$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f6f7c31-6468-4794-addf-4e261bbd9e31.roa File: 9f6f7c31-6468-4794-addf-4e261bbd9e31.roa (raw, json) Hash identifier: 5dpnKT7SUHtIPcot2TJRwPvLt06Ql9VzP3x9pl2dYj0= Subject key identifier: 2C:8F:DA:65:97:26:8B:46:A8:46:4A:4F:F3:22:F4:EB:5D:81:63:95 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7FDE66EDCBC80F36A2C961291B6610B1A8AC1D7E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f6f7c31-6468-4794-addf-4e261bbd9e31.roa Signing time: Tue 08 Apr 2025 00:40:20 +0000 ROA not before: Tue 08 Apr 2025 00:40:20 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:de:66:ed:cb:c8:0f:36:a2:c9:61:29:1b:66:10:b1:a8:ac:1d:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:40:20 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=afd6e0955c9e4d9c0826618a563284885d8134821156bc829ed074928595daef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:51:8b:cb:9a:39:3f:e5:42:ac:3e:f0:e4:cd: 9a:46:a7:ec:af:23:9d:04:3e:fd:e3:bc:2a:7c:e0: 9e:84:3e:7f:ba:33:21:91:89:3f:1d:4c:c5:ac:87: 3d:73:29:31:1d:b7:52:26:4e:dc:70:f2:10:01:00: c1:55:bf:b1:21:a4:67:76:f4:c9:94:22:a3:95:90: 27:c6:fd:b0:71:30:e1:6a:c7:95:ad:c1:7d:6c:b9: b7:98:d1:82:d5:f0:fc:aa:fb:64:cf:56:d5:c6:b9: 6c:b1:ad:bb:a3:d5:e5:d4:80:56:bf:80:ac:9c:04: 8b:22:05:ca:56:69:e9:b2:ba:9b:fd:30:36:7a:b7: a9:c4:9b:f5:3d:00:f0:8d:81:36:07:2b:a6:fd:f5: 7e:ec:28:bf:4b:70:62:2d:9e:59:a1:55:73:c2:7c: b5:47:5a:4c:29:5d:f2:eb:95:98:b1:f6:23:70:c6: 27:63:62:53:0c:38:da:0a:70:56:6c:fa:41:35:13: 64:45:ce:dc:c9:29:7d:ba:fe:7c:e8:f8:e4:3c:31: b5:ec:36:8f:00:30:8d:9d:77:e9:66:34:d1:f5:b0: 3f:1d:33:22:8a:4a:38:7d:e3:dd:fc:00:c2:32:e4: 91:26:bc:7d:92:8f:dc:0a:e3:f4:0f:f4:d1:09:ed: 77:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:8F:DA:65:97:26:8B:46:A8:46:4A:4F:F3:22:F4:EB:5D:81:63:95 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f6f7c31-6468-4794-addf-4e261bbd9e31.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.98.0/24 Signature Algorithm: sha256WithRSAEncryption 75:0e:22:3f:f6:7a:7a:93:c0:41:ef:bc:5b:1a:be:a0:44:06: 62:aa:e9:2e:84:2e:60:fa:92:3d:03:7c:81:73:f8:fb:8e:34: 53:5b:a9:90:34:17:ff:65:67:89:15:f6:1b:28:22:f3:bb:22: d0:ec:24:ba:01:86:f7:c5:d4:6a:5c:1b:d8:0f:22:b0:ff:94: b6:57:31:fc:02:aa:ca:95:28:3e:15:0f:e9:38:78:74:0b:f9: 68:8b:63:81:09:3d:96:71:c9:ee:84:4f:85:d3:8e:91:92:3d: 9f:c2:e0:21:24:92:2c:0e:bf:39:25:07:15:e1:ca:b4:07:cc: ac:36:25:d3:df:84:0c:c2:4f:0d:31:d4:11:09:eb:67:4b:90: 3a:99:c7:6b:ab:6a:7d:1d:35:d9:31:e4:8e:64:99:b4:ed:68: 76:25:b0:1a:e8:34:96:66:3e:02:00:d8:65:33:9a:1f:43:8b: ba:78:f9:a6:ab:8d:54:b4:b4:6d:4e:1e:64:90:85:fc:a2:7d: 56:f5:9f:a7:a0:b2:d0:9a:f4:91:d5:db:11:a2:e9:48:76:d5: 9e:73:11:df:b6:19:11:8a:39:84:25:08:4d:c1:b0:76:cb:57: b6:a9:ab:1a:98:63:a4:4e:08:65:a5:04:bb:e9:2b:02:d0:cc: 51:ab:7b:43 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf95m7cvIDzaiyWEpG2YQsaisHX4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDA0MDIwWhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZmQ2ZTA5NTVjOWU0ZDljMDgyNjYxOGE1NjMyODQ4ODVk ODEzNDgyMTE1NmJjODI5ZWQwNzQ5Mjg1OTVkYWVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNUYvLmjk/5UKsPvDkzZpGp+yvI50EPv3jvCp84J6EPn+6 MyGRiT8dTMWshz1zKTEdt1ImTtxw8hABAMFVv7EhpGd29MmUIqOVkCfG/bBxMOFq x5WtwX1subeY0YLV8Pyq+2TPVtXGuWyxrbuj1eXUgFa/gKycBIsiBcpWaemyupv9 MDZ6t6nEm/U9APCNgTYHK6b99X7sKL9LcGItnlmhVXPCfLVHWkwpXfLrlZix9iNw xidjYlMMONoKcFZs+kE1E2RFztzJKX26/nzo+OQ8MbXsNo8AMI2dd+lmNNH1sD8d MyKKSjh94938AMIy5JEmvH2Sj9wK4/QP9NEJ7Xe3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULI/aZZcmi0aoRkpP8yL0612BY5UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmNmY3YzMxLTY0NjgtNDc5NC1hZGRmLTRlMjYxYmJkOWUzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GIwDQYJKoZIhvcNAQELBQADggEBAHUOIj/2enqTwEHvvFsavqBEBmKq 6S6ELmD6kj0DfIFz+PuONFNbqZA0F/9lZ4kV9hsoIvO7ItDsJLoBhvfF1GpcG9gP IrD/lLZXMfwCqsqVKD4VD+k4eHQL+WiLY4EJPZZxye6ET4XTjpGSPZ/C4CEkkiwO vzklBxXhyrQHzKw2JdPfhAzCTw0x1BEJ62dLkDqZx2uran0dNdkx5I5kmbTtaHYl sBroNJZmPgIA2GUzmh9Di7p4+aarjVS0tG1OHmSQhfyifVb1n6egstCa9JHV2xGi 6Uh21Z5zEd+2GRGKOYQlCE3BsHbLV7apqxqYY6ROCGWlBLvpKwLQzFGre0M= -----END CERTIFICATE-----Generated at Sat Apr 26 16:48:31 2025 by rpki-client