$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f57cd127-87c2-4f68-b51e-d3af020a1d8b.roa File: f57cd127-87c2-4f68-b51e-d3af020a1d8b.roa (raw, json) Hash identifier: iG5KHB/nl1MnydJQCUumu2H7WHS5Qz8gAVhBjGCo5Ck= Subject key identifier: A0:E3:AF:3A:FF:43:6F:2C:1F:03:9A:BB:49:D5:78:9F:BA:03:DE:E7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 497C47069949975EF023A67CBA0483E0F5869D90 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f57cd127-87c2-4f68-b51e-d3af020a1d8b.roa Signing time: Sat 31 May 2025 00:11:10 +0000 ROA not before: Sat 31 May 2025 00:11:10 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.33.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:7c:47:06:99:49:97:5e:f0:23:a6:7c:ba:04:83:e0:f5:86:9d:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 31 00:11:10 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=ebaf4178394cbd213114e2d72abca4404f315dc014dd38033bc77512301b092b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9d:9a:84:67:f2:f7:b9:8c:da:28:97:f7:b9: 39:cd:be:6c:9b:57:06:62:1c:e2:8e:23:f5:f0:ae: 79:4e:b8:cd:92:12:7e:b4:09:d6:90:c1:e6:97:b3: 29:f0:68:4c:2c:80:3e:c0:1b:db:e2:0e:c3:bb:ab: ba:fa:93:f8:13:8f:99:6e:3c:81:5d:cf:b7:87:c5: 7c:1a:bb:52:12:fa:e8:6f:12:47:80:29:37:38:87: 8b:07:0f:10:a1:31:c4:b9:ab:19:af:8e:10:22:e1: b2:1e:7d:4b:4f:fb:00:fa:e1:c9:ea:88:97:0f:a5: 67:d7:21:fe:8d:b1:76:46:e7:e0:ed:3e:fc:8b:7f: fa:06:0f:a8:67:32:ed:38:09:71:3c:3d:84:e8:4b: 26:d7:42:47:8c:62:73:61:39:d1:bd:1a:31:b2:97: de:46:ce:eb:12:bd:68:cf:a7:83:5f:e8:89:ec:d8: 37:bc:de:20:28:5e:57:0a:d4:ee:77:bc:25:19:d9: c8:65:d7:15:3c:1b:9e:16:50:81:74:12:d5:41:67: f6:f4:c6:ee:e2:20:cf:c9:3d:c8:63:dc:f7:18:cb: ed:66:1a:9d:83:58:7b:40:0f:5d:76:46:7a:fd:02: 32:81:c0:7f:7d:61:28:bf:03:02:b5:9c:15:c7:bb: c5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E3:AF:3A:FF:43:6F:2C:1F:03:9A:BB:49:D5:78:9F:BA:03:DE:E7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f57cd127-87c2-4f68-b51e-d3af020a1d8b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.33.192.0/18 Signature Algorithm: sha256WithRSAEncryption 7b:de:a8:14:1b:21:dc:af:3d:47:59:61:b4:ac:72:bf:a3:ac: 01:57:f0:c6:a3:3a:4b:f9:c9:84:42:1d:d4:26:56:cb:7a:a9: 38:d1:21:f5:a5:a5:77:7e:17:be:03:00:04:66:63:e5:8e:97: 74:82:60:4e:b8:c5:5e:3a:10:8a:0c:95:d7:68:eb:8f:f8:cd: 5e:c2:92:9a:15:fd:aa:b0:f7:a4:35:71:27:1a:a1:f1:70:dd: 90:5f:e3:ce:30:c8:d1:f5:35:ea:f8:19:0b:d4:00:98:f7:66: b6:e0:42:a4:96:f9:9b:a3:33:d5:45:fd:6d:08:f5:52:8d:6c: 72:8e:bf:4d:65:4d:bc:4e:c3:d1:83:14:28:62:d4:b3:70:9f: 61:b2:4c:50:31:e5:52:06:9d:05:2f:90:e8:47:1b:ac:6e:49: 0d:cf:2a:e4:16:b4:6a:35:70:4e:7d:9f:62:3a:e9:e3:ca:fe: d1:78:0f:7f:23:d7:4e:25:76:e9:52:73:7b:1e:e2:2d:7e:ac: 33:d0:62:0c:a0:15:b1:04:96:01:5a:39:63:b0:85:41:c8:31: ce:a8:e2:9d:3a:60:6e:52:c9:a6:8e:48:be:49:a2:0a:95:67: 2c:46:b2:af:1d:98:0f:48:c9:d1:db:c1:79:30:07:a4:6e:d1: 59:ca:fa:14 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSXxHBplJl17wI6Z8ugSD4PWGnZAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMxMDAxMTEwWhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYmFmNDE3ODM5NGNiZDIxMzExNGUyZDcyYWJjYTQ0MDRm MzE1ZGMwMTRkZDM4MDMzYmM3NzUxMjMwMWIwOTJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEnZqEZ/L3uYzaKJf3uTnNvmybVwZiHOKOI/XwrnlOuM2S En60CdaQweaXsynwaEwsgD7AG9viDsO7q7r6k/gTj5luPIFdz7eHxXwau1IS+uhv EkeAKTc4h4sHDxChMcS5qxmvjhAi4bIefUtP+wD64cnqiJcPpWfXIf6NsXZG5+Dt PvyLf/oGD6hnMu04CXE8PYToSybXQkeMYnNhOdG9GjGyl95GzusSvWjPp4Nf6Ins 2De83iAoXlcK1O53vCUZ2chl1xU8G54WUIF0EtVBZ/b0xu7iIM/JPchj3PcYy+1m Gp2DWHtAD112Rnr9AjKBwH99YSi/AwK1nBXHu8VlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoOOvOv9DbywfA5q7SdV4n7oD3ucwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y1N2NkMTI3LTg3YzItNGY2OC1iNTFlLWQzYWYwMjBhMWQ4Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbMIcAwDQYJKoZIhvcNAQELBQADggEBAHveqBQbIdyvPUdZYbSscr+jrAFX 8MajOkv5yYRCHdQmVst6qTjRIfWlpXd+F74DAARmY+WOl3SCYE64xV46EIoMlddo 64/4zV7CkpoV/aqw96Q1cScaofFw3ZBf484wyNH1Ner4GQvUAJj3ZrbgQqSW+Zuj M9VF/W0I9VKNbHKOv01lTbxOw9GDFChi1LNwn2GyTFAx5VIGnQUvkOhHG6xuSQ3P KuQWtGo1cE59n2I66ePK/tF4D38j104ldulSc3se4i1+rDPQYgygFbEElgFaOWOw hUHIMc6o4p06YG5SyaaOSL5JogqVZyxGsq8dmA9IydHbwXkwB6Ru0VnK+hQ= -----END CERTIFICATE-----Generated at Sun Jun 1 04:21:49 2025 by rpki-client