$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ec3d9fb-97af-4d5a-9505-babad7d3b04b.roa File: 5ec3d9fb-97af-4d5a-9505-babad7d3b04b.roa (raw, json) Hash identifier: m+ulAK/dycagwN8I3Gp4yQhINtY1QDlovdDzTx54zQ4= Subject key identifier: 92:BC:6A:0D:DF:2D:E6:4B:8D:BE:EA:D2:94:85:F7:30:8D:47:A6:07 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 50CF353B93328B2626721E5C104F796440B600D4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ec3d9fb-97af-4d5a-9505-babad7d3b04b.roa Signing time: Fri 09 May 2025 00:20:20 +0000 ROA not before: Fri 09 May 2025 00:20:20 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.92.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:cf:35:3b:93:32:8b:26:26:72:1e:5c:10:4f:79:64:40:b6:00:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:20:20 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=db7a4bee7613cffa7181c602895e76745c73d2043a2f58f1882b8957ed9ef79b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:1b:1b:f6:8d:97:de:f2:c3:ef:65:ae:11:88: 5c:20:88:6d:29:7c:aa:41:d1:34:07:90:fe:a6:aa: 2b:5f:0d:34:d0:92:b9:26:43:04:65:d6:93:e5:66: ef:db:a0:61:78:c8:0b:fe:a2:3e:c6:8b:cf:68:bb: 7d:4a:07:d5:f1:e7:2e:22:ea:39:db:92:9d:12:00: 61:e8:02:26:db:d3:33:24:f4:37:f3:89:87:14:7e: f2:a2:b7:cb:1a:1c:79:4e:1e:23:31:de:e3:c2:62: 7b:10:14:d0:92:54:2d:43:fa:36:05:de:3e:60:83: 14:8f:bf:ba:b9:4b:a9:68:57:c2:37:db:07:a7:50: a3:6e:56:b8:12:e7:cb:5d:60:f9:61:09:b5:e7:0a: 46:eb:45:b8:46:49:44:0e:ce:f0:91:da:40:f1:7a: eb:5a:2b:8c:14:ef:a2:4f:54:4d:20:c3:b6:70:da: 2b:49:85:3b:9f:93:2a:e3:de:3e:bd:bd:d4:84:2d: 0b:c6:e6:64:fa:0b:02:26:98:95:7c:48:1e:e3:d2: 3b:ca:1e:26:7a:bd:7a:bd:30:61:dd:2e:ce:d6:08: a6:10:74:8d:aa:a8:e3:45:06:19:7e:7d:88:d5:6c: 21:a1:cf:d7:a6:85:8b:f6:a6:18:c7:02:f5:f1:9c: af:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:BC:6A:0D:DF:2D:E6:4B:8D:BE:EA:D2:94:85:F7:30:8D:47:A6:07 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ec3d9fb-97af-4d5a-9505-babad7d3b04b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.92.128.0/21 Signature Algorithm: sha256WithRSAEncryption bf:eb:ec:b0:55:fa:16:6e:24:b0:95:ce:ac:a4:03:6a:ca:5a: 98:d1:8a:ee:6f:e4:c9:75:db:42:12:71:88:60:12:ba:bf:1a: bc:2b:1f:0e:65:fd:34:8b:5e:97:12:f3:be:54:ea:da:bd:4c: 51:75:e1:b6:7d:7b:de:0a:b9:e5:a7:46:ef:d3:56:4d:46:0a: ee:a9:c0:94:e8:02:43:d6:e1:65:50:c3:3f:4c:7f:32:c3:dc: 8c:e2:f6:5c:2d:b2:5a:52:94:53:16:ab:23:d3:59:20:cb:67: de:d8:46:23:f6:fe:78:b0:c3:c1:78:53:12:14:cf:70:84:b2: ee:7f:2e:09:df:16:e0:44:fe:62:12:46:f1:30:6a:89:1b:eb: 11:3c:a0:5a:52:8a:8d:67:78:d0:4f:cf:63:1c:b1:1c:27:d5: 94:cf:0d:5f:00:c5:5f:ce:09:b4:c9:73:b2:0e:b8:98:d1:78: 7f:e0:56:08:4e:9c:de:70:b6:99:12:5e:82:2d:2d:65:43:cc: 95:22:6f:35:b0:dc:29:0c:d3:be:55:c2:b1:0a:1f:74:90:7d: 99:8a:7a:f7:0b:1f:7d:94:44:ad:41:27:ea:39:7f:fd:83:10: a4:23:e6:4a:7d:a3:c8:6d:7b:57:98:62:e1:33:cd:5a:4a:be: ac:36:9b:4b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUM81O5MyiyYmch5cEE95ZEC2ANQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAyMDIwWhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjdhNGJlZTc2MTNjZmZhNzE4MWM2MDI4OTVlNzY3NDVj NzNkMjA0M2EyZjU4ZjE4ODJiODk1N2VkOWVmNzliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWGxv2jZfe8sPvZa4RiFwgiG0pfKpB0TQHkP6mqitfDTTQ krkmQwRl1pPlZu/boGF4yAv+oj7Gi89ou31KB9Xx5y4i6jnbkp0SAGHoAibb0zMk 9DfziYcUfvKit8saHHlOHiMx3uPCYnsQFNCSVC1D+jYF3j5ggxSPv7q5S6loV8I3 2wenUKNuVrgS58tdYPlhCbXnCkbrRbhGSUQOzvCR2kDxeutaK4wU76JPVE0gw7Zw 2itJhTufkyrj3j69vdSELQvG5mT6CwImmJV8SB7j0jvKHiZ6vXq9MGHdLs7WCKYQ dI2qqONFBhl+fYjVbCGhz9emhYv2phjHAvXxnK+HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkrxqDd8t5kuNvurSlIX3MI1HpgcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlYzNkOWZiLTk3YWYtNGQ1YS05NTA1LWJhYmFkN2QzYjA0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPRXIAwDQYJKoZIhvcNAQELBQADggEBAL/r7LBV+hZuJLCVzqykA2rKWpjR iu5v5Ml120IScYhgErq/GrwrHw5l/TSLXpcS875U6tq9TFF14bZ9e94KueWnRu/T Vk1GCu6pwJToAkPW4WVQwz9MfzLD3Izi9lwtslpSlFMWqyPTWSDLZ97YRiP2/niw w8F4UxIUz3CEsu5/LgnfFuBE/mISRvEwaokb6xE8oFpSio1neNBPz2McsRwn1ZTP DV8AxV/OCbTJc7IOuJjReH/gVghOnN5wtpkSXoItLWVDzJUibzWw3CkM075VwrEK H3SQfZmKevcLH32URK1BJ+o5f/2DEKQj5kp9o8hte1eYYuEzzVpKvqw2m0s= -----END CERTIFICATE-----Generated at Sat May 10 05:19:23 2025 by rpki-client