$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e20c718-da11-4efd-a5cd-defbd09e43a7.roa File: 8e20c718-da11-4efd-a5cd-defbd09e43a7.roa (raw, json) Hash identifier: io5eHYI4MpG76sqBrJM1oDwr/6Jw1xq4cvMF0qV/2LA= Subject key identifier: 1F:18:FE:BE:C3:18:B5:8E:9A:65:21:FE:E4:82:9E:09:B5:D1:D5:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D5B268796F18DBDEB8BCA5AFA2C8A002A739AD5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e20c718-da11-4efd-a5cd-defbd09e43a7.roa Signing time: Tue 20 May 2025 00:10:56 +0000 ROA not before: Tue 20 May 2025 00:10:56 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:5b:26:87:96:f1:8d:bd:eb:8b:ca:5a:fa:2c:8a:00:2a:73:9a:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:10:56 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=4cc1f51439ff7e0158c8c2f7aef2793183a4cfa121366b27315f902a90b2f750, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:67:bc:e3:4e:1b:b1:04:e8:15:88:5b:04:99: bb:28:47:0c:96:13:49:dd:95:95:df:f5:36:bc:cb: e1:1a:e3:85:30:1f:14:22:50:2b:c5:8a:33:ae:23: aa:06:a0:4e:c4:35:71:04:ee:f3:83:5b:34:e9:1c: b9:58:53:30:4c:6c:b9:aa:63:44:e2:3f:3b:4f:b8: aa:d1:4e:bd:d2:d7:b7:3b:e1:f0:d7:6c:1f:5c:5a: 2f:f0:44:96:2a:3d:e1:8b:ff:34:4c:2d:66:85:66: 84:66:bb:3a:02:dd:29:f1:86:e1:f3:b1:44:86:59: a1:d6:ab:0e:79:49:e4:f6:94:16:c2:02:1e:53:6d: 8b:44:cd:21:fc:0c:6b:bc:f1:93:8f:36:f2:d9:56: 6b:59:27:82:a9:43:3d:1a:73:8a:f2:04:99:c3:52: 66:98:5f:1f:a4:a8:36:a6:3d:a6:89:ac:a5:e4:95: 06:15:5e:9f:9a:ab:e1:04:50:8c:97:94:d5:9c:dd: 7e:5f:b3:29:23:1a:d7:1e:1b:bc:77:e9:8d:ef:9e: 84:46:79:b6:79:d0:cd:82:5c:0d:d5:6f:d0:29:db: e2:88:df:7b:cc:b5:95:d7:52:95:be:21:57:43:ea: df:55:32:27:3b:7f:a4:d5:2d:08:b3:c2:46:90:df: df:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:18:FE:BE:C3:18:B5:8E:9A:65:21:FE:E4:82:9E:09:B5:D1:D5:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e20c718-da11-4efd-a5cd-defbd09e43a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.81.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:9d:57:9f:8e:f8:e1:65:47:2e:d1:d0:68:be:7e:8f:a4:ef: 6c:3f:92:99:6b:fc:60:a0:80:c5:de:77:58:a3:88:b2:d4:48: ab:1a:fa:70:ee:d7:2f:fe:4e:4b:55:8d:30:f0:3c:a4:c1:0e: e3:71:18:aa:98:8b:70:f5:39:cf:55:83:3b:94:50:48:14:a3: 4d:7b:65:14:c7:4e:e0:c1:d4:e0:8a:b6:0f:b4:d4:1f:98:6c: 82:75:f8:a0:f8:eb:63:f9:69:13:07:56:da:22:c9:f0:e2:9b: c0:8f:eb:da:d3:55:74:a5:ee:b8:77:e3:46:3d:78:37:67:47: da:f4:24:dd:52:75:e7:76:2f:5c:a3:ca:10:66:d2:91:53:ec: d3:86:21:f2:4f:85:1f:2b:28:9a:31:dc:66:65:53:95:64:4b: 50:05:2a:b2:b2:b9:11:55:2b:72:57:ca:a3:af:25:f4:b5:70: 95:e8:f0:77:94:23:6b:90:7c:33:46:29:40:e3:b3:12:67:5c: 8f:30:e2:87:61:2e:2d:ae:6e:37:73:56:e1:71:2e:c0:c4:54: bf:a2:e7:7b:d1:0b:88:6f:11:11:2b:03:ff:7f:92:59:9f:21: 54:a5:4d:c7:62:10:37:cf:02:e2:a8:9b:be:fa:11:69:3c:bc: 91:f7:52:0d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHVsmh5bxjb3ri8pa+iyKACpzmtUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAxMDU2WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0Y2MxZjUxNDM5ZmY3ZTAxNThjOGMyZjdhZWYyNzkzMTgz YTRjZmExMjEzNjZiMjczMTVmOTAyYTkwYjJmNzUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQZ7zjThuxBOgViFsEmbsoRwyWE0ndlZXf9Ta8y+Ea44Uw HxQiUCvFijOuI6oGoE7ENXEE7vODWzTpHLlYUzBMbLmqY0TiPztPuKrRTr3S17c7 4fDXbB9cWi/wRJYqPeGL/zRMLWaFZoRmuzoC3SnxhuHzsUSGWaHWqw55SeT2lBbC Ah5TbYtEzSH8DGu88ZOPNvLZVmtZJ4KpQz0ac4ryBJnDUmaYXx+kqDamPaaJrKXk lQYVXp+aq+EEUIyXlNWc3X5fsykjGtceG7x36Y3vnoRGebZ50M2CXA3Vb9Ap2+KI 33vMtZXXUpW+IVdD6t9VMic7f6TVLQizwkaQ398zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHxj+vsMYtY6aZSH+5IKeCbXR1bEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlMjBjNzE4LWRhMTEtNGVmZC1hNWNkLWRlZmJkMDllNDNhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAABslEwDQYJKoZIhvcNAQELBQADggEBAFqdV5+O+OFlRy7R0Gi+fo+k72w/ kplr/GCggMXed1ijiLLUSKsa+nDu1y/+TktVjTDwPKTBDuNxGKqYi3D1Oc9VgzuU UEgUo017ZRTHTuDB1OCKtg+01B+YbIJ1+KD462P5aRMHVtoiyfDim8CP69rTVXSl 7rh340Y9eDdnR9r0JN1Sded2L1yjyhBm0pFT7NOGIfJPhR8rKJox3GZlU5VkS1AF KrKyuRFVK3JXyqOvJfS1cJXo8HeUI2uQfDNGKUDjsxJnXI8w4odhLi2ubjdzVuFx LsDEVL+i53vRC4hvERErA/9/klmfIVSlTcdiEDfPAuKom776EWk8vJH3Ug0= -----END CERTIFICATE-----Generated at Sun Jun 1 04:32:04 2025 by rpki-client