$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cf6724f-3a3f-48d4-9f79-c57894a336dd.roa File: 4cf6724f-3a3f-48d4-9f79-c57894a336dd.roa (raw, json) Hash identifier: +GR6ZlCETCLh5blVsac0iELLEgAbEpGPGMO4VtTeyG8= Subject key identifier: 79:74:99:74:0A:40:9F:AA:A4:60:0F:AA:62:04:59:9A:21:5A:AA:2B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06A3DDC0625AEBCCFE1B82D7B8AE565C79A7798E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cf6724f-3a3f-48d4-9f79-c57894a336dd.roa Signing time: Wed 21 May 2025 00:01:04 +0000 ROA not before: Wed 21 May 2025 00:01:04 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 136.18.50.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:a3:dd:c0:62:5a:eb:cc:fe:1b:82:d7:b8:ae:56:5c:79:a7:79:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 21 00:01:04 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=3e9aaf38a3c6b90f5cc6965cbdf29e96d6ecd3c0a8d88ebaf3de7a57a1d85da4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ca:b3:49:f7:e4:cf:18:20:96:27:41:a7:ab: 67:d0:50:5f:e1:07:c4:68:14:20:19:3d:de:d5:27: 7a:5f:e4:8d:98:4f:4d:a4:1d:6e:d3:f2:46:39:e8: 01:57:20:c8:e0:5d:37:77:93:1d:f2:f6:1e:09:70: ce:03:7e:55:21:7a:cb:5e:c3:fa:3d:ad:63:e6:a2: 9b:91:aa:8f:2f:da:95:1c:2d:a5:03:0a:2a:5b:a6: dc:ac:49:cf:b2:6e:03:f7:85:03:09:fa:a8:ca:17: 95:c0:a2:c4:19:24:f3:b4:da:7a:e8:d3:90:5b:45: 67:f3:30:6b:04:db:6b:a8:eb:6d:a5:25:b9:26:35: df:fe:51:94:aa:da:b1:01:1b:f5:08:bf:4e:e7:56: fc:a6:2d:3c:d0:8c:01:18:7f:67:ed:7a:fb:21:2c: 1d:1e:78:0b:3d:0c:5c:ed:4e:c0:bb:8f:2d:49:03: 3d:1a:0e:d2:23:96:24:5c:3c:75:ba:b1:33:50:90: 9b:a6:73:7d:22:f3:f4:24:c8:76:8e:22:e3:74:6e: 6d:b2:d1:30:a0:99:72:a0:ac:b4:e9:6c:14:0b:35: b6:e7:5f:e0:6b:fe:7c:6f:4c:5b:8c:65:ee:95:e3: 49:0e:7e:5f:40:37:ab:e4:f0:66:5b:c2:37:a7:f7: 73:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:74:99:74:0A:40:9F:AA:A4:60:0F:AA:62:04:59:9A:21:5A:AA:2B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cf6724f-3a3f-48d4-9f79-c57894a336dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.50.0/23 Signature Algorithm: sha256WithRSAEncryption b6:c7:e8:f6:3a:d2:fe:e2:b4:c4:77:8a:86:35:63:f2:84:1b: 81:d5:83:02:3c:04:a1:06:b1:4a:ae:22:3b:82:1a:ad:fb:1d: cc:48:c8:ec:75:f5:69:97:36:43:54:a1:7f:2c:77:33:07:cd: 89:c9:2d:c8:70:70:2d:29:10:18:b9:a3:6f:ee:ff:e2:d2:87: d7:32:04:e5:9c:3b:0a:51:78:58:83:70:a2:8e:81:b5:97:de: b6:c7:ba:c8:08:6d:a5:cd:c9:69:91:bf:8c:ba:b3:38:6f:7d: 18:43:d2:78:a9:7f:f2:9c:a6:af:c9:ec:b6:bb:16:3b:cd:a3: 80:40:94:6d:81:a3:fb:bd:8a:2b:c2:e0:60:4a:13:f5:9f:cf: 66:9e:2a:84:3c:af:da:73:e8:48:c4:02:4a:ed:83:08:2a:2a: b7:56:29:e9:ad:34:d4:24:30:98:4b:1f:19:a9:0b:5a:a9:7b: 0f:9b:31:d8:1b:a5:70:b5:df:65:f0:e8:8f:17:d5:11:33:36: f8:0e:8c:13:82:2e:8e:3c:a1:07:2f:70:fa:59:83:5a:74:93: 1a:3f:6e:18:40:8c:b4:c6:c9:71:4a:b7:31:d8:fd:1c:5c:76: 92:83:49:65:7c:61:24:eb:7a:77:9a:70:48:63:bd:51:c1:40: 61:0a:8e:b1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBqPdwGJa68z+G4LXuK5WXHmneY4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIxMDAwMTA0WhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTlhYWYzOGEzYzZiOTBmNWNjNjk2NWNiZGYyOWU5NmQ2 ZWNkM2MwYThkODhlYmFmM2RlN2E1N2ExZDg1ZGE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCayrNJ9+TPGCCWJ0Gnq2fQUF/hB8RoFCAZPd7VJ3pf5I2Y T02kHW7T8kY56AFXIMjgXTd3kx3y9h4JcM4DflUhestew/o9rWPmopuRqo8v2pUc LaUDCipbptysSc+ybgP3hQMJ+qjKF5XAosQZJPO02nro05BbRWfzMGsE22uo622l JbkmNd/+UZSq2rEBG/UIv07nVvymLTzQjAEYf2ftevshLB0eeAs9DFztTsC7jy1J Az0aDtIjliRcPHW6sTNQkJumc30i8/QkyHaOIuN0bm2y0TCgmXKgrLTpbBQLNbbn X+Br/nxvTFuMZe6V40kOfl9AN6vk8GZbwjen93PvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeXSZdApAn6qkYA+qYgRZmiFaqiswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRjZjY3MjRmLTNhM2YtNDhkNC05Zjc5LWM1Nzg5NGEzMzZkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGIEjIwDQYJKoZIhvcNAQELBQADggEBALbH6PY60v7itMR3ioY1Y/KEG4HV gwI8BKEGsUquIjuCGq37HcxIyOx19WmXNkNUoX8sdzMHzYnJLchwcC0pEBi5o2/u /+LSh9cyBOWcOwpReFiDcKKOgbWX3rbHusgIbaXNyWmRv4y6szhvfRhD0nipf/Kc pq/J7La7FjvNo4BAlG2Bo/u9iivC4GBKE/Wfz2aeKoQ8r9pz6EjEAkrtgwgqKrdW KemtNNQkMJhLHxmpC1qpew+bMdgbpXC132Xw6I8X1REzNvgOjBOCLo48oQcvcPpZ g1p0kxo/bhhAjLTGyXFKtzHY/RxcdpKDSWV8YSTreneacEhjvVHBQGEKjrE= -----END CERTIFICATE-----Generated at Sun Jun 1 04:37:34 2025 by rpki-client