$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce802f82-6d5a-453e-b8c9-f5ee559bf8c5.roa File: ce802f82-6d5a-453e-b8c9-f5ee559bf8c5.roa (raw, json) Hash identifier: /MeNpnpW6gnLXB+t9HEPnodW6O4FP87YqIEYmJKMOlQ= Subject key identifier: 5C:00:7D:E2:84:DA:08:1B:F4:C5:3F:6C:C1:23:DF:4C:E8:3B:84:97 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4F6671534B2BCBF65FD646B0A622B4C15AB54760 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce802f82-6d5a-453e-b8c9-f5ee559bf8c5.roa Signing time: Sat 21 Jun 2025 00:00:33 +0000 ROA not before: Sat 21 Jun 2025 00:00:33 +0000 ROA not after: Sat 26 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 152.24.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:66:71:53:4b:2b:cb:f6:5f:d6:46:b0:a6:22:b4:c1:5a:b5:47:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 21 00:00:33 2025 GMT Not After : Jul 26 23:59:59 2025 GMT Subject: serialNumber=f45fb961993b325a7ec07c81904ba4f160075445ff7f08c20374347c4d9d29a7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:f6:f7:3c:d1:1e:8b:d4:de:f1:04:df:b8:e5: a7:25:48:fb:46:8d:12:1f:9d:b3:04:a7:aa:bb:3b: e2:a7:aa:4f:6b:92:49:48:9f:d8:fd:66:1d:70:2c: 34:fa:79:39:28:ee:1a:e7:b4:21:be:fd:78:c9:2f: 6f:eb:63:51:0a:0e:b2:e4:5b:2d:3d:e0:cc:49:ca: 97:7c:62:b5:af:7f:91:84:e3:b9:18:b2:f9:5c:61: 4f:7f:d0:b0:58:ec:1a:fc:a0:dd:29:92:4f:48:e6: 2a:e9:df:e7:6a:80:27:4b:7c:d6:f7:97:12:9e:40: 24:84:da:ab:ea:22:f9:10:86:c4:1a:49:5e:f0:f8: b2:bf:d2:a8:ac:56:6b:2b:95:40:22:0e:e9:0f:d3: 3f:df:c1:1e:7e:da:b7:6e:b9:58:7c:e8:47:d7:14: 6b:f6:8c:47:8c:2a:41:ad:9e:c3:a7:29:cf:a7:24: 36:4e:42:07:50:f7:65:f3:15:a2:81:45:ac:82:aa: 69:d2:9f:70:f4:cd:cd:63:7d:98:dd:6b:6f:76:41: 38:3e:ab:c7:44:a9:65:60:1e:e5:ef:d5:df:2e:00: 1c:2c:04:8a:4d:f6:43:6e:02:52:e4:df:64:1c:38: 21:ee:f5:30:f1:ab:5f:a7:22:4e:46:d0:95:9d:84: bc:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:00:7D:E2:84:DA:08:1B:F4:C5:3F:6C:C1:23:DF:4C:E8:3B:84:97 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce802f82-6d5a-453e-b8c9-f5ee559bf8c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.24.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1c:ce:85:fd:12:7f:6f:45:20:83:e0:13:08:ed:f4:51:e4:61: c9:e7:f0:d9:a8:a1:9d:04:be:3e:64:40:fc:ee:6d:34:fa:20: b1:db:e2:54:8a:44:45:19:ad:c1:d9:cc:44:97:f3:ba:a7:09: 19:e1:15:d7:7f:35:9a:8d:ec:4b:0f:d4:07:7b:d5:52:cb:b1: 21:3e:d0:a1:eb:4a:85:e7:96:c8:58:9e:e5:8f:40:13:6a:5a: 78:ea:51:60:43:3a:3f:d4:42:0d:0e:29:e3:1f:c9:1f:d2:d5: 10:52:1d:af:c0:31:05:66:45:7e:02:20:18:c0:98:4b:3f:3b: 97:3d:94:93:82:ff:5b:5a:87:f2:d7:08:64:a9:e1:08:52:ba: bd:e7:f1:38:6d:40:23:f6:07:fb:61:95:20:19:a0:e1:f6:e1: 01:12:39:d2:04:91:6e:cb:a5:bb:43:12:fe:52:27:c1:fa:01: 67:82:10:7a:98:3c:4e:27:42:04:34:98:ed:db:29:1f:cf:c6: 03:eb:10:0f:1a:73:99:dd:36:fb:fb:e4:22:94:17:de:9f:9c: c9:da:b0:58:8e:33:d6:be:d0:b3:e5:40:92:87:83:67:9a:aa: 2d:61:a6:f1:c1:4f:b3:b9:6e:87:32:f0:72:72:f1:84:ab:53: fb:eb:72:7e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUT2ZxU0sry/Zf1kawpiK0wVq1R2AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIxMDAwMDMzWhcNMjUwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDVmYjk2MTk5M2IzMjVhN2VjMDdjODE5MDRiYTRmMTYw MDc1NDQ1ZmY3ZjA4YzIwMzc0MzQ3YzRkOWQyOWE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCD9vc80R6L1N7xBN+45aclSPtGjRIfnbMEp6q7O+Knqk9r kklIn9j9Zh1wLDT6eTko7hrntCG+/XjJL2/rY1EKDrLkWy094MxJypd8YrWvf5GE 47kYsvlcYU9/0LBY7Br8oN0pkk9I5irp3+dqgCdLfNb3lxKeQCSE2qvqIvkQhsQa SV7w+LK/0qisVmsrlUAiDukP0z/fwR5+2rduuVh86EfXFGv2jEeMKkGtnsOnKc+n JDZOQgdQ92XzFaKBRayCqmnSn3D0zc1jfZjda292QTg+q8dEqWVgHuXv1d8uABws BIpN9kNuAlLk32QcOCHu9TDxq1+nIk5G0JWdhLxpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUXAB94oTaCBv0xT9swSPfTOg7hJcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NlODAyZjgyLTZkNWEtNDUzZS1iOGM5LWY1ZWU1NTliZjhjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCYGDANBgkqhkiG9w0BAQsFAAOCAQEAHM6F/RJ/b0Ugg+ATCO30UeRhyefw 2aihnQS+PmRA/O5tNPogsdviVIpERRmtwdnMRJfzuqcJGeEV1381mo3sSw/UB3vV UsuxIT7QoetKheeWyFie5Y9AE2paeOpRYEM6P9RCDQ4p4x/JH9LVEFIdr8AxBWZF fgIgGMCYSz87lz2Uk4L/W1qH8tcIZKnhCFK6vefxOG1AI/YH+2GVIBmg4fbhARI5 0gSRbsulu0MS/lInwfoBZ4IQepg8TidCBDSY7dspH8/GA+sQDxpzmd02+/vkIpQX 3p+cydqwWI4z1r7Qs+VAkoeDZ5qqLWGm8cFPs7luhzLwcnLxhKtT++tyfg== -----END CERTIFICATE-----Generated at Sun Jun 29 07:56:26 2025 by rpki-client