3:FB:34:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2309db7a-9533-458b-bc2b-77dd1708ae8a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.105.0/24 Signature Algorithm: sha256WithRSAEncryption d1:b6:f1:6e:67:23:34:13:8a:35:e9:4d:ea:6a:9f:6b:e3:0a: b9:fa:62:ea:98:ba:90:bd:a5:bf:6a:8e:d1:d2:53:cf:f5:28: 32:c7:ef:eb:e1:6d:83:8b:7e:c9:16:c7:6c:91:dc:7e:1c:4c: db:27:f9:71:61:0b:e2:16:59:70:f6:87:5b:6c:27:6e:72:ab: a2:5b:3c:da:79:e8:7e:e8:84:6c:a7:f2:7a:1d:b8:74:48:11: 5d:02:30:74:8c:d3:71:2d:67:26:5c:48:62:2b:5b:36:ac:38: 15:20:08:77:4a:2a:d3:9e:68:4c:27:41:4e:f2:dc:4c:79:4d: eb:bc:dd:bb:9f:ba:14:ac:13:2e:8c:e6:4d:97:37:86:52:c9: 0e:23:85:36:b5:01:ad:5a:3f:a7:de:93:0e:0a:42:28:fa:44: 27:27:d4:bf:cf:32:13:86:ed:23:d0:f8:dd:86:f5:a6:0d:1e: 55:32:95:68:c9:59:2c:11:d0:10:28:69:16:00:9c:8d:f0:e5: 75:57:9f:1e:0c:78:7b:6b:14:90:24:5b:55:50:be:02:fc:be: 3f:74:e0:90:23:c8:38:b7:35:2b:f2:88:65:8c:80:de:03:24: ca:c9:e6:75:32:cf:71:c7:0e:08:7b:66:e0:ad:f2:26:bb:f3: 61:91:b5:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUD+rezWrBe1blfyZWroVvFS+ubwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAzMDI4WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0M2RiYmE3ZWJkNzkwMzI4NmIzNDM1MmI0OWIzMjRlOTYw MWI4YzJjOWNjODI4ZTdjMDI4YWM4ZWJmMjJlZWM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmk8QjYMJRZuhr0NkH4NYdoV+QxEHLWkiRDtjtEKmY2j3E 6yeteLmvE8zB1nuhTR+lCOl56Axvuqunkmnq4/twUJM/oNnyKvJc2ERiQh5xqj6J ng7G6urOeUJYM5PyIeNRNfEXWN91Ij6z/sjfLagt+L2Sik5NYshPyETdZUEz6Ayc Bf+eHZ6/JdBxC7xN3FpBm997AIN4DvEqx/Bn3y/X4AHtdwWbx8OrcKufDQXrwSDA UVgGEVJkMo4k1hRZjNhC7RcPk53yltUKOoZG3S+ZSzkrEZsWEALj0nuy7ZjBCJED +PCLQt1JrhTI7uhKvS4duh6HX7xcccx9ZfjzWZEBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdrhKBg6Goszx9MHE0c5xvcP7NF4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzMDlkYjdhLTk1MzMtNDU4Yi1iYzJiLTc3ZGQxNzA4YWU4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GkwDQYJKoZIhvcNAQELBQADggEBANG28W5nIzQTijXpTepqn2vjCrn6 YuqYupC9pb9qjtHSU8/1KDLH7+vhbYOLfskWx2yR3H4cTNsn+XFhC+IWWXD2h1ts J25yq6JbPNp56H7ohGyn8noduHRIEV0CMHSM03EtZyZcSGIrWzasOBUgCHdKKtOe aEwnQU7y3Ex5Teu83bufuhSsEy6M5k2XN4ZSyQ4jhTa1Aa1aP6fekw4KQij6RCcn 1L/PMhOG7SPQ+N2G9aYNHlUylWjJWSwR0BAoaRYAnI3w5XVXnx4MeHtrFJAkW1VQ vgL8vj904JAjyDi3NSvyiGWMgN4DJMrJ5nUyz3HHDgh7ZuCt8ia782GRtWg= -----END CERTIFICATE-----Generated at Wed Jun 4 11:25:11 2025 by rpki-client