$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f242a843-e5ef-4329-a630-1bbe90e85499.roa File: f242a843-e5ef-4329-a630-1bbe90e85499.roa (raw, json) Hash identifier: DUOVCP8wKAcHz5jCz7tD7vafPmKrnOHUVT3rtWfvqyo= Subject key identifier: BE:97:A7:60:31:F0:51:2C:74:C3:23:5D:13:28:8F:2A:A5:FD:F9:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 33F373C40F81B839472916DF243F83847D385287 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f242a843-e5ef-4329-a630-1bbe90e85499.roa Signing time: Mon 19 May 2025 17:30:24 +0000 ROA not before: Mon 19 May 2025 17:30:24 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 161.178.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:f3:73:c4:0f:81:b8:39:47:29:16:df:24:3f:83:84:7d:38:52:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 17:30:24 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=d38a48d299b74e0783aba90254f9949d5042e2e9ad460bf0cad473d84047d1ae, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a0:e8:13:d6:7e:43:e8:2a:1e:ab:c5:e2:4f: 44:92:2f:1e:f8:19:51:e7:d1:f4:ca:b4:42:d4:45: db:2f:57:ec:df:d6:2b:93:cd:20:4e:90:1a:63:c2: 6d:5f:70:74:e4:32:43:70:a5:c5:6a:1f:14:e7:83: 00:e0:25:b7:5a:30:81:92:b4:f0:99:52:16:51:c7: 48:2b:34:78:c3:38:42:01:84:a3:19:70:db:63:64: 9c:41:0e:55:49:8c:76:93:ca:fb:7a:aa:6d:56:22: 99:e7:80:d3:d3:bc:07:b4:a3:c5:2e:93:0d:23:b5: 9d:15:6c:ca:99:f4:64:dc:a1:d5:3c:d8:77:0f:68: 5c:82:91:9f:79:98:e9:fb:b3:d6:a2:de:a6:3a:45: a3:19:a7:1d:04:13:ca:6a:36:a1:b1:86:88:88:03: 7d:65:32:f7:b1:60:a5:dd:d3:a0:fa:0b:50:99:81: 92:c4:ae:d3:cc:09:7e:05:d7:2e:bd:34:b8:8a:b3: e5:94:7d:1e:79:a6:c7:c2:ee:52:63:0d:37:16:93: 23:9c:1d:6d:4b:05:4c:cf:e3:01:da:c3:56:d0:2c: 17:59:a6:16:b9:25:dd:0f:b8:64:c7:d2:3b:4a:3b: a7:c0:cb:87:47:27:aa:c0:51:88:5d:a8:52:1e:f7: 14:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:97:A7:60:31:F0:51:2C:74:C3:23:5D:13:28:8F:2A:A5:FD:F9:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f242a843-e5ef-4329-a630-1bbe90e85499.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.178.32.0/19 Signature Algorithm: sha256WithRSAEncryption 3f:94:a5:8d:98:6b:43:85:44:cd:48:a8:c1:69:37:af:c1:d8: cc:91:26:ef:7b:22:e4:1b:29:21:d1:c0:c1:28:ea:7d:9a:48: bf:a5:96:a7:34:18:c5:ce:84:5b:fd:50:8f:7d:09:b6:f4:7c: ed:3c:95:b4:46:89:21:32:1d:97:d1:09:ab:bf:96:f4:38:e4: ca:db:0f:74:01:07:03:da:de:bc:82:ef:c5:d8:54:f8:7b:bb: bb:1e:cf:bf:46:6a:34:3b:08:e1:fd:39:53:e1:5f:cb:a9:92: 3e:28:b4:f3:61:a6:18:ca:7f:42:02:0c:d9:08:f5:d8:dc:1d: c2:8a:ad:67:f4:9a:3e:90:8f:67:dc:9a:d4:bd:89:95:5f:79: 1f:77:12:42:84:b2:9c:61:1e:08:ca:9c:b9:b7:e3:4f:7f:60: 81:db:b3:13:4a:c5:da:60:86:fe:2f:d7:87:66:b0:c1:b7:f8: e6:aa:13:00:36:c5:98:cb:e4:7c:27:23:65:50:5d:58:76:53: 43:f0:b2:e2:fb:fd:83:1c:82:e9:b7:e8:92:45:f3:20:b7:de: c7:00:f7:82:b2:42:56:c8:21:65:87:c2:a7:3f:4a:5c:f7:b2: 07:0e:ad:4f:55:f4:11:7d:43:a9:c3:a6:10:30:8a:82:83:64: 99:54:7c:fc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM/NzxA+BuDlHKRbfJD+DhH04UocwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTczMDI0WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMzhhNDhkMjk5Yjc0ZTA3ODNhYmE5MDI1NGY5OTQ5ZDUw NDJlMmU5YWQ0NjBiZjBjYWQ0NzNkODQwNDdkMWFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOoOgT1n5D6Coeq8XiT0SSLx74GVHn0fTKtELURdsvV+zf 1iuTzSBOkBpjwm1fcHTkMkNwpcVqHxTngwDgJbdaMIGStPCZUhZRx0grNHjDOEIB hKMZcNtjZJxBDlVJjHaTyvt6qm1WIpnngNPTvAe0o8Uukw0jtZ0VbMqZ9GTcodU8 2HcPaFyCkZ95mOn7s9ai3qY6RaMZpx0EE8pqNqGxhoiIA31lMvexYKXd06D6C1CZ gZLErtPMCX4F1y69NLiKs+WUfR55psfC7lJjDTcWkyOcHW1LBUzP4wHaw1bQLBdZ pha5Jd0PuGTH0jtKO6fAy4dHJ6rAUYhdqFIe9xTbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvpenYDHwUSx0wyNdEyiPKqX9+ZIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyNDJhODQzLWU1ZWYtNDMyOS1hNjMwLTFiYmU5MGU4NTQ5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWhsiAwDQYJKoZIhvcNAQELBQADggEBAD+UpY2Ya0OFRM1IqMFpN6/B2MyR Ju97IuQbKSHRwMEo6n2aSL+llqc0GMXOhFv9UI99Cbb0fO08lbRGiSEyHZfRCau/ lvQ45MrbD3QBBwPa3ryC78XYVPh7u7sez79GajQ7COH9OVPhX8upkj4otPNhphjK f0ICDNkI9djcHcKKrWf0mj6Qj2fcmtS9iZVfeR93EkKEspxhHgjKnLm3409/YIHb sxNKxdpghv4v14dmsMG3+OaqEwA2xZjL5HwnI2VQXVh2U0PwsuL7/YMcgum36JJF 8yC33scA94KyQlbIIWWHwqc/Slz3sgcOrU9V9BF9Q6nDphAwioKDZJlUfPw= -----END CERTIFICATE-----Generated at Sun Jun 1 05:13:15 2025 by rpki-client