$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbd49bcd-224f-4a8b-93d2-80dc17cdd84c.roa File: fbd49bcd-224f-4a8b-93d2-80dc17cdd84c.roa (raw, json) Hash identifier: GEMa9Vm4YMMnPfSzDXXhH+PcPuCtqEWGxnrSZgh+sZk= Subject key identifier: 9B:86:6B:7B:A7:26:BE:22:2C:77:67:6F:3E:B5:EC:A1:05:93:DE:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C99694805F55C1E4E4DDB3CD4EE9257F81B44EE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbd49bcd-224f-4a8b-93d2-80dc17cdd84c.roa Signing time: Wed 28 May 2025 00:30:25 +0000 ROA not before: Wed 28 May 2025 00:30:25 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 64.252.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:99:69:48:05:f5:5c:1e:4e:4d:db:3c:d4:ee:92:57:f8:1b:44:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:30:25 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=9abdf399a3ae5aaeb0a4eef7f56b75a01f2aefcc22fb641c78d7be909819ddf8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9d:11:4e:2d:f2:5f:9b:72:fc:86:6b:34:f5: 9f:ca:db:60:d8:5c:3b:41:e6:45:34:13:6b:d3:0a: 02:dc:01:82:31:a3:22:6b:b2:c4:56:8d:e5:16:3f: e5:96:92:2e:e5:f2:18:4a:40:36:f9:c0:e7:ed:d0: cb:c7:f0:93:25:6a:07:13:e7:90:40:6f:e2:15:9f: 92:cc:d7:8c:13:e5:f7:64:39:3c:c6:a9:ad:9d:16: bf:e1:c2:91:f7:9c:44:ae:c0:08:05:46:48:f1:15: c5:5e:e2:ab:a2:e5:b2:0a:3d:98:b1:1f:ac:4b:f9: 7f:3b:73:a1:96:12:34:62:3b:45:f3:32:3f:bb:36: dc:27:ea:93:6f:ec:fe:f5:b6:b9:6f:6e:f6:0a:69: 3a:ce:60:30:fc:b0:22:82:04:b6:ea:e1:c0:a9:39: 35:0b:d5:38:ea:b2:a6:96:73:fc:b1:b7:d1:eb:6a: eb:b9:01:ad:ea:af:9a:a4:ce:0a:63:ba:6c:f6:56: 5f:2b:51:51:a8:9d:6d:dd:d6:36:6a:cd:5c:8a:76: 13:24:b5:62:0c:cd:ef:84:4a:ba:a0:64:a9:52:b1: 48:ea:56:3d:a6:6c:95:72:5e:9e:91:08:03:52:d5: 7c:c8:eb:6e:5a:e9:01:5c:c6:e9:7f:c3:8a:6e:c3: 05:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:86:6B:7B:A7:26:BE:22:2C:77:67:6F:3E:B5:EC:A1:05:93:DE:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbd49bcd-224f-4a8b-93d2-80dc17cdd84c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.69.0/24 Signature Algorithm: sha256WithRSAEncryption 64:da:d7:93:47:c2:b9:4d:dd:c6:f3:3e:cc:55:f6:f1:fd:96: 25:07:4d:f9:a5:a1:b4:a3:6c:b6:db:53:07:fc:41:0d:4a:b0: 8e:f4:ce:49:b7:b8:4e:66:ce:43:4f:59:ff:43:5e:32:b5:eb: d7:8a:c2:bc:79:8c:3c:94:da:6b:99:de:fa:5d:0b:5c:eb:2c: 76:a4:29:9e:6c:09:7c:14:4c:b1:61:d2:d8:04:85:50:fa:e0: dd:03:fd:77:25:69:7a:50:c7:ab:92:87:0e:2d:66:49:eb:e6: e4:f6:7a:75:74:08:15:36:76:6f:c5:ca:83:ad:44:0a:78:7f: 91:1c:ce:7a:28:79:3b:a2:c6:f1:cc:74:92:89:2b:29:04:cf: 2e:64:38:c4:a1:2e:91:63:23:ad:ca:dd:3d:be:12:6c:5a:93: 60:91:b3:c2:3c:a9:d1:38:4b:58:01:d8:bf:90:de:ab:9d:12: 37:7b:85:cf:e5:a7:ed:78:a5:54:16:04:15:4d:af:30:ec:b0: 3c:bd:86:6d:e0:bf:f7:27:d2:f6:6e:b5:70:cc:55:86:c5:a4: 6f:24:b9:ec:38:9a:cf:64:5f:7b:53:82:e1:f7:d4:07:82:93: 3a:29:fd:ba:9e:84:c6:98:ab:9f:80:98:1d:24:75:bd:b3:c1: 01:4a:9b:33 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXJlpSAX1XB5OTds81O6SV/gbRO4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAzMDI1WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YWJkZjM5OWEzYWU1YWFlYjBhNGVlZjdmNTZiNzVhMDFm MmFlZmNjMjJmYjY0MWM3OGQ3YmU5MDk4MTlkZGY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEnRFOLfJfm3L8hms09Z/K22DYXDtB5kU0E2vTCgLcAYIx oyJrssRWjeUWP+WWki7l8hhKQDb5wOft0MvH8JMlagcT55BAb+IVn5LM14wT5fdk OTzGqa2dFr/hwpH3nESuwAgFRkjxFcVe4qui5bIKPZixH6xL+X87c6GWEjRiO0Xz Mj+7Ntwn6pNv7P71trlvbvYKaTrOYDD8sCKCBLbq4cCpOTUL1TjqsqaWc/yxt9Hr auu5Aa3qr5qkzgpjumz2Vl8rUVGonW3d1jZqzVyKdhMktWIMze+ESrqgZKlSsUjq Vj2mbJVyXp6RCANS1XzI625a6QFcxul/w4puwwWfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUm4Zre6cmviIsd2dvPrXsoQWT3l0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiZDQ5YmNkLTIyNGYtNGE4Yi05M2QyLTgwZGMxN2NkZDg0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/EUwDQYJKoZIhvcNAQELBQADggEBAGTa15NHwrlN3cbzPsxV9vH9liUH TfmlobSjbLbbUwf8QQ1KsI70zkm3uE5mzkNPWf9DXjK169eKwrx5jDyU2muZ3vpd C1zrLHakKZ5sCXwUTLFh0tgEhVD64N0D/XclaXpQx6uShw4tZknr5uT2enV0CBU2 dm/FyoOtRAp4f5EcznooeTuixvHMdJKJKykEzy5kOMShLpFjI63K3T2+Emxak2CR s8I8qdE4S1gB2L+Q3qudEjd7hc/lp+14pVQWBBVNrzDssDy9hm3gv/cn0vZutXDM VYbFpG8kuew4ms9kX3tTguH31AeCkzop/bqehMaYq5+AmB0kdb2zwQFKmzM= -----END CERTIFICATE-----Generated at Sun Jun 1 04:24:13 2025 by rpki-client