$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b551b0fa-4ca7-4e59-b924-6e15a8ffd1ea.roa File: b551b0fa-4ca7-4e59-b924-6e15a8ffd1ea.roa (raw, json) Hash identifier: D8VYDeuQAfQPFVbCYwvP2RkcDhIIv7x+NO5WO6nNl3Q= Subject key identifier: E1:EE:A3:93:D2:9A:71:63:B2:61:24:19:15:00:CE:29:E4:49:43:46 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6034E05A5D1023CD6D8A77726EE9B9D621C0B550 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b551b0fa-4ca7-4e59-b924-6e15a8ffd1ea.roa Signing time: Mon 05 May 2025 15:30:16 +0000 ROA not before: Mon 05 May 2025 15:30:16 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 68.232.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 09 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:34:e0:5a:5d:10:23:cd:6d:8a:77:72:6e:e9:b9:d6:21:c0:b5:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:30:16 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=2bb11f5a520e7914a9a789b518ebd800a5de20a3dbd2d5215515934563fe592a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ab:c5:61:e4:46:a2:64:5e:12:82:46:f5:85: 67:8f:cc:02:4a:cf:63:12:69:bd:48:de:7b:f2:67: 1c:64:f5:29:ea:e0:e9:95:9a:5b:37:19:82:6e:1a: 1a:d9:7e:eb:6b:7c:32:74:e6:2e:3d:c8:80:94:8d: bb:62:45:f8:9c:d5:d5:6a:d8:65:9a:a5:91:e0:d7: ee:e4:ee:1d:c9:99:67:26:91:f7:81:c5:42:7e:14: 7c:b4:37:c9:b9:72:5e:b6:5e:6c:13:c1:91:5f:14: ba:95:a4:bd:a9:db:6f:a1:03:86:ef:ef:78:1d:44: eb:70:66:a9:30:25:b4:e3:89:92:d9:f8:2f:d8:b9: 70:f3:8d:78:b1:a7:a6:62:7f:2c:29:d8:fd:92:58: ca:a3:ae:ae:1e:97:e6:39:d0:87:86:f8:bc:35:6e: ef:28:f8:8a:96:bf:cd:24:81:cd:0c:fd:46:2e:b6: 53:86:13:a7:e3:6c:3b:27:74:d4:f1:d6:db:b5:51: ed:b0:08:fc:58:68:56:f7:d1:4e:e8:25:77:d4:42: f6:3a:52:3d:74:74:db:df:53:81:8c:db:30:f1:5d: e0:68:2c:68:13:0c:f2:f8:f4:04:95:0d:14:b5:78: df:1f:5c:6f:5a:ac:1e:39:63:0f:9b:63:66:64:47: 43:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:EE:A3:93:D2:9A:71:63:B2:61:24:19:15:00:CE:29:E4:49:43:46 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b551b0fa-4ca7-4e59-b924-6e15a8ffd1ea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 68.232.112.0/20 Signature Algorithm: sha256WithRSAEncryption 31:1a:43:8c:a2:a0:56:09:b0:bc:a2:fe:b7:f8:8f:b4:54:ac: 6b:d5:ae:5f:83:d5:00:62:05:fe:88:5c:a7:d5:59:c2:25:6b: 20:7c:32:e1:60:88:fe:9d:d7:6c:ef:8d:d0:ed:68:48:0c:f2: e8:d5:c5:d9:a1:d3:c5:e1:64:9a:47:e6:98:db:53:9c:dc:7c: e5:ce:75:5a:4b:d8:69:9d:36:f4:8b:76:d4:b9:02:14:4c:fc: 06:a5:b6:fd:a1:d9:ac:fd:58:0b:37:b7:0f:77:a0:9b:0c:d2: fe:d8:d7:99:89:ed:a2:d6:0e:4d:85:a9:48:59:7e:10:6b:df: a8:35:1d:88:16:f6:f5:4f:a7:c9:5c:f6:f4:a6:ca:8e:9d:15: 25:e5:54:1f:f0:87:82:64:08:fe:da:45:d3:dd:cb:bb:d2:db: 51:b3:93:68:8e:7d:4b:8b:1a:7f:07:68:48:65:8f:f2:43:20: fa:31:a2:65:64:ff:c4:cb:46:2f:d6:5e:e9:5c:75:a8:65:6f: af:e7:9c:82:4c:f6:ed:c9:c9:26:9a:28:9d:20:d4:fc:79:58: 48:0e:88:0d:3e:9b:5f:15:43:a1:41:70:02:90:cd:08:31:80: b1:22:36:65:86:cb:08:e3:f8:1b:70:63:1b:da:fd:41:79:72: a2:eb:13:8c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYDTgWl0QI81tindybum51iHAtVAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTUzMDE2WhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYmIxMWY1YTUyMGU3OTE0YTlhNzg5YjUxOGViZDgwMGE1 ZGUyMGEzZGJkMmQ1MjE1NTE1OTM0NTYzZmU1OTJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXq8Vh5EaiZF4Sgkb1hWePzAJKz2MSab1I3nvyZxxk9Snq 4OmVmls3GYJuGhrZfutrfDJ05i49yICUjbtiRfic1dVq2GWapZHg1+7k7h3JmWcm kfeBxUJ+FHy0N8m5cl62XmwTwZFfFLqVpL2p22+hA4bv73gdROtwZqkwJbTjiZLZ +C/YuXDzjXixp6Zifywp2P2SWMqjrq4el+Y50IeG+Lw1bu8o+IqWv80kgc0M/UYu tlOGE6fjbDsndNTx1tu1Ue2wCPxYaFb30U7oJXfUQvY6Uj10dNvfU4GM2zDxXeBo LGgTDPL49ASVDRS1eN8fXG9arB45Yw+bY2ZkR0MJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4e6jk9KacWOyYSQZFQDOKeRJQ0YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I1NTFiMGZhLTRjYTctNGU1OS1iOTI0LTZlMTVhOGZmZDFlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARE6HAwDQYJKoZIhvcNAQELBQADggEBADEaQ4yioFYJsLyi/rf4j7RUrGvV rl+D1QBiBf6IXKfVWcIlayB8MuFgiP6d12zvjdDtaEgM8ujVxdmh08XhZJpH5pjb U5zcfOXOdVpL2GmdNvSLdtS5AhRM/Aaltv2h2az9WAs3tw93oJsM0v7Y15mJ7aLW Dk2FqUhZfhBr36g1HYgW9vVPp8lc9vSmyo6dFSXlVB/wh4JkCP7aRdPdy7vS21Gz k2iOfUuLGn8HaEhlj/JDIPoxomVk/8TLRi/WXulcdahlb6/nnIJM9u3JySaaKJ0g 1Px5WEgOiA0+m18VQ6FBcAKQzQgxgLEiNmWGywjj+BtwYxva/UF5cqLrE4w= -----END CERTIFICATE-----Generated at Wed May 7 18:45:22 2025 by rpki-client