$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b0d33020-6ece-4acd-b13b-856d17693653.roa File: b0d33020-6ece-4acd-b13b-856d17693653.roa (raw, json) Hash identifier: Ek65XPo+f9FhZ1EaQanuh5ofgiRUS0MQ5fVBzELm3Ik= Subject key identifier: 2F:9A:35:46:41:53:47:43:B7:1B:94:52:60:CB:B9:C4:CB:36:F0:DB Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 171EA6B75DD9AF919E411B50673CAEF527F0EEC6 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b0d33020-6ece-4acd-b13b-856d17693653.roa Signing time: Wed 04 Jun 2025 00:40:12 +0000 ROA not before: Wed 04 Jun 2025 00:40:12 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 204.246.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:1e:a6:b7:5d:d9:af:91:9e:41:1b:50:67:3c:ae:f5:27:f0:ee:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Jun 4 00:40:12 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=dd87295666ff3631acc24aca6490c65e15355036b8deb9e1e84983b5debaf187, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:26:b7:66:19:4e:a2:52:32:f2:a0:a2:d8:09: c1:62:38:6b:04:91:1c:01:01:08:4a:70:a0:2d:56: 75:49:70:eb:42:c6:3c:69:22:20:fd:6d:09:ea:30: b2:8a:96:35:a5:47:2d:dc:8a:54:af:8c:8b:49:75: 73:1a:a0:c9:fd:3c:72:1c:8c:ca:b1:28:58:4b:cc: 40:5a:f7:cb:94:88:32:29:8e:fd:0d:2c:ef:65:43: 94:c4:b0:6c:ce:41:6b:db:d5:87:d0:5c:41:1f:dc: 5e:1d:73:da:c9:7a:83:93:d8:36:2f:8a:f1:1c:1e: 26:45:08:47:90:bb:27:cb:2a:8a:2c:0f:71:11:69: a1:f8:7f:44:27:05:72:97:bf:3f:c2:85:9d:df:1f: 86:a8:20:dd:00:18:10:77:52:f6:75:22:a3:bd:38: 41:99:aa:e7:1a:28:2a:b7:9c:20:aa:50:d6:13:6d: 7c:b9:cd:1e:1b:7b:44:5b:f4:cf:a3:c8:43:3e:ce: a0:56:88:7d:80:fc:5f:62:d3:09:72:f7:13:0f:1b: 43:fe:89:29:a5:86:91:83:66:04:be:80:9c:62:4f: ba:5f:77:fa:f5:98:63:2c:47:3f:7c:8b:0f:f0:f9: 2d:02:f3:56:44:fd:98:43:dc:47:32:42:2d:8d:9b: b7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:9A:35:46:41:53:47:43:B7:1B:94:52:60:CB:B9:C4:CB:36:F0:DB X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/b0d33020-6ece-4acd-b13b-856d17693653.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.246.160.0/19 Signature Algorithm: sha256WithRSAEncryption 38:e4:68:ac:6f:0e:b0:ba:6f:37:2c:71:c1:10:f9:dd:fb:bb: 4d:63:6c:e1:24:93:de:67:d4:b5:75:06:13:6c:16:8c:26:d7: 32:f0:db:34:88:26:9c:9c:a6:46:22:ad:31:f0:ef:a7:28:56: e0:68:03:47:17:c9:b0:b9:52:8c:59:33:20:aa:c3:52:15:59: 5f:c3:67:a1:00:77:0e:f6:38:5e:9d:dc:79:e9:ab:e3:c2:64: 51:be:79:b4:c9:77:05:dd:b1:83:e2:94:f6:ab:6c:b0:dc:7e: 6e:cd:1a:a7:ff:c3:1d:90:a1:35:8c:5b:05:19:21:59:15:ce: cc:8b:76:f4:d5:3b:62:b0:9b:bf:4a:22:b6:67:30:46:3b:07: d5:c0:17:10:5e:bf:90:c4:d8:e8:79:c2:6c:2b:33:01:82:76: 01:42:0a:19:95:31:89:d4:c8:1d:f2:33:a8:98:6c:32:7f:1c: 0c:0a:74:55:4e:46:ba:55:8a:7f:58:af:81:70:9a:0e:b1:6d: 20:06:a3:0c:ed:43:33:d2:a9:83:4e:fe:91:2c:78:6b:cd:96: c3:d8:5e:d4:f6:cb:21:df:ca:a6:76:59:cc:ea:5b:7a:8e:cd: 73:2e:05:7c:49:77:02:28:c1:a5:eb:4d:d3:c6:72:6c:d5:b2: 32:af:52:e1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFx6mt13Zr5GeQRtQZzyu9Sfw7sYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwNjA0MDA0MDEyWhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDg3Mjk1NjY2ZmYzNjMxYWNjMjRhY2E2NDkwYzY1ZTE1 MzU1MDM2YjhkZWI5ZTFlODQ5ODNiNWRlYmFmMTg3MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyJrdmGU6iUjLyoKLYCcFiOGsEkRwBAQhKcKAtVnVJcOtC xjxpIiD9bQnqMLKKljWlRy3cilSvjItJdXMaoMn9PHIcjMqxKFhLzEBa98uUiDIp jv0NLO9lQ5TEsGzOQWvb1YfQXEEf3F4dc9rJeoOT2DYvivEcHiZFCEeQuyfLKoos D3ERaaH4f0QnBXKXvz/ChZ3fH4aoIN0AGBB3UvZ1IqO9OEGZqucaKCq3nCCqUNYT bXy5zR4be0Rb9M+jyEM+zqBWiH2A/F9i0wly9xMPG0P+iSmlhpGDZgS+gJxiT7pf d/r1mGMsRz98iw/w+S0C81ZE/ZhD3EcyQi2Nm7frAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUL5o1RkFTR0O3G5RSYMu5xMs28NswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2IwZDMzMDIwLTZlY2UtNGFjZC1iMTNiLTg1NmQxNzY5MzY1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXM9qAwDQYJKoZIhvcNAQELBQADggEBADjkaKxvDrC6bzcsccEQ+d37u01j bOEkk95n1LV1BhNsFowm1zLw2zSIJpycpkYirTHw76coVuBoA0cXybC5UoxZMyCq w1IVWV/DZ6EAdw72OF6d3Hnpq+PCZFG+ebTJdwXdsYPilParbLDcfm7NGqf/wx2Q oTWMWwUZIVkVzsyLdvTVO2Kwm79KIrZnMEY7B9XAFxBev5DE2Oh5wmwrMwGCdgFC ChmVMYnUyB3yM6iYbDJ/HAwKdFVORrpVin9Yr4Fwmg6xbSAGowztQzPSqYNO/pEs eGvNlsPYXtT2yyHfyqZ2WczqW3qOzXMuBXxJdwIowaXrTdPGcmzVsjKvUuE= -----END CERTIFICATE-----Generated at Sat Jun 7 04:15:22 2025 by rpki-client