$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4f52d1b-a830-4741-8924-351b0ebc2ffe.roa File: d4f52d1b-a830-4741-8924-351b0ebc2ffe.roa (raw, json) Hash identifier: /hgwBK0eSu5VJjtSxH9a0IrKg+XkGx7RMrvsbxQZPAY= Subject key identifier: 31:C7:97:3E:8C:FF:60:CC:C4:8A:C4:70:2A:DE:11:BE:45:55:2E:A9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 12C629B976E101C0F8BE1CC3557604AA8A74FDDA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4f52d1b-a830-4741-8924-351b0ebc2ffe.roa Signing time: Wed 28 May 2025 00:12:04 +0000 ROA not before: Wed 28 May 2025 00:12:04 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.171.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:c6:29:b9:76:e1:01:c0:f8:be:1c:c3:55:76:04:aa:8a:74:fd:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:12:04 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=909970697af8320ff029853dedd1cadbd8a27b3fe4e87e605bf8193d34f7b09f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e7:b9:da:1f:90:ed:e5:98:cc:e8:a7:95:12: 9e:d3:e2:8a:62:28:c4:b2:11:7d:e6:22:e4:dc:ee: fe:81:3c:4f:41:07:7c:86:6a:12:80:2d:70:cc:32: ff:f3:4b:d4:95:25:58:4a:7f:6c:75:59:a6:dc:ad: 84:b1:b5:e0:6b:59:04:4f:e0:57:1c:7e:c3:d3:fd: 62:93:b2:55:9b:48:e7:28:54:c1:bf:a0:0d:2d:e9: 29:f0:88:cd:d5:36:33:aa:f8:09:c5:66:ec:db:9e: 61:76:48:72:dd:09:ed:ea:ec:64:78:0e:e6:09:ba: 05:8c:57:a9:01:81:32:8b:d8:74:0d:39:f0:41:0a: 1d:7e:c9:7b:bf:d2:ad:78:9c:32:2a:62:1a:05:7b: 6c:57:9e:5e:bc:fe:ad:8e:c7:87:95:ba:2c:f4:70: d3:fe:bf:a4:51:8f:bc:fa:45:72:e3:6a:5e:46:5c: 12:29:07:61:94:3a:8a:2c:57:ae:a3:43:cf:68:7f: 5e:31:f6:6c:03:4e:8f:e8:0b:2c:6f:ca:e9:8e:c3: 95:27:87:a3:62:1a:90:d4:cb:6a:23:2f:9c:51:16: 7e:1c:10:6f:8a:6f:9d:b2:73:33:47:ee:47:ef:e6: f8:7d:df:dd:1a:77:4d:96:36:5a:fd:af:a3:bc:87: d9:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:C7:97:3E:8C:FF:60:CC:C4:8A:C4:70:2A:DE:11:BE:45:55:2E:A9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d4f52d1b-a830-4741-8924-351b0ebc2ffe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.171.128.0/19 Signature Algorithm: sha256WithRSAEncryption 9b:39:9e:c6:81:a6:43:28:ae:73:ab:5f:ba:be:6e:95:92:67: 8f:3d:22:2d:31:16:c7:a5:d2:80:49:9a:24:8a:4d:6f:37:b7: eb:fd:77:da:87:ca:07:a1:d3:b6:08:cd:0b:20:fa:e5:10:22: 0f:ea:84:87:3b:20:b3:57:25:e6:6a:85:d7:e3:65:d9:c5:bb: 02:7d:54:c3:1f:37:19:1b:60:50:15:8d:14:e1:b2:40:08:9e: 19:e5:d5:dd:26:a6:4d:f6:48:a9:c9:99:2d:7f:4e:9c:02:6c: ad:eb:31:ac:cd:1c:95:15:d6:68:36:31:79:d0:ce:5f:ef:a8: af:9f:f0:c8:90:38:ff:1c:a5:9a:15:fd:8d:43:99:85:05:5d: 51:1d:f9:6a:a3:59:68:6f:97:71:a6:a2:ee:51:65:39:b4:72: f7:07:1a:cb:6c:5d:23:70:f0:65:95:03:87:31:a1:85:ae:1b: 88:93:cb:46:ef:f9:62:ea:6b:89:f3:ed:de:25:34:00:a0:c1: 3f:4b:80:f4:65:e0:0a:fc:83:a9:ed:f7:3e:9f:20:7e:d9:c5: 14:1f:49:66:b1:7b:d4:41:62:76:4f:03:fa:21:7b:43:07:de: 34:34:03:32:09:43:68:84:71:78:3a:36:cc:35:29:c3:b5:ba: bd:c8:e0:61 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEsYpuXbhAcD4vhzDVXYEqop0/dowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAxMjA0WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MDk5NzA2OTdhZjgzMjBmZjAyOTg1M2RlZGQxY2FkYmQ4 YTI3YjNmZTRlODdlNjA1YmY4MTkzZDM0ZjdiMDlmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDF57naH5Dt5ZjM6KeVEp7T4opiKMSyEX3mIuTc7v6BPE9B B3yGahKALXDMMv/zS9SVJVhKf2x1WabcrYSxteBrWQRP4FccfsPT/WKTslWbSOco VMG/oA0t6SnwiM3VNjOq+AnFZuzbnmF2SHLdCe3q7GR4DuYJugWMV6kBgTKL2HQN OfBBCh1+yXu/0q14nDIqYhoFe2xXnl68/q2Ox4eVuiz0cNP+v6RRj7z6RXLjal5G XBIpB2GUOoosV66jQ89of14x9mwDTo/oCyxvyumOw5Unh6NiGpDUy2ojL5xRFn4c EG+Kb52yczNH7kfv5vh9390ad02WNlr9r6O8h9knAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMceXPoz/YMzEisRwKt4RvkVVLqkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q0ZjUyZDFiLWE4MzAtNDc0MS04OTI0LTM1MWIwZWJjMmZmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXYq4AwDQYJKoZIhvcNAQELBQADggEBAJs5nsaBpkMornOrX7q+bpWSZ489 Ii0xFsel0oBJmiSKTW83t+v9d9qHygeh07YIzQsg+uUQIg/qhIc7ILNXJeZqhdfj ZdnFuwJ9VMMfNxkbYFAVjRThskAInhnl1d0mpk32SKnJmS1/TpwCbK3rMazNHJUV 1mg2MXnQzl/vqK+f8MiQOP8cpZoV/Y1DmYUFXVEd+WqjWWhvl3Gmou5RZTm0cvcH GstsXSNw8GWVA4cxoYWuG4iTy0bv+WLqa4nz7d4lNACgwT9LgPRl4Ar8g6nt9z6f IH7ZxRQfSWaxe9RBYnZPA/ohe0MH3jQ0AzIJQ2iEcXg6Nsw1KcO1ur3I4GE= -----END CERTIFICATE-----Generated at Sun Jun 1 04:28:33 2025 by rpki-client