$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13a7aaf3-b41d-469c-8464-1f7399d7ccf8.roa File: 13a7aaf3-b41d-469c-8464-1f7399d7ccf8.roa (raw, json) Hash identifier: ClvSdOz0s23EdOp6n3BEl+KQ7NTGgfIsx1C0PRaEZIU= Subject key identifier: 5B:D1:51:20:EA:4C:F9:5A:F8:CD:E4:B2:97:2A:6E:A1:21:0F:B0:28 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B0AA7A4F0A427F1F812D5CE950558D7D95B314C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13a7aaf3-b41d-469c-8464-1f7399d7ccf8.roa Signing time: Mon 05 May 2025 15:31:05 +0000 ROA not before: Mon 05 May 2025 15:31:05 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:0a:a7:a4:f0:a4:27:f1:f8:12:d5:ce:95:05:58:d7:d9:5b:31:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:31:05 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=c1b40c2da84339600834f79a86ae657530d8a599b3cd1e538f24c50c56318cee, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:20:ff:3a:28:46:1a:47:5e:3e:c2:9e:68:eb: 7d:5e:3d:2b:87:a4:1a:34:6b:19:f8:6d:d4:43:b7: 12:fb:ea:e8:e5:00:37:c0:97:a9:39:42:fe:14:a6: 10:ba:29:ea:ad:4d:bb:8e:be:0a:6a:6b:18:77:72: ed:5a:a4:96:a3:d9:5a:e4:8f:55:94:b4:a0:4b:cd: f7:8f:1e:a4:5d:93:1e:2b:ee:53:43:f7:74:e5:32: 89:2b:3e:f0:45:29:14:f4:a7:32:46:67:32:8a:0d: f4:83:cb:f3:43:c9:c4:f8:8b:9f:82:69:a0:af:c3: c7:68:a6:c2:23:64:0b:80:58:60:92:32:e5:31:a1: f9:11:18:b9:9f:36:fa:91:16:4b:30:72:68:14:5a: be:9a:e3:42:af:90:9b:aa:e9:c2:90:f8:ee:96:d9: 72:e6:86:fd:40:41:f5:10:fa:52:b1:99:0e:c1:cb: 59:2b:9f:83:3f:81:35:28:c3:81:dd:63:f2:7d:6e: f3:e7:ef:19:ca:11:37:a9:c0:bb:ce:e8:46:4b:a0: 05:77:fd:7f:41:48:78:2c:ca:b3:32:33:2c:7f:41: 87:05:50:c7:c0:ef:47:1f:00:2e:0b:37:fc:e2:38: 1a:e3:aa:97:48:92:a6:dd:34:fe:e3:bb:b8:bb:c7: c4:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:D1:51:20:EA:4C:F9:5A:F8:CD:E4:B2:97:2A:6E:A1:21:0F:B0:28 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13a7aaf3-b41d-469c-8464-1f7399d7ccf8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.67.0/24 Signature Algorithm: sha256WithRSAEncryption bf:18:2e:be:ed:f6:dd:ac:5b:c2:83:2d:6e:34:c0:61:e2:5b: af:55:c1:ea:12:38:94:14:fe:b6:66:07:0d:f1:34:33:b9:37: 69:3c:0d:6b:f1:ab:17:52:06:a6:c0:b2:18:65:34:0f:7b:8f: 3b:5d:44:80:82:fc:e8:17:5a:ea:8f:0c:29:73:08:35:61:1e: 5c:8e:1b:a9:f9:3b:02:81:b8:6d:85:61:dd:8a:51:40:91:cc: 53:67:49:39:19:cb:cb:d9:f5:da:fa:15:58:43:97:48:3b:3e: 65:d7:2c:88:fc:2a:b7:c4:0e:b4:58:62:f3:68:a8:96:13:db: 47:e7:c0:4c:a9:06:0b:b9:38:5d:d0:16:8f:1e:9c:b2:4a:06: 30:b2:49:9d:fe:ed:d0:29:4b:e9:16:7a:22:ca:5f:f3:6e:ea: 7d:2e:69:64:b8:d1:85:7a:0a:e2:76:ad:a9:47:97:ea:e5:9b: 1b:f5:3c:f9:93:88:a8:5d:32:89:45:40:37:2f:6f:96:46:09: 53:a3:0c:aa:f7:77:0f:1b:f6:97:a1:1b:ce:da:88:c2:52:89: 92:c7:a5:c3:49:6a:1c:81:64:18:ab:5f:e6:70:97:83:c5:ac: 63:be:18:3a:e7:cc:0f:1c:48:6d:de:77:ce:70:92:1b:37:07: 2b:3c:1e:90 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCwqnpPCkJ/H4EtXOlQVY19lbMUwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTUzMTA1WhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMWI0MGMyZGE4NDMzOTYwMDgzNGY3OWE4NmFlNjU3NTMw ZDhhNTk5YjNjZDFlNTM4ZjI0YzUwYzU2MzE4Y2VlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfIP86KEYaR14+wp5o631ePSuHpBo0axn4bdRDtxL76ujl ADfAl6k5Qv4UphC6KeqtTbuOvgpqaxh3cu1apJaj2Vrkj1WUtKBLzfePHqRdkx4r 7lND93TlMokrPvBFKRT0pzJGZzKKDfSDy/NDycT4i5+CaaCvw8dopsIjZAuAWGCS MuUxofkRGLmfNvqRFkswcmgUWr6a40KvkJuq6cKQ+O6W2XLmhv1AQfUQ+lKxmQ7B y1krn4M/gTUow4HdY/J9bvPn7xnKETepwLvO6EZLoAV3/X9BSHgsyrMyMyx/QYcF UMfA70cfAC4LN/ziOBrjqpdIkqbdNP7ju7i7x8Q1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUW9FRIOpM+Vr4zeSylypuoSEPsCgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEzYTdhYWYzLWI0MWQtNDY5Yy04NDY0LTFmNzM5OWQ3Y2NmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/EMwDQYJKoZIhvcNAQELBQADggEBAL8YLr7t9t2sW8KDLW40wGHiW69V weoSOJQU/rZmBw3xNDO5N2k8DWvxqxdSBqbAshhlNA97jztdRICC/OgXWuqPDClz CDVhHlyOG6n5OwKBuG2FYd2KUUCRzFNnSTkZy8vZ9dr6FVhDl0g7PmXXLIj8KrfE DrRYYvNoqJYT20fnwEypBgu5OF3QFo8enLJKBjCySZ3+7dApS+kWeiLKX/Nu6n0u aWS40YV6CuJ2ralHl+rlmxv1PPmTiKhdMolFQDcvb5ZGCVOjDKr3dw8b9pehG87a iMJSiZLHpcNJahyBZBirX+Zwl4PFrGO+GDrnzA8cSG3ed85wkhs3Bys8HpA= -----END CERTIFICATE-----Generated at Sat May 10 07:13:40 2025 by rpki-client