$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8fadca1-ece1-4fd9-8c0c-44964044b286.roa File: d8fadca1-ece1-4fd9-8c0c-44964044b286.roa (raw, json) Hash identifier: rDpPOoLG3wJSRiUDAH3fSIqe6B4Kt9sQdbQywhjqhVE= Subject key identifier: 39:7C:12:79:4A:6F:61:F1:AC:2F:78:93:35:E0:22:A1:26:45:60:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14F80C62838310B0E3B8BF9705D39ECA3B8F6C58 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8fadca1-ece1-4fd9-8c0c-44964044b286.roa Signing time: Fri 23 May 2025 00:10:46 +0000 ROA not before: Fri 23 May 2025 00:10:46 +0000 ROA not after: Fri 27 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 142.54.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:f8:0c:62:83:83:10:b0:e3:b8:bf:97:05:d3:9e:ca:3b:8f:6c:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 23 00:10:46 2025 GMT Not After : Jun 27 23:59:59 2025 GMT Subject: serialNumber=308bbc2babb7751f4081b7d5142383227bcb4a23281d47eae55bc8beadd697fd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:1a:57:83:18:0d:83:a7:ab:86:bd:5c:f4:12: 41:eb:dd:91:f2:f2:0f:59:be:48:7b:ea:bc:77:76: 5b:b5:8c:93:3c:32:47:f6:e5:dc:9f:65:8f:37:d9: 31:b3:3c:80:2e:8a:54:9a:d3:e3:36:d3:e3:96:0f: 71:57:ec:99:23:1a:e3:91:ee:70:74:ab:59:dc:fb: 1e:32:37:74:bb:bf:ba:04:23:c5:50:ac:d3:58:52: 73:f7:b9:fb:56:ed:c1:66:fe:75:86:cc:b9:9d:c8: 27:b0:07:0e:13:0e:b1:2b:c3:41:10:17:9c:7b:3f: 50:22:7d:a4:1d:80:9e:cc:8d:dc:c7:01:cb:cd:72: ab:65:20:06:0d:fb:fe:9b:ff:ac:c9:b9:c4:66:a0: 7e:57:ab:73:01:c8:03:6a:bc:b6:87:8a:11:ea:52: f0:8e:0a:ec:a4:ac:64:1b:44:6c:0f:be:2a:85:26: 75:9d:56:5f:ec:31:e0:6e:d8:f3:08:57:92:00:de: d3:5f:96:18:4a:d0:ec:52:ec:18:a5:23:11:ec:e6: 11:bf:0d:e7:4f:9d:06:dd:50:39:30:a6:45:57:2c: 0c:1a:1f:fd:1e:93:88:10:99:23:11:08:63:37:9c: ef:bb:ce:d2:be:b4:eb:f0:d6:44:8d:8d:d5:48:ff: 4b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:7C:12:79:4A:6F:61:F1:AC:2F:78:93:35:E0:22:A1:26:45:60:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8fadca1-ece1-4fd9-8c0c-44964044b286.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 142.54.128.0/19 Signature Algorithm: sha256WithRSAEncryption 3f:76:ad:12:6c:40:2c:50:d8:f9:92:b7:69:9b:2d:71:31:16: e0:8a:35:fe:5d:35:4b:73:bc:26:26:da:13:ea:94:1f:41:4d: 01:ec:02:97:40:bc:35:36:8a:95:7d:7e:25:a2:4d:43:42:84: 87:07:68:db:25:25:f9:a8:ac:4d:82:4b:18:22:4b:d4:41:b1: d5:ea:c6:d5:6f:46:eb:54:1e:23:72:17:2c:ea:50:63:5e:b8: dd:d6:a1:e8:20:6a:08:87:37:dc:0c:7b:3a:16:81:89:f4:29: e3:f8:f2:35:d5:da:22:62:83:e2:10:c7:2d:19:9c:18:44:0d: cf:c4:aa:5d:19:57:65:7b:9c:49:6f:c2:98:e2:b7:04:7d:0a: 9e:a7:f4:39:c4:2a:4f:00:3e:b5:fe:40:41:9b:e6:fe:4a:cd: 04:ea:9f:a0:98:56:7c:a2:bf:d6:71:d7:09:ba:c5:a3:65:af: b1:d8:4d:9d:3a:0e:e3:c3:de:5c:af:4d:55:94:62:c1:11:42: fe:30:14:70:d4:78:c5:e7:18:c8:0c:88:ee:f4:3e:f2:5c:2d: dc:db:f7:63:e3:85:6c:83:8e:1d:81:1f:39:4d:bf:28:b9:10: 1e:4a:e6:d2:9b:51:f8:5e:f3:df:34:ea:f1:39:91:52:1c:0f: 3e:1d:75:45 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFPgMYoODELDjuL+XBdOeyjuPbFgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIzMDAxMDQ2WhcNMjUwNjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDhiYmMyYmFiYjc3NTFmNDA4MWI3ZDUxNDIzODMyMjdi Y2I0YTIzMjgxZDQ3ZWFlNTViYzhiZWFkZDY5N2ZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTGleDGA2Dp6uGvVz0EkHr3ZHy8g9Zvkh76rx3dlu1jJM8 Mkf25dyfZY832TGzPIAuilSa0+M20+OWD3FX7JkjGuOR7nB0q1nc+x4yN3S7v7oE I8VQrNNYUnP3uftW7cFm/nWGzLmdyCewBw4TDrErw0EQF5x7P1AifaQdgJ7MjdzH AcvNcqtlIAYN+/6b/6zJucRmoH5Xq3MByANqvLaHihHqUvCOCuykrGQbRGwPviqF JnWdVl/sMeBu2PMIV5IA3tNflhhK0OxS7BilIxHs5hG/DedPnQbdUDkwpkVXLAwa H/0ek4gQmSMRCGM3nO+7ztK+tOvw1kSNjdVI/0vNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOXwSeUpvYfGsL3iTNeAioSZFYNcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4ZmFkY2ExLWVjZTEtNGZkOS04YzBjLTQ0OTY0MDQ0YjI4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWONoAwDQYJKoZIhvcNAQELBQADggEBAD92rRJsQCxQ2PmSt2mbLXExFuCK Nf5dNUtzvCYm2hPqlB9BTQHsApdAvDU2ipV9fiWiTUNChIcHaNslJfmorE2CSxgi S9RBsdXqxtVvRutUHiNyFyzqUGNeuN3WoeggagiHN9wMezoWgYn0KeP48jXV2iJi g+IQxy0ZnBhEDc/Eql0ZV2V7nElvwpjitwR9Cp6n9DnEKk8APrX+QEGb5v5KzQTq n6CYVnyiv9Zx1wm6xaNlr7HYTZ06DuPD3lyvTVWUYsERQv4wFHDUeMXnGMgMiO70 PvJcLdzb92PjhWyDjh2BHzlNvyi5EB5K5tKbUfhe89806vE5kVIcDz4ddUU= -----END CERTIFICATE-----Generated at Sun Jun 1 04:32:00 2025 by rpki-client