$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a9e27ee-b1b7-4c8e-b5cf-0cffc63886bd.roa File: 3a9e27ee-b1b7-4c8e-b5cf-0cffc63886bd.roa (raw, json) Hash identifier: uYa2UaWpa4xsSHfuE0hEt4v45wG/h8q8Cu7MN2vANlI= Subject key identifier: 62:E0:22:6A:68:96:59:38:68:91:56:E0:6E:ED:5B:87:5D:42:BE:AC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4CE63D9A53A87390150D107B434D8ED275BCDBC9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a9e27ee-b1b7-4c8e-b5cf-0cffc63886bd.roa Signing time: Wed 21 May 2025 00:01:42 +0000 ROA not before: Wed 21 May 2025 00:01:42 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 192.31.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:e6:3d:9a:53:a8:73:90:15:0d:10:7b:43:4d:8e:d2:75:bc:db:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 21 00:01:42 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=cb2c3734690ed094fc7765736819c6b742aa6364217181ef17b8b6efedb72c86, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:db:c2:d5:b8:9f:7d:07:49:b8:69:16:b3:ca: de:ce:28:17:82:1f:9a:85:28:5b:94:16:46:59:79: 8b:f8:70:64:21:3e:8e:2a:e1:29:25:f9:e8:b2:59: 7f:ae:45:ad:36:0c:3f:39:5e:b3:7e:39:35:9a:7a: 71:56:95:bc:ae:35:98:91:8e:4e:1f:66:dd:9a:1f: d4:0e:c3:47:27:04:78:20:96:3c:f5:09:e6:81:48: cc:25:f7:a7:4d:e5:af:32:8b:13:1e:14:ba:bc:4c: b7:f7:ad:f9:86:9e:09:bc:b4:65:92:c2:d7:a9:e6: 4c:96:22:d2:18:82:b2:51:45:91:17:62:f4:cd:66: 88:a1:13:16:e8:21:fb:35:72:97:94:83:14:f9:f8: a1:2b:00:50:44:c5:b7:d5:a2:4e:81:23:89:d2:99: 27:78:30:e4:e5:f1:18:47:2e:09:03:4f:6b:69:06: c6:a2:e1:83:7e:5e:b7:61:39:36:70:4a:5e:56:20: a9:43:7c:71:58:7f:7f:b0:bc:1e:9e:7c:49:41:b8: 2e:94:b8:a1:b8:dc:e8:54:dd:8a:69:dc:b1:d1:2e: 75:3b:86:6d:32:11:e3:92:c2:f2:f1:bf:b3:ae:cb: d5:43:85:8d:71:bc:b9:ac:d8:1c:c5:5c:93:bd:11: 9d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E0:22:6A:68:96:59:38:68:91:56:E0:6E:ED:5B:87:5D:42:BE:AC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a9e27ee-b1b7-4c8e-b5cf-0cffc63886bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.31.212.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:98:e8:4b:b4:f6:66:8b:49:a8:d2:b2:c1:cb:f8:26:e5:b1: 0f:0b:fe:87:f3:aa:01:44:f1:97:36:4f:a9:cc:4a:cc:ed:7a: 41:58:5d:8d:a8:13:96:73:7a:3b:b8:e3:71:45:77:b9:25:34: 5a:05:c5:3d:1c:18:6b:08:c8:bd:4b:9d:d3:e9:ad:67:46:db: 4b:73:c9:f9:f0:b9:a1:cf:a1:5d:0f:4c:97:9f:e8:f6:0c:37: b8:15:83:b8:fb:fa:3b:d7:eb:81:ae:14:e9:07:94:a0:95:b5: e3:7a:45:38:4e:97:d9:29:b0:1c:a9:ba:ef:ab:27:be:e7:ab: d4:28:6a:db:38:ae:88:dd:7a:9f:49:58:bf:1b:c4:3a:98:7c: 59:94:43:89:51:76:33:2f:8b:1f:3c:33:dc:f4:0b:13:20:17: c9:3c:8e:7e:b2:f3:a2:79:6b:11:f8:35:99:02:fb:ef:0a:21: 7b:9f:43:fe:ca:34:13:72:88:d0:cb:7c:9f:4b:bb:dd:16:71: 19:35:48:5b:86:dc:9c:70:a7:ec:8f:42:9e:47:31:23:68:18: af:11:aa:ef:94:91:d1:3a:30:60:86:62:7d:44:be:e9:e8:72: 50:d3:87:36:cd:f0:a9:30:0b:e2:df:8e:9f:d2:2e:f8:76:ad: 62:78:ae:e8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTOY9mlOoc5AVDRB7Q02O0nW828kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIxMDAwMTQyWhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYjJjMzczNDY5MGVkMDk0ZmM3NzY1NzM2ODE5YzZiNzQy YWE2MzY0MjE3MTgxZWYxN2I4YjZlZmVkYjcyYzg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC828LVuJ99B0m4aRazyt7OKBeCH5qFKFuUFkZZeYv4cGQh Po4q4Skl+eiyWX+uRa02DD85XrN+OTWaenFWlbyuNZiRjk4fZt2aH9QOw0cnBHgg ljz1CeaBSMwl96dN5a8yixMeFLq8TLf3rfmGngm8tGWSwtep5kyWItIYgrJRRZEX YvTNZoihExboIfs1cpeUgxT5+KErAFBExbfVok6BI4nSmSd4MOTl8RhHLgkDT2tp Bsai4YN+XrdhOTZwSl5WIKlDfHFYf3+wvB6efElBuC6UuKG43OhU3Ypp3LHRLnU7 hm0yEeOSwvLxv7Ouy9VDhY1xvLms2BzFXJO9EZ05AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYuAiamiWWThokVbgbu1bh11CvqwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNhOWUyN2VlLWIxYjctNGM4ZS1iNWNmLTBjZmZjNjM4ODZiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAH9QwDQYJKoZIhvcNAQELBQADggEBAHqY6Eu09maLSajSssHL+CblsQ8L /ofzqgFE8Zc2T6nMSsztekFYXY2oE5Zzeju443FFd7klNFoFxT0cGGsIyL1LndPp rWdG20tzyfnwuaHPoV0PTJef6PYMN7gVg7j7+jvX64GuFOkHlKCVteN6RThOl9kp sBypuu+rJ77nq9Qoats4rojdep9JWL8bxDqYfFmUQ4lRdjMvix88M9z0CxMgF8k8 jn6y86J5axH4NZkC++8KIXufQ/7KNBNyiNDLfJ9Lu90WcRk1SFuG3Jxwp+yPQp5H MSNoGK8Rqu+UkdE6MGCGYn1EvunoclDThzbN8KkwC+Lfjp/SLvh2rWJ4rug= -----END CERTIFICATE-----Generated at Sun Jun 1 04:41:52 2025 by rpki-client