$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88296b80-7a2f-4c78-bca6-31fd9a45902e.roa File: 88296b80-7a2f-4c78-bca6-31fd9a45902e.roa (raw, json) Hash identifier: gPpovZgFd03JR9ASQCD7AT3ZR1792JY1mZlX1c2zRYA= Subject key identifier: 4F:73:6B:B7:11:72:17:21:8C:50:B8:54:34:5E:C3:25:54:4E:6C:CD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 198C9C0FD948F9D8AF4FF1AB942E5987149F9068 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88296b80-7a2f-4c78-bca6-31fd9a45902e.roa Signing time: Sat 03 May 2025 00:42:04 +0000 ROA not before: Sat 03 May 2025 00:42:04 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 66.245.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:8c:9c:0f:d9:48:f9:d8:af:4f:f1:ab:94:2e:59:87:14:9f:90:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:42:04 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=682888b03f51b501535e6463d3751c59b39216a150fcb7dd03e087472825ec6b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1f:34:0e:1a:ca:f7:f2:8d:67:e0:e2:f8:18: 0f:8b:8c:9d:1e:d3:88:9e:b8:c9:1a:aa:eb:3d:32: 2f:60:8b:eb:a2:81:38:96:65:c5:9d:c6:05:23:43: 6f:79:c3:1f:e0:30:4b:ae:b7:d2:a7:29:11:34:7c: 36:0f:e8:1b:3f:0e:81:54:ff:72:32:30:29:f5:10: d3:a8:33:03:9e:b0:24:88:7f:bf:08:29:53:36:11: 8e:da:ab:51:09:6a:fc:03:05:e6:b5:37:f5:3b:f7: 54:d5:e2:f0:5b:fd:60:5d:aa:d7:b7:11:d3:f8:4d: 7c:55:0a:27:3e:a3:06:35:47:08:9e:05:c1:ab:a5: b1:f7:32:0a:e6:3f:38:18:70:ce:b0:61:86:79:aa: 4b:9d:4b:f3:e8:be:1d:42:45:b2:28:8b:4a:aa:9b: 4f:65:09:3f:00:48:a3:fc:f5:ac:72:d1:e8:fc:85: 78:67:49:cd:26:26:27:d9:e9:b3:f3:3b:2b:46:51: c2:cd:48:62:6e:66:3d:72:ee:16:50:4e:02:82:07: ea:b9:03:20:a2:e8:75:b5:e3:54:dd:7c:04:5f:0c: 05:b7:df:98:b0:70:25:de:85:7c:98:9d:38:76:95: e4:f7:99:a0:e5:7f:e7:f7:08:18:19:69:c8:fe:1b: 02:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:73:6B:B7:11:72:17:21:8C:50:B8:54:34:5E:C3:25:54:4E:6C:CD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88296b80-7a2f-4c78-bca6-31fd9a45902e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.245.128.0/19 Signature Algorithm: sha256WithRSAEncryption 1d:c4:ba:e5:0a:2a:30:85:be:a8:e5:7f:46:43:d5:89:67:3e: 78:cd:3a:a1:90:e1:44:e5:75:db:63:cb:29:9d:13:d9:df:52: 12:81:39:fe:39:a2:85:a2:22:0d:a0:91:71:fc:66:b2:a1:0b: a2:cb:ce:3c:cb:1b:a1:f9:e9:46:80:98:f9:6c:b2:03:dc:0b: 45:02:1a:be:4c:9c:3f:93:a5:1b:7d:31:84:ff:92:d3:6b:ae: 74:9c:d1:3f:21:5c:7c:4a:ff:0a:49:12:cd:da:03:40:98:b2: 1d:7e:32:d5:38:87:fd:a9:7d:4e:42:d2:32:46:9a:87:4f:f0: 76:d0:51:bc:5d:d0:90:61:52:4d:94:84:8a:b0:8d:21:e8:41: f4:4e:76:02:02:a5:ae:e1:9a:67:37:f3:b7:73:56:8b:6b:cf: 46:38:91:a6:9e:66:32:8a:22:05:2b:90:fd:c9:7e:62:e3:13: d7:13:2f:7c:f7:a9:04:14:1c:f8:cb:6e:71:c7:31:cf:45:09: 0b:18:2a:87:15:20:63:63:dd:b1:8e:ec:b5:e7:c0:9e:85:6b: 93:75:ba:01:5b:c0:e4:73:a4:95:1f:95:97:41:a0:9e:bc:d6: 2f:47:ae:c7:01:38:e3:6e:18:e3:81:ea:ae:cf:42:f4:47:31: fc:35:29:4f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGYycD9lI+divT/GrlC5ZhxSfkGgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDA0MjA0WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODI4ODhiMDNmNTFiNTAxNTM1ZTY0NjNkMzc1MWM1OWIz OTIxNmExNTBmY2I3ZGQwM2UwODc0NzI4MjVlYzZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9HzQOGsr38o1n4OL4GA+LjJ0e04ieuMkaqus9Mi9gi+ui gTiWZcWdxgUjQ295wx/gMEuut9KnKRE0fDYP6Bs/DoFU/3IyMCn1ENOoMwOesCSI f78IKVM2EY7aq1EJavwDBea1N/U791TV4vBb/WBdqte3EdP4TXxVCic+owY1Rwie BcGrpbH3MgrmPzgYcM6wYYZ5qkudS/Povh1CRbIoi0qqm09lCT8ASKP89axy0ej8 hXhnSc0mJifZ6bPzOytGUcLNSGJuZj1y7hZQTgKCB+q5AyCi6HW141TdfARfDAW3 35iwcCXehXyYnTh2leT3maDlf+f3CBgZacj+GwLPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUT3NrtxFyFyGMULhUNF7DJVRObM0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg4Mjk2YjgwLTdhMmYtNGM3OC1iY2E2LTMxZmQ5YTQ1OTAyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVC9YAwDQYJKoZIhvcNAQELBQADggEBAB3EuuUKKjCFvqjlf0ZD1YlnPnjN OqGQ4UTlddtjyymdE9nfUhKBOf45ooWiIg2gkXH8ZrKhC6LLzjzLG6H56UaAmPls sgPcC0UCGr5MnD+TpRt9MYT/ktNrrnSc0T8hXHxK/wpJEs3aA0CYsh1+MtU4h/2p fU5C0jJGmodP8HbQUbxd0JBhUk2UhIqwjSHoQfROdgICpa7hmmc387dzVotrz0Y4 kaaeZjKKIgUrkP3JfmLjE9cTL3z3qQQUHPjLbnHHMc9FCQsYKocVIGNj3bGO7LXn wJ6Fa5N1ugFbwORzpJUflZdBoJ681i9HrscBOONuGOOB6q7PQvRHMfw1KU8= -----END CERTIFICATE-----Generated at Mon May 5 12:57:07 2025 by rpki-client