$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b30f0045-88bf-4cab-804d-bca257af8bb6.roa File: b30f0045-88bf-4cab-804d-bca257af8bb6.roa (raw, json) Hash identifier: yuqEA0wkxjSU9kQs4giG6NRV6DiZ2mGLFl+4dMri6tQ= Subject key identifier: 33:75:E0:4D:A4:DC:0E:1A:4D:58:58:EA:54:AD:22:D1:1C:77:5F:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 76C7C7B6DCBEFCC2C77064ADE981F8929777B735 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b30f0045-88bf-4cab-804d-bca257af8bb6.roa Signing time: Sat 24 May 2025 00:00:17 +0000 ROA not before: Sat 24 May 2025 00:00:17 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 207.207.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:c7:c7:b6:dc:be:fc:c2:c7:70:64:ad:e9:81:f8:92:97:77:b7:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 24 00:00:17 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=01a3fb0547c1fe0e3a05e8c8018e44424b7cc5ac695c3110d93fd41d93f29814, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:5e:eb:54:b0:22:6b:b0:53:f3:4c:45:ff:70: 54:06:55:05:64:4f:38:c5:e0:84:bc:4c:7f:a1:43: 5c:fd:20:f2:9b:b6:0b:ba:18:9f:85:9d:93:6b:8b: fd:e1:07:6d:86:88:67:aa:a5:2e:6d:7e:52:bd:c2: 65:8e:01:9d:39:73:80:a5:25:7f:31:56:35:de:10: 26:9e:6e:78:bb:ab:90:c7:a7:df:25:22:43:bf:27: 4f:cf:db:61:e6:9c:d6:93:17:fa:a7:0b:8a:93:17: 7c:4a:cd:83:2b:b8:67:37:94:0e:75:92:17:aa:ea: ae:e8:bc:5a:8f:f7:47:ca:f2:e8:78:66:58:ea:fb: 2c:0f:30:3a:c3:37:4b:97:74:28:dc:3e:de:71:c0: 47:79:c8:f9:a0:87:4d:27:ac:54:15:48:20:38:73: 38:82:78:1b:c6:6f:cd:52:29:01:cc:8a:c6:b1:f1: 69:5a:7d:0f:28:e0:3f:4a:f9:6c:2c:28:ad:7a:b3: c4:6e:83:f6:b6:02:56:8b:4e:a5:e5:e1:6f:4f:ac: 0c:ae:04:67:e5:22:c7:70:a7:59:cb:de:05:22:97: 5a:4a:94:51:52:52:ce:e5:a7:c6:a5:b3:97:5e:ca: 6d:ae:a3:1f:e2:dc:b7:fc:27:a0:86:02:66:44:bf: ce:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:75:E0:4D:A4:DC:0E:1A:4D:58:58:EA:54:AD:22:D1:1C:77:5F:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b30f0045-88bf-4cab-804d-bca257af8bb6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.207.64.0/19 Signature Algorithm: sha256WithRSAEncryption 5d:a5:91:bd:53:13:24:6f:65:0f:11:5a:72:ef:cd:f5:61:46: b4:9e:eb:2d:f8:b8:e5:fc:79:7c:99:81:cd:57:c1:44:e4:6d: 2b:ab:52:12:90:dd:62:8c:a0:c1:d3:b4:ab:48:ab:e2:93:93: cb:8a:42:34:33:8c:ad:57:a8:f3:80:52:7b:53:85:cc:c4:47: b7:82:c8:fa:6c:76:07:f9:91:db:1f:af:76:39:cf:98:2d:be: e1:05:41:5a:f2:b0:17:4d:bc:58:32:9f:1d:c5:a3:25:54:75: 84:55:4b:19:29:6d:19:0e:b6:a4:63:44:b2:cf:66:48:c5:04: c1:bf:a2:c6:d2:36:15:eb:a3:b2:e3:5b:72:c8:b9:dc:90:93: 36:90:58:5c:04:64:09:be:e1:96:44:b0:ed:d2:56:8b:b4:3d: 3f:e1:9e:6e:8a:2d:22:65:e9:e9:91:8e:2d:c1:0d:62:2a:4f: 03:b2:5b:8c:b8:1c:ba:a4:7a:fe:e9:cb:8d:97:82:08:55:82: 39:25:19:63:2f:57:e8:72:b4:c6:76:40:0f:5c:7a:45:95:7f: 18:a9:90:ec:6a:90:32:39:cb:ab:10:56:23:ff:ac:64:28:da: 6e:f6:5f:23:f0:2f:dc:82:77:06:28:8b:1c:f3:89:2c:0f:7e: a9:d5:5c:67 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdsfHtty+/MLHcGSt6YH4kpd3tzUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI0MDAwMDE3WhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMWEzZmIwNTQ3YzFmZTBlM2EwNWU4YzgwMThlNDQ0MjRi N2NjNWFjNjk1YzMxMTBkOTNmZDQxZDkzZjI5ODE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxXutUsCJrsFPzTEX/cFQGVQVkTzjF4IS8TH+hQ1z9IPKb tgu6GJ+FnZNri/3hB22GiGeqpS5tflK9wmWOAZ05c4ClJX8xVjXeECaebni7q5DH p98lIkO/J0/P22HmnNaTF/qnC4qTF3xKzYMruGc3lA51kheq6q7ovFqP90fK8uh4 Zljq+ywPMDrDN0uXdCjcPt5xwEd5yPmgh00nrFQVSCA4cziCeBvGb81SKQHMisax 8WlafQ8o4D9K+WwsKK16s8Rug/a2AlaLTqXl4W9PrAyuBGflIsdwp1nL3gUil1pK lFFSUs7lp8als5deym2uox/i3Lf8J6CGAmZEv873AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUM3XgTaTcDhpNWFjqVK0i0Rx3X+MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzMGYwMDQ1LTg4YmYtNGNhYi04MDRkLWJjYTI1N2FmOGJiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXPz0AwDQYJKoZIhvcNAQELBQADggEBAF2lkb1TEyRvZQ8RWnLvzfVhRrSe 6y34uOX8eXyZgc1XwUTkbSurUhKQ3WKMoMHTtKtIq+KTk8uKQjQzjK1XqPOAUntT hczER7eCyPpsdgf5kdsfr3Y5z5gtvuEFQVrysBdNvFgynx3FoyVUdYRVSxkpbRkO tqRjRLLPZkjFBMG/osbSNhXro7LjW3LIudyQkzaQWFwEZAm+4ZZEsO3SVou0PT/h nm6KLSJl6emRji3BDWIqTwOyW4y4HLqkev7py42XgghVgjklGWMvV+hytMZ2QA9c ekWVfxipkOxqkDI5y6sQViP/rGQo2m72XyPwL9yCdwYoixzziSwPfqnVXGc= -----END CERTIFICATE-----Generated at Sun Jun 1 05:05:11 2025 by rpki-client