$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc318b70-5b88-4bf7-8b6c-9a26cee65109.roa File: bc318b70-5b88-4bf7-8b6c-9a26cee65109.roa (raw, json) Hash identifier: geMFYqGUlG1C/ty2YpHQR7a3XGJbxVmsJz7Zs8sTA9s= Subject key identifier: E9:40:24:D4:86:42:CB:E5:0D:09:93:93:D8:70:94:93:FA:42:C2:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 747A0782D8B9ABCB91CB587E14FE525D42BB724B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc318b70-5b88-4bf7-8b6c-9a26cee65109.roa Signing time: Sat 24 May 2025 00:20:13 +0000 ROA not before: Sat 24 May 2025 00:20:13 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 72.44.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:7a:07:82:d8:b9:ab:cb:91:cb:58:7e:14:fe:52:5d:42:bb:72:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 24 00:20:13 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=f39de5e28d517a6fb9555b50a6630799b041366610e3a263043258254cd0c8a0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a8:48:9e:fb:0d:71:e8:8c:ea:27:a0:c7:b8: 0d:91:41:9f:c2:42:26:25:c2:d7:48:69:2d:4d:b3: 82:dd:75:cb:36:c6:66:b2:95:2c:d0:71:8a:e3:cb: e6:e6:62:ce:43:91:65:37:35:a9:29:19:9e:61:14: 23:af:c4:80:b6:1d:65:9c:bd:a1:8a:e5:c2:b7:af: 27:01:63:46:59:09:33:1c:56:be:12:3f:0d:58:dd: ae:27:68:6c:10:89:94:ad:94:40:f3:c1:65:c0:0d: a5:06:82:b3:2a:25:b3:68:a8:de:87:d9:41:f8:96: ae:48:d9:2e:fe:5b:08:46:71:e0:3c:bb:7d:0e:31: 4a:36:b0:14:cc:3b:b0:2e:96:64:72:0a:c9:aa:50: 62:47:5b:78:5e:f4:da:50:59:00:cb:f4:79:65:9c: c1:39:c6:1e:b2:e9:23:49:44:dd:33:88:3c:64:fa: 76:e7:c5:14:7e:1e:65:b8:9a:e9:3c:94:44:14:cd: 52:37:42:48:69:20:7e:8f:8a:ef:72:07:30:7f:38: c2:80:44:85:6d:77:06:ae:53:6f:a1:2d:97:56:c8: 8f:e1:b5:79:78:18:cb:da:3a:dd:48:81:a5:5f:78: 2c:06:c6:39:bd:b5:3d:17:36:4e:4d:5b:ae:38:1d: 79:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:40:24:D4:86:42:CB:E5:0D:09:93:93:D8:70:94:93:FA:42:C2:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc318b70-5b88-4bf7-8b6c-9a26cee65109.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.44.64.0/20 Signature Algorithm: sha256WithRSAEncryption a2:4a:fa:eb:00:5b:ad:1f:73:d1:bb:39:98:7a:2d:0b:cf:1a: 69:0b:4e:16:fc:fe:4c:55:71:f8:58:07:f1:14:74:ea:c7:19: 6e:d9:ad:0d:1b:52:93:47:22:2b:a7:61:f5:96:0f:ee:ae:90: 57:df:90:a7:36:a8:fa:a9:12:1c:21:d4:95:90:9c:2f:85:92: d1:6c:ad:e9:4a:2c:1e:8c:58:af:da:f4:db:62:20:15:b6:fa: 77:bc:8d:9b:c6:0b:61:1f:ff:10:4e:fc:6f:85:24:23:a0:3b: 3a:f8:01:ce:43:d7:10:ba:79:12:76:0d:f5:62:c5:fc:32:37: f6:e5:60:a7:b8:97:9d:35:5f:0c:91:b3:36:10:16:60:bb:72: 6d:78:a4:8d:5e:f1:b6:09:87:54:6d:a1:01:82:fa:44:fb:ef: cd:ed:fc:bf:33:45:74:8f:99:0b:66:dd:92:40:60:b3:a7:b4: 0a:bc:86:74:68:76:56:51:71:0f:b2:1d:c4:6b:b0:44:e4:6a: 15:31:2b:d5:22:f1:f9:5b:0b:f8:cf:13:a3:d2:60:00:72:08: 30:0e:81:a6:11:2d:62:01:0c:d3:98:ca:bf:dc:e9:b3:ce:2f: c1:ce:b4:a4:10:5e:d2:8d:fa:f2:54:a5:9e:a6:34:f9:d3:0b: 3e:91:f9:c5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdHoHgti5q8uRy1h+FP5SXUK7ckswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI0MDAyMDEzWhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzlkZTVlMjhkNTE3YTZmYjk1NTViNTBhNjYzMDc5OWIw NDEzNjY2MTBlM2EyNjMwNDMyNTgyNTRjZDBjOGEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoqEie+w1x6IzqJ6DHuA2RQZ/CQiYlwtdIaS1Ns4Lddcs2 xmaylSzQcYrjy+bmYs5DkWU3NakpGZ5hFCOvxIC2HWWcvaGK5cK3rycBY0ZZCTMc Vr4SPw1Y3a4naGwQiZStlEDzwWXADaUGgrMqJbNoqN6H2UH4lq5I2S7+WwhGceA8 u30OMUo2sBTMO7AulmRyCsmqUGJHW3he9NpQWQDL9HllnME5xh6y6SNJRN0ziDxk +nbnxRR+HmW4muk8lEQUzVI3QkhpIH6Piu9yBzB/OMKARIVtdwauU2+hLZdWyI/h tXl4GMvaOt1IgaVfeCwGxjm9tT0XNk5NW644HXnzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6UAk1IZCy+UNCZOT2HCUk/pCwqswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JjMzE4YjcwLTViODgtNGJmNy04YjZjLTlhMjZjZWU2NTEwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARILEAwDQYJKoZIhvcNAQELBQADggEBAKJK+usAW60fc9G7OZh6LQvPGmkL Thb8/kxVcfhYB/EUdOrHGW7ZrQ0bUpNHIiunYfWWD+6ukFffkKc2qPqpEhwh1JWQ nC+FktFsrelKLB6MWK/a9NtiIBW2+ne8jZvGC2Ef/xBO/G+FJCOgOzr4Ac5D1xC6 eRJ2DfVixfwyN/blYKe4l501XwyRszYQFmC7cm14pI1e8bYJh1RtoQGC+kT7783t /L8zRXSPmQtm3ZJAYLOntAq8hnRodlZRcQ+yHcRrsETkahUxK9Ui8flbC/jPE6PS YAByCDAOgaYRLWIBDNOYyr/c6bPOL8HOtKQQXtKN+vJUpZ6mNPnTCz6R+cU= -----END CERTIFICATE-----Generated at Sun Jun 1 04:50:32 2025 by rpki-client