$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e6e768d9-afe4-43a1-9b88-2a57ab9d0e23.roa File: e6e768d9-afe4-43a1-9b88-2a57ab9d0e23.roa (raw, json) Hash identifier: G7dxUDj4WlR+M9f0BoVzKnucgDyzgyUHUtY8A4xv/54= Subject key identifier: 82:31:DB:48:88:E8:0F:B7:72:4E:14:55:A7:91:3A:04:B4:9F:F8:DC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3456DA83E3BE8544BE490109CCB502219F679795 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e6e768d9-afe4-43a1-9b88-2a57ab9d0e23.roa Signing time: Fri 23 May 2025 00:10:20 +0000 ROA not before: Fri 23 May 2025 00:10:20 +0000 ROA not after: Fri 27 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 202.5.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:56:da:83:e3:be:85:44:be:49:01:09:cc:b5:02:21:9f:67:97:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 23 00:10:20 2025 GMT Not After : Jun 27 23:59:59 2025 GMT Subject: serialNumber=738ea593bfe3c4b41f93afb82c9a21fb35608b4c799e9a0369a05d2b930c1fde, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5b:20:f0:59:6c:b8:96:7e:ae:4c:87:99:15: 18:be:41:a2:31:f0:b6:b8:67:1b:cc:c5:19:e2:83: c2:44:de:0a:28:e0:05:89:f8:35:a5:b5:c6:a0:fc: 50:97:73:ab:92:23:78:5c:73:51:d4:2d:d6:8c:1d: 13:e4:20:ba:24:be:34:87:61:13:5a:f8:ae:8f:5d: 34:6b:75:de:80:52:71:0f:90:8f:cd:f3:92:a8:c9: b3:8d:70:cd:eb:a1:1b:58:e6:67:5e:db:3e:a4:d1: a1:ac:59:84:11:8f:a6:b1:fa:92:39:6b:49:97:22: af:f6:b0:b2:49:7e:d7:df:18:62:63:1f:6a:fd:f5: 08:e6:e8:df:23:0b:b7:5c:ce:48:9f:0a:ac:e7:e1: 65:e0:f5:40:31:c0:23:cb:c1:ae:5f:dc:90:0c:0e: a9:0d:6d:45:c0:7b:ee:25:0a:5e:53:98:e6:d3:da: c2:11:fd:2b:d9:b9:05:df:c6:22:4b:fe:53:29:9e: db:d4:0a:d3:d7:05:c2:60:2a:87:f1:b8:17:d6:58: f7:16:80:15:eb:d9:3d:c0:73:1e:a5:53:21:bc:d0: 34:2a:21:e7:e8:f4:22:f8:a5:d5:86:2b:4c:40:78: 24:eb:31:7e:69:52:d8:9f:5d:5e:c7:1a:98:46:8a: a2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:31:DB:48:88:E8:0F:B7:72:4E:14:55:A7:91:3A:04:B4:9F:F8:DC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e6e768d9-afe4-43a1-9b88-2a57ab9d0e23.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.5.178.0/23 Signature Algorithm: sha256WithRSAEncryption 86:00:e8:61:dd:87:74:fa:ec:58:54:fd:d2:a8:88:d2:ff:ca: 60:c0:8e:d1:93:3d:23:1d:d7:24:10:c1:64:f5:7d:d5:3a:79: 02:3e:8d:b6:ac:f0:e8:bc:37:15:87:be:90:09:49:b7:65:41: f9:24:81:00:40:18:dc:ad:01:19:31:33:89:46:ac:d8:8c:45: c9:50:41:ba:f0:13:07:8e:c8:b2:e9:48:fc:ad:0e:41:07:aa: db:38:52:5e:e5:1a:2f:34:db:4e:ef:42:32:3d:09:08:a5:12: be:49:2e:46:1f:53:3b:3c:29:b5:a8:44:0c:ae:44:a4:90:6a: 4f:9c:23:1b:d4:cb:41:bd:2d:d7:7f:74:ae:af:bc:9b:8e:cf: fe:ad:8b:85:8f:cf:a1:cc:8a:b9:ec:aa:22:13:32:1f:e9:29: b5:6c:5f:69:95:e5:b1:fe:ba:32:6b:60:20:fc:54:34:f8:b1: fd:86:95:12:66:34:ba:92:89:d5:78:eb:10:93:cc:ef:9b:cb: 46:b4:7a:ab:2b:53:1e:9f:e2:be:de:be:cf:53:63:af:dc:ed: e3:da:9f:03:a5:7b:6e:bf:0d:79:ac:33:85:cc:44:aa:07:6f: 75:54:70:f3:41:2e:42:e7:51:f0:5b:c9:47:9c:9e:c5:52:cb: 5c:4a:78:ad -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNFbag+O+hUS+SQEJzLUCIZ9nl5UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIzMDAxMDIwWhcNMjUwNjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzhlYTU5M2JmZTNjNGI0MWY5M2FmYjgyYzlhMjFmYjM1 NjA4YjRjNzk5ZTlhMDM2OWEwNWQyYjkzMGMxZmRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5WyDwWWy4ln6uTIeZFRi+QaIx8La4ZxvMxRnig8JE3goo 4AWJ+DWltcag/FCXc6uSI3hcc1HULdaMHRPkILokvjSHYRNa+K6PXTRrdd6AUnEP kI/N85KoybONcM3roRtY5mde2z6k0aGsWYQRj6ax+pI5a0mXIq/2sLJJftffGGJj H2r99Qjm6N8jC7dczkifCqzn4WXg9UAxwCPLwa5f3JAMDqkNbUXAe+4lCl5TmObT 2sIR/SvZuQXfxiJL/lMpntvUCtPXBcJgKofxuBfWWPcWgBXr2T3Acx6lUyG80DQq Iefo9CL4pdWGK0xAeCTrMX5pUtifXV7HGphGiqKjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgjHbSIjoD7dyThRVp5E6BLSf+NwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U2ZTc2OGQ5LWFmZTQtNDNhMS05Yjg4LTJhNTdhYjlkMGUyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHKBbIwDQYJKoZIhvcNAQELBQADggEBAIYA6GHdh3T67FhU/dKoiNL/ymDA jtGTPSMd1yQQwWT1fdU6eQI+jbas8Oi8NxWHvpAJSbdlQfkkgQBAGNytARkxM4lG rNiMRclQQbrwEweOyLLpSPytDkEHqts4Ul7lGi80207vQjI9CQilEr5JLkYfUzs8 KbWoRAyuRKSQak+cIxvUy0G9Ldd/dK6vvJuOz/6ti4WPz6HMirnsqiITMh/pKbVs X2mV5bH+ujJrYCD8VDT4sf2GlRJmNLqSidV46xCTzO+by0a0eqsrUx6f4r7evs9T Y6/c7ePanwOle26/DXmsM4XMRKoHb3VUcPNBLkLnUfBbyUecnsVSy1xKeK0= -----END CERTIFICATE-----Generated at Sun Jun 1 04:36:40 2025 by rpki-client