$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/881dacf6-d140-4abe-8126-8ab754799453.roa File: 881dacf6-d140-4abe-8126-8ab754799453.roa (raw, json) Hash identifier: yNFAb7tUJbOlRIKrf5RVUW4jcCL+boo2rWbc5poI2v0= Subject key identifier: 53:EC:F7:DF:1E:61:CD:70:6D:92:CA:74:B4:3D:F6:9A:7B:4E:23:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3ECD69845BB8F8D3E6C23FFB34D9ED6610E0AD5D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/881dacf6-d140-4abe-8126-8ab754799453.roa Signing time: Wed 07 May 2025 00:50:18 +0000 ROA not before: Wed 07 May 2025 00:50:18 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 63.254.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 15 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:cd:69:84:5b:b8:f8:d3:e6:c2:3f:fb:34:d9:ed:66:10:e0:ad:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:50:18 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=670cb1c022560dd90464e42639a91d94fb5136167560f26f7bff7ed49af14253, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:11:ef:4b:58:a5:fe:5f:9f:97:1b:a4:64:a5: 69:7e:9c:5f:a5:5e:a9:61:6a:e9:00:11:a3:3a:22: d2:7e:f0:1e:0f:bf:66:50:99:d7:91:03:2b:50:32: 29:95:b0:e4:1b:b2:8a:05:e3:14:e1:b9:28:f1:0b: 42:2b:24:4a:34:55:bb:78:c0:75:b2:02:a8:5e:76: dd:34:a5:e7:a5:01:dd:55:5d:1d:db:31:1d:16:f1: e7:85:f8:97:4e:09:e1:b7:ab:19:46:f5:73:f6:c1: 18:bf:0a:0a:8c:65:40:86:ff:1a:79:3d:4c:c5:c0: 49:db:3f:6a:54:ca:2f:bd:7d:fb:3a:ac:ed:32:55: ab:48:db:e5:fe:3a:4f:73:78:cd:a4:38:9d:1c:c7: 7b:8c:5d:eb:aa:34:8a:02:8f:9b:42:93:92:fe:4c: 34:52:0d:08:11:e6:40:4a:f1:a9:47:6d:10:50:4f: 1f:2e:0a:52:fa:83:27:c9:a6:0c:eb:32:a3:91:d5: c7:61:b9:40:9f:aa:ee:a5:44:ef:54:68:17:6b:67: aa:bf:62:d2:60:02:a6:58:a0:c4:11:f4:cd:57:cb: 00:d6:31:26:d3:b1:f8:1f:2c:ac:fc:87:99:40:43: e2:f3:23:30:6c:2e:15:2f:09:12:2f:d7:a9:fb:38: 1a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:EC:F7:DF:1E:61:CD:70:6D:92:CA:74:B4:3D:F6:9A:7B:4E:23:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/881dacf6-d140-4abe-8126-8ab754799453.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.254.144.0/21 Signature Algorithm: sha256WithRSAEncryption 63:92:90:fb:52:b1:4a:07:17:2d:0a:87:0d:0f:e9:e2:23:4c: 33:0a:93:6f:fb:d1:35:0a:3c:65:13:7f:ef:b0:90:5a:fd:6d: 7d:4d:a4:eb:f1:4e:de:58:49:23:f8:02:d4:93:f0:e9:7d:86: b3:16:e0:ac:ef:b6:fa:cc:9b:85:bd:88:57:9f:71:c3:e5:d8: ba:71:b5:96:06:ea:92:5b:c2:c4:bc:bd:2c:b2:31:2d:b3:9a: 59:7a:d7:90:3d:64:eb:b4:93:32:8d:83:d5:de:5e:d7:4d:3d: 33:71:de:60:2a:60:61:68:d9:ef:5f:8a:d8:10:99:9d:f0:a7: 25:2d:30:49:bd:97:b4:b5:e3:9e:87:85:56:42:b7:b2:17:1a: fa:8e:65:fe:1d:64:7b:ee:ff:9e:ba:51:43:62:9a:7a:07:36: 91:cb:49:78:52:ab:e2:20:1a:07:45:af:3b:1e:1e:87:6f:02: 75:eb:84:c7:77:2d:f6:bc:46:88:4f:78:5a:71:46:5a:b4:5c: 37:64:90:38:bd:0a:f7:b0:ec:f0:da:f5:92:04:8d:ee:a6:ca: 96:97:91:0b:f9:b6:6c:f3:3e:13:1e:59:9a:63:2d:43:9a:89: 85:c9:d1:32:00:0f:44:f3:20:96:f0:3a:9a:31:69:d9:76:39: fb:89:bd:d9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPs1phFu4+NPmwj/7NNntZhDgrV0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDA1MDE4WhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NzBjYjFjMDIyNTYwZGQ5MDQ2NGU0MjYzOWE5MWQ5NGZi NTEzNjE2NzU2MGYyNmY3YmZmN2VkNDlhZjE0MjUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClEe9LWKX+X5+XG6RkpWl+nF+lXqlhaukAEaM6ItJ+8B4P v2ZQmdeRAytQMimVsOQbsooF4xThuSjxC0IrJEo0Vbt4wHWyAqhedt00peelAd1V XR3bMR0W8eeF+JdOCeG3qxlG9XP2wRi/CgqMZUCG/xp5PUzFwEnbP2pUyi+9ffs6 rO0yVatI2+X+Ok9zeM2kOJ0cx3uMXeuqNIoCj5tCk5L+TDRSDQgR5kBK8alHbRBQ Tx8uClL6gyfJpgzrMqOR1cdhuUCfqu6lRO9UaBdrZ6q/YtJgAqZYoMQR9M1XywDW MSbTsfgfLKz8h5lAQ+LzIzBsLhUvCRIv16n7OBpJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUU+z33x5hzXBtksp0tD32mntOI60wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg4MWRhY2Y2LWQxNDAtNGFiZS04MTI2LThhYjc1NDc5OTQ1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAM//pAwDQYJKoZIhvcNAQELBQADggEBAGOSkPtSsUoHFy0Khw0P6eIjTDMK k2/70TUKPGUTf++wkFr9bX1NpOvxTt5YSSP4AtST8Ol9hrMW4KzvtvrMm4W9iFef ccPl2LpxtZYG6pJbwsS8vSyyMS2zmll615A9ZOu0kzKNg9XeXtdNPTNx3mAqYGFo 2e9fitgQmZ3wpyUtMEm9l7S1456HhVZCt7IXGvqOZf4dZHvu/566UUNimnoHNpHL SXhSq+IgGgdFrzseHodvAnXrhMd3Lfa8RohPeFpxRlq0XDdkkDi9Cvew7PDa9ZIE je6mypaXkQv5tmzzPhMeWZpjLUOaiYXJ0TIAD0TzIJbwOpoxadl2OfuJvdk= -----END CERTIFICATE-----Generated at Wed May 14 01:22:17 2025 by rpki-client