$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa File: a1e648bb-cfc9-4252-8342-da6740732696.roa (raw, json) Hash identifier: lghDuZA0IPcWaeLjwdtqbXDv8xYSKhW8j/mDp5uTHMI= Subject key identifier: CB:2A:78:DF:2E:09:3F:5D:D2:E0:AC:4C:0C:0A:A1:63:A2:E9:29:80 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 450B8CEDF85FC6DF9155A9EFC2941D19E48440BE Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa Signing time: Wed 04 Jun 2025 00:40:22 +0000 ROA not before: Wed 04 Jun 2025 00:40:22 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.251.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:0b:8c:ed:f8:5f:c6:df:91:55:a9:ef:c2:94:1d:19:e4:84:40:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Jun 4 00:40:22 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=d51e2fde5264a4e96e2e1ecc3a72bc2715f4fb1d034b5df641d321842d2dfcc9, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:58:c8:46:ff:f1:eb:17:2e:ea:be:72:ba:81: 77:86:c3:78:a2:7c:21:1c:dc:8b:1b:b3:79:eb:3e: e4:ad:f9:95:cc:e4:8c:1e:e6:7c:8a:3d:84:10:ff: fa:64:ec:a6:8f:d0:60:57:c7:be:51:f1:d6:14:8f: 65:f4:1a:20:61:7d:dd:27:af:a9:70:ea:92:a6:1b: 67:d8:a7:4a:b2:09:01:1d:92:8e:81:b9:b2:b7:da: 52:8d:4d:66:a8:b6:5f:03:ea:82:79:2c:2d:0a:dd: 14:20:ad:ab:a0:e8:cc:a4:82:bf:ef:09:d6:75:f1: 25:9d:c1:6c:ec:a4:74:1c:5f:67:e3:74:e6:37:4d: 7a:a4:6c:41:96:21:f6:89:1b:a0:89:88:ea:91:22: dc:66:a1:da:37:77:e4:ae:dd:d3:aa:42:67:7f:38: 87:52:0c:87:6a:1d:00:83:ff:1d:93:3e:34:07:12: 5b:21:ac:e9:75:b2:68:33:4e:38:9a:9c:f2:9f:6e: 29:28:e2:a7:45:64:cf:de:0c:18:29:0d:78:6f:9e: 93:07:0b:df:3e:85:26:bc:f0:63:df:93:91:6b:5c: 6d:9d:86:7e:ca:1d:91:42:ac:3d:ad:e7:72:60:03: 65:6f:cf:dd:a3:92:3c:a7:02:29:30:91:32:57:fe: 5f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:2A:78:DF:2E:09:3F:5D:D2:E0:AC:4C:0C:0A:A1:63:A2:E9:29:80 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a1e648bb-cfc9-4252-8342-da6740732696.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.251.240.0/22 Signature Algorithm: sha256WithRSAEncryption 22:ce:e2:f9:a1:3c:d7:e9:04:1b:af:2c:c5:c4:7c:65:fb:c6: 64:66:58:bf:91:91:ee:c0:f5:15:b5:66:91:78:a7:a5:ca:05: ab:a3:8d:98:82:99:1e:78:4f:1d:ad:35:54:07:ed:62:6a:48: 9d:af:78:d1:58:40:c8:32:b1:62:65:3b:3a:a2:7e:8f:fc:9d: 4e:94:68:a6:dc:b0:66:d9:12:8e:a3:1d:47:00:c1:93:b5:ab: c4:f6:94:1c:a2:2c:74:b1:27:c0:77:e1:ca:54:0e:b8:9e:23: ab:c6:59:49:92:e0:b6:cb:c2:e6:9d:02:dc:18:5a:4e:b5:56: b1:b6:3e:2f:15:05:15:9d:aa:75:a5:2f:8b:45:0d:aa:4d:f9: d2:7f:f6:6a:49:17:4c:7d:3c:17:50:ae:31:ba:04:b8:64:f0: cd:61:fe:14:8f:8f:8e:ba:fa:58:74:8a:f1:f7:b3:b4:df:d9: e5:d5:ba:7d:5e:c4:6e:ca:87:7b:93:b9:ba:43:d4:8e:be:be: f6:fc:72:be:60:4a:85:35:8e:b3:57:aa:d5:2c:d8:fb:5a:48: 57:4c:23:ca:b2:cc:a1:69:6c:d8:5c:e3:e0:f6:ed:67:29:47: 9f:d6:47:e7:a2:48:88:96:6b:1e:b1:0f:cb:ea:e2:9a:12:6d: ff:ae:8d:8f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURQuM7fhfxt+RVanvwpQdGeSEQL4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwNjA0MDA0MDIyWhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNTFlMmZkZTUyNjRhNGU5NmUyZTFlY2MzYTcyYmMyNzE1 ZjRmYjFkMDM0YjVkZjY0MWQzMjE4NDJkMmRmY2M5MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBWMhG//HrFy7qvnK6gXeGw3iifCEc3Isbs3nrPuSt+ZXM 5Iwe5nyKPYQQ//pk7KaP0GBXx75R8dYUj2X0GiBhfd0nr6lw6pKmG2fYp0qyCQEd ko6BubK32lKNTWaotl8D6oJ5LC0K3RQgraug6Mykgr/vCdZ18SWdwWzspHQcX2fj dOY3TXqkbEGWIfaJG6CJiOqRItxmodo3d+Su3dOqQmd/OIdSDIdqHQCD/x2TPjQH ElshrOl1smgzTjianPKfbiko4qdFZM/eDBgpDXhvnpMHC98+hSa88GPfk5FrXG2d hn7KHZFCrD2t53JgA2Vvz92jkjynAikwkTJX/l8jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyyp43y4JP13S4KxMDAqhY6LpKYAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2ExZTY0OGJiLWNmYzktNDI1Mi04MzQyLWRhNjc0MDczMjY5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALN+/AwDQYJKoZIhvcNAQELBQADggEBACLO4vmhPNfpBBuvLMXEfGX7xmRm WL+Rke7A9RW1ZpF4p6XKBaujjZiCmR54Tx2tNVQH7WJqSJ2veNFYQMgysWJlOzqi fo/8nU6UaKbcsGbZEo6jHUcAwZO1q8T2lByiLHSxJ8B34cpUDrieI6vGWUmS4LbL wuadAtwYWk61VrG2Pi8VBRWdqnWlL4tFDapN+dJ/9mpJF0x9PBdQrjG6BLhk8M1h /hSPj466+lh0ivH3s7Tf2eXVun1exG7Kh3uTubpD1I6+vvb8cr5gSoU1jrNXqtUs 2PtaSFdMI8qyzKFpbNhc4+D27WcpR5/WR+eiSIiWax6xD8vq4poSbf+ujY8= -----END CERTIFICATE-----Generated at Sat Jun 14 06:50:55 2025 by rpki-client