$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d51c104f-0ea9-4699-94dd-2eaaf66f34d2.roa File: d51c104f-0ea9-4699-94dd-2eaaf66f34d2.roa (raw, json) Hash identifier: SFTYZzwDvxg9KcK/RqgSD+9TV4+x9oAHLpqCNyARheM= Subject key identifier: 51:06:6C:67:85:43:FB:F8:35:E7:7F:06:B0:7D:E1:96:AB:49:EF:3D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52336591D7F7C2EBD295D36566CD8F947B0E510F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d51c104f-0ea9-4699-94dd-2eaaf66f34d2.roa Signing time: Fri 09 May 2025 00:20:22 +0000 ROA not before: Fri 09 May 2025 00:20:22 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.92.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:33:65:91:d7:f7:c2:eb:d2:95:d3:65:66:cd:8f:94:7b:0e:51:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:20:22 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=c9c6f675d58f5e04f5903d872d7cec1aa461dc33c4bb8c8af1f71433dbb76058, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d6:e3:9d:47:47:a0:8c:bc:0e:75:e3:d5:2e: 71:f6:60:df:f4:22:41:72:a1:13:94:1f:5b:8f:08: b3:ba:39:52:60:5b:0d:b8:cc:98:03:83:64:00:3f: 76:32:54:81:ca:a4:39:3b:a9:82:0e:b4:df:8b:1d: a5:a8:d7:cf:3b:91:7d:4c:34:35:c3:7f:62:f1:61: 0f:d7:fa:af:55:3a:5c:4e:fd:7d:ee:c6:a7:49:10: e8:a8:05:0d:6c:61:3d:75:63:1d:9e:38:3f:3a:4b: 26:92:d1:e5:3e:5f:01:a8:37:fd:a0:65:58:5f:e8: 1b:d5:06:03:24:37:17:71:fb:8b:60:48:ed:92:89: d4:1d:ca:79:84:ce:cf:94:0c:27:61:c7:f2:95:04: e5:f1:c3:da:87:9c:41:e3:aa:52:7f:e6:40:2c:c0: db:20:51:1e:e0:12:86:24:55:02:7f:de:c5:3b:53: 65:6f:f7:d6:59:e7:98:84:67:29:e9:b7:1e:b5:95: c2:4e:2a:35:47:ea:79:79:31:1c:ad:0e:c3:30:47: f3:88:89:4d:de:b8:58:77:31:88:63:40:a6:28:36: 7c:9e:2c:61:52:9e:e5:ea:0f:5f:0b:4b:73:62:d2: 0e:e4:97:ec:b4:cf:05:f7:10:70:4e:77:f8:62:24: a9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:06:6C:67:85:43:FB:F8:35:E7:7F:06:B0:7D:E1:96:AB:49:EF:3D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d51c104f-0ea9-4699-94dd-2eaaf66f34d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.92.52.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:d1:bf:18:36:ec:51:2b:9e:ef:a7:f9:51:36:91:04:ac:f4: 0e:1c:aa:10:d8:ab:06:aa:ea:07:cf:13:e3:15:01:dc:d9:0e: 5a:38:f9:9b:41:b4:35:21:65:3a:73:44:e5:66:7e:fb:56:92: 4c:c4:6b:3c:35:9a:20:7a:08:48:98:14:7f:03:18:bf:1e:4f: 61:9d:cc:ee:f7:96:0c:f2:fa:16:e5:17:ca:d5:bf:00:88:35: f0:f0:6d:66:4f:76:40:4b:71:8f:a2:16:f9:dc:02:a0:2e:2e: d8:0a:52:f7:94:73:53:f1:e9:cf:d0:ab:ab:ae:55:ce:fb:f1: 17:c5:ab:b1:2a:f1:8c:e0:c8:a2:59:12:91:e5:91:11:7e:c0: a8:27:61:9b:d6:1b:3a:18:61:d4:e5:bf:13:38:7a:dd:64:5f: 34:06:f3:8e:ee:7f:98:5c:66:d4:23:cf:e3:d3:e6:d5:9b:00: 87:07:2b:7f:79:a0:8d:29:7e:79:a2:67:6f:92:4e:fc:58:d7: 07:04:b4:af:c0:f4:a7:41:7f:8d:f5:70:34:e5:70:96:8d:91: 58:1c:83:ee:d0:99:f3:3a:fe:08:7d:46:2c:9b:97:63:a2:5a: b2:ca:36:e3:bc:76:ac:cc:fd:06:c8:dd:39:e1:ba:a8:f3:05: d4:8b:77:29 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUjNlkdf3wuvSldNlZs2PlHsOUQ8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAyMDIyWhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOWM2ZjY3NWQ1OGY1ZTA0ZjU5MDNkODcyZDdjZWMxYWE0 NjFkYzMzYzRiYjhjOGFmMWY3MTQzM2RiYjc2MDU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDG1uOdR0egjLwOdePVLnH2YN/0IkFyoROUH1uPCLO6OVJg Ww24zJgDg2QAP3YyVIHKpDk7qYIOtN+LHaWo1887kX1MNDXDf2LxYQ/X+q9VOlxO /X3uxqdJEOioBQ1sYT11Yx2eOD86SyaS0eU+XwGoN/2gZVhf6BvVBgMkNxdx+4tg SO2SidQdynmEzs+UDCdhx/KVBOXxw9qHnEHjqlJ/5kAswNsgUR7gEoYkVQJ/3sU7 U2Vv99ZZ55iEZynptx61lcJOKjVH6nl5MRytDsMwR/OIiU3euFh3MYhjQKYoNnye LGFSnuXqD18LS3Ni0g7kl+y0zwX3EHBOd/hiJKkDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUQZsZ4VD+/g1538GsH3hlqtJ7z0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q1MWMxMDRmLTBlYTktNDY5OS05NGRkLTJlYWFmNjZmMzRkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADRXDQwDQYJKoZIhvcNAQELBQADggEBABvRvxg27FErnu+n+VE2kQSs9A4c qhDYqwaq6gfPE+MVAdzZDlo4+ZtBtDUhZTpzROVmfvtWkkzEazw1miB6CEiYFH8D GL8eT2GdzO73lgzy+hblF8rVvwCINfDwbWZPdkBLcY+iFvncAqAuLtgKUveUc1Px 6c/Qq6uuVc778RfFq7Eq8YzgyKJZEpHlkRF+wKgnYZvWGzoYYdTlvxM4et1kXzQG 847uf5hcZtQjz+PT5tWbAIcHK395oI0pfnmiZ2+STvxY1wcEtK/A9KdBf431cDTl cJaNkVgcg+7QmfM6/gh9Riybl2OiWrLKNuO8dqzM/QbI3TnhuqjzBdSLdyk= -----END CERTIFICATE-----Generated at Sun Jun 1 04:46:55 2025 by rpki-client