$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d19bac8-c168-47f7-8ae9-175f43ef2433.roa File: 3d19bac8-c168-47f7-8ae9-175f43ef2433.roa (raw, json) Hash identifier: JB5wWdWyEuEDv570GYvQoh05SHD9Rax4QRTjCBNxFdE= Subject key identifier: 5B:7A:52:77:66:7F:4A:3A:8A:3F:93:C3:D8:5F:45:2C:D7:3A:A5:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49CDCA157FA65653E2177D0B1F73F8A5D887AF27 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d19bac8-c168-47f7-8ae9-175f43ef2433.roa Signing time: Tue 13 May 2025 00:40:11 +0000 ROA not before: Tue 13 May 2025 00:40:11 +0000 ROA not after: Tue 17 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.226.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:cd:ca:15:7f:a6:56:53:e2:17:7d:0b:1f:73:f8:a5:d8:87:af:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 13 00:40:11 2025 GMT Not After : Jun 17 23:59:59 2025 GMT Subject: serialNumber=96171a134ec7755efa285a8c21fca44bcfbc2d9330baea2e950e661d128bc56e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:52:88:d9:0f:52:df:c8:a4:c7:55:9f:dc:de: d0:56:04:49:21:8b:3a:3c:1a:f5:62:be:2d:e0:70: bb:64:d1:15:4e:1c:9d:d0:e6:4c:7c:f9:ac:7a:bc: af:f9:bc:9e:98:49:bc:aa:bb:1d:d7:96:51:a7:06: 78:b1:eb:58:c8:82:79:fc:e6:5d:df:c0:62:40:a7: 65:25:6e:e0:2e:1b:2a:cb:a2:0e:dc:78:2d:8a:13: 96:4c:39:d3:1a:75:06:44:a0:ab:9f:d9:2c:98:a2: 5b:9e:cc:db:a5:d7:70:fc:81:0a:6e:5e:cb:78:a2: f2:7a:38:dd:0c:b4:00:fe:a0:62:90:bf:20:40:76: ab:a6:c0:0f:5b:04:77:55:70:d0:10:8f:6e:40:fc: e6:76:11:6c:3d:e2:20:e8:04:fc:33:ee:39:16:c2: 74:8d:52:df:4a:2d:43:0e:ed:f1:a8:b7:73:2c:dd: fa:6a:79:da:25:ad:86:bd:bc:97:ed:42:37:2b:44: 65:2f:62:93:ea:74:19:73:8d:7e:20:08:bf:1b:ee: cb:c9:53:04:68:96:c6:00:1d:5a:40:0c:7d:aa:62: 7d:e0:5c:35:07:c0:b3:6e:cf:de:90:64:a6:f3:44: 4b:51:8b:cc:fb:58:8b:62:75:83:09:21:da:4a:09: 56:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:7A:52:77:66:7F:4A:3A:8A:3F:93:C3:D8:5F:45:2C:D7:3A:A5:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d19bac8-c168-47f7-8ae9-175f43ef2433.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.226.240.0/21 Signature Algorithm: sha256WithRSAEncryption 8e:fe:07:75:4e:44:af:85:84:01:2e:9e:5c:c1:64:f3:2a:47: 2a:7d:56:72:44:8f:ed:a3:89:5d:44:59:0d:c1:bf:8f:e5:ca: ad:04:22:f1:69:08:c6:a6:61:cb:7a:d1:21:a9:02:32:3d:66: 07:c9:a8:59:b4:1e:7b:2e:ee:29:31:6c:57:0d:ee:a6:8f:19: 29:01:d3:9a:d3:29:0e:77:47:fd:a3:74:c0:4d:8c:e4:f0:19: 22:08:7b:ba:c8:cc:f6:4c:81:62:35:67:2d:fd:80:b8:d5:6e: 7a:2a:6a:13:c6:b1:c3:45:d2:f3:ea:10:d8:36:3c:a4:1c:81: 6c:76:13:aa:f4:3a:25:22:81:ab:28:57:90:7e:ea:2d:c5:1b: dd:08:3f:00:5c:14:58:9a:41:29:82:ba:13:54:d9:59:12:c4: cf:b1:a2:c1:6d:30:35:91:fb:b6:e5:8e:9c:53:3f:de:e5:15: 83:2f:3c:4f:0c:ca:99:60:48:a4:d6:18:3a:f4:77:91:18:b6: 94:33:0d:73:13:ef:c8:d4:e1:cd:a7:ac:83:e2:ee:a8:44:e2: 5b:01:5d:4b:6d:06:f4:8c:2f:0f:b7:b4:d8:9b:35:2e:b0:d4: 4c:54:c6:ee:65:48:72:b2:1d:c3:74:f1:49:68:b6:bb:1f:fa: e8:1d:fb:2c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSc3KFX+mVlPiF30LH3P4pdiHrycwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEzMDA0MDExWhcNMjUwNjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjE3MWExMzRlYzc3NTVlZmEyODVhOGMyMWZjYTQ0YmNm YmMyZDkzMzBiYWVhMmU5NTBlNjYxZDEyOGJjNTZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClUojZD1LfyKTHVZ/c3tBWBEkhizo8GvVivi3gcLtk0RVO HJ3Q5kx8+ax6vK/5vJ6YSbyqux3XllGnBnix61jIgnn85l3fwGJAp2UlbuAuGyrL og7ceC2KE5ZMOdMadQZEoKuf2SyYoluezNul13D8gQpuXst4ovJ6ON0MtAD+oGKQ vyBAdqumwA9bBHdVcNAQj25A/OZ2EWw94iDoBPwz7jkWwnSNUt9KLUMO7fGot3Ms 3fpqedolrYa9vJftQjcrRGUvYpPqdBlzjX4gCL8b7svJUwRolsYAHVpADH2qYn3g XDUHwLNuz96QZKbzREtRi8z7WItidYMJIdpKCVZrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUW3pSd2Z/SjqKP5PD2F9FLNc6pVUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkMTliYWM4LWMxNjgtNDdmNy04YWU5LTE3NWY0M2VmMjQzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANA4vAwDQYJKoZIhvcNAQELBQADggEBAI7+B3VORK+FhAEunlzBZPMqRyp9 VnJEj+2jiV1EWQ3Bv4/lyq0EIvFpCMamYct60SGpAjI9ZgfJqFm0Hnsu7ikxbFcN 7qaPGSkB05rTKQ53R/2jdMBNjOTwGSIIe7rIzPZMgWI1Zy39gLjVbnoqahPGscNF 0vPqENg2PKQcgWx2E6r0OiUigasoV5B+6i3FG90IPwBcFFiaQSmCuhNU2VkSxM+x osFtMDWR+7bljpxTP97lFYMvPE8MyplgSKTWGDr0d5EYtpQzDXMT78jU4c2nrIPi 7qhE4lsBXUttBvSMLw+3tNibNS6w1ExUxu5lSHKyHcN08Ulotrsf+ugd+yw= -----END CERTIFICATE-----Generated at Sun Jun 1 04:48:48 2025 by rpki-client