$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/241bc0fc-15e3-4833-b71c-3aee42a3a927.roa File: 241bc0fc-15e3-4833-b71c-3aee42a3a927.roa (raw, json) Hash identifier: Ib+EX27pEBwSlxReOooPkq7vS6f76VFa2BEiwxpRB5I= Subject key identifier: D4:32:79:36:2B:2A:C1:12:5E:A3:66:73:81:14:15:E4:BF:98:AE:60 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 520DCE525595126864C4199BA790A79296C2A8FF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/241bc0fc-15e3-4833-b71c-3aee42a3a927.roa Signing time: Wed 28 May 2025 00:31:11 +0000 ROA not before: Wed 28 May 2025 00:31:11 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 57.248.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:0d:ce:52:55:95:12:68:64:c4:19:9b:a7:90:a7:92:96:c2:a8:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:31:11 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=8f89f776966e75579943570c0008f45a56a246c90eeefe76651d97708b57915c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:68:75:37:84:ef:bb:18:6b:b7:b1:99:47:18: f1:53:43:81:5e:61:df:be:cd:65:08:03:18:71:4b: 17:68:8b:cf:6c:fb:fe:15:84:c8:64:a4:5e:ba:9f: 1d:32:d5:dc:c1:20:90:df:ce:e2:c4:3a:64:bb:cc: 54:2d:29:88:67:ef:9a:10:b6:6c:f2:fd:a2:67:e6: eb:2b:d4:87:01:a0:12:8e:e1:c1:95:25:c1:8c:01: 97:2b:f5:43:09:dd:a0:81:46:1e:50:63:ea:7b:eb: 75:9d:cc:62:56:94:10:b5:d6:45:17:14:64:9f:90: 9a:47:fb:32:76:7e:9e:5a:3f:4f:d0:e6:d7:d9:81: c2:01:45:8c:dc:53:7b:18:a7:0f:e4:a5:aa:95:2a: f4:8a:61:20:0a:8f:b2:6f:e6:f2:54:9a:a0:c4:f0: fd:1f:3e:2d:12:1c:b4:ce:f0:a3:be:74:59:e9:8f: a5:d7:11:d5:9c:aa:64:a8:e8:f3:27:37:75:f8:9e: be:8f:8d:e8:56:33:44:9d:d5:70:b1:2c:e3:77:c2: 72:95:aa:4c:6c:0c:0a:74:2f:56:c5:bb:eb:7c:77: 8e:ee:52:9c:7a:aa:3d:e4:e0:e2:b5:b6:43:08:50: df:60:86:46:a9:b8:6f:79:60:ce:26:83:98:4b:a2: ae:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:32:79:36:2B:2A:C1:12:5E:A3:66:73:81:14:15:E4:BF:98:AE:60 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/241bc0fc-15e3-4833-b71c-3aee42a3a927.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.248.0.0/16 Signature Algorithm: sha256WithRSAEncryption c8:45:7e:59:3c:1d:4b:f1:89:37:bc:55:16:ce:df:e5:51:51: a7:f8:23:36:ce:19:8d:89:4b:a7:24:0c:aa:38:42:d6:e7:fb: 09:cc:e4:10:a5:9e:bf:ea:3d:d7:85:6b:07:6f:36:aa:87:b7: 48:7b:11:09:5b:9e:2f:39:48:b4:85:b3:04:7e:42:ec:75:df: 49:c4:65:6e:8b:eb:12:77:20:57:4a:a2:1c:8d:ca:da:2b:bb: dc:8c:3e:b7:99:f5:d6:d2:81:cd:30:17:6b:c3:d1:92:47:10: 1d:b1:96:f3:18:ce:7a:27:f1:07:90:80:cc:1e:3f:c6:24:cb: ca:ee:4e:28:65:d4:74:b7:aa:82:8b:d8:91:66:0d:eb:ed:8b: 34:6f:9b:b4:0f:9c:2f:a5:e2:47:74:a0:5c:27:a6:c5:10:10: e0:d5:9c:9b:b9:85:59:db:cf:bb:fd:ba:d9:6d:77:fb:dc:ea: 62:55:2c:f9:08:a3:bd:0e:8e:ac:db:e2:4a:75:1f:91:7a:03: 69:30:12:aa:13:e0:f7:b8:3b:30:3d:a9:52:1e:d4:46:0e:86: a2:17:66:b8:4b:a8:80:d8:c7:ef:23:d5:0f:10:46:45:6a:58: 38:79:f3:8b:d0:b8:4c:dd:f4:04:08:1a:bb:30:fd:e8:62:79: 55:ac:79:c5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUg3OUlWVEmhkxBmbp5CnkpbCqP8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAzMTExWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4Zjg5Zjc3Njk2NmU3NTU3OTk0MzU3MGMwMDA4ZjQ1YTU2 YTI0NmM5MGVlZWZlNzY2NTFkOTc3MDhiNTc5MTVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHaHU3hO+7GGu3sZlHGPFTQ4FeYd++zWUIAxhxSxdoi89s +/4VhMhkpF66nx0y1dzBIJDfzuLEOmS7zFQtKYhn75oQtmzy/aJn5usr1IcBoBKO 4cGVJcGMAZcr9UMJ3aCBRh5QY+p763WdzGJWlBC11kUXFGSfkJpH+zJ2fp5aP0/Q 5tfZgcIBRYzcU3sYpw/kpaqVKvSKYSAKj7Jv5vJUmqDE8P0fPi0SHLTO8KO+dFnp j6XXEdWcqmSo6PMnN3X4nr6PjehWM0Sd1XCxLON3wnKVqkxsDAp0L1bFu+t8d47u Upx6qj3k4OK1tkMIUN9ghkapuG95YM4mg5hLoq4ZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU1DJ5NisqwRJeo2ZzgRQV5L+YrmAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0MWJjMGZjLTE1ZTMtNDgzMy1iNzFjLTNhZWU0MmEzYTkyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5+DANBgkqhkiG9w0BAQsFAAOCAQEAyEV+WTwdS/GJN7xVFs7f5VFRp/gj Ns4ZjYlLpyQMqjhC1uf7CczkEKWev+o914VrB282qoe3SHsRCVueLzlItIWzBH5C 7HXfScRlbovrEncgV0qiHI3K2iu73Iw+t5n11tKBzTAXa8PRkkcQHbGW8xjOeifx B5CAzB4/xiTLyu5OKGXUdLeqgovYkWYN6+2LNG+btA+cL6XiR3SgXCemxRAQ4NWc m7mFWdvPu/262W13+9zqYlUs+QijvQ6OrNviSnUfkXoDaTASqhPg97g7MD2pUh7U Rg6GohdmuEuogNjH7yPVDxBGRWpYOHnzi9C4TN30BAgauzD96GJ5Vax5xQ== -----END CERTIFICATE-----Generated at Sun Jun 1 04:29:28 2025 by rpki-client