$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eca8d020-6b05-4657-b554-a1e2c094a6db.roa File: eca8d020-6b05-4657-b554-a1e2c094a6db.roa (raw, json) Hash identifier: f/gPF7s5tu+JP88ONj0bytFX4SzGksiFvC9K8ptZwb8= Subject key identifier: B9:57:E7:2E:4D:F4:DA:46:FA:44:C7:28:68:76:C7:58:DA:59:E9:58 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CFDC012C3B19D9C06E4DFF9D06D91B830928ACE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eca8d020-6b05-4657-b554-a1e2c094a6db.roa Signing time: Wed 21 May 2025 22:37:39 +0000 ROA not before: Wed 21 May 2025 22:37:39 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:fd:c0:12:c3:b1:9d:9c:06:e4:df:f9:d0:6d:91:b8:30:92:8a:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 21 22:37:39 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=dd4fdf954b2a536c77089d11a716aee2b4c6b68ada28817a63cc01c10c0916c6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fe:c8:4e:e7:76:8c:a7:c7:c8:a3:67:c6:58: 79:e9:4c:24:19:3d:50:cd:ab:90:bf:ba:e4:52:9c: 1b:32:61:58:6b:d4:0b:94:30:62:3e:01:d3:5a:51: 42:80:27:e7:eb:91:45:28:e0:76:8b:1a:56:21:40: 9d:55:ee:c8:32:2e:f1:36:b8:dd:b2:a5:21:7f:8d: af:09:19:fe:64:aa:46:a6:bd:3f:b0:f5:97:0e:68: c5:c9:56:ab:55:c0:04:2c:83:24:ad:b2:ec:e0:44: 7e:c6:14:05:36:a7:b4:71:b2:46:7b:52:d3:c7:46: 3d:28:c7:21:d9:56:ff:98:f3:ec:db:89:49:02:62: a4:92:02:0b:19:b5:d3:81:39:ff:82:1d:b4:bd:be: e4:c1:b2:74:bf:5c:67:05:dc:fd:c1:91:a9:36:08: dd:d2:d6:56:41:81:ed:f0:9f:4b:24:50:70:f7:d4: 53:d8:64:e5:50:da:b7:cc:94:07:37:a1:04:b5:e8: 56:09:31:73:95:74:35:7a:7f:86:e3:6b:fe:20:0d: d2:93:00:0a:9c:86:f0:92:18:23:3b:ae:1c:bf:56: bd:06:75:a3:83:0f:db:a0:36:66:92:13:1f:b1:1b: 06:a5:65:44:1d:e6:db:e3:86:3c:78:1c:e7:83:39: 0c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:57:E7:2E:4D:F4:DA:46:FA:44:C7:28:68:76:C7:58:DA:59:E9:58 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eca8d020-6b05-4657-b554-a1e2c094a6db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.218.0/24 Signature Algorithm: sha256WithRSAEncryption 87:31:e8:e3:6b:7e:86:73:fe:ee:2c:8c:6b:6c:37:56:8a:34: 6e:8f:e1:e6:41:51:eb:a6:f0:e9:83:a4:f3:0a:21:e6:3d:82: 2e:31:82:d7:f3:59:9e:0f:2f:d0:d8:2e:77:7c:f1:b9:6b:66: 15:f4:f8:7b:7c:5b:e4:00:07:3b:cc:b6:51:31:74:b6:3f:aa: 38:29:2b:27:5a:25:85:3f:10:12:23:e2:c0:37:f4:22:76:ab: a3:45:ae:42:d8:42:76:3a:5c:b7:c3:15:75:7a:c2:42:67:0a: 4f:db:96:94:ba:99:ed:6c:75:f0:0c:b6:d1:21:17:db:5b:58: 0a:1a:5f:d3:99:b2:3a:9b:59:f0:1d:12:6b:52:78:24:55:ca: d2:6c:70:2d:c6:a7:d2:e5:86:7a:84:69:b2:af:57:de:39:bc: d0:b7:d3:24:6a:fa:6f:94:84:ed:6c:60:cc:94:8b:92:62:2f: 3c:26:fb:7a:0d:d1:24:ab:1c:d5:ab:44:f5:5b:79:c7:ab:38: 97:1f:8e:47:ff:39:52:ba:df:4d:e0:2c:10:9d:d6:e8:aa:ec: 1b:9d:55:89:2b:97:3d:8e:21:01:15:78:34:09:af:5c:f2:61: 30:1e:82:43:ec:38:c5:34:e3:6b:ca:ff:5b:0a:cd:77:fe:04: 9b:97:df:1d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULP3AEsOxnZwG5N/50G2RuDCSis4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIxMjIzNzM5WhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDRmZGY5NTRiMmE1MzZjNzcwODlkMTFhNzE2YWVlMmI0 YzZiNjhhZGEyODgxN2E2M2NjMDFjMTBjMDkxNmM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB/shO53aMp8fIo2fGWHnpTCQZPVDNq5C/uuRSnBsyYVhr 1AuUMGI+AdNaUUKAJ+frkUUo4HaLGlYhQJ1V7sgyLvE2uN2ypSF/ja8JGf5kqkam vT+w9ZcOaMXJVqtVwAQsgyStsuzgRH7GFAU2p7RxskZ7UtPHRj0oxyHZVv+Y8+zb iUkCYqSSAgsZtdOBOf+CHbS9vuTBsnS/XGcF3P3Bkak2CN3S1lZBge3wn0skUHD3 1FPYZOVQ2rfMlAc3oQS16FYJMXOVdDV6f4bja/4gDdKTAAqchvCSGCM7rhy/Vr0G daODD9ugNmaSEx+xGwalZUQd5tvjhjx4HOeDOQwNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuVfnLk302kb6RMcoaHbHWNpZ6VgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VjYThkMDIwLTZiMDUtNDY1Ny1iNTU0LWExZTJjMDk0YTZkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFANowDQYJKoZIhvcNAQELBQADggEBAIcx6ONrfoZz/u4sjGtsN1aKNG6P 4eZBUeum8OmDpPMKIeY9gi4xgtfzWZ4PL9DYLnd88blrZhX0+Ht8W+QABzvMtlEx dLY/qjgpKydaJYU/EBIj4sA39CJ2q6NFrkLYQnY6XLfDFXV6wkJnCk/blpS6me1s dfAMttEhF9tbWAoaX9OZsjqbWfAdEmtSeCRVytJscC3Gp9LlhnqEabKvV945vNC3 0yRq+m+UhO1sYMyUi5JiLzwm+3oN0SSrHNWrRPVbecerOJcfjkf/OVK6303gLBCd 1uiq7BudVYkrlz2OIQEVeDQJr1zyYTAegkPsOMU042vK/1sKzXf+BJuX3x0= -----END CERTIFICATE-----Generated at Sat Jun 14 06:49:45 2025 by rpki-client