$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f278b37a-a12f-48c8-bb13-86309c2b47f7.roa File: f278b37a-a12f-48c8-bb13-86309c2b47f7.roa (raw, json) Hash identifier: jNCzWzLPD9tPxH48NztaMG27S8DzGSZ88QkSFbhY0cU= Subject key identifier: DB:E9:41:30:68:07:05:AF:0F:E7:33:4E:90:1C:36:4A:60:04:27:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68F8040FE75D7A9B01827F30EF698EAF0FB3D741 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f278b37a-a12f-48c8-bb13-86309c2b47f7.roa Signing time: Mon 26 May 2025 15:01:31 +0000 ROA not before: Mon 26 May 2025 15:01:31 +0000 ROA not after: Mon 30 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 74.237.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:f8:04:0f:e7:5d:7a:9b:01:82:7f:30:ef:69:8e:af:0f:b3:d7:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 26 15:01:31 2025 GMT Not After : Jun 30 23:59:59 2025 GMT Subject: serialNumber=2cf4e577457c4c6232d138c765f87b7da6452036f4d1f8a112b850d4cf94fa93, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:62:76:b3:70:14:63:11:38:f8:3e:58:0e:dc: b1:e0:2c:1a:c4:51:8b:7b:2c:75:ef:46:ee:bf:d3: ce:30:2b:eb:0a:3a:23:32:d2:5a:4b:35:fc:96:c2: d0:8b:ce:5f:eb:83:c6:d0:dc:2e:3f:42:cb:18:2c: f0:f9:d5:eb:86:8c:3f:a3:2a:a0:ea:95:d6:0d:ff: 03:f3:5b:2a:c3:b2:ae:8d:4d:b5:d5:23:24:a3:52: 1c:61:c1:60:15:77:62:79:89:4e:1f:26:9b:10:50: 19:0f:d8:44:5d:ed:f3:ec:d3:5c:c2:f3:df:e5:0b: 10:1b:bd:e4:1f:40:83:23:f2:84:92:51:60:89:84: c6:5f:bf:de:ad:40:05:1b:da:37:0c:13:ae:e1:20: 52:d8:4c:8b:c8:dd:ae:5b:29:37:f1:4f:4e:bf:5f: 33:a6:92:7b:24:8b:7b:b7:e5:c9:6c:51:0d:64:8d: 24:a8:24:36:99:d2:89:a3:f2:36:a6:25:25:f0:82: e5:09:ed:4d:40:fd:25:40:88:e8:dd:b2:a4:ff:7b: 7d:3e:b5:91:66:da:42:e1:c9:15:1e:f7:34:bb:e4: e3:28:d8:f5:a4:c2:40:20:94:0e:7f:0e:82:6a:88: 2c:05:58:b6:8a:3b:57:7f:fd:08:bc:2b:92:b8:1e: d1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E9:41:30:68:07:05:AF:0F:E7:33:4E:90:1C:36:4A:60:04:27:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f278b37a-a12f-48c8-bb13-86309c2b47f7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 74.237.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0b:0b:51:91:6c:c9:74:d1:0d:80:db:7e:a5:a3:c8:25:cd:f9: 08:97:1b:a5:c9:3f:90:ae:f5:60:30:12:95:85:7a:59:55:c6: af:26:d5:df:10:19:5e:88:bf:fa:26:c3:e6:84:11:04:18:fd: 58:81:ad:82:17:4d:cb:bd:3a:59:0c:e7:93:19:4d:80:1c:02: c7:83:1b:c6:14:87:12:db:5e:74:c7:5d:07:c2:3c:23:79:76: ac:89:59:bb:1c:62:d4:5d:dc:9d:c4:ef:12:8d:de:b7:00:a5: 40:8a:30:ab:ab:f8:b3:19:92:18:78:73:0c:d2:e0:6f:f6:c3: d0:51:f7:92:0c:dc:7f:21:3a:dc:68:4f:ef:b8:43:db:ad:23: 74:65:98:ac:b8:4d:c3:f0:4c:f2:2b:cf:0d:eb:73:d3:35:ef: cc:78:31:89:33:dd:0b:ca:79:95:52:68:eb:d9:36:f8:0f:43: 81:be:f4:69:35:72:df:b6:42:f9:42:7d:0f:f9:54:7e:93:bd: 66:b9:cf:b3:f0:fe:e9:ac:30:d3:dd:ad:af:ad:0b:69:48:b3: 6e:27:89:c5:ea:94:c1:1c:f6:eb:c2:93:4f:2b:b7:a1:b4:dd: 4d:fe:77:9b:83:37:5c:43:10:c3:c0:d0:34:3f:b8:e6:79:fa: f8:7a:4d:a6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaPgED+ddepsBgn8w72mOrw+z10EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI2MTUwMTMxWhcNMjUwNjMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyY2Y0ZTU3NzQ1N2M0YzYyMzJkMTM4Yzc2NWY4N2I3ZGE2 NDUyMDM2ZjRkMWY4YTExMmI4NTBkNGNmOTRmYTkzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgYnazcBRjETj4PlgO3LHgLBrEUYt7LHXvRu6/084wK+sK OiMy0lpLNfyWwtCLzl/rg8bQ3C4/QssYLPD51euGjD+jKqDqldYN/wPzWyrDsq6N TbXVIySjUhxhwWAVd2J5iU4fJpsQUBkP2ERd7fPs01zC89/lCxAbveQfQIMj8oSS UWCJhMZfv96tQAUb2jcME67hIFLYTIvI3a5bKTfxT06/XzOmknski3u35clsUQ1k jSSoJDaZ0omj8jamJSXwguUJ7U1A/SVAiOjdsqT/e30+tZFm2kLhyRUe9zS75OMo 2PWkwkAglA5/DoJqiCwFWLaKO1d//Qi8K5K4HtEdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2+lBMGgHBa8P5zNOkBw2SmAEJ5YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyNzhiMzdhLWExMmYtNDhjOC1iYjEzLTg2MzA5YzJiNDdmNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBK7TANBgkqhkiG9w0BAQsFAAOCAQEACwtRkWzJdNENgNt+paPIJc35CJcb pck/kK71YDASlYV6WVXGrybV3xAZXoi/+ibD5oQRBBj9WIGtghdNy706WQznkxlN gBwCx4MbxhSHEttedMddB8I8I3l2rIlZuxxi1F3cncTvEo3etwClQIowq6v4sxmS GHhzDNLgb/bD0FH3kgzcfyE63GhP77hD260jdGWYrLhNw/BM8ivPDetz0zXvzHgx iTPdC8p5lVJo69k2+A9Dgb70aTVy37ZC+UJ9D/lUfpO9ZrnPs/D+6aww092tr60L aUizbieJxeqUwRz268KTTyu3obTdTf53m4M3XEMQw8DQND+45nn6+HpNpg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:31:04 2025 by rpki-client