$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2535cc4c-9ce6-4b14-afe6-357ae8cab4c5.roa File: 2535cc4c-9ce6-4b14-afe6-357ae8cab4c5.roa (raw, json) Hash identifier: 0L77YptlVhEVnIO/rXQz9vyndkT9YCpP5RJi5kFMtiA= Subject key identifier: C0:FF:73:41:15:40:72:1A:94:3E:FF:F9:71:04:47:34:A9:07:9C:CE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 76B0BAA61E86D1E276BF67200A5753C4783AC5A0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2535cc4c-9ce6-4b14-afe6-357ae8cab4c5.roa Signing time: Tue 29 Apr 2025 00:02:01 +0000 ROA not before: Tue 29 Apr 2025 00:02:01 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.24.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:b0:ba:a6:1e:86:d1:e2:76:bf:67:20:0a:57:53:c4:78:3a:c5:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:02:01 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=eb73e8cb6ffedc10554a18a814b41c8b86e31fe8adeb18e99a612f185e5510a6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:a0:b0:86:7f:02:3a:77:ed:24:4b:b5:82:c2: c1:3d:70:8d:9f:4c:e4:06:91:a7:56:aa:85:2c:41: 12:09:57:0d:db:b4:6e:58:29:f8:5f:3d:cf:f1:cf: 12:d0:64:56:ec:a7:bc:20:ca:fa:36:b4:e7:82:06: c2:82:81:34:d3:f6:d4:56:03:af:a7:28:cd:6d:d2: b4:3d:20:3c:70:ae:cf:80:ea:75:ae:03:18:c6:70: b8:eb:4d:f8:05:02:d0:5d:29:bb:1a:04:f5:6b:08: 58:d4:54:80:fd:a9:ac:cb:bd:22:a0:9d:58:2f:75: c5:5d:57:03:d1:a1:f3:90:7b:29:79:aa:29:ae:23: 23:de:6b:fd:cb:91:cc:c3:3e:54:a0:d0:01:01:c2: b8:d9:8e:5f:89:78:81:1d:cf:ec:60:58:70:d6:12: dd:3f:ad:e3:78:fe:cc:7c:1f:4a:65:82:6f:35:4f: 19:df:d2:36:6f:88:fb:34:e6:21:7b:96:cd:77:68: 43:24:6d:e2:8d:5a:47:02:06:09:e1:af:a9:e6:b4: 7f:77:2d:94:b3:9c:0a:ac:09:16:f6:64:aa:70:c8: 3f:6b:ed:36:22:ff:0a:0d:1d:8d:7f:9c:6c:a2:db: b2:ff:f5:63:53:1e:cc:8f:be:7e:b0:fc:09:f0:69: e6:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:FF:73:41:15:40:72:1A:94:3E:FF:F9:71:04:47:34:A9:07:9C:CE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2535cc4c-9ce6-4b14-afe6-357ae8cab4c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.24.240.0/20 Signature Algorithm: sha256WithRSAEncryption bc:c7:e7:dc:47:45:51:6b:1d:59:56:d3:52:3d:69:4e:3a:ef: 31:50:75:0f:0c:fa:d3:2f:5a:33:4f:b4:ce:1a:b6:d4:58:82: 13:36:b5:9b:1d:62:cb:e7:51:4e:80:e2:87:2c:76:1d:c7:14: 9b:e5:c4:10:3a:bb:79:35:2c:24:dc:0d:37:d6:5b:97:c5:f2: 2c:8b:fe:99:58:88:00:ef:68:fd:e1:7a:5f:ca:c1:97:51:09: 2a:e0:63:06:74:5b:ce:73:b6:3e:0d:b5:3b:8d:7b:4b:9f:87: 81:1c:1e:47:16:21:70:0d:14:a4:96:fa:54:18:6e:0f:3b:52: b5:65:44:92:47:a4:82:fd:11:23:14:b2:b6:1c:82:74:1d:7d: 61:09:d0:6f:e3:58:d1:ec:90:7c:5f:cb:b2:32:9d:3e:85:d8: b0:63:01:ab:59:8a:8f:53:94:75:6a:b1:60:68:d2:6a:d6:97: 96:1b:52:ab:33:4c:05:28:c7:0e:ad:2e:eb:07:e5:e9:d2:9d: da:20:b8:2e:f1:c4:37:61:3b:71:8f:31:9f:40:e9:c6:2a:ae: 6d:a1:0d:1e:7d:81:00:1e:f4:f1:44:6d:36:d2:80:d2:f4:dd: d5:65:6e:0c:09:09:a1:11:90:32:78:e5:01:7c:e6:b7:cc:a1: a0:4b:dc:1d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdrC6ph6G0eJ2v2cgCldTxHg6xaAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAwMjAxWhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjczZThjYjZmZmVkYzEwNTU0YTE4YTgxNGI0MWM4Yjg2 ZTMxZmU4YWRlYjE4ZTk5YTYxMmYxODVlNTUxMGE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYoLCGfwI6d+0kS7WCwsE9cI2fTOQGkadWqoUsQRIJVw3b tG5YKfhfPc/xzxLQZFbsp7wgyvo2tOeCBsKCgTTT9tRWA6+nKM1t0rQ9IDxwrs+A 6nWuAxjGcLjrTfgFAtBdKbsaBPVrCFjUVID9qazLvSKgnVgvdcVdVwPRofOQeyl5 qimuIyPea/3LkczDPlSg0AEBwrjZjl+JeIEdz+xgWHDWEt0/reN4/sx8H0plgm81 Txnf0jZviPs05iF7ls13aEMkbeKNWkcCBgnhr6nmtH93LZSznAqsCRb2ZKpwyD9r 7TYi/woNHY1/nGyi27L/9WNTHsyPvn6w/AnwaebxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwP9zQRVAchqUPv/5cQRHNKkHnM4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI1MzVjYzRjLTljZTYtNGIxNC1hZmU2LTM1N2FlOGNhYjRjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATYGPAwDQYJKoZIhvcNAQELBQADggEBALzH59xHRVFrHVlW01I9aU467zFQ dQ8M+tMvWjNPtM4attRYghM2tZsdYsvnUU6A4ocsdh3HFJvlxBA6u3k1LCTcDTfW W5fF8iyL/plYiADvaP3hel/KwZdRCSrgYwZ0W85ztj4NtTuNe0ufh4EcHkcWIXAN FKSW+lQYbg87UrVlRJJHpIL9ESMUsrYcgnQdfWEJ0G/jWNHskHxfy7IynT6F2LBj AatZio9TlHVqsWBo0mrWl5YbUqszTAUoxw6tLusH5enSndoguC7xxDdhO3GPMZ9A 6cYqrm2hDR59gQAe9PFEbTbSgNL03dVlbgwJCaERkDJ45QF85rfMoaBL3B0= -----END CERTIFICATE-----Generated at Sun May 11 01:23:48 2025 by rpki-client