$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ca0e5c9-3e44-405a-a5b0-f596fcb84b9d.roa File: 5ca0e5c9-3e44-405a-a5b0-f596fcb84b9d.roa (raw, json) Hash identifier: 1xzxbTrq/J8PUebIZLzDGoWp2z6TfkkLbG0yc0Nxdto= Subject key identifier: F2:FE:07:8D:CA:1A:8F:6B:CF:18:81:8A:DD:0F:7E:CB:6E:21:44:97 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 19F4A22B017A09382A7869CB3381CD6E7DAC12CF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ca0e5c9-3e44-405a-a5b0-f596fcb84b9d.roa Signing time: Tue 13 May 2025 00:31:03 +0000 ROA not before: Tue 13 May 2025 00:31:03 +0000 ROA not after: Tue 17 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.135.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:f4:a2:2b:01:7a:09:38:2a:78:69:cb:33:81:cd:6e:7d:ac:12:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 13 00:31:03 2025 GMT Not After : Jun 17 23:59:59 2025 GMT Subject: serialNumber=af7cc6e9371614496b9c7a9f2053e0aba74ed19842a8eb77c7a7ac34a1a3ae18, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:49:84:5a:39:ce:63:cf:8c:b4:88:7c:4a:2d: 77:db:9e:be:24:26:10:5c:9e:87:4c:b4:b1:16:8f: a9:07:22:11:48:5e:e6:b5:28:c6:f1:9b:ea:62:a3: 02:56:7a:18:6a:b4:8f:89:24:be:40:ad:77:b0:30: 81:df:b2:ef:c7:6d:7c:40:4e:50:ce:90:dc:c8:8f: 59:cf:1d:4d:cb:15:6e:ee:b9:c4:33:ab:9b:ce:08: a5:08:de:3a:42:fc:d1:a5:95:1a:b6:c4:85:85:40: 01:86:ee:55:6d:16:6b:63:42:f5:b3:3d:27:76:4a: 77:34:f8:9c:3d:69:5e:5a:25:63:fc:ec:41:23:d2: 0d:32:13:6b:08:a3:11:ea:48:87:63:ee:62:bf:2f: f8:12:99:1d:e6:31:b3:fd:93:8f:a8:81:bb:e9:c1: 45:9a:38:8a:8d:c4:81:48:1f:e7:c8:72:80:39:96: ed:f7:7f:5d:c1:a5:28:00:df:df:1e:7f:5e:3f:c5: 44:0b:82:2f:a9:af:8e:84:68:0c:c7:f9:d6:cd:29: 83:13:44:88:b5:7d:2d:c0:73:9d:99:bc:be:0f:c7: ba:fb:f0:03:ca:12:8c:a9:2f:7c:16:8f:3f:79:26: 8c:c6:66:b9:c9:c1:22:a8:f6:1a:37:64:bf:73:38: 40:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:FE:07:8D:CA:1A:8F:6B:CF:18:81:8A:DD:0F:7E:CB:6E:21:44:97 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ca0e5c9-3e44-405a-a5b0-f596fcb84b9d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.135.128.0/17 Signature Algorithm: sha256WithRSAEncryption 4d:b2:82:ba:43:45:a0:98:e7:43:24:d6:2a:b9:a8:28:c4:d1: 29:e6:ef:6c:10:d2:ca:5b:e9:c8:0c:6f:b0:16:d7:eb:ce:0c: 17:dc:5a:9f:13:59:25:bd:d1:cf:c2:6c:c9:a5:9f:a1:63:02: 71:c4:0b:29:30:fb:6f:c7:8d:3a:2c:57:ae:af:40:c3:da:ed: f5:20:dc:44:1a:b3:5f:68:b5:30:e3:72:19:db:89:39:e1:c2: 30:d0:da:fc:4e:84:2b:5c:7a:ad:2e:d2:80:45:26:57:96:b4: 92:44:93:6a:d1:50:9c:2e:90:8e:5a:6e:dd:a2:d8:0c:3d:93: 49:38:da:f9:27:5c:35:b1:a4:c5:7a:ce:a1:f5:7c:61:78:c1: af:40:2f:2f:b9:cc:8f:38:d7:9c:db:9a:43:b3:39:80:a1:ee: c9:0c:5b:8c:05:98:ac:3e:1d:47:5d:f9:0e:b4:bf:03:dd:72: 08:3c:c2:c8:0a:e4:7e:b0:df:2d:86:19:e9:d9:7e:4e:39:f0: 51:8a:fc:d4:30:34:7d:0c:ef:1d:cf:7a:99:44:e3:b7:4b:f9: 30:61:bd:ca:74:68:af:b8:71:5d:78:36:5e:09:96:87:80:1b: 15:8c:3c:ee:c4:3f:bd:db:d0:65:1c:04:67:b4:da:90:75:9e: bc:e6:a6:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGfSiKwF6CTgqeGnLM4HNbn2sEs8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEzMDAzMTAzWhcNMjUwNjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZjdjYzZlOTM3MTYxNDQ5NmI5YzdhOWYyMDUzZTBhYmE3 NGVkMTk4NDJhOGViNzdjN2E3YWMzNGExYTNhZTE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMSYRaOc5jz4y0iHxKLXfbnr4kJhBcnodMtLEWj6kHIhFI Xua1KMbxm+piowJWehhqtI+JJL5ArXewMIHfsu/HbXxATlDOkNzIj1nPHU3LFW7u ucQzq5vOCKUI3jpC/NGllRq2xIWFQAGG7lVtFmtjQvWzPSd2Snc0+Jw9aV5aJWP8 7EEj0g0yE2sIoxHqSIdj7mK/L/gSmR3mMbP9k4+ogbvpwUWaOIqNxIFIH+fIcoA5 lu33f13BpSgA398ef14/xUQLgi+pr46EaAzH+dbNKYMTRIi1fS3Ac52ZvL4Px7r7 8APKEoypL3wWjz95JozGZrnJwSKo9ho3ZL9zOEB/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8v4Hjcoaj2vPGIGK3Q9+y24hRJcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVjYTBlNWM5LTNlNDQtNDA1YS1hNWIwLWY1OTZmY2I4NGI5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfYh4AwDQYJKoZIhvcNAQELBQADggEBAE2ygrpDRaCY50Mk1iq5qCjE0Snm 72wQ0spb6cgMb7AW1+vODBfcWp8TWSW90c/CbMmln6FjAnHECykw+2/HjTosV66v QMPa7fUg3EQas19otTDjchnbiTnhwjDQ2vxOhCtceq0u0oBFJleWtJJEk2rRUJwu kI5abt2i2Aw9k0k42vknXDWxpMV6zqH1fGF4wa9ALy+5zI8415zbmkOzOYCh7skM W4wFmKw+HUdd+Q60vwPdcgg8wsgK5H6w3y2GGenZfk458FGK/NQwNH0M7x3PeplE 47dL+TBhvcp0aK+4cV14Nl4JloeAGxWMPO7EP73b0GUcBGe02pB1nrzmptw= -----END CERTIFICATE-----Generated at Sun Jun 1 04:35:28 2025 by rpki-client