$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3245ac3-fa7b-4fd7-a5ab-5d110acbb03f.roa File: f3245ac3-fa7b-4fd7-a5ab-5d110acbb03f.roa (raw, json) Hash identifier: T2z4Z005ydUBXyYSDaIRbR2tQ6q+ihg4CFdFVJSGqiU= Subject key identifier: FE:7D:58:15:3A:1C:16:2E:7E:22:98:94:29:59:28:8A:A1:F7:6A:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0394858A18F00ABE3E7EE0E9C7F1883C6610498A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3245ac3-fa7b-4fd7-a5ab-5d110acbb03f.roa Signing time: Mon 19 May 2025 16:01:24 +0000 ROA not before: Mon 19 May 2025 16:01:24 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 1.179.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:94:85:8a:18:f0:0a:be:3e:7e:e0:e9:c7:f1:88:3c:66:10:49:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:01:24 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=a702d8091198f43c7af21f1884bd48c00fcc825729a15f3796fe914294bbbb10, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:09:f0:2b:ec:f3:ca:9b:7f:25:7d:67:27:6b: 98:d9:19:8c:2a:e7:bd:8d:c2:0d:99:cc:60:ee:48: 71:d2:8b:9a:95:05:cf:4b:7f:35:7e:8a:5b:87:4c: 5e:31:02:7f:79:33:ca:b9:ca:ea:6c:59:f7:d5:e3: be:9f:90:07:2b:51:6b:f4:9c:43:37:09:c4:c2:a1: f9:85:b6:5d:84:4d:f6:89:07:f9:cb:a0:0c:3d:8b: 24:b3:e9:46:d5:a8:11:8a:09:d3:3d:18:5a:0f:e4: ac:d7:13:a3:06:71:b1:78:c9:70:e2:44:47:14:be: cc:14:33:51:f1:7c:ff:a3:af:c5:31:9a:5f:d6:9d: 72:c9:dd:c3:1b:b1:c9:1a:ed:4f:b0:13:bb:0e:2a: 18:56:36:90:42:c8:96:fa:b0:8c:c1:05:8e:3e:ad: 5e:f4:e2:d6:61:c0:a8:48:46:3d:ed:38:43:58:ad: 53:57:10:8d:90:ac:22:c5:f7:b6:3b:18:1b:55:fe: 49:04:ae:24:9d:ac:ff:4d:8b:64:99:8d:46:db:c6: ad:b7:32:37:7f:6a:27:0b:00:f6:14:e7:51:b1:0b: 24:4a:77:d3:0a:7f:f7:76:1d:d9:1a:43:7f:49:21: 2a:93:92:b6:af:b8:25:9d:a2:12:3a:5a:db:5e:53: 82:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:7D:58:15:3A:1C:16:2E:7E:22:98:94:29:59:28:8A:A1:F7:6A:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3245ac3-fa7b-4fd7-a5ab-5d110acbb03f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.179.32.0/21 Signature Algorithm: sha256WithRSAEncryption a2:9f:26:08:98:09:c9:87:55:4b:24:b8:de:52:05:33:61:d4: d5:62:a6:97:fd:29:68:f8:52:ee:00:94:4e:56:04:5a:72:4e: 48:ee:e2:a7:68:a0:2d:1b:87:42:50:8a:1a:33:18:93:4c:fe: 97:d9:58:07:37:0e:91:70:af:cd:1d:3d:2f:ea:3a:0f:79:63: f8:1c:f3:96:53:25:99:cc:43:75:06:f6:b2:9d:8d:44:f4:fe: cd:31:47:05:8a:df:37:2b:f6:8a:1a:16:2b:72:df:9c:6b:9b: f2:51:f7:b0:41:9a:1d:c8:6d:df:2c:1f:35:6c:ce:d0:cd:dd: 5b:fb:b8:75:e1:70:ff:03:00:dc:53:fa:41:fe:a0:1e:d5:5e: 28:83:8c:2d:68:92:a8:6e:1e:ec:bb:5f:a4:29:9f:8d:c6:76: 00:54:f7:6a:cf:4b:4e:07:82:9c:e3:03:0f:44:54:67:21:21: 89:b1:cf:4f:76:5c:40:4e:d5:2b:cf:cd:81:21:7a:7c:34:6d: 31:99:3e:ea:72:c3:23:50:d3:ac:11:96:b3:ed:8b:8e:ea:78: 7e:b1:d6:23:fd:b2:9d:d9:d2:a4:a6:7c:6e:39:77:c0:0b:60: 4b:47:46:b5:5f:d0:26:72:9c:d0:34:82:89:7e:25:f6:b7:67: 58:02:bb:c7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA5SFihjwCr4+fuDpx/GIPGYQSYowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTYwMTI0WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzAyZDgwOTExOThmNDNjN2FmMjFmMTg4NGJkNDhjMDBm Y2M4MjU3MjlhMTVmMzc5NmZlOTE0Mjk0YmJiYjEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5CfAr7PPKm38lfWcna5jZGYwq572Nwg2ZzGDuSHHSi5qV Bc9LfzV+iluHTF4xAn95M8q5yupsWffV476fkAcrUWv0nEM3CcTCofmFtl2ETfaJ B/nLoAw9iySz6UbVqBGKCdM9GFoP5KzXE6MGcbF4yXDiREcUvswUM1HxfP+jr8Ux ml/WnXLJ3cMbscka7U+wE7sOKhhWNpBCyJb6sIzBBY4+rV704tZhwKhIRj3tOENY rVNXEI2QrCLF97Y7GBtV/kkEriSdrP9Ni2SZjUbbxq23Mjd/aicLAPYU51GxCyRK d9MKf/d2HdkaQ39JISqTkravuCWdohI6WtteU4JRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/n1YFTocFi5+IpiUKVkoiqH3akUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YzMjQ1YWMzLWZhN2ItNGZkNy1hNWFiLTVkMTEwYWNiYjAzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBsyAwDQYJKoZIhvcNAQELBQADggEBAKKfJgiYCcmHVUskuN5SBTNh1NVi ppf9KWj4Uu4AlE5WBFpyTkju4qdooC0bh0JQihozGJNM/pfZWAc3DpFwr80dPS/q Og95Y/gc85ZTJZnMQ3UG9rKdjUT0/s0xRwWK3zcr9ooaFity35xrm/JR97BBmh3I bd8sHzVsztDN3Vv7uHXhcP8DANxT+kH+oB7VXiiDjC1okqhuHuy7X6Qpn43GdgBU 92rPS04HgpzjAw9EVGchIYmxz092XEBO1SvPzYEhenw0bTGZPupywyNQ06wRlrPt i47qeH6x1iP9sp3Z0qSmfG45d8ALYEtHRrVf0CZynNA0gol+Jfa3Z1gCu8c= -----END CERTIFICATE-----Generated at Sun Jun 1 04:54:33 2025 by rpki-client