$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58c78734-91d9-4994-9461-7b6172f0caa6.roa File: 58c78734-91d9-4994-9461-7b6172f0caa6.roa (raw, json) Hash identifier: FpxOpw9KeGC7gOAA5+TH/kQEk6a22tPNsrGQTDo9Yiw= Subject key identifier: A8:3D:29:8C:4A:48:7C:AF:74:44:68:40:94:5B:E8:6A:FA:13:6B:87 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59071DE8EB66BB95968BDD9D0ED82CB1D1BC0E2E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58c78734-91d9-4994-9461-7b6172f0caa6.roa Signing time: Tue 20 May 2025 15:12:24 +0000 ROA not before: Tue 20 May 2025 15:12:24 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 67.202.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:07:1d:e8:eb:66:bb:95:96:8b:dd:9d:0e:d8:2c:b1:d1:bc:0e:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 15:12:24 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=127a9465653d46d4a91232e50b3cb27a3165fe1c6dff13a77f35e251e0c3ba1a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f2:89:aa:08:f3:61:a7:7e:f4:60:54:e9:d0: e6:51:cf:52:6b:ee:d2:af:74:7f:90:07:c7:2e:65: b2:5e:dd:2a:8c:03:c9:45:f6:b5:79:31:8b:ae:50: a7:6a:53:d9:c9:7a:11:d8:d3:2c:77:36:0e:93:9e: 95:37:2d:9e:98:4e:a3:d2:f3:84:8a:d5:70:55:6c: d2:b8:72:d5:37:93:00:7e:4d:11:aa:b0:04:b8:8d: cf:fd:54:64:b6:03:bb:54:38:80:39:97:a7:b4:b4: 2f:e0:ef:20:47:09:6e:ec:90:4a:0e:2c:bf:6f:c7: 6d:28:2b:c9:0a:f7:8a:56:fe:f6:ae:cb:b7:00:f7: 1f:0a:9f:a6:1b:66:be:1c:8e:ff:f2:29:3a:d9:28: bb:34:0c:b1:37:90:9f:cc:6b:09:9a:17:63:7f:13: c3:d1:c6:8d:8a:ab:0a:8e:e7:69:a2:85:4f:ce:ad: f3:f1:f8:5e:7e:72:01:64:71:8a:69:9d:3c:76:64: c8:5d:14:01:59:32:f2:0f:4e:b6:5e:ef:b1:6c:48: 3f:b7:77:bc:dd:f6:a8:f8:c2:67:cf:e6:4f:4d:e8: be:57:98:0f:60:d1:c3:cc:cd:2f:c1:47:70:23:03: 54:61:a8:d0:54:a2:0b:13:d1:fe:8c:05:2e:e0:90: 8c:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:3D:29:8C:4A:48:7C:AF:74:44:68:40:94:5B:E8:6A:FA:13:6B:87 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/58c78734-91d9-4994-9461-7b6172f0caa6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 67.202.0.0/18 Signature Algorithm: sha256WithRSAEncryption a3:a0:4b:87:cc:84:f7:e7:c6:90:54:de:c1:97:f8:61:08:18: 2e:28:e8:ea:01:52:f6:9b:85:57:c9:bb:2c:14:fa:09:a9:65: 3b:8c:1c:2f:eb:cf:a6:01:b4:1b:72:cf:63:f2:19:9e:a3:da: 12:46:a0:77:bb:bb:60:88:33:50:7e:2c:db:cc:d2:1a:8f:09: 10:4f:6f:cc:ea:6a:0c:7b:ca:68:67:b8:e9:05:5b:ed:46:dc: 7b:f0:f5:18:74:8f:84:aa:bb:55:94:17:60:40:2c:53:75:8c: ec:de:34:ba:ca:02:2c:ff:46:80:d6:00:7d:2e:61:13:ef:76: 00:a0:d7:94:41:5a:5c:a4:01:96:59:ab:a1:af:58:dd:a5:71: 96:2e:70:54:4a:bf:47:4a:70:8e:25:02:5a:5b:76:91:00:36: 9c:08:01:fd:ef:9f:36:19:ba:47:38:69:64:67:92:36:78:27: 46:88:79:0a:f0:22:6b:16:ef:dc:76:8c:04:83:e1:cd:ce:7f: 3b:06:aa:88:6a:6a:f7:50:e7:94:e3:ba:8c:e5:3a:d6:7f:e8: 89:68:ad:2b:79:33:3b:aa:de:86:5f:84:51:de:f6:e4:4a:51: f0:29:41:25:08:49:ae:14:d5:7b:7e:04:a8:de:da:93:14:22: 67:6a:ae:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWQcd6Otmu5WWi92dDtgssdG8Di4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMTUxMjI0WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjdhOTQ2NTY1M2Q0NmQ0YTkxMjMyZTUwYjNjYjI3YTMx NjVmZTFjNmRmZjEzYTc3ZjM1ZTI1MWUwYzNiYTFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl8omqCPNhp370YFTp0OZRz1Jr7tKvdH+QB8cuZbJe3SqM A8lF9rV5MYuuUKdqU9nJehHY0yx3Ng6TnpU3LZ6YTqPS84SK1XBVbNK4ctU3kwB+ TRGqsAS4jc/9VGS2A7tUOIA5l6e0tC/g7yBHCW7skEoOLL9vx20oK8kK94pW/vau y7cA9x8Kn6YbZr4cjv/yKTrZKLs0DLE3kJ/MawmaF2N/E8PRxo2KqwqO52mihU/O rfPx+F5+cgFkcYppnTx2ZMhdFAFZMvIPTrZe77FsSD+3d7zd9qj4wmfP5k9N6L5X mA9g0cPMzS/BR3AjA1RhqNBUogsT0f6MBS7gkIybAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqD0pjEpIfK90RGhAlFvoavoTa4cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4Yzc4NzM0LTkxZDktNDk5NC05NDYxLTdiNjE3MmYwY2FhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZDygAwDQYJKoZIhvcNAQELBQADggEBAKOgS4fMhPfnxpBU3sGX+GEIGC4o 6OoBUvabhVfJuywU+gmpZTuMHC/rz6YBtBtyz2PyGZ6j2hJGoHe7u2CIM1B+LNvM 0hqPCRBPb8zqagx7ymhnuOkFW+1G3Hvw9Rh0j4Squ1WUF2BALFN1jOzeNLrKAiz/ RoDWAH0uYRPvdgCg15RBWlykAZZZq6GvWN2lcZYucFRKv0dKcI4lAlpbdpEANpwI Af3vnzYZukc4aWRnkjZ4J0aIeQrwImsW79x2jASD4c3OfzsGqohqavdQ55Tjuozl OtZ/6IlorSt5Mzuq3oZfhFHe9uRKUfApQSUISa4U1Xt+BKje2pMUImdqri0= -----END CERTIFICATE-----Generated at Sun Jun 1 05:26:45 2025 by rpki-client