$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa File: 53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa (raw, json) Hash identifier: me/JbwtaQgkZas4zYJ/rpJBbD/2yIwJniZirRBVHwOg= Subject key identifier: BA:7A:6F:89:E4:2C:A1:94:71:10:7E:3C:69:A8:53:68:34:80:A2:FD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C87AB96F81C0EFCE0E85442AAA55AABB8A24A8E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa Signing time: Sat 31 May 2025 00:10:55 +0000 ROA not before: Sat 31 May 2025 00:10:55 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:87:ab:96:f8:1c:0e:fc:e0:e8:54:42:aa:a5:5a:ab:b8:a2:4a:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 31 00:10:55 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=ae8e1fd1f4afdd8980e948a4f98689106821419d41fb0f11f124d1c5f10dc4fe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:94:ad:6b:58:9c:01:ab:3f:29:d3:08:ee:e2: 5e:65:56:ff:9e:a4:78:81:37:f9:99:c8:ad:08:9f: 64:a0:fb:4c:96:ea:a8:bc:f9:22:0c:62:4c:49:d2: 6e:b4:c3:aa:06:a4:60:37:8d:b6:d4:0a:d5:f2:a6: 67:ed:dc:74:7a:2e:52:e5:c4:33:ce:11:f9:1e:44: 20:e7:ce:2d:7b:9a:88:f1:40:cb:98:57:05:be:30: 39:4a:17:e5:04:ed:38:99:73:51:ab:24:db:1e:4c: 21:a1:25:c3:e2:05:ea:5d:1c:ff:99:2a:45:3f:0d: d3:6a:9d:16:79:58:01:37:ea:ba:db:97:33:82:b3: 74:07:c7:e9:79:75:dc:b5:e0:7d:f3:ee:b9:24:3b: 69:8c:4e:3a:7a:41:5c:6c:de:b1:d2:a7:f3:c3:91: e1:71:4d:5d:96:36:28:48:81:67:d9:b4:a2:23:83: 32:de:5e:14:89:85:fe:8b:f9:d5:d9:a2:54:4d:c5: 74:23:9d:04:88:d3:7d:9f:3d:f2:91:4f:9f:27:42: a5:40:19:61:0a:c6:18:8f:91:53:68:ec:5f:ee:df: 23:95:d3:68:a0:38:e0:c0:cb:60:60:5b:ff:1f:23: 60:69:50:a3:00:f7:76:2f:ea:4b:38:e9:dd:c2:9c: b6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:7A:6F:89:E4:2C:A1:94:71:10:7E:3C:69:A8:53:68:34:80:A2:FD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53e0cafd-0de6-48b8-bd43-f81bd44f6fc5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.20.0/24 Signature Algorithm: sha256WithRSAEncryption 72:01:92:a0:bf:7e:01:5c:9a:09:01:71:94:53:fe:c2:03:d3: ea:35:f4:a0:03:5b:b5:ab:16:38:b0:37:75:35:52:6a:5a:cf: df:0a:aa:92:82:bd:ed:c5:40:a7:ad:cb:f9:27:8f:c8:6c:db: a2:ff:76:84:67:41:82:bb:aa:97:b9:3d:de:23:a2:3f:9a:f7: 2c:e0:ca:d2:d0:d0:4e:b8:49:27:44:f0:76:58:a5:1a:14:ca: b8:9d:ac:10:03:e1:01:c3:93:a3:a1:eb:0f:cf:82:07:08:31: e0:45:ca:66:03:43:41:51:c6:b4:7e:dd:b2:2f:db:37:c4:f7: 88:db:23:06:ab:95:20:ee:4d:e9:06:36:d3:7d:76:00:f9:d8: a9:3c:c9:90:de:df:8d:5e:a4:05:ef:a5:e5:b7:67:6b:d0:78: 7f:59:e4:a5:03:9c:65:99:7b:81:2f:ae:ab:3e:fd:68:ac:9f: 9e:89:9b:a1:a2:93:f3:0e:90:11:07:83:13:f1:3a:9e:d3:8d: ef:09:0f:1f:0d:14:65:1f:c4:4f:bd:73:43:d3:90:13:2a:16: 41:ed:f4:a3:5d:df:6e:7f:68:95:3c:db:12:70:2e:5b:b8:9a: 7c:72:a3:36:74:9a:97:ab:b2:67:f3:62:9c:03:5b:96:dd:c0: c1:d6:d5:54 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbIerlvgcDvzg6FRCqqVaq7iiSo4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMxMDAxMDU1WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZThlMWZkMWY0YWZkZDg5ODBlOTQ4YTRmOTg2ODkxMDY4 MjE0MTlkNDFmYjBmMTFmMTI0ZDFjNWYxMGRjNGZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2lK1rWJwBqz8p0wju4l5lVv+epHiBN/mZyK0In2Sg+0yW 6qi8+SIMYkxJ0m60w6oGpGA3jbbUCtXypmft3HR6LlLlxDPOEfkeRCDnzi17mojx QMuYVwW+MDlKF+UE7TiZc1GrJNseTCGhJcPiBepdHP+ZKkU/DdNqnRZ5WAE36rrb lzOCs3QHx+l5ddy14H3z7rkkO2mMTjp6QVxs3rHSp/PDkeFxTV2WNihIgWfZtKIj gzLeXhSJhf6L+dXZolRNxXQjnQSI032fPfKRT58nQqVAGWEKxhiPkVNo7F/u3yOV 02igOODAy2BgW/8fI2BpUKMA93Yv6ks46d3CnLZ7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUunpvieQsoZRxEH48aahTaDSAov0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzZTBjYWZkLTBkZTYtNDhiOC1iZDQzLWY4MWJkNDRmNmZjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACXlBQwDQYJKoZIhvcNAQELBQADggEBAHIBkqC/fgFcmgkBcZRT/sID0+o1 9KADW7WrFjiwN3U1Umpaz98KqpKCve3FQKety/knj8hs26L/doRnQYK7qpe5Pd4j oj+a9yzgytLQ0E64SSdE8HZYpRoUyridrBAD4QHDk6Oh6w/PggcIMeBFymYDQ0FR xrR+3bIv2zfE94jbIwarlSDuTekGNtN9dgD52Kk8yZDe341epAXvpeW3Z2vQeH9Z 5KUDnGWZe4Evrqs+/Wisn56Jm6Gik/MOkBEHgxPxOp7Tje8JDx8NFGUfxE+9c0PT kBMqFkHt9KNd325/aJU82xJwLlu4mnxyozZ0mpersmfzYpwDW5bdwMHW1VQ= -----END CERTIFICATE-----Generated at Sun Jun 1 04:40:55 2025 by rpki-client