$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa File: 5307b426-3578-4099-8905-82473e6dd0a6.roa (raw, json) Hash identifier: PDlgSYcpoA6fDeS3QOz0tVFvYfhGRD6cLtR3JjPTfkA= Subject key identifier: 11:A0:E4:EB:9D:47:E2:D1:8E:AC:E5:1D:47:AA:AB:FA:27:B4:16:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3FAD97E9866DFAF5B0F3EF35F8AA5DCC0BE13D05 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa Signing time: Wed 07 May 2025 00:00:34 +0000 ROA not before: Wed 07 May 2025 00:00:34 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 206.72.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:ad:97:e9:86:6d:fa:f5:b0:f3:ef:35:f8:aa:5d:cc:0b:e1:3d:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:00:34 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=3e2da3fc703b47da516f6556d55de5d61b5c5928f8f72e765e3e3808765db336, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6e:6b:63:b7:40:99:17:aa:f2:55:74:21:61: ae:2b:a0:94:10:69:fb:a1:f8:62:6e:24:c5:5c:a5: 04:e8:00:c7:93:ee:e7:42:e2:aa:a9:9f:97:c4:5d: c4:45:86:a8:10:45:0b:a2:4c:ff:d5:f7:f9:2b:a7: 0e:a4:54:5a:ba:b0:be:9f:c8:95:42:66:1f:87:30: 83:e2:13:6f:0b:ef:b0:40:e1:2d:5f:ca:ef:ff:de: 6f:b9:36:7b:29:6a:88:51:2d:7b:30:f7:11:f9:61: 54:28:48:6b:c2:86:4a:69:82:44:89:ce:2f:e6:4f: 2a:32:5e:36:b3:65:4d:20:6e:72:cd:5e:cf:17:04: 60:73:75:ad:d3:d0:30:ec:97:36:b4:30:6b:6a:f1: 74:60:db:0a:86:8a:65:e8:9f:bb:65:cf:2c:5a:d7: ab:01:fa:6f:c8:16:3f:1c:96:8e:c1:09:c7:d1:1d: bd:81:37:73:ad:fc:c2:d5:b7:95:32:0c:e7:12:1b: 2e:14:ad:00:d5:48:19:a9:9d:78:b3:55:f6:93:ea: f9:a9:17:f3:64:fa:aa:23:27:32:5f:01:ef:74:5d: c7:14:bb:e5:c3:76:95:64:f1:4f:b6:f0:fd:cd:c2: 64:1c:57:2c:0b:af:52:e0:87:d8:66:eb:83:4e:a7: 48:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:A0:E4:EB:9D:47:E2:D1:8E:AC:E5:1D:47:AA:AB:FA:27:B4:16:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5307b426-3578-4099-8905-82473e6dd0a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.72.209.0/24 Signature Algorithm: sha256WithRSAEncryption bf:1b:14:f7:7b:f3:fe:3c:30:49:72:3f:6e:5c:b0:a4:20:cf: 7d:c8:75:79:4b:9f:b6:19:71:60:34:5f:61:eb:54:24:98:83: 02:57:50:4c:ff:ad:e9:21:ba:f0:5d:41:c8:2c:1c:c0:bf:3c: b0:36:fb:59:6a:5c:3a:0b:b6:b0:7b:d7:34:82:d9:a0:e5:8c: a6:2d:55:12:b7:28:09:e7:d1:eb:62:d2:d2:bb:6b:c8:eb:51: e8:cf:9e:a3:9c:76:50:15:e1:e2:90:e7:81:66:1e:74:0b:c7: cd:91:65:52:9f:ec:99:7b:b6:df:56:a5:d2:5a:94:59:b4:d3: 63:bf:24:68:ae:a0:e4:8a:9b:bb:bd:a2:27:cd:b8:2d:c4:09: 59:f4:df:30:99:1f:de:5a:15:73:80:42:b6:37:7c:d0:db:bb: 1d:fe:84:09:4a:ff:d5:5f:2a:0c:ea:75:c5:b3:b3:a2:d9:17: a9:3d:be:76:eb:93:cc:df:c2:4f:aa:67:c3:3b:cb:1b:02:1d: 9a:6d:19:1d:89:7d:e5:51:7f:a4:d1:df:72:bf:a6:10:0d:65: 08:9f:59:26:7f:31:7b:b2:15:d0:0c:c8:04:8e:0b:1d:1c:5b: 0e:85:77:2b:60:e9:cd:92:8b:aa:47:bd:ad:e9:17:e9:53:55: 18:36:98:e3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUP62X6YZt+vWw8+81+KpdzAvhPQUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDAwMDM0WhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTJkYTNmYzcwM2I0N2RhNTE2ZjY1NTZkNTVkZTVkNjFi NWM1OTI4ZjhmNzJlNzY1ZTNlMzgwODc2NWRiMzM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/bmtjt0CZF6ryVXQhYa4roJQQafuh+GJuJMVcpQToAMeT 7udC4qqpn5fEXcRFhqgQRQuiTP/V9/krpw6kVFq6sL6fyJVCZh+HMIPiE28L77BA 4S1fyu//3m+5NnspaohRLXsw9xH5YVQoSGvChkppgkSJzi/mTyoyXjazZU0gbnLN Xs8XBGBzda3T0DDslza0MGtq8XRg2wqGimXon7tlzyxa16sB+m/IFj8clo7BCcfR Hb2BN3Ot/MLVt5UyDOcSGy4UrQDVSBmpnXizVfaT6vmpF/Nk+qojJzJfAe90XccU u+XDdpVk8U+28P3NwmQcVywLr1Lgh9hm64NOp0ivAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEaDk651H4tGOrOUdR6qr+ie0FgUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzMDdiNDI2LTM1NzgtNDA5OS04OTA1LTgyNDczZTZkZDBhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADOSNEwDQYJKoZIhvcNAQELBQADggEBAL8bFPd78/48MElyP25csKQgz33I dXlLn7YZcWA0X2HrVCSYgwJXUEz/rekhuvBdQcgsHMC/PLA2+1lqXDoLtrB71zSC 2aDljKYtVRK3KAnn0eti0tK7a8jrUejPnqOcdlAV4eKQ54FmHnQLx82RZVKf7Jl7 tt9WpdJalFm002O/JGiuoOSKm7u9oifNuC3ECVn03zCZH95aFXOAQrY3fNDbux3+ hAlK/9VfKgzqdcWzs6LZF6k9vnbrk8zfwk+qZ8M7yxsCHZptGR2JfeVRf6TR33K/ phANZQifWSZ/MXuyFdAMyASOCx0cWw6Fdytg6c2Si6pHva3pF+lTVRg2mOM= -----END CERTIFICATE-----Generated at Sun May 11 16:02:24 2025 by rpki-client