$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acc7b570-fe00-44a4-ab2f-06f3e8044509.roa File: acc7b570-fe00-44a4-ab2f-06f3e8044509.roa (raw, json) Hash identifier: kLo/24yLIVyiuBcY+PVCQykbclGBqi4eM9PFUqOh5Jo= Subject key identifier: CD:B4:AA:6A:D6:B1:8D:F0:02:7A:93:77:51:ED:0F:40:90:E2:DD:0C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6679E6F88D24EED2D326DDE5184D6DB081AD79E3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acc7b570-fe00-44a4-ab2f-06f3e8044509.roa Signing time: Fri 30 May 2025 00:02:08 +0000 ROA not before: Fri 30 May 2025 00:02:08 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.248.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:79:e6:f8:8d:24:ee:d2:d3:26:dd:e5:18:4d:6d:b0:81:ad:79:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:02:08 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=8fe556d73444d6e25becf01ef755c212fcd61400ec44caed6df492121a1c62b6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:a6:d5:ee:bc:a2:69:24:b7:3d:11:34:f8:da: 16:3a:93:1a:a4:d0:f8:de:ec:2d:62:eb:71:28:ea: 5c:a7:bf:f0:71:f1:ee:49:3f:fd:a1:27:10:f2:0e: f0:8f:c2:45:48:bc:44:e4:97:cf:bc:74:75:85:e0: 4b:e1:7a:5b:0b:7e:d2:f8:98:0d:d8:11:b2:c1:00: c8:34:f1:b8:3a:c7:49:7b:b5:82:26:17:14:c4:28: a0:25:c9:69:87:c0:77:58:dc:f1:d9:5a:2d:f2:31: dc:a3:64:0c:51:12:2b:7a:ff:39:d8:92:f6:d5:73: 18:91:c2:52:04:bc:c5:fe:0f:77:73:e4:9e:94:44: 31:57:43:59:87:70:c6:0c:b5:63:ce:b4:b6:2d:3e: aa:39:3b:bf:82:b2:7e:80:f3:5e:d7:b2:fe:99:95: e8:a0:eb:e2:cc:32:70:16:a0:ad:10:ad:58:80:86: 8e:62:30:0d:10:d0:7f:8a:b2:3d:c9:0b:6d:36:37: 74:91:2a:0f:d4:65:32:08:9c:36:10:6a:61:ec:d2: b0:fc:1a:e5:be:cb:b5:76:d3:64:2b:90:22:4d:21: 9f:2a:70:a4:fc:81:c6:d8:11:b2:e5:87:4f:97:df: 28:c3:f3:ed:d7:57:d6:28:a3:7a:1f:19:eb:68:48: 9b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:B4:AA:6A:D6:B1:8D:F0:02:7A:93:77:51:ED:0F:40:90:E2:DD:0C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acc7b570-fe00-44a4-ab2f-06f3e8044509.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.248.128.0/18 Signature Algorithm: sha256WithRSAEncryption 33:6c:7a:47:cf:50:8c:e5:c3:bc:2e:fd:70:52:2c:9c:5a:78: d1:42:4a:85:2f:9f:8c:f1:7b:f1:dc:d8:41:ed:b2:0a:9e:a5: 23:af:4e:f7:75:e9:f9:1e:b5:73:45:33:ca:57:69:88:ce:c3: 24:29:15:f9:1c:65:3b:01:ca:af:2c:b0:31:a4:a3:d3:61:4d: 30:08:df:0c:03:10:2e:81:15:ba:65:05:2d:44:82:3f:6f:a1: 46:a0:b8:30:56:b5:0e:40:e2:b9:62:80:34:9d:83:87:68:40: 1d:3b:48:e8:0d:e7:27:b9:49:9b:01:ea:3d:92:9a:4e:c2:30: 26:16:66:ee:bd:b2:87:22:24:b1:38:d2:1f:aa:46:45:9c:9d: da:1f:76:ed:22:ff:91:6e:c6:cb:9c:80:85:ac:76:5e:c2:ef: 3d:a9:f2:a7:b1:13:46:0c:39:bc:d3:60:3e:0f:5e:a2:7b:ca: 12:00:b3:6b:a2:81:e6:f0:66:6d:fb:56:6a:c0:05:8e:a2:b1: 20:fa:27:2b:8d:07:a8:65:fd:5e:eb:6f:ef:e2:f5:52:3c:19: 70:f1:ab:fd:32:1e:22:a8:c8:e3:8f:9e:60:65:08:4e:d7:fe: af:f9:a2:f3:9f:46:e3:9e:7a:4a:51:e1:52:95:09:a2:f4:e4: ba:5a:c0:c7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZnnm+I0k7tLTJt3lGE1tsIGteeMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAwMjA4WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZmU1NTZkNzM0NDRkNmUyNWJlY2YwMWVmNzU1YzIxMmZj ZDYxNDAwZWM0NGNhZWQ2ZGY0OTIxMjFhMWM2MmI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXptXuvKJpJLc9ETT42hY6kxqk0Pje7C1i63Eo6lynv/Bx 8e5JP/2hJxDyDvCPwkVIvETkl8+8dHWF4EvhelsLftL4mA3YEbLBAMg08bg6x0l7 tYImFxTEKKAlyWmHwHdY3PHZWi3yMdyjZAxREit6/znYkvbVcxiRwlIEvMX+D3dz 5J6URDFXQ1mHcMYMtWPOtLYtPqo5O7+Csn6A817Xsv6Zleig6+LMMnAWoK0QrViA ho5iMA0Q0H+Ksj3JC202N3SRKg/UZTIInDYQamHs0rD8GuW+y7V202QrkCJNIZ8q cKT8gcbYEbLlh0+X3yjD8+3XV9Yoo3ofGetoSJsDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzbSqataxjfACepN3Ue0PQJDi3QwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjYzdiNTcwLWZlMDAtNDRhNC1hYjJmLTA2ZjNlODA0NDUwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbY+IAwDQYJKoZIhvcNAQELBQADggEBADNsekfPUIzlw7wu/XBSLJxaeNFC SoUvn4zxe/Hc2EHtsgqepSOvTvd16fketXNFM8pXaYjOwyQpFfkcZTsByq8ssDGk o9NhTTAI3wwDEC6BFbplBS1Egj9voUaguDBWtQ5A4rligDSdg4doQB07SOgN5ye5 SZsB6j2Smk7CMCYWZu69sociJLE40h+qRkWcndofdu0i/5FuxsucgIWsdl7C7z2p 8qexE0YMObzTYD4PXqJ7yhIAs2uigebwZm37VmrABY6isSD6JyuNB6hl/V7rb+/i 9VI8GXDxq/0yHiKoyOOPnmBlCE7X/q/5ovOfRuOeekpR4VKVCaL05LpawMc= -----END CERTIFICATE-----Generated at Sun Jun 1 05:20:20 2025 by rpki-client