$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf517b2e-8f05-4d24-bfe1-6207c312e178.roa File: bf517b2e-8f05-4d24-bfe1-6207c312e178.roa (raw, json) Hash identifier: oOpvEDkvkTsQiczGnM7qd1acSUIIGjzJZsz7l3gYwGU= Subject key identifier: 23:08:59:A9:13:AD:CA:AA:84:CF:C1:BE:A2:9E:41:65:2E:E5:47:A5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 108B18F97C275F95FFFD77C4426D5D1E2F22C9A5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf517b2e-8f05-4d24-bfe1-6207c312e178.roa Signing time: Sat 24 May 2025 00:21:35 +0000 ROA not before: Sat 24 May 2025 00:21:35 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 57.246.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:8b:18:f9:7c:27:5f:95:ff:fd:77:c4:42:6d:5d:1e:2f:22:c9:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 24 00:21:35 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=a0badd4cf4467218c0c9ea00c712674cadd7665cb37db449cea5217aede9fe41, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:a9:1f:85:c9:60:ec:33:42:aa:0b:0e:4a:08: 05:2c:7b:6f:bf:9d:64:d1:54:9f:95:e8:06:b1:16: dd:6d:c8:ed:bd:86:e2:f2:d0:4f:d1:9c:3f:6d:cd: 00:b0:c8:5e:7a:49:e5:84:d3:49:e5:f1:e8:5b:83: 46:a3:32:f3:ae:b9:e9:77:fd:a3:d5:16:62:fe:50: 17:4e:15:c2:20:5c:eb:35:b4:e4:a7:65:5e:94:f0: 18:7c:f7:9b:26:9d:d3:41:5d:cd:93:62:52:e7:23: 79:ff:8b:33:a2:64:2a:6d:8f:67:71:4b:7f:d3:52: 20:78:91:a1:44:6c:87:78:25:79:a7:60:5f:50:ca: f2:1a:ce:dc:c0:f4:a0:82:0b:d0:2c:c3:80:5c:75: 37:4c:30:bd:e8:9b:cc:21:54:58:a8:e9:25:3d:f1: 38:0f:95:27:36:f3:39:60:df:a8:68:f5:3e:64:79: 7a:06:e9:97:3b:93:76:0a:d5:76:f1:9d:d4:0d:74: 69:fb:6d:48:66:0d:14:09:1e:52:2f:9a:c9:e0:8e: 05:60:5a:dc:f0:7c:f2:44:4c:5f:3e:0c:40:ad:22: aa:68:df:58:69:0c:33:4b:b4:0b:95:91:cd:68:35: eb:37:45:9f:b5:5e:ab:bd:97:be:8b:95:af:b6:05: 1f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:08:59:A9:13:AD:CA:AA:84:CF:C1:BE:A2:9E:41:65:2E:E5:47:A5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf517b2e-8f05-4d24-bfe1-6207c312e178.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.246.0.0/16 Signature Algorithm: sha256WithRSAEncryption c7:8a:c7:46:f0:fc:09:b9:f5:4c:11:fb:6d:38:48:3f:43:25: 0c:28:d0:d7:b3:da:3d:93:86:6e:a5:38:e6:99:94:69:0a:11: 31:0d:ac:9e:4c:9b:5e:95:ba:f4:15:aa:49:e0:71:e2:a6:63: eb:e1:6a:4e:87:43:7f:6c:79:ff:e4:c8:71:19:0e:a0:a4:74: 8a:ae:33:b5:03:5d:aa:41:ac:94:50:03:fc:f1:f8:84:83:9b: 28:0b:a3:44:83:71:64:68:1c:17:61:11:6d:dc:36:e7:8a:3c: ca:a5:16:5c:0e:80:5b:38:c5:b4:51:3a:3a:81:fd:62:b0:12: f4:9c:b6:e9:8e:d2:5b:3c:b1:22:53:c9:64:d0:31:33:8b:86: c9:b7:1e:19:a7:67:93:24:a6:55:c3:fc:92:8a:7e:b9:0b:c0: a0:ba:f2:ab:8f:93:2e:11:6e:50:b6:58:a1:10:47:a1:f5:db: 9f:fe:c1:5f:4b:5e:2f:93:d3:a8:13:d2:66:8f:89:f5:47:cd: 31:04:e9:8d:5a:ed:9a:3b:5f:d0:42:80:f6:ed:bc:de:d9:13: 47:48:65:63:f2:1b:47:b9:f1:1e:ad:d2:7b:35:26:30:99:5d: 0e:b4:67:38:c6:ef:80:24:86:e9:3e:8f:66:13:68:6f:9c:7e: 1a:55:8c:0b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEIsY+XwnX5X//XfEQm1dHi8iyaUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI0MDAyMTM1WhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMGJhZGQ0Y2Y0NDY3MjE4YzBjOWVhMDBjNzEyNjc0Y2Fk ZDc2NjVjYjM3ZGI0NDljZWE1MjE3YWVkZTlmZTQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnqR+FyWDsM0KqCw5KCAUse2+/nWTRVJ+V6AaxFt1tyO29 huLy0E/RnD9tzQCwyF56SeWE00nl8ehbg0ajMvOuuel3/aPVFmL+UBdOFcIgXOs1 tOSnZV6U8Bh895smndNBXc2TYlLnI3n/izOiZCptj2dxS3/TUiB4kaFEbId4JXmn YF9QyvIaztzA9KCCC9Asw4BcdTdMML3om8whVFio6SU98TgPlSc28zlg36ho9T5k eXoG6Zc7k3YK1XbxndQNdGn7bUhmDRQJHlIvmsngjgVgWtzwfPJETF8+DECtIqpo 31hpDDNLtAuVkc1oNes3RZ+1Xqu9l76Lla+2BR/bAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIwhZqROtyqqEz8G+op5BZS7lR6UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmNTE3YjJlLThmMDUtNGQyNC1iZmUxLTYyMDdjMzEyZTE3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA59jANBgkqhkiG9w0BAQsFAAOCAQEAx4rHRvD8Cbn1TBH7bThIP0MlDCjQ 17PaPZOGbqU45pmUaQoRMQ2snkybXpW69BWqSeBx4qZj6+FqTodDf2x5/+TIcRkO oKR0iq4ztQNdqkGslFAD/PH4hIObKAujRINxZGgcF2ERbdw254o8yqUWXA6AWzjF tFE6OoH9YrAS9Jy26Y7SWzyxIlPJZNAxM4uGybceGadnkySmVcP8kop+uQvAoLry q4+TLhFuULZYoRBHofXbn/7BX0teL5PTqBPSZo+J9UfNMQTpjVrtmjtf0EKA9u28 3tkTR0hlY/IbR7nxHq3SezUmMJldDrRnOMbvgCSG6T6PZhNob5x+GlWMCw== -----END CERTIFICATE-----Generated at Sun Jun 1 04:58:52 2025 by rpki-client