$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2fd9155-8aca-4f0e-b0d4-1ac47bb17b2f.roa File: e2fd9155-8aca-4f0e-b0d4-1ac47bb17b2f.roa (raw, json) Hash identifier: BtKkCJQYTKhL1o7oLCF9NDiA8GT+E5Cd3xBpafMBy9g= Subject key identifier: 65:08:FA:CC:51:EA:21:24:E6:27:2C:C7:A2:96:E5:6E:B7:50:FB:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4F24301C0B6A20B8764865B56B850C362E87F0B6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2fd9155-8aca-4f0e-b0d4-1ac47bb17b2f.roa Signing time: Sat 24 May 2025 00:00:22 +0000 ROA not before: Sat 24 May 2025 00:00:22 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 23.228.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:24:30:1c:0b:6a:20:b8:76:48:65:b5:6b:85:0c:36:2e:87:f0:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 24 00:00:22 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=8c2e32953b702bb8545a61951dbf8868f0349d00f1b66461cc74410ee6b3d86a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f5:2d:46:a9:00:66:9f:91:76:42:f8:91:32: 20:92:f5:7d:a1:64:89:a4:bc:bf:6b:ae:e1:f6:13: b2:14:7d:33:e3:7a:9f:19:bb:f1:f4:5d:81:f5:35: f7:d3:be:03:ab:93:20:4c:e4:c5:37:0b:20:50:b1: 41:26:04:b3:92:e9:e6:6d:68:8c:f4:a5:b0:da:3b: ac:52:6f:62:19:ae:cb:53:cc:72:ba:33:a2:52:40: e4:84:c4:b9:ff:13:73:9d:e6:74:19:29:f2:a2:ab: f1:21:0a:e3:b5:4d:e0:14:e1:81:92:89:a6:12:bd: 07:f0:9c:ce:99:b9:d1:ca:98:2e:66:bf:2b:a9:e0: dd:27:65:ec:f6:d5:ca:21:95:b6:e9:84:fd:4c:f8: 27:e4:bb:91:bc:57:fa:ad:eb:40:e1:1b:7b:bd:e1: ff:31:ca:7b:b2:7f:a1:bf:17:ed:57:5d:4b:c4:53: c0:f0:65:9f:11:ea:88:e9:29:9f:e8:44:48:f9:a5: 5a:1d:79:3a:5c:80:54:42:9a:ce:a7:5a:b7:34:bd: dc:6b:b5:26:f2:86:68:fa:46:bb:6f:4d:05:40:ae: 19:84:53:c4:5c:2b:d4:fb:a3:32:49:4b:ba:5a:53: d6:b7:71:34:28:bd:81:33:ec:71:75:1b:f0:11:72: b3:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:08:FA:CC:51:EA:21:24:E6:27:2C:C7:A2:96:E5:6E:B7:50:FB:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2fd9155-8aca-4f0e-b0d4-1ac47bb17b2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.228.192.0/18 Signature Algorithm: sha256WithRSAEncryption 49:17:48:36:21:3e:ff:2a:b1:65:e2:e2:5a:f8:3d:a0:3c:e5: 6a:d8:c4:73:5c:ad:69:1a:5d:05:c3:3f:16:1b:a5:d7:9f:25: 93:00:b4:9a:60:ad:ba:ba:c4:48:04:ba:ad:76:76:d3:0f:a5: 96:93:62:b0:de:86:47:e6:46:a5:cc:5d:86:22:42:dc:02:ba: 78:49:05:38:5c:42:ca:23:c5:a8:ec:ef:97:e3:0d:68:3c:d5: ca:89:1c:10:7e:31:a9:22:51:f1:db:9d:4c:7d:70:4b:3d:22: da:bc:32:5b:24:d3:ce:eb:3e:37:c9:3d:15:37:77:78:15:b9: c5:53:4f:0b:42:44:43:31:37:d2:29:6b:34:78:04:c1:4b:1f: d8:2c:ae:98:b4:98:21:71:35:56:93:21:86:ab:7c:04:2d:ba: c9:ce:b9:f2:4e:a6:f0:57:d3:3d:ac:73:35:08:17:91:19:af: e7:e1:8e:df:bc:70:f4:5c:a7:da:2a:51:9d:da:b2:10:9f:6e: e4:06:e5:ec:52:a3:c2:be:7b:0c:8a:f8:e5:ed:fb:5c:82:2f: 53:8c:16:20:0c:09:53:cf:a2:73:ee:fa:8d:1d:a4:08:0c:8c: 0e:04:4f:09:1b:2f:cf:3d:5d:73:18:86:08:df:ea:bb:0c:79: ab:40:96:be -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTyQwHAtqILh2SGW1a4UMNi6H8LYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI0MDAwMDIyWhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YzJlMzI5NTNiNzAyYmI4NTQ1YTYxOTUxZGJmODg2OGYw MzQ5ZDAwZjFiNjY0NjFjYzc0NDEwZWU2YjNkODZhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC99S1GqQBmn5F2QviRMiCS9X2hZImkvL9rruH2E7IUfTPj ep8Zu/H0XYH1NffTvgOrkyBM5MU3CyBQsUEmBLOS6eZtaIz0pbDaO6xSb2IZrstT zHK6M6JSQOSExLn/E3Od5nQZKfKiq/EhCuO1TeAU4YGSiaYSvQfwnM6ZudHKmC5m vyup4N0nZez21cohlbbphP1M+Cfku5G8V/qt60DhG3u94f8xynuyf6G/F+1XXUvE U8DwZZ8R6ojpKZ/oREj5pVodeTpcgFRCms6nWrc0vdxrtSbyhmj6RrtvTQVArhmE U8RcK9T7ozJJS7paU9a3cTQovYEz7HF1G/ARcrOFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZQj6zFHqISTmJyzHopblbrdQ+60wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UyZmQ5MTU1LThhY2EtNGYwZS1iMGQ0LTFhYzQ3YmIxN2IyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYX5MAwDQYJKoZIhvcNAQELBQADggEBAEkXSDYhPv8qsWXi4lr4PaA85WrY xHNcrWkaXQXDPxYbpdefJZMAtJpgrbq6xEgEuq12dtMPpZaTYrDehkfmRqXMXYYi QtwCunhJBThcQsojxajs75fjDWg81cqJHBB+MakiUfHbnUx9cEs9Itq8Mlsk087r PjfJPRU3d3gVucVTTwtCREMxN9IpazR4BMFLH9gsrpi0mCFxNVaTIYarfAQtusnO ufJOpvBX0z2sczUIF5EZr+fhjt+8cPRcp9oqUZ3ashCfbuQG5exSo8K+ewyK+OXt +1yCL1OMFiAMCVPPonPu+o0dpAgMjA4ETwkbL889XXMYhgjf6rsMeatAlr4= -----END CERTIFICATE-----Generated at Sun Jun 1 04:55:28 2025 by rpki-client