$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2717a4f-7cc2-4214-8f42-104140f0415e.roa File: c2717a4f-7cc2-4214-8f42-104140f0415e.roa (raw, json) Hash identifier: Y34gvTsEqQtGFuh/iP94SmkG4uzIyNEkxUWEAF+8C34= Subject key identifier: 7D:43:59:B5:56:BF:F0:E4:C3:EA:1B:98:5E:84:D3:5B:63:D5:28:B2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D29EB1F9B52EBC814801D98E75DD95A30FA3927 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2717a4f-7cc2-4214-8f42-104140f0415e.roa Signing time: Wed 28 May 2025 00:02:02 +0000 ROA not before: Wed 28 May 2025 00:02:02 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 138.128.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:29:eb:1f:9b:52:eb:c8:14:80:1d:98:e7:5d:d9:5a:30:fa:39:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:02:02 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=7204d801d3f3de54dcc26c07f7dfbc95b804deed48928b5833b06a283b588009, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4d:e3:9f:d4:77:99:31:c1:25:5e:c9:2d:c3: a0:ff:21:a7:b1:26:03:ed:b6:ef:53:36:56:db:d8: 71:95:6e:f5:f2:93:9c:a2:11:d2:d4:06:70:8f:b4: 07:27:9e:ef:66:78:b5:84:2e:e6:1a:c3:58:a4:53: fd:74:90:d6:b7:6b:fc:fd:50:3f:04:7d:17:7d:4c: b2:f5:15:5b:c6:82:97:67:ff:3b:c5:aa:c0:70:91: ea:f9:f5:cd:3a:e0:04:aa:47:1f:14:95:c2:62:31: ba:b8:c7:87:69:96:33:17:6d:0c:08:74:d9:f0:ff: 70:0e:06:e2:0a:8a:e6:36:86:76:8b:9b:76:b7:f1: d3:73:48:68:21:e6:7c:e8:b6:0b:8e:df:5a:37:a2: cb:30:bd:2e:6d:e1:60:58:49:ef:fd:1c:b8:44:a8: 16:60:0c:39:3e:36:8e:46:56:e7:b8:45:c6:d2:29: 80:3d:0b:68:e0:cc:e8:2e:7e:9f:2a:20:ad:7d:a2: 39:ea:75:95:2d:5b:9b:85:fe:a0:dc:b8:1c:f0:cd: c1:d4:cd:4d:34:eb:bb:af:45:48:a1:12:b7:fb:dc: 56:20:27:96:84:fa:b4:8a:a1:55:6b:e7:55:ed:f6: 7c:cf:67:f7:22:96:01:d4:42:73:e4:87:61:03:d3: 8b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:43:59:B5:56:BF:F0:E4:C3:EA:1B:98:5E:84:D3:5B:63:D5:28:B2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2717a4f-7cc2-4214-8f42-104140f0415e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.128.0.0/17 Signature Algorithm: sha256WithRSAEncryption a7:77:a7:81:10:2d:04:21:79:c7:e8:03:4e:0c:0a:bc:56:fb: ce:c4:b9:73:06:69:78:ef:5b:6a:30:bc:1f:1b:4a:51:fa:72: 2d:82:2b:bf:1b:16:c1:74:be:bf:ba:e2:e8:64:65:0e:39:14: 06:31:e3:69:75:22:88:20:ea:b2:5a:11:91:55:dd:ae:3c:60: f7:a5:b2:0f:0d:90:af:94:0b:1b:59:3b:f1:4c:11:e7:1d:4f: 2b:40:92:38:de:fb:22:6c:3a:e8:9e:a0:22:a5:32:95:bf:1d: c3:51:3f:a7:39:bf:d0:d5:72:75:e0:f8:04:25:1c:3b:92:cd: 2d:10:49:ac:36:22:63:33:d4:f1:c6:67:7a:cf:a9:da:35:c0: 01:6a:75:b9:64:de:26:d9:dd:5f:64:83:cd:a3:d7:0b:02:23: 4d:26:f2:5c:99:ab:f2:16:98:b5:a3:52:99:a7:10:5f:7a:e2: ab:c3:1c:3f:fc:86:c9:e4:b4:c6:e7:00:85:2d:39:d7:98:af: 07:ac:ab:1a:b8:c9:63:c8:d9:32:78:69:53:a9:e3:d0:de:e2: d7:47:3f:06:65:a7:b4:f9:23:58:22:cb:b9:c4:05:d4:ef:0b: 88:4c:85:89:5b:57:e6:ef:26:9e:08:92:d7:01:ab:3d:ae:15: fd:31:8b:4c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTSnrH5tS68gUgB2Y513ZWjD6OScwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAwMjAyWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MjA0ZDgwMWQzZjNkZTU0ZGNjMjZjMDdmN2RmYmM5NWI4 MDRkZWVkNDg5MjhiNTgzM2IwNmEyODNiNTg4MDA5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDTeOf1HeZMcElXsktw6D/IaexJgPttu9TNlbb2HGVbvXy k5yiEdLUBnCPtAcnnu9meLWELuYaw1ikU/10kNa3a/z9UD8EfRd9TLL1FVvGgpdn /zvFqsBwker59c064ASqRx8UlcJiMbq4x4dpljMXbQwIdNnw/3AOBuIKiuY2hnaL m3a38dNzSGgh5nzotguO31o3osswvS5t4WBYSe/9HLhEqBZgDDk+No5GVue4RcbS KYA9C2jgzOgufp8qIK19ojnqdZUtW5uF/qDcuBzwzcHUzU0067uvRUihErf73FYg J5aE+rSKoVVr51Xt9nzPZ/cilgHUQnPkh2ED04t5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfUNZtVa/8OTD6huYXoTTW2PVKLIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyNzE3YTRmLTdjYzItNDIxNC04ZjQyLTEwNDE0MGYwNDE1ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAeKgAAwDQYJKoZIhvcNAQELBQADggEBAKd3p4EQLQQhecfoA04MCrxW+87E uXMGaXjvW2owvB8bSlH6ci2CK78bFsF0vr+64uhkZQ45FAYx42l1Iogg6rJaEZFV 3a48YPelsg8NkK+UCxtZO/FMEecdTytAkjje+yJsOuieoCKlMpW/HcNRP6c5v9DV cnXg+AQlHDuSzS0QSaw2ImMz1PHGZ3rPqdo1wAFqdblk3ibZ3V9kg82j1wsCI00m 8lyZq/IWmLWjUpmnEF964qvDHD/8hsnktMbnAIUtOdeYrwesqxq4yWPI2TJ4aVOp 49De4tdHPwZlp7T5I1giy7nEBdTvC4hMhYlbV+bvJp4IktcBqz2uFf0xi0w= -----END CERTIFICATE-----Generated at Sun Jun 1 05:04:07 2025 by rpki-client