$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce802f82-6d5a-453e-b8c9-f5ee559bf8c5.roa File: ce802f82-6d5a-453e-b8c9-f5ee559bf8c5.roa (raw, json) Hash identifier: otHMjaAGpBU0ENzqcqz1WJTIC3yQVeGbQPsbk5dYkWU= Subject key identifier: B3:FC:2E:0D:83:8F:D0:0C:6F:E0:53:D0:CE:AC:9B:7B:18:20:79:74 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B5B391013B72130DB511F9634301FEAC762CCF0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce802f82-6d5a-453e-b8c9-f5ee559bf8c5.roa Signing time: Tue 27 May 2025 00:00:33 +0000 ROA not before: Tue 27 May 2025 00:00:33 +0000 ROA not after: Tue 01 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 152.24.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:5b:39:10:13:b7:21:30:db:51:1f:96:34:30:1f:ea:c7:62:cc:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 27 00:00:33 2025 GMT Not After : Jul 1 23:59:59 2025 GMT Subject: serialNumber=ed15be3e43d8a1b5a99a7c8321e4786ef1f1fb6d7f0a690ef6984903603f2cfe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:48:2d:4e:4c:39:1e:12:a8:1d:f7:61:c6:38: 25:ad:64:b8:50:07:88:4d:85:2f:ff:62:38:78:ab: 5f:17:f4:19:d5:1f:7b:28:a7:5b:f9:85:d5:08:3f: cf:4f:85:69:11:a8:d3:2c:1a:76:6e:19:c1:ae:88: 77:b2:90:ec:1a:96:1f:2f:f2:59:ba:a2:47:ad:a9: 7e:2e:6e:8e:be:e6:0d:45:18:d4:bf:6c:97:2c:5f: 5e:e6:1c:07:0f:39:51:39:7f:ea:91:c8:94:69:4b: c0:34:e0:29:87:70:b3:cf:bc:d3:b4:51:08:ec:7f: df:83:34:19:90:e9:5c:c4:c6:2f:db:78:a1:93:e3: 36:45:6b:05:cc:a1:c2:67:25:3a:ad:df:51:5d:8c: 0a:9a:23:6e:23:34:9b:0d:8b:2f:da:11:ab:a3:62: 8b:6d:57:f7:98:fc:2c:24:d3:eb:b9:40:71:d3:8f: bf:a9:e3:88:60:83:37:84:c3:3a:ac:01:07:e1:6f: 2d:4b:7f:ac:ac:57:c3:54:1e:23:b8:31:cf:66:c8: fa:01:57:40:1d:df:b7:95:e7:b8:14:73:57:e7:5c: 22:b1:39:36:a9:58:2e:c1:ea:f6:4e:5a:3f:b9:de: 8b:ef:7f:f5:d4:97:d9:0c:14:bc:f6:9b:a0:90:e2: 67:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:FC:2E:0D:83:8F:D0:0C:6F:E0:53:D0:CE:AC:9B:7B:18:20:79:74 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce802f82-6d5a-453e-b8c9-f5ee559bf8c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.24.0.0/16 Signature Algorithm: sha256WithRSAEncryption b8:d6:0a:27:76:e2:74:a4:51:b6:a1:dc:23:96:4f:13:e1:ef: 8f:a1:8b:19:4a:9a:58:01:22:15:fa:2a:6b:a7:27:29:ec:5d: fc:28:96:9d:d0:81:66:c2:8c:e0:17:55:d1:14:fd:f5:ce:97: 3e:bb:0a:19:ec:ee:56:b3:b9:e9:98:34:73:1b:c0:c8:12:99: a4:c6:88:7e:c3:45:ca:6a:17:c3:03:22:b1:e5:dd:f0:de:25: 9c:83:a8:4a:fc:7f:b8:67:b4:5f:b9:b3:5f:2e:d2:70:44:50: 7e:23:58:8b:c7:63:b7:03:c4:88:78:e4:68:4e:1e:64:c6:c0: 1e:92:7a:fa:5f:cc:98:a4:aa:2b:a4:bc:0c:cc:05:ff:34:ee: 7a:ab:95:51:f1:18:94:c9:2a:54:3d:c8:a4:0e:91:dc:61:96: 8b:be:c0:77:01:be:50:e9:93:a9:25:3c:2b:7c:0f:c5:14:10: f5:f1:aa:e6:b4:9e:cf:ca:6c:36:d4:ed:d9:2e:0f:b6:22:48: 2b:9b:38:ea:8e:ec:9d:59:e5:f2:71:a7:3f:70:52:f6:df:60: 0c:45:f4:16:0d:1a:72:96:ff:6e:92:db:70:ac:0f:53:ee:82: 72:1c:5b:4b:16:f7:7b:ea:ab:7e:7d:e3:34:1d:96:75:21:79: 8b:5f:9c:fd -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUO1s5EBO3ITDbUR+WNDAf6sdizPAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI3MDAwMDMzWhcNMjUwNzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZDE1YmUzZTQzZDhhMWI1YTk5YTdjODMyMWU0Nzg2ZWYx ZjFmYjZkN2YwYTY5MGVmNjk4NDkwMzYwM2YyY2ZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgSC1OTDkeEqgd92HGOCWtZLhQB4hNhS//Yjh4q18X9BnV H3sop1v5hdUIP89PhWkRqNMsGnZuGcGuiHeykOwalh8v8lm6oketqX4ubo6+5g1F GNS/bJcsX17mHAcPOVE5f+qRyJRpS8A04CmHcLPPvNO0UQjsf9+DNBmQ6VzExi/b eKGT4zZFawXMocJnJTqt31FdjAqaI24jNJsNiy/aEaujYottV/eY/Cwk0+u5QHHT j7+p44hggzeEwzqsAQfhby1Lf6ysV8NUHiO4Mc9myPoBV0Ad37eV57gUc1fnXCKx OTapWC7B6vZOWj+53ovvf/XUl9kMFLz2m6CQ4mdRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUs/wuDYOP0Axv4FPQzqybexggeXQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NlODAyZjgyLTZkNWEtNDUzZS1iOGM5LWY1ZWU1NTliZjhjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCYGDANBgkqhkiG9w0BAQsFAAOCAQEAuNYKJ3bidKRRtqHcI5ZPE+Hvj6GL GUqaWAEiFfoqa6cnKexd/CiWndCBZsKM4BdV0RT99c6XPrsKGezuVrO56Zg0cxvA yBKZpMaIfsNFymoXwwMiseXd8N4lnIOoSvx/uGe0X7mzXy7ScERQfiNYi8djtwPE iHjkaE4eZMbAHpJ6+l/MmKSqK6S8DMwF/zTuequVUfEYlMkqVD3IpA6R3GGWi77A dwG+UOmTqSU8K3wPxRQQ9fGq5rSez8psNtTt2S4PtiJIK5s46o7snVnl8nGnP3BS 9t9gDEX0Fg0acpb/bpLbcKwPU+6CchxbSxb3e+qrfn3jNB2WdSF5i1+c/Q== -----END CERTIFICATE-----Generated at Sun Jun 1 04:35:33 2025 by rpki-client