$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa File: 5238a6c5-a106-4b94-9f46-2c619db863c6.roa (raw, json) Hash identifier: sr5Slc5CCiOwNra8CGHQA88kYakfsTu21pn/zojph30= Subject key identifier: 5C:44:97:A2:05:1E:52:8B:07:61:60:9C:0B:4C:17:94:A7:2C:FF:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 17898FF1B83748532521BC43AE2ACBBE687DE088 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa Signing time: Tue 20 May 2025 00:11:00 +0000 ROA not before: Tue 20 May 2025 00:11:00 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 107.150.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:89:8f:f1:b8:37:48:53:25:21:bc:43:ae:2a:cb:be:68:7d:e0:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:11:00 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=682f587fa3a10eb8bb7b814ad6644219ced3a345d691fdc32e864d856e8199de, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ef:27:f1:4e:10:a1:01:19:70:c5:bf:5d:89: c9:43:46:f7:73:df:51:77:2a:86:ae:b3:01:85:ca: 9c:8e:2f:49:e6:ae:de:15:36:b0:a9:d4:13:d0:64: 9f:a0:32:a8:12:17:3a:86:54:74:31:95:1d:d6:2e: 64:f1:15:40:0f:27:a3:82:ab:82:4a:de:c6:01:13: e7:4b:e0:27:ab:80:b0:fc:c7:e3:4f:80:f7:f4:dc: 2e:a2:72:f9:a9:0b:99:bd:09:e4:f8:53:01:bf:bf: e2:1b:6f:41:09:fd:5a:ae:85:a4:1a:59:4d:c6:39: f8:c2:ac:5d:c4:27:64:0c:4d:39:90:2c:92:44:1e: 84:b2:76:0a:c2:65:ed:e1:98:aa:a9:f5:6c:e0:ba: a8:ed:4d:b4:4a:a1:34:a1:16:f2:81:a2:da:ee:7e: 70:68:34:83:2b:e4:24:f4:c5:78:f9:42:36:ee:ca: 14:65:4a:2f:41:c0:28:ba:a1:c0:92:2b:58:29:d1: 67:ac:c9:55:82:a7:32:99:74:a2:ca:42:73:24:dc: 43:ba:da:97:e0:a4:4f:c2:ca:c1:f7:13:89:05:9a: c4:7a:77:d3:5f:ad:e0:71:c9:34:4a:10:3e:32:c0: 0f:7a:9a:34:df:be:f2:25:6f:4b:54:cf:75:77:8c: 6c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:44:97:A2:05:1E:52:8B:07:61:60:9C:0B:4C:17:94:A7:2C:FF:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.150.192.0/19 Signature Algorithm: sha256WithRSAEncryption 49:97:0f:24:c2:b3:58:a0:54:8f:2c:b4:3b:40:0b:2a:ff:6d: bc:91:2d:b1:dc:9e:97:fc:83:d2:03:88:fb:59:d6:8a:8f:18: 6f:24:f5:7a:c9:5d:04:4a:4b:06:ad:bf:d1:32:96:45:a3:68: e6:a9:b2:45:6e:15:13:8f:a4:64:85:ed:11:3e:40:8c:f0:48: 0a:f2:ba:d9:df:bc:7d:53:37:22:c1:ca:69:41:46:88:8e:27: ce:f3:e5:99:40:9a:b8:7a:32:45:85:c1:b0:d6:ed:29:27:45: 24:5f:f6:76:76:3c:9f:21:b5:9d:d1:73:a9:e1:02:0f:45:51: 1f:57:c8:b2:3c:12:d9:c7:74:76:34:9b:ee:e7:c8:be:f8:e0: 0e:c4:1d:95:49:9c:9b:9d:63:2d:24:af:7d:af:ef:62:ff:7b: bd:2b:0a:34:40:dd:05:58:ff:f8:60:a9:0e:5d:39:39:ce:71: 26:53:18:7a:26:fc:0c:11:a0:ca:31:2b:e3:52:e6:f1:24:a0: b8:21:fd:b6:d2:17:dc:cd:83:fa:d5:12:0b:51:62:90:73:a5: 78:f6:58:e5:c6:9a:90:ff:ff:fe:ff:7b:c2:43:6c:9a:02:6b: 08:e5:0f:2c:f2:c6:0e:a7:e8:28:cf:1a:b2:1e:eb:bb:c1:04: f5:2a:93:f3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF4mP8bg3SFMlIbxDrirLvmh94IgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAxMTAwWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODJmNTg3ZmEzYTEwZWI4YmI3YjgxNGFkNjY0NDIxOWNl ZDNhMzQ1ZDY5MWZkYzMyZTg2NGQ4NTZlODE5OWRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCs7yfxThChARlwxb9diclDRvdz31F3KoauswGFypyOL0nm rt4VNrCp1BPQZJ+gMqgSFzqGVHQxlR3WLmTxFUAPJ6OCq4JK3sYBE+dL4CergLD8 x+NPgPf03C6icvmpC5m9CeT4UwG/v+Ibb0EJ/VquhaQaWU3GOfjCrF3EJ2QMTTmQ LJJEHoSydgrCZe3hmKqp9WzguqjtTbRKoTShFvKBotrufnBoNIMr5CT0xXj5Qjbu yhRlSi9BwCi6ocCSK1gp0WesyVWCpzKZdKLKQnMk3EO62pfgpE/CysH3E4kFmsR6 d9NfreBxyTRKED4ywA96mjTfvvIlb0tUz3V3jGypAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXESXogUeUosHYWCcC0wXlKcs/4AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyMzhhNmM1LWExMDYtNGI5NC05ZjQ2LTJjNjE5ZGI4NjNjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVrlsAwDQYJKoZIhvcNAQELBQADggEBAEmXDyTCs1igVI8stDtACyr/bbyR LbHcnpf8g9IDiPtZ1oqPGG8k9XrJXQRKSwatv9EylkWjaOapskVuFROPpGSF7RE+ QIzwSAryutnfvH1TNyLBymlBRoiOJ87z5ZlAmrh6MkWFwbDW7SknRSRf9nZ2PJ8h tZ3Rc6nhAg9FUR9XyLI8EtnHdHY0m+7nyL744A7EHZVJnJudYy0kr32v72L/e70r CjRA3QVY//hgqQ5dOTnOcSZTGHom/AwRoMoxK+NS5vEkoLgh/bbSF9zNg/rVEgtR YpBzpXj2WOXGmpD///7/e8JDbJoCawjlDyzyxg6n6CjPGrIe67vBBPUqk/M= -----END CERTIFICATE-----Generated at Fri Jun 6 05:30:50 2025 by rpki-client