$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957ea7c6-3090-4382-9ef5-24bfb9390cf9.roa File: 957ea7c6-3090-4382-9ef5-24bfb9390cf9.roa (raw, json) Hash identifier: EXyXwqolgg3jrT7jnf8au9iVujqS9ZUb2onZdIo8Qnw= Subject key identifier: 85:A8:D4:88:BD:7B:59:48:3C:94:28:A6:AB:3B:5C:FD:B2:67:BA:94 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6703860CF1DD2F719016F25A582D621A8044CDDE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957ea7c6-3090-4382-9ef5-24bfb9390cf9.roa Signing time: Sat 03 May 2025 00:10:11 +0000 ROA not before: Sat 03 May 2025 00:10:11 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 209.164.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:03:86:0c:f1:dd:2f:71:90:16:f2:5a:58:2d:62:1a:80:44:cd:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:10:11 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=1052c4c4dae0c67aa44bbfb4e3b6b2f696229e6da4b8ecf7ad7dad8c564df0e1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:89:67:ab:07:1b:b0:00:68:c7:5c:cd:ef:89: 76:1f:ae:c1:ce:db:8f:00:f5:06:a6:e5:ce:f3:40: 19:0d:be:d9:9e:18:aa:e7:cd:c4:b2:cd:cd:df:ff: a4:1e:7d:f6:ef:f8:1b:03:c0:ed:5b:9d:56:35:ee: 95:6d:d0:f6:43:b0:d9:f5:c0:0b:10:0a:0e:25:71: be:31:16:77:36:cd:1a:66:d2:67:78:0c:6b:53:b6: a1:ea:44:eb:34:50:a8:e1:59:38:9f:66:bf:9d:c9: 86:44:8f:f3:61:a0:5f:14:62:e7:bf:42:fe:63:b4: c8:47:c3:cf:a2:a0:53:7f:e3:e0:a4:b2:8e:48:7d: 3a:81:ff:23:49:d4:03:b8:21:8f:cd:b6:34:1b:84: 53:c4:7e:e0:4a:4c:62:94:5e:14:98:d3:e9:d4:d8: a2:0c:ce:b4:d3:00:15:92:a8:b3:f9:0f:ce:2f:6c: 24:4b:bc:63:8c:e0:68:e9:d2:fc:43:a5:82:7c:20: 00:d8:46:d5:f5:cb:68:bd:61:b9:98:72:52:38:c1: 99:f4:4c:fb:13:7a:9c:fa:49:69:db:30:b8:cc:ef: b0:83:37:87:55:d6:24:98:d9:f8:ba:aa:28:f3:52: 59:16:2d:6c:3e:6c:2c:ce:b2:66:6f:3a:97:3e:e4: d6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:A8:D4:88:BD:7B:59:48:3C:94:28:A6:AB:3B:5C:FD:B2:67:BA:94 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957ea7c6-3090-4382-9ef5-24bfb9390cf9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.164.64.0/18 Signature Algorithm: sha256WithRSAEncryption 77:ce:03:99:c4:48:4c:6e:c9:a7:9a:81:5e:03:f1:e0:c3:0a: 85:d1:ac:d6:e8:60:23:42:81:17:92:f6:b1:4a:cc:c3:01:72: ba:ca:a2:1b:55:cd:3f:1f:b8:bd:30:03:ff:c4:ae:93:01:35: b3:46:04:c5:a6:18:69:ba:8e:22:8a:bb:36:94:2c:97:9c:15: 43:76:61:a4:98:84:eb:7b:78:8b:2f:fb:8c:23:b1:f0:6c:59: 8c:f3:50:aa:83:88:ef:df:e9:2f:98:cb:f2:9f:df:d2:81:d8: af:2a:a8:ac:a1:db:c7:3a:fb:16:17:64:20:fb:b6:1c:d2:7f: 53:28:f6:e8:e1:00:0f:df:40:b4:79:42:84:15:f0:20:18:24: 47:d2:c1:35:dd:7d:5e:0e:21:e0:dc:f2:7a:f9:3b:86:1b:ee: 6d:d1:53:c4:2f:39:38:67:42:2c:b1:a7:63:1e:fa:54:5e:d8: e8:da:37:06:39:6a:d4:fa:9d:be:b5:ad:32:76:84:5c:fa:73: e0:0f:98:da:a2:58:f6:d8:79:f9:db:2d:16:80:2d:fe:c6:8c: 0b:bf:f4:c1:f9:05:92:f0:56:05:63:55:93:ec:b1:9f:7a:b7: 9e:92:4d:ac:26:36:18:53:aa:85:d4:57:61:a6:83:37:ef:5d: 6b:27:90:c5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZwOGDPHdL3GQFvJaWC1iGoBEzd4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAxMDExWhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDUyYzRjNGRhZTBjNjdhYTQ0YmJmYjRlM2I2YjJmNjk2 MjI5ZTZkYTRiOGVjZjdhZDdkYWQ4YzU2NGRmMGUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiiWerBxuwAGjHXM3viXYfrsHO248A9Qam5c7zQBkNvtme GKrnzcSyzc3f/6Qeffbv+BsDwO1bnVY17pVt0PZDsNn1wAsQCg4lcb4xFnc2zRpm 0md4DGtTtqHqROs0UKjhWTifZr+dyYZEj/NhoF8UYue/Qv5jtMhHw8+ioFN/4+Ck so5IfTqB/yNJ1AO4IY/NtjQbhFPEfuBKTGKUXhSY0+nU2KIMzrTTABWSqLP5D84v bCRLvGOM4Gjp0vxDpYJ8IADYRtX1y2i9YbmYclI4wZn0TPsTepz6SWnbMLjM77CD N4dV1iSY2fi6qijzUlkWLWw+bCzOsmZvOpc+5NYLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUhajUiL17WUg8lCimqztc/bJnupQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1N2VhN2M2LTMwOTAtNDM4Mi05ZWY1LTI0YmZiOTM5MGNmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAbRpEAwDQYJKoZIhvcNAQELBQADggEBAHfOA5nESExuyaeagV4D8eDDCoXR rNboYCNCgReS9rFKzMMBcrrKohtVzT8fuL0wA//ErpMBNbNGBMWmGGm6jiKKuzaU LJecFUN2YaSYhOt7eIsv+4wjsfBsWYzzUKqDiO/f6S+Yy/Kf39KB2K8qqKyh28c6 +xYXZCD7thzSf1Mo9ujhAA/fQLR5QoQV8CAYJEfSwTXdfV4OIeDc8nr5O4Yb7m3R U8QvOThnQiyxp2Me+lRe2OjaNwY5atT6nb61rTJ2hFz6c+APmNqiWPbYefnbLRaA Lf7GjAu/9MH5BZLwVgVjVZPssZ96t56STawmNhhTqoXUV2GmgzfvXWsnkMU= -----END CERTIFICATE-----Generated at Sun May 11 13:34:29 2025 by rpki-client