$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf4c0d6a-87e1-4500-994c-6d67c6dffa61.roa File: cf4c0d6a-87e1-4500-994c-6d67c6dffa61.roa (raw, json) Hash identifier: tgjplBm17wKGeVUmhqPGqNGnrsrN8RY9SRyWssV6lKQ= Subject key identifier: DF:99:08:06:19:43:96:35:7C:E2:AC:E4:9D:12:61:34:11:3B:FE:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0CDF87028DD53485C7412A9BB47B8EB16CE25F3A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf4c0d6a-87e1-4500-994c-6d67c6dffa61.roa Signing time: Fri 09 May 2025 00:00:06 +0000 ROA not before: Fri 09 May 2025 00:00:06 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 108.171.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:df:87:02:8d:d5:34:85:c7:41:2a:9b:b4:7b:8e:b1:6c:e2:5f:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:00:06 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=f38b7b81bb26c6c8d42441ea1e90ecbf49a352d07fd3e973d0c1999bceafa23f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:18:ce:3e:bf:00:a2:4e:be:44:b5:7a:c3:e7: 9e:dd:2d:8a:66:d3:03:5f:9f:09:47:44:b0:8b:9a: 8f:8f:f2:84:c8:72:23:0d:f7:69:e4:b8:fb:ce:2c: 47:60:8d:44:96:43:95:fe:0e:b2:ca:37:af:1a:15: 18:36:b6:23:06:a6:d4:d2:b5:52:50:16:d1:9e:03: 4d:76:3a:34:3b:9b:de:b8:b6:6d:26:1f:a9:1b:3a: 4a:40:ff:c2:a9:59:5d:48:09:13:18:b6:42:ab:ec: a0:ff:38:cf:f9:3d:ae:24:45:a6:6e:d1:a2:33:5a: 87:50:a6:be:49:74:96:eb:12:14:e0:1c:e5:b5:4c: 13:88:70:e0:2e:20:26:8f:4e:42:82:a7:20:54:fe: 0c:7f:54:25:aa:12:d6:b2:59:78:9d:8a:e1:4b:2d: a3:2e:02:61:9f:5a:8a:df:a0:00:42:ac:75:6c:12: aa:68:b3:27:a9:e6:58:92:cf:b5:38:31:ae:ff:1c: 1b:3f:ef:9c:9a:1f:c3:bd:d7:e4:c2:34:cd:b2:02: 11:98:e4:51:f4:0d:54:24:fc:50:2b:42:a9:5d:fb: a9:39:80:dc:8c:b1:1e:f7:e3:cc:47:a5:fd:ac:02: 1c:b1:85:75:cc:ba:75:5a:97:56:27:88:94:94:96: a6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:99:08:06:19:43:96:35:7C:E2:AC:E4:9D:12:61:34:11:3B:FE:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf4c0d6a-87e1-4500-994c-6d67c6dffa61.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.171.240.0/20 Signature Algorithm: sha256WithRSAEncryption 97:d0:60:e6:b8:db:52:5c:2c:74:50:7d:5d:0d:75:1d:a2:05: 12:97:4f:8f:c1:7a:a6:1d:f6:6d:38:01:9d:a5:ec:9f:03:fd: 12:77:4c:ee:69:43:09:1f:0d:8e:e4:12:6d:3d:c4:25:50:17: fa:a4:cd:76:f8:80:0a:69:b9:28:a0:ac:0f:3c:db:00:3c:37: de:9e:6f:7c:d6:ff:8e:90:b7:62:ac:59:0d:e5:be:b9:13:f6: 1c:44:aa:99:68:bf:19:a3:41:05:ea:ed:8a:41:ed:9f:30:33: 90:50:bd:76:78:6b:dd:7c:0f:7b:a5:b1:c2:4d:4a:23:9a:c2: e3:5f:f1:4e:a9:af:cb:14:2f:06:24:59:29:f5:92:56:01:cd: 45:49:2b:1f:1d:36:96:6b:79:30:2c:45:c2:a0:b5:f0:07:74: 63:5d:22:ad:63:9b:62:11:e6:8f:d4:eb:a3:72:0a:9b:d3:a3: 57:35:fc:e9:2a:00:f3:ad:0a:a9:26:ff:05:54:71:eb:90:c5: c4:6e:b0:34:02:8b:36:35:ed:ed:85:82:6b:85:5b:9f:37:86: 94:55:4f:e6:32:ee:7d:55:32:8c:fd:04:e2:c5:7d:6e:e0:80: a1:bc:29:32:9b:c5:69:48:49:51:b1:88:de:a6:df:12:56:76: 60:aa:5e:42 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDN+HAo3VNIXHQSqbtHuOsWziXzowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAwMDA2WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzhiN2I4MWJiMjZjNmM4ZDQyNDQxZWExZTkwZWNiZjQ5 YTM1MmQwN2ZkM2U5NzNkMGMxOTk5YmNlYWZhMjNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcGM4+vwCiTr5EtXrD557dLYpm0wNfnwlHRLCLmo+P8oTI ciMN92nkuPvOLEdgjUSWQ5X+DrLKN68aFRg2tiMGptTStVJQFtGeA012OjQ7m964 tm0mH6kbOkpA/8KpWV1ICRMYtkKr7KD/OM/5Pa4kRaZu0aIzWodQpr5JdJbrEhTg HOW1TBOIcOAuICaPTkKCpyBU/gx/VCWqEtayWXidiuFLLaMuAmGfWorfoABCrHVs Eqposyep5liSz7U4Ma7/HBs/75yaH8O91+TCNM2yAhGY5FH0DVQk/FArQqld+6k5 gNyMsR7348xHpf2sAhyxhXXMunVal1YniJSUlqbpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU35kIBhlDljV84qzknRJhNBE7/nUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmNGMwZDZhLTg3ZTEtNDUwMC05OTRjLTZkNjdjNmRmZmE2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARsq/AwDQYJKoZIhvcNAQELBQADggEBAJfQYOa421JcLHRQfV0NdR2iBRKX T4/BeqYd9m04AZ2l7J8D/RJ3TO5pQwkfDY7kEm09xCVQF/qkzXb4gAppuSigrA88 2wA8N96eb3zW/46Qt2KsWQ3lvrkT9hxEqplovxmjQQXq7YpB7Z8wM5BQvXZ4a918 D3ulscJNSiOawuNf8U6pr8sULwYkWSn1klYBzUVJKx8dNpZreTAsRcKgtfAHdGNd Iq1jm2IR5o/U66NyCpvTo1c1/OkqAPOtCqkm/wVUceuQxcRusDQCizY17e2FgmuF W583hpRVT+Yy7n1VMoz9BOLFfW7ggKG8KTKbxWlISVGxiN6m3xJWdmCqXkI= -----END CERTIFICATE-----Generated at Sat May 10 19:39:35 2025 by rpki-client