$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb0b7d83-ba63-418d-9ba0-0081273c74ff.roa File: fb0b7d83-ba63-418d-9ba0-0081273c74ff.roa (raw, json) Hash identifier: uo4szAyMObxNe0FvT6gmzC09Q/v/Lvv5SBZsxJf38rs= Subject key identifier: BD:C2:76:E3:95:54:DA:BB:14:34:A2:0B:89:98:DC:71:37:F2:66:BD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 41F604413CB7151BBCECC2200451F61FF6BB867A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb0b7d83-ba63-418d-9ba0-0081273c74ff.roa Signing time: Wed 21 May 2025 00:00:31 +0000 ROA not before: Wed 21 May 2025 00:00:31 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 170.221.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:f6:04:41:3c:b7:15:1b:bc:ec:c2:20:04:51:f6:1f:f6:bb:86:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 21 00:00:31 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=9f01191a52c35e8278d28886bd78f5b5b35d4ca1382fd7c3669051f88c9ef458, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2b:11:f7:e4:e5:20:76:52:06:a8:f8:af:12: 88:c2:98:26:11:bf:b7:2d:f5:de:b9:64:1b:49:f6: d3:de:f8:24:ce:e7:44:3a:a0:02:23:63:af:e7:ec: 33:d2:04:8b:07:9f:38:4e:5f:b4:9c:f2:c4:bf:a9: 47:9c:8f:38:60:69:d5:6e:a3:b8:1a:dc:7e:8b:91: 8f:68:d6:ec:9b:37:74:41:6a:d9:0e:3d:7a:37:00: 31:e2:30:72:75:6d:dd:16:74:8a:51:95:67:5b:bb: 43:d1:65:2e:7f:0d:4d:81:bf:93:03:c7:75:f8:63: 6e:15:2f:b2:a8:da:2e:f9:e8:31:ed:61:ab:be:ce: c5:f0:b3:c3:0e:80:f7:25:cc:5b:bc:b4:96:01:1a: c2:28:39:8d:7d:fd:d9:3c:ba:14:90:c9:7d:22:27: 47:6c:68:bd:1b:62:5a:64:db:6a:d8:c2:5c:15:31: f1:5b:6b:2b:cb:ad:7c:8e:4b:73:dd:dc:48:ae:b1: 16:c9:fb:fc:15:71:4e:70:61:c4:f6:fe:b7:cb:6e: 4f:86:ce:72:9a:3e:7a:4c:d4:8c:68:dd:b8:0a:ac: 4f:00:58:a4:cd:e8:60:ff:7b:32:68:3d:17:46:83: 75:76:18:8a:6e:a5:6a:6b:de:cc:2d:ee:74:7b:c1: cc:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:C2:76:E3:95:54:DA:BB:14:34:A2:0B:89:98:DC:71:37:F2:66:BD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb0b7d83-ba63-418d-9ba0-0081273c74ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 170.221.0.0/16 Signature Algorithm: sha256WithRSAEncryption 94:79:28:bb:57:6b:15:3f:3d:71:8d:f9:32:2d:89:0e:26:e7: 21:09:ee:9d:84:dc:72:12:a0:13:48:64:8d:51:5c:a3:ca:2e: 10:2a:23:0c:5f:a7:6e:5f:22:64:76:94:4b:2d:cf:a7:88:ba: 1b:fc:28:db:7e:25:2e:51:ea:f4:85:02:02:62:14:7a:2c:3b: e1:87:e4:c8:1b:ed:eb:44:c0:12:64:d6:ae:93:fd:10:5b:94: 9e:a6:e6:9b:89:8c:0a:d6:ed:59:21:89:ba:31:3f:d8:ff:ca: c2:f3:7c:40:10:b3:04:01:66:81:9a:e7:5b:43:1c:39:4f:22: f5:51:1c:e5:2e:20:aa:ba:2d:de:fd:91:cf:54:d0:2c:5b:5e: 7c:f1:41:91:de:c0:be:4f:23:4d:bd:a3:15:f4:ee:7e:bb:a9: 85:95:da:1d:ed:59:50:85:d4:14:37:2d:28:09:b6:71:91:3e: 41:63:f4:a5:fb:cf:dc:ee:ef:72:10:e2:25:a4:50:e2:b8:43: 77:4f:8c:60:03:07:19:26:a0:95:ca:c2:b5:57:c8:de:d3:89: 56:1c:7e:4c:6c:57:5f:c5:52:c5:85:1f:c3:89:4a:a8:86:a6: 8b:87:e3:45:50:f0:bf:96:54:f0:d1:61:33:9d:ef:65:9e:60: aa:fb:9d:0c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQfYEQTy3FRu87MIgBFH2H/a7hnowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIxMDAwMDMxWhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZjAxMTkxYTUyYzM1ZTgyNzhkMjg4ODZiZDc4ZjViNWIz NWQ0Y2ExMzgyZmQ3YzM2NjkwNTFmODhjOWVmNDU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2KxH35OUgdlIGqPivEojCmCYRv7ct9d65ZBtJ9tPe+CTO 50Q6oAIjY6/n7DPSBIsHnzhOX7Sc8sS/qUecjzhgadVuo7ga3H6LkY9o1uybN3RB atkOPXo3ADHiMHJ1bd0WdIpRlWdbu0PRZS5/DU2Bv5MDx3X4Y24VL7Ko2i756DHt Yau+zsXws8MOgPclzFu8tJYBGsIoOY19/dk8uhSQyX0iJ0dsaL0bYlpk22rYwlwV MfFbayvLrXyOS3Pd3EiusRbJ+/wVcU5wYcT2/rfLbk+GznKaPnpM1Ixo3bgKrE8A WKTN6GD/ezJoPRdGg3V2GIpupWpr3swt7nR7wcyHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUvcJ245VU2rsUNKILiZjccTfyZr0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiMGI3ZDgzLWJhNjMtNDE4ZC05YmEwLTAwODEyNzNjNzRmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCq3TANBgkqhkiG9w0BAQsFAAOCAQEAlHkou1drFT89cY35Mi2JDibnIQnu nYTcchKgE0hkjVFco8ouECojDF+nbl8iZHaUSy3Pp4i6G/wo234lLlHq9IUCAmIU eiw74YfkyBvt60TAEmTWrpP9EFuUnqbmm4mMCtbtWSGJujE/2P/KwvN8QBCzBAFm gZrnW0McOU8i9VEc5S4gqrot3v2Rz1TQLFtefPFBkd7Avk8jTb2jFfTufruphZXa He1ZUIXUFDctKAm2cZE+QWP0pfvP3O7vchDiJaRQ4rhDd0+MYAMHGSaglcrCtVfI 3tOJVhx+TGxXX8VSxYUfw4lKqIami4fjRVDwv5ZU8NFhM53vZZ5gqvudDA== -----END CERTIFICATE-----Generated at Sun Jun 1 05:20:06 2025 by rpki-client