$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efb54f3e-2c1a-4dbb-876a-f86620b04208.roa File: efb54f3e-2c1a-4dbb-876a-f86620b04208.roa (raw, json) Hash identifier: G3AF+xxl/xKPkuoNxNj6dgzFy1dYMxx7ZvZ7pCNziH8= Subject key identifier: DF:1E:F7:08:E4:A9:0B:BC:95:C7:5C:F2:F8:33:D8:88:FF:B0:3E:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 146F211059C352D0C0223B300364FA52858DC7AA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efb54f3e-2c1a-4dbb-876a-f86620b04208.roa Signing time: Fri 30 May 2025 00:40:11 +0000 ROA not before: Fri 30 May 2025 00:40:11 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:6f:21:10:59:c3:52:d0:c0:22:3b:30:03:64:fa:52:85:8d:c7:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:40:11 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=5eb3af1577ead1d00011414bdf4ab2f5aa3e46ed3a1728f39faa7c8d69d88b3b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:fd:59:2a:1b:0d:c0:a1:72:fc:d2:83:7a:4f: 6d:85:8f:17:e2:9b:45:b4:74:c4:83:bc:67:67:c4: 94:1a:1f:a8:b8:61:4d:82:84:c8:4f:c7:2d:7e:89: 68:41:0d:a0:87:02:af:a6:eb:a6:a1:eb:72:38:a7: aa:49:74:3d:bb:2a:71:15:76:74:29:ad:39:72:2f: 34:fc:9e:b2:be:e9:1f:37:dc:bd:6d:55:59:57:a2: 42:a9:5b:94:83:19:23:af:09:ee:42:02:f8:58:7b: 5e:8b:39:e1:84:08:56:6e:05:4c:5e:21:f0:a7:87: 25:c7:dc:5c:8d:cd:75:ba:8e:3f:96:a5:09:49:49: 93:de:6a:42:82:36:00:72:5e:15:42:ac:e3:3d:6c: b5:f1:1f:f8:45:e9:71:17:43:14:a5:1e:14:f9:fd: 1a:2b:96:44:38:0e:5f:3c:d6:d8:49:12:25:39:94: 00:f2:01:84:2a:ff:b4:5b:d2:f4:55:39:63:3b:8e: 8e:1a:36:84:ae:f7:ee:e6:85:b6:fd:08:26:71:12: cf:9e:93:1d:99:30:4f:44:c5:84:04:99:19:12:92: 6e:fa:2d:05:64:96:51:20:24:60:84:45:81:27:fe: 5a:4c:f4:03:ee:ed:b3:01:0b:d8:79:1d:87:63:30: 06:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:1E:F7:08:E4:A9:0B:BC:95:C7:5C:F2:F8:33:D8:88:FF:B0:3E:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efb54f3e-2c1a-4dbb-876a-f86620b04208.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.164.0/24 Signature Algorithm: sha256WithRSAEncryption d6:14:3d:b3:56:ec:eb:85:5d:f6:fe:36:7f:54:9a:ed:db:2c: d7:9c:88:3b:e0:04:25:0c:ad:57:b5:d2:b7:db:43:26:77:0a: ea:15:17:1b:f3:52:a0:ce:fc:83:17:ce:38:71:e6:21:88:2c: 34:bb:f0:c2:ba:22:ef:50:6d:68:d0:64:ed:e3:c5:fd:23:e1: a5:5b:72:7d:42:08:5f:8c:3d:f0:91:96:df:12:9b:19:ff:37: ed:e0:4a:04:17:04:f0:fc:49:fc:17:a2:f9:27:ec:b2:49:1e: 8b:38:4d:47:67:d9:f7:f0:5a:84:5f:65:6e:cb:15:da:64:d7: cb:ca:01:51:31:7e:26:64:6e:9e:c3:ba:a5:c5:2a:42:47:17: a2:6d:7a:4f:6c:e6:5a:99:25:17:1c:69:97:2f:2e:bb:41:9b: 6a:eb:44:09:a8:50:6c:6e:13:50:a3:48:ab:52:9e:30:9e:49: 9d:91:5e:b5:6f:df:6d:4f:d8:c1:00:b2:45:83:a4:83:8b:61: 12:87:30:60:aa:4d:e3:67:83:4e:6f:ec:35:0b:d3:ea:b0:49: d1:6e:43:af:70:68:26:d0:26:02:95:96:60:73:d3:be:d4:c7: 3c:6f:4d:68:30:e6:5e:c9:dc:0c:78:eb:28:4f:f4:95:0a:b0: b9:ee:52:e7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFG8hEFnDUtDAIjswA2T6UoWNx6owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDA0MDExWhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZWIzYWYxNTc3ZWFkMWQwMDAxMTQxNGJkZjRhYjJmNWFh M2U0NmVkM2ExNzI4ZjM5ZmFhN2M4ZDY5ZDg4YjNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDC/VkqGw3AoXL80oN6T22Fjxfim0W0dMSDvGdnxJQaH6i4 YU2ChMhPxy1+iWhBDaCHAq+m66ah63I4p6pJdD27KnEVdnQprTlyLzT8nrK+6R83 3L1tVVlXokKpW5SDGSOvCe5CAvhYe16LOeGECFZuBUxeIfCnhyXH3FyNzXW6jj+W pQlJSZPeakKCNgByXhVCrOM9bLXxH/hF6XEXQxSlHhT5/RorlkQ4Dl881thJEiU5 lADyAYQq/7Rb0vRVOWM7jo4aNoSu9+7mhbb9CCZxEs+ekx2ZME9ExYQEmRkSkm76 LQVkllEgJGCERYEn/lpM9APu7bMBC9h5HYdjMAaLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3x73COSpC7yVx1zy+DPYiP+wPlUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VmYjU0ZjNlLTJjMWEtNGRiYi04NzZhLWY4NjYyMGIwNDIwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36QwDQYJKoZIhvcNAQELBQADggEBANYUPbNW7OuFXfb+Nn9Umu3bLNec iDvgBCUMrVe10rfbQyZ3CuoVFxvzUqDO/IMXzjhx5iGILDS78MK6Iu9QbWjQZO3j xf0j4aVbcn1CCF+MPfCRlt8Smxn/N+3gSgQXBPD8SfwXovkn7LJJHos4TUdn2ffw WoRfZW7LFdpk18vKAVExfiZkbp7DuqXFKkJHF6Jtek9s5lqZJRccaZcvLrtBm2rr RAmoUGxuE1CjSKtSnjCeSZ2RXrVv321P2MEAskWDpIOLYRKHMGCqTeNng05v7DUL 0+qwSdFuQ69waCbQJgKVlmBz077UxzxvTWgw5l7J3Ax46yhP9JUKsLnuUuc= -----END CERTIFICATE-----Generated at Sun Jun 1 04:54:41 2025 by rpki-client