$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54dba2ae-fa55-448d-8286-0b2647236884.roa File: 54dba2ae-fa55-448d-8286-0b2647236884.roa (raw, json) Hash identifier: XdeOrIdXGSQi+jj0zqi6V7MQ0sA/336pOJBo1Zp3PrE= Subject key identifier: C7:E5:BB:80:D8:52:0C:53:30:A4:85:25:29:DE:38:F2:B6:69:6D:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 64936AA5CB1EED62DE865559499ACDC75B53129C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54dba2ae-fa55-448d-8286-0b2647236884.roa Signing time: Mon 19 May 2025 15:11:08 +0000 ROA not before: Mon 19 May 2025 15:11:08 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 164.152.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:93:6a:a5:cb:1e:ed:62:de:86:55:59:49:9a:cd:c7:5b:53:12:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 15:11:08 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=b4eee46cbf9147434725aee29b4c4779fc1c360d019444ec9014ccb843201a62, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9f:04:05:26:fd:85:cf:f5:a9:29:6f:06:2c: 0d:ca:96:6b:d7:7b:1d:2e:8d:96:e5:56:b3:13:a4: 47:25:11:c5:54:fc:19:da:c7:e6:b9:14:09:d0:b1: c9:ba:21:db:41:fb:ca:f1:cd:19:12:32:86:88:18: 3f:d5:67:fd:3d:c2:ac:fb:29:73:91:34:03:eb:c5: 76:cd:ac:be:21:bf:dd:a2:49:1c:13:a7:aa:e0:e2: 0c:b7:ac:a2:53:83:90:62:b6:23:30:54:f7:a2:e4: 1d:d0:90:0b:24:5e:87:7e:c2:c2:e4:3e:ef:8c:0f: 14:6d:f0:3e:71:0a:d5:06:b9:94:95:0f:60:b4:17: 27:4c:9d:07:71:b4:bd:39:9a:5b:76:2a:f4:43:9e: b8:ad:25:61:8c:94:c8:61:f2:37:b6:a8:73:e5:a8: a4:89:d7:83:fd:97:10:06:92:13:13:2e:09:b6:2d: 55:4e:4a:29:eb:5f:cf:97:5a:c7:de:23:80:7f:a6: 53:0b:3a:74:67:81:9d:f7:f2:47:d1:72:e0:12:e6: e1:dd:92:b6:19:a0:06:cf:04:35:b1:47:f7:ee:da: c3:c9:9d:6e:77:4a:d1:f7:a5:61:eb:3e:37:ff:9a: d6:a2:a2:fd:73:4f:b3:13:50:4d:23:1f:f2:01:7b: 4e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:E5:BB:80:D8:52:0C:53:30:A4:85:25:29:DE:38:F2:B6:69:6D:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54dba2ae-fa55-448d-8286-0b2647236884.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.152.168.0/21 Signature Algorithm: sha256WithRSAEncryption b9:fa:67:86:6b:88:79:2f:f8:b2:e6:ed:85:81:3d:f2:d9:c2: c6:a8:b5:72:b5:1b:c1:80:7c:69:8a:fa:5f:ab:3a:04:aa:6e: b9:4e:04:2f:29:c2:21:7f:d9:0f:31:6e:22:76:40:9b:a5:43: 8a:73:2a:99:58:f4:3f:b3:08:d5:e4:3e:0a:58:53:6c:57:e7: 87:a8:e0:f0:13:79:2f:a9:64:c6:fd:30:ea:8e:05:ab:ea:49: 08:34:ef:9c:9b:8e:02:16:bc:f8:55:07:aa:1c:9c:60:9b:47: 40:7c:35:39:29:ed:ce:93:04:af:23:ae:47:91:19:c8:ac:7f: 05:ec:0a:2c:30:32:4d:20:65:e0:7b:63:82:b9:f1:2e:03:dc: 1d:9c:0c:8e:be:0b:79:6c:02:fb:ca:a9:25:ba:bd:82:47:97: e8:aa:24:cf:e2:76:6f:82:a4:d8:ac:6f:23:b5:53:90:64:69: be:1b:d6:3c:ce:58:82:64:2c:30:5a:bb:27:87:26:26:85:45: e4:79:4c:3f:d6:77:97:fe:05:25:1e:c0:ae:ef:70:48:1d:19: 0d:bd:8f:bc:51:68:fd:2f:19:ce:d2:87:68:dc:26:2c:ab:09: d6:97:d0:63:92:0c:e5:d3:69:99:4e:6a:3b:78:6e:86:92:ad: 8e:9e:37:f3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZJNqpcse7WLehlVZSZrNx1tTEpwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTUxMTA4WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNGVlZTQ2Y2JmOTE0NzQzNDcyNWFlZTI5YjRjNDc3OWZj MWMzNjBkMDE5NDQ0ZWM5MDE0Y2NiODQzMjAxYTYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxnwQFJv2Fz/WpKW8GLA3KlmvXex0ujZblVrMTpEclEcVU /Bnax+a5FAnQscm6IdtB+8rxzRkSMoaIGD/VZ/09wqz7KXORNAPrxXbNrL4hv92i SRwTp6rg4gy3rKJTg5BitiMwVPei5B3QkAskXod+wsLkPu+MDxRt8D5xCtUGuZSV D2C0FydMnQdxtL05mlt2KvRDnritJWGMlMhh8je2qHPlqKSJ14P9lxAGkhMTLgm2 LVVOSinrX8+XWsfeI4B/plMLOnRngZ338kfRcuAS5uHdkrYZoAbPBDWxR/fu2sPJ nW53StH3pWHrPjf/mtaiov1zT7MTUE0jH/IBe04jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUx+W7gNhSDFMwpIUlKd448rZpbcUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0ZGJhMmFlLWZhNTUtNDQ4ZC04Mjg2LTBiMjY0NzIzNjg4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOkmKgwDQYJKoZIhvcNAQELBQADggEBALn6Z4ZriHkv+LLm7YWBPfLZwsao tXK1G8GAfGmK+l+rOgSqbrlOBC8pwiF/2Q8xbiJ2QJulQ4pzKplY9D+zCNXkPgpY U2xX54eo4PATeS+pZMb9MOqOBavqSQg075ybjgIWvPhVB6ocnGCbR0B8NTkp7c6T BK8jrkeRGcisfwXsCiwwMk0gZeB7Y4K58S4D3B2cDI6+C3lsAvvKqSW6vYJHl+iq JM/idm+CpNisbyO1U5Bkab4b1jzOWIJkLDBauyeHJiaFReR5TD/Wd5f+BSUewK7v cEgdGQ29j7xRaP0vGc7Sh2jcJiyrCdaX0GOSDOXTaZlOajt4boaSrY6eN/M= -----END CERTIFICATE-----Generated at Sun Jun 1 05:02:15 2025 by rpki-client