$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3455e8e-f699-45e7-a79a-1ce3d0e57b79.roa File: b3455e8e-f699-45e7-a79a-1ce3d0e57b79.roa (raw, json) Hash identifier: /t7/5MGG7YqcFbsug0acYutLvsfyiVMePp92nLGvMos= Subject key identifier: FF:54:E6:C5:48:4F:58:4F:3E:BE:85:39:1C:69:E0:68:68:40:F3:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B67E2098E812CFD19895C3CFB85D52F9A3A6DC4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3455e8e-f699-45e7-a79a-1ce3d0e57b79.roa Signing time: Tue 20 May 2025 00:11:44 +0000 ROA not before: Tue 20 May 2025 00:11:44 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 208.110.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:67:e2:09:8e:81:2c:fd:19:89:5c:3c:fb:85:d5:2f:9a:3a:6d:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:11:44 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=23e344f594b00f4fa219a086cbb67029c4862dbfe7520910a203205e9dd23936, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:bd:e6:b1:7d:f6:d2:33:2c:78:a3:06:24:94: 3a:33:95:12:47:b0:c5:90:1a:62:a5:99:a5:01:ac: 7b:bf:06:9f:5b:77:66:75:cc:4f:a7:7e:b5:0e:2c: 59:fc:dd:2d:07:b7:c9:a7:f7:6d:99:b7:59:5c:b4: ff:9a:39:60:41:fd:f6:82:f1:a5:b4:75:b3:3c:0a: 7a:f6:22:a0:90:62:46:60:b3:22:2f:c3:57:c9:27: ba:b3:50:e5:62:cf:0d:85:cd:19:60:2f:20:2e:83: 3e:6b:b5:ff:66:2a:7a:9f:73:a3:e8:6a:49:e8:3c: 46:18:99:70:f1:5d:b3:cf:3a:53:59:ac:e0:6f:0c: e4:3a:f5:a8:82:75:a1:04:0b:e8:80:3e:fe:5d:08: f8:7d:27:64:ac:fd:67:8e:74:4e:66:71:b7:36:0c: b3:25:42:8e:6d:2f:39:01:4b:fd:1a:bd:00:ec:f5: db:ad:ea:1a:d6:bd:3c:6b:c9:5f:ee:d6:43:68:1c: 89:6f:ec:f8:cd:97:66:3f:b4:7d:2a:77:6b:b8:ea: 22:34:2a:25:9e:59:bd:69:76:62:bf:e7:c9:eb:a5: 3c:07:d7:43:61:19:1e:43:18:1a:55:88:aa:2c:e3: 65:b5:ae:58:35:a9:80:7c:3c:cf:63:8e:07:5a:48: 1f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:54:E6:C5:48:4F:58:4F:3E:BE:85:39:1C:69:E0:68:68:40:F3:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3455e8e-f699-45e7-a79a-1ce3d0e57b79.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 208.110.48.0/20 Signature Algorithm: sha256WithRSAEncryption 70:6d:f5:4c:fa:55:08:8c:51:eb:e7:b9:5b:34:27:81:43:9c: 01:30:c1:9f:50:7e:e8:8a:e9:7c:93:0d:0c:ae:87:4c:70:20: 89:70:c9:d3:23:dd:50:e5:66:d7:5b:f8:0f:5c:1a:76:f6:1f: d2:ce:b6:43:da:c8:e0:2f:d5:82:7d:e7:af:f9:66:2c:8b:27: 21:21:6d:6c:37:9b:2d:e6:b9:28:99:84:6a:8c:0b:a0:37:b8: 81:09:b5:6f:65:b4:a8:cb:3a:42:a3:31:6b:ef:6f:3f:95:d9: 05:5b:d8:0b:8b:39:ee:cf:44:4e:a9:25:6c:72:05:e0:ed:56: a8:6e:85:c7:c8:93:92:97:07:79:f5:17:b8:6c:bf:ce:82:ce: fc:59:8e:38:76:b5:ca:d3:33:90:09:b0:72:a6:7c:e5:48:17: d8:b1:a2:f3:b4:d8:c3:ea:ee:9b:db:9b:6e:e4:2b:cc:4e:fa: 3e:0a:1f:b9:4c:4a:51:45:32:32:b6:f5:81:f0:15:6c:5e:9d: 1d:a1:a4:92:e1:e6:51:70:be:85:03:f9:f2:c0:8d:df:2b:62: 8a:64:ca:8e:24:be:6f:db:0e:6f:fb:91:4f:bc:65:b7:4c:80: a9:ab:d3:d2:ee:62:0c:2c:d0:5e:8a:c8:f8:12:30:32:92:bb: 84:8c:98:d2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe2fiCY6BLP0ZiVw8+4XVL5o6bcQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAxMTQ0WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyM2UzNDRmNTk0YjAwZjRmYTIxOWEwODZjYmI2NzAyOWM0 ODYyZGJmZTc1MjA5MTBhMjAzMjA1ZTlkZDIzOTM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjveaxffbSMyx4owYklDozlRJHsMWQGmKlmaUBrHu/Bp9b d2Z1zE+nfrUOLFn83S0Ht8mn922Zt1lctP+aOWBB/faC8aW0dbM8Cnr2IqCQYkZg syIvw1fJJ7qzUOVizw2FzRlgLyAugz5rtf9mKnqfc6PoaknoPEYYmXDxXbPPOlNZ rOBvDOQ69aiCdaEEC+iAPv5dCPh9J2Ss/WeOdE5mcbc2DLMlQo5tLzkBS/0avQDs 9dut6hrWvTxryV/u1kNoHIlv7PjNl2Y/tH0qd2u46iI0KiWeWb1pdmK/58nrpTwH 10NhGR5DGBpViKos42W1rlg1qYB8PM9jjgdaSB8FAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/1TmxUhPWE8+voU5HGngaGhA8wMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzNDU1ZThlLWY2OTktNDVlNy1hNzlhLTFjZTNkMGU1N2I3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATQbjAwDQYJKoZIhvcNAQELBQADggEBAHBt9Uz6VQiMUevnuVs0J4FDnAEw wZ9QfuiK6XyTDQyuh0xwIIlwydMj3VDlZtdb+A9cGnb2H9LOtkPayOAv1YJ956/5 ZiyLJyEhbWw3my3muSiZhGqMC6A3uIEJtW9ltKjLOkKjMWvvbz+V2QVb2AuLOe7P RE6pJWxyBeDtVqhuhcfIk5KXB3n1F7hsv86CzvxZjjh2tcrTM5AJsHKmfOVIF9ix ovO02MPq7pvbm27kK8xO+j4KH7lMSlFFMjK29YHwFWxenR2hpJLh5lFwvoUD+fLA jd8rYopkyo4kvm/bDm/7kU+8ZbdMgKmr09LuYgws0F6KyPgSMDKSu4SMmNI= -----END CERTIFICATE-----Generated at Sun Jun 1 04:22:33 2025 by rpki-client