$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/284c9a1b-7e4b-433f-b1f1-f4cebfb67dc5.roa File: 284c9a1b-7e4b-433f-b1f1-f4cebfb67dc5.roa (raw, json) Hash identifier: 1dqo+fp1VYCaQEbI37vCGyVMrbieqpJ6JwmcPV/pIew= Subject key identifier: BC:46:E2:3A:6C:F4:60:02:CE:90:06:71:E8:D0:A6:39:65:EA:FA:27 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2017839BB6FC75983526701BB10423E9380F9A10 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/284c9a1b-7e4b-433f-b1f1-f4cebfb67dc5.roa Signing time: Fri 30 May 2025 00:31:35 +0000 ROA not before: Fri 30 May 2025 00:31:35 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 67.220.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:17:83:9b:b6:fc:75:98:35:26:70:1b:b1:04:23:e9:38:0f:9a:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:31:35 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=d1ba06241e0386d6ced395c6ecdfb20105235341163f07caa7af132d6a3aae50, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:12:40:0f:c0:06:f1:1a:08:14:fa:1f:bd:e0: 06:dc:75:1e:82:cb:df:e0:b1:d7:8b:a7:ac:65:77: 43:24:89:8b:ef:27:b2:c1:29:fd:49:59:ce:ba:ef: 5d:66:56:c1:c8:25:83:83:ab:2a:aa:c4:39:ef:04: 75:aa:09:e8:d9:8a:8c:d0:4d:30:2f:eb:62:0c:ae: 09:1e:79:ef:72:93:35:a3:08:4d:e7:fe:de:57:e7: f4:04:02:8d:68:20:76:76:a4:6d:c4:cb:b3:e9:6a: e7:9f:fd:09:72:bb:cd:25:61:f3:2f:ee:7d:43:b4: 15:ce:92:bb:2a:54:10:fc:6b:2d:38:2d:b4:19:77: bd:f1:d6:2b:c1:04:6b:99:46:f5:21:f4:44:1f:dc: 89:92:8b:04:f6:f7:60:c6:cb:96:ec:53:8a:8a:31: 00:c8:bf:32:7b:60:b7:49:28:0b:e7:ac:3b:f4:94: 1e:25:ab:4c:17:f6:56:b5:3c:f7:2d:18:c7:e5:45: 28:13:b4:73:74:9f:f2:5a:da:ea:66:91:f5:e4:56: 57:de:d3:3c:ab:b3:0b:4a:49:e9:43:e1:04:c2:58: 57:9f:20:16:5d:65:e8:40:61:81:89:52:2f:e8:74: 61:97:ee:95:c8:cc:1d:58:2e:17:f7:43:14:f0:a5: e9:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:46:E2:3A:6C:F4:60:02:CE:90:06:71:E8:D0:A6:39:65:EA:FA:27 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/284c9a1b-7e4b-433f-b1f1-f4cebfb67dc5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 67.220.224.0/19 Signature Algorithm: sha256WithRSAEncryption b5:50:e1:af:94:bc:b0:db:2c:ed:2e:de:b8:43:16:34:cb:d6: 8f:82:66:68:24:7b:5d:fd:3d:79:d5:73:4e:b9:dd:9a:0d:3f: 3d:7d:10:2c:5b:08:22:57:9c:17:65:2e:64:cb:22:e2:c4:e5: dc:cf:d0:63:a7:55:72:b7:2d:a7:87:ff:69:81:3d:a9:40:c8: 2d:ab:68:ee:98:2c:6b:93:a8:7b:b9:b9:26:30:83:2e:ee:7d: 0a:20:71:fa:2f:14:cf:0b:2f:a7:13:77:d9:f8:22:05:11:a3: 82:1e:55:ff:8c:e2:84:e2:84:64:bc:8a:ea:37:4c:98:f8:55: 92:cf:98:61:44:28:cd:12:df:0a:a7:27:f8:1f:16:57:e0:53: 56:cc:e2:5c:ec:a8:ea:b7:54:64:9d:45:4b:f8:22:ba:5a:9a: 96:ac:39:7c:80:a5:e4:f6:cd:33:59:66:24:de:f1:8e:2f:a0: 5d:5b:91:ad:f3:8e:43:a9:a1:8f:ca:7a:ab:5f:fd:88:44:4f: a3:e3:09:0d:77:2d:74:34:73:18:21:30:f4:81:99:8e:62:ea: f3:e8:fd:f5:b7:66:26:03:4d:d0:9d:66:7d:c6:93:c3:aa:d5: 97:29:33:e3:a7:8f:e5:98:e6:2b:5f:3f:f7:41:c5:fb:b6:ad: e7:bf:48:d1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIBeDm7b8dZg1JnAbsQQj6TgPmhAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAzMTM1WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWJhMDYyNDFlMDM4NmQ2Y2VkMzk1YzZlY2RmYjIwMTA1 MjM1MzQxMTYzZjA3Y2FhN2FmMTMyZDZhM2FhZTUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwEkAPwAbxGggU+h+94AbcdR6Cy9/gsdeLp6xld0MkiYvv J7LBKf1JWc66711mVsHIJYODqyqqxDnvBHWqCejZiozQTTAv62IMrgkeee9ykzWj CE3n/t5X5/QEAo1oIHZ2pG3Ey7Ppauef/Qlyu80lYfMv7n1DtBXOkrsqVBD8ay04 LbQZd73x1ivBBGuZRvUh9EQf3ImSiwT292DGy5bsU4qKMQDIvzJ7YLdJKAvnrDv0 lB4lq0wX9la1PPctGMflRSgTtHN0n/Ja2upmkfXkVlfe0zyrswtKSelD4QTCWFef IBZdZehAYYGJUi/odGGX7pXIzB1YLhf3QxTwpemPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvEbiOmz0YALOkAZx6NCmOWXq+icwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4NGM5YTFiLTdlNGItNDMzZi1iMWYxLWY0Y2ViZmI2N2RjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVD3OAwDQYJKoZIhvcNAQELBQADggEBALVQ4a+UvLDbLO0u3rhDFjTL1o+C Zmgke139PXnVc0653ZoNPz19ECxbCCJXnBdlLmTLIuLE5dzP0GOnVXK3LaeH/2mB PalAyC2raO6YLGuTqHu5uSYwgy7ufQogcfovFM8LL6cTd9n4IgURo4IeVf+M4oTi hGS8iuo3TJj4VZLPmGFEKM0S3wqnJ/gfFlfgU1bM4lzsqOq3VGSdRUv4Irpampas OXyApeT2zTNZZiTe8Y4voF1bka3zjkOpoY/Keqtf/YhET6PjCQ13LXQ0cxghMPSB mY5i6vPo/fW3ZiYDTdCdZn3Gk8Oq1ZcpM+Onj+WY5itfP/dBxfu2ree/SNE= -----END CERTIFICATE-----Generated at Sun Jun 1 04:37:33 2025 by rpki-client