$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f29adbc5-b5cd-46c1-8740-37db8845b968.roa File: f29adbc5-b5cd-46c1-8740-37db8845b968.roa (raw, json) Hash identifier: tN1wVpNjlRv5qJC45TDqsYtGenEC1N77rg5HaXeQeuc= Subject key identifier: 79:95:AE:21:09:A4:50:49:CE:36:C4:3C:AF:D5:27:01:7F:90:24:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7E981F435F2D3F8314C97A8A3DAD5699BC18E92A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f29adbc5-b5cd-46c1-8740-37db8845b968.roa Signing time: Mon 05 May 2025 15:30:13 +0000 ROA not before: Mon 05 May 2025 15:30:13 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 67.220.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:98:1f:43:5f:2d:3f:83:14:c9:7a:8a:3d:ad:56:99:bc:18:e9:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:30:13 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=3040de2e099dcefa99a7c0f9d224e1ae3f218bfb04510372aca5548d5c4f21c2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e6:fc:8d:51:29:07:4a:70:c1:75:33:dd:3d: 14:84:25:b9:d8:31:a1:36:6d:b7:80:bf:61:5b:f5: d9:f3:d6:79:4c:4b:50:bd:b7:c7:4c:fe:97:2b:84: 93:f1:8b:5e:c2:5b:41:3f:6d:98:e0:c0:fc:28:d8: f0:95:61:ae:9e:27:dc:3e:d3:16:4a:0c:de:ce:a3: f6:7d:41:b1:ee:65:7b:78:01:a5:de:09:2a:5c:f8: 4a:af:34:c5:61:4e:35:9b:6a:a4:db:ee:aa:2d:b1: df:62:df:01:b9:f5:b2:6b:3d:eb:6d:e0:c9:32:f2: 8d:b5:d5:6b:0d:e2:a0:7d:f1:6a:fc:a3:4c:8b:d7: fe:f4:7f:c0:f1:ad:37:57:2e:48:a4:6c:e5:d8:b2: 68:ea:de:04:83:44:4e:f2:39:1b:62:f5:e1:36:26: 36:29:df:a7:e9:f4:ea:09:1d:ed:d8:8f:83:f1:e4: f6:8d:a2:e3:e0:eb:3f:77:89:0f:9d:cb:fe:08:bc: 96:d6:9a:6c:16:5e:0f:ec:ed:1a:aa:87:b0:13:5b: b7:5a:89:61:ea:ba:21:ac:69:63:e9:50:3d:ad:5e: e1:91:7c:49:e6:01:9e:64:6e:e3:70:56:19:77:24: 48:11:cc:94:71:c7:2f:20:68:66:af:cf:71:ad:5a: e4:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:95:AE:21:09:A4:50:49:CE:36:C4:3C:AF:D5:27:01:7F:90:24:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f29adbc5-b5cd-46c1-8740-37db8845b968.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 67.220.240.0/20 Signature Algorithm: sha256WithRSAEncryption 05:d7:09:ef:62:d9:01:58:1e:08:38:c6:f9:f7:14:c0:9e:f3: 59:b2:0f:cc:55:19:90:e4:a8:ee:54:9b:a0:5e:ae:92:8d:56: c2:d3:a4:7c:27:f6:b9:b4:21:d4:24:5e:ac:26:41:90:d7:10: de:69:07:7f:5a:55:68:cb:44:ee:7f:1e:6b:e6:2b:87:25:05: d8:07:81:f0:43:a3:00:eb:0d:bc:1f:ef:01:80:84:e7:06:e3: c6:26:d4:7e:a8:78:0d:6e:20:1d:65:d4:7d:58:1c:d7:79:a7: bf:16:2a:d6:23:96:c3:e6:a2:ee:42:70:85:e5:01:27:17:8c: 90:17:21:93:3a:e1:d9:23:5e:20:2f:22:b7:2a:1b:24:84:dc: 36:df:28:06:5f:6b:f6:52:1d:57:da:7a:ab:a0:99:20:4a:4a: 35:f4:dd:98:69:4c:d7:a2:1d:8d:3a:30:94:2a:9d:ae:26:a3: d7:b8:86:23:b9:6c:be:e7:21:a7:9a:c7:93:61:77:4e:23:d6: 7d:6c:1b:af:53:c6:b4:ba:9e:e7:1f:9f:11:c5:79:6d:b7:e2: 68:f7:bc:c8:19:c0:20:84:67:5f:4b:63:34:b5:c8:82:40:e1: 98:16:a3:10:db:d5:80:2e:c2:ab:19:57:38:06:c9:a5:37:77: 89:6f:b7:48 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfpgfQ18tP4MUyXqKPa1WmbwY6SowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTUzMDEzWhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDQwZGUyZTA5OWRjZWZhOTlhN2MwZjlkMjI0ZTFhZTNm MjE4YmZiMDQ1MTAzNzJhY2E1NTQ4ZDVjNGYyMWMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCm5vyNUSkHSnDBdTPdPRSEJbnYMaE2bbeAv2Fb9dnz1nlM S1C9t8dM/pcrhJPxi17CW0E/bZjgwPwo2PCVYa6eJ9w+0xZKDN7Oo/Z9QbHuZXt4 AaXeCSpc+EqvNMVhTjWbaqTb7qotsd9i3wG59bJrPett4Mky8o211WsN4qB98Wr8 o0yL1/70f8DxrTdXLkikbOXYsmjq3gSDRE7yORti9eE2JjYp36fp9OoJHe3Yj4Px 5PaNouPg6z93iQ+dy/4IvJbWmmwWXg/s7Rqqh7ATW7daiWHquiGsaWPpUD2tXuGR fEnmAZ5kbuNwVhl3JEgRzJRxxy8gaGavz3GtWuS1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeZWuIQmkUEnONsQ8r9UnAX+QJF0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyOWFkYmM1LWI1Y2QtNDZjMS04NzQwLTM3ZGI4ODQ1Yjk2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARD3PAwDQYJKoZIhvcNAQELBQADggEBAAXXCe9i2QFYHgg4xvn3FMCe81my D8xVGZDkqO5Um6BerpKNVsLTpHwn9rm0IdQkXqwmQZDXEN5pB39aVWjLRO5/Hmvm K4clBdgHgfBDowDrDbwf7wGAhOcG48Ym1H6oeA1uIB1l1H1YHNd5p78WKtYjlsPm ou5CcIXlAScXjJAXIZM64dkjXiAvIrcqGySE3DbfKAZfa/ZSHVfaequgmSBKSjX0 3ZhpTNeiHY06MJQqna4mo9e4hiO5bL7nIaeax5Nhd04j1n1sG69TxrS6nucfnxHF eW234mj3vMgZwCCEZ19LYzS1yIJA4ZgWoxDb1YAuwqsZVzgGyaU3d4lvt0g= -----END CERTIFICATE-----Generated at Mon May 12 21:41:38 2025 by rpki-client