$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/639097d5-f9bb-4b92-adec-86468a0d59da.roa File: 639097d5-f9bb-4b92-adec-86468a0d59da.roa (raw, json) Hash identifier: 7Nz+0aqsrXopeYDY+pt0ZZulHDpU+B0U0p1PEAsKnSc= Subject key identifier: F8:AD:16:21:CA:4C:80:4F:2C:D5:16:9C:AD:0D:A2:A2:04:A5:93:C2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67AB8EBA2401ADAD686D74452BB22960A10CFC83 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/639097d5-f9bb-4b92-adec-86468a0d59da.roa Signing time: Tue 20 May 2025 00:10:50 +0000 ROA not before: Tue 20 May 2025 00:10:50 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 10 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:ab:8e:ba:24:01:ad:ad:68:6d:74:45:2b:b2:29:60:a1:0c:fc:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:10:50 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=174cf7b2e18102b8c5996da62782818b6b49cb30b57deb797c8aa7ec835685ae, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f8:ab:ec:f1:a7:58:ca:ba:be:3c:16:e6:94: 3c:f3:1f:79:2f:be:4d:e7:d8:10:06:0d:e3:35:0f: af:00:ce:80:8b:43:f0:44:cf:93:e5:6e:c6:c2:c9: 7d:b8:f3:bd:7a:2e:87:c0:d0:d0:eb:63:3c:3b:4f: 67:66:7b:23:21:0e:10:31:8b:fa:c7:15:8a:c7:ab: 46:b7:ce:5e:b8:3a:c4:2a:53:1f:13:35:d2:4d:f9: 27:67:30:fe:19:9f:cb:45:14:a7:3c:a7:4e:46:93: e5:82:92:3d:c1:1f:5d:07:0f:be:82:50:c9:f5:46: 2a:39:c0:ce:45:78:8c:b6:a5:c5:53:6b:18:c5:a0: 70:4e:fa:0e:37:e3:69:fb:1e:f9:b9:98:52:bd:1b: 82:2d:90:56:f3:ca:27:d4:63:7a:45:8a:27:94:f3: 26:0c:a0:b7:1a:40:b7:d4:bc:ac:95:fd:f7:f2:b8: ab:e4:70:48:39:cf:cf:b0:9e:bb:ea:f9:21:a8:4a: f3:81:33:fe:78:1a:fb:b4:ae:72:96:24:a4:a7:80: 05:71:f1:5b:76:35:f5:b2:7c:ea:2c:de:a6:4c:5a: d7:47:7a:dc:01:93:fe:12:7b:81:c6:91:e0:01:5c: 45:9a:0a:bf:08:47:9a:0e:55:91:72:37:e4:8e:a1: b5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:AD:16:21:CA:4C:80:4F:2C:D5:16:9C:AD:0D:A2:A2:04:A5:93:C2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/639097d5-f9bb-4b92-adec-86468a0d59da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.0.0/24 Signature Algorithm: sha256WithRSAEncryption 96:d8:47:c8:bd:5c:ec:30:0d:31:e5:ae:65:44:b4:ad:42:15: 07:24:5b:a4:d6:f7:0b:8d:99:18:ae:47:35:f1:c8:aa:8b:bb: 0a:c8:d8:70:1c:d6:f9:14:63:df:b5:c5:14:99:91:07:e7:57: eb:39:83:c6:f4:4b:2d:a7:5f:14:e5:7c:93:88:1e:b4:bc:cb: 3b:f4:24:78:50:05:4e:92:c3:46:35:4d:93:9c:04:fe:f7:78: 41:e3:09:15:36:25:48:e4:eb:67:af:72:03:41:a6:da:94:fd: 0e:46:d7:b6:b2:4f:4c:af:a0:6e:b3:5f:6a:25:f9:02:1a:52: 5e:4b:a7:b9:9c:8a:81:c9:0b:07:47:d5:b7:eb:22:8a:0d:27: 71:2c:0b:e8:d9:9f:ef:35:3a:b3:db:9e:1e:28:60:36:29:9f: 40:69:e3:48:4a:cf:99:19:1c:4c:2c:4f:e0:3f:38:5f:22:36: a7:91:e9:f3:4c:72:42:3d:b4:c7:7a:c6:fc:d9:6b:e4:ed:5f: 57:a6:f0:57:d6:3b:cf:f6:e8:18:bd:28:de:ab:85:9c:f5:3e: 02:54:63:54:57:54:e7:66:7c:96:3d:ee:88:32:e1:4b:e4:45: 73:63:bd:ba:67:7d:77:96:e9:d6:eb:51:74:60:15:76:e8:ef: 0f:06:e2:b6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ6uOuiQBra1obXRFK7IpYKEM/IMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAxMDUwWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzRjZjdiMmUxODEwMmI4YzU5OTZkYTYyNzgyODE4YjZi NDljYjMwYjU3ZGViNzk3YzhhYTdlYzgzNTY4NWFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDi+Kvs8adYyrq+PBbmlDzzH3kvvk3n2BAGDeM1D68AzoCL Q/BEz5PlbsbCyX248716LofA0NDrYzw7T2dmeyMhDhAxi/rHFYrHq0a3zl64OsQq Ux8TNdJN+SdnMP4Zn8tFFKc8p05Gk+WCkj3BH10HD76CUMn1Rio5wM5FeIy2pcVT axjFoHBO+g4342n7Hvm5mFK9G4ItkFbzyifUY3pFiieU8yYMoLcaQLfUvKyV/ffy uKvkcEg5z8+wnrvq+SGoSvOBM/54Gvu0rnKWJKSngAVx8Vt2NfWyfOos3qZMWtdH etwBk/4Se4HGkeABXEWaCr8IR5oOVZFyN+SOobWdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+K0WIcpMgE8s1RacrQ2iogSlk8IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYzOTA5N2Q1LWY5YmItNGI5Mi1hZGVjLTg2NDY4YTBkNTlkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABsgAwDQYJKoZIhvcNAQELBQADggEBAJbYR8i9XOwwDTHlrmVEtK1CFQck W6TW9wuNmRiuRzXxyKqLuwrI2HAc1vkUY9+1xRSZkQfnV+s5g8b0Sy2nXxTlfJOI HrS8yzv0JHhQBU6Sw0Y1TZOcBP73eEHjCRU2JUjk62evcgNBptqU/Q5G17ayT0yv oG6zX2ol+QIaUl5Lp7mcioHJCwdH1bfrIooNJ3EsC+jZn+81OrPbnh4oYDYpn0Bp 40hKz5kZHEwsT+A/OF8iNqeR6fNMckI9tMd6xvzZa+TtX1em8FfWO8/26Bi9KN6r hZz1PgJUY1RXVOdmfJY97ogy4UvkRXNjvbpnfXeW6dbrUXRgFXbo7w8G4rY= -----END CERTIFICATE-----Generated at Sun Jun 8 19:24:02 2025 by rpki-client