$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0343534b-f673-4820-a35c-761953dd8136.roa File: 0343534b-f673-4820-a35c-761953dd8136.roa (raw, json) Hash identifier: NcStBtN+MpwLxo/wlWZT4GONpreDA38iZZarM/dpSM4= Subject key identifier: 23:1C:A8:0F:D2:1D:37:1A:58:70:28:EB:C2:68:12:6C:FB:17:D3:E8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5812819A917296F1EB5F5E556BFDB6746CA2DC11 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0343534b-f673-4820-a35c-761953dd8136.roa Signing time: Wed 28 May 2025 00:12:10 +0000 ROA not before: Wed 28 May 2025 00:12:10 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 216.73.208.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:12:81:9a:91:72:96:f1:eb:5f:5e:55:6b:fd:b6:74:6c:a2:dc:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:12:10 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=59f1e774d6d76247199bba3b60340ee3061c3294f0740bbdec0074a403857d7e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d5:be:f5:4d:02:64:8b:a2:3a:69:5a:59:02: 24:d3:9f:bc:10:5b:70:e6:52:5c:fb:88:f7:ae:52: bd:f9:0a:37:ba:06:31:46:52:a1:b4:1d:ba:a6:16: a2:bd:b9:45:b2:f6:5a:60:03:0e:63:90:dc:c5:21: 70:3f:61:47:c1:57:a8:64:60:ea:3c:b6:43:a3:58: 83:9f:ba:6b:1f:29:49:31:14:d1:aa:57:ed:55:0d: 54:0f:34:b5:3b:71:6d:00:30:eb:68:80:42:c0:c1: 27:3c:23:66:b2:04:be:c4:e7:82:10:ca:b0:f9:e2: 81:87:8b:0a:c8:41:3f:b2:19:66:8f:06:b5:84:16: 73:53:24:6a:64:00:32:5c:d6:e3:c2:3a:35:38:a4: b3:86:79:40:49:1d:ef:d9:70:a7:2d:94:0d:de:6d: 47:c5:6a:d7:0e:35:bd:2e:7d:e8:07:a7:a7:ce:ff: fb:1c:fa:00:97:28:9d:68:59:62:1d:9f:d6:83:e0: 30:a0:c3:67:44:1f:2e:2c:86:0b:e8:08:b1:e4:8f: 11:a7:31:af:f1:7b:3f:46:f2:a2:0b:9d:33:7f:4c: c5:3a:e0:13:7b:de:8a:7e:8a:5f:39:b1:90:27:3d: 71:a3:38:b1:ad:2c:21:06:7d:ba:8d:f5:3c:d2:d2: c9:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:1C:A8:0F:D2:1D:37:1A:58:70:28:EB:C2:68:12:6C:FB:17:D3:E8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0343534b-f673-4820-a35c-761953dd8136.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.73.208.0/21 Signature Algorithm: sha256WithRSAEncryption d9:02:f7:b7:4f:d7:3b:99:9c:e4:bb:05:ce:52:b8:5d:db:05: 00:5c:f5:76:26:95:6c:87:46:1f:f7:a1:8b:42:f6:5c:0d:0e: 45:3f:34:74:50:cd:d3:bd:61:e6:dd:c1:9b:01:f5:6a:e9:b9: 41:80:d7:d6:61:e0:1e:8f:3a:f4:55:d7:12:6d:4a:68:b8:9f: b7:a6:66:c6:2a:69:5b:cd:ac:e4:76:c4:d2:eb:5c:f8:5f:0a: 8a:52:72:5e:39:e7:8b:c1:da:28:fb:7a:a4:6d:63:c1:14:1c: aa:8c:96:c5:f3:e3:77:9a:58:43:d5:1e:93:17:31:7f:2e:c5: 3f:10:a4:e1:7c:ad:c1:b4:86:59:e4:de:eb:44:38:a2:79:d8: 17:7b:c3:17:fd:35:90:ca:23:a2:fb:0e:7d:f4:db:b4:57:3d: ed:6c:d9:70:20:ec:c3:96:2f:89:65:a5:35:a6:c5:84:5a:96: ef:d1:b0:b3:62:bb:2b:5a:8d:de:b5:e0:c1:28:64:c6:3d:42: 2c:02:e7:fe:8d:d5:86:50:d8:64:23:01:7d:f7:86:56:b1:20: 20:d6:c4:0a:ab:58:70:11:44:91:76:66:1e:a5:a0:c1:69:d6: 9a:79:b0:b5:86:40:50:cd:1c:e7:17:b9:f9:13:93:c3:16:34: 15:ce:8b:db -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWBKBmpFylvHrX15Va/22dGyi3BEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAxMjEwWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OWYxZTc3NGQ2ZDc2MjQ3MTk5YmJhM2I2MDM0MGVlMzA2 MWMzMjk0ZjA3NDBiYmRlYzAwNzRhNDAzODU3ZDdlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDC1b71TQJki6I6aVpZAiTTn7wQW3DmUlz7iPeuUr35Cje6 BjFGUqG0HbqmFqK9uUWy9lpgAw5jkNzFIXA/YUfBV6hkYOo8tkOjWIOfumsfKUkx FNGqV+1VDVQPNLU7cW0AMOtogELAwSc8I2ayBL7E54IQyrD54oGHiwrIQT+yGWaP BrWEFnNTJGpkADJc1uPCOjU4pLOGeUBJHe/ZcKctlA3ebUfFatcONb0ufegHp6fO //sc+gCXKJ1oWWIdn9aD4DCgw2dEHy4shgvoCLHkjxGnMa/xez9G8qILnTN/TMU6 4BN73op+il85sZAnPXGjOLGtLCEGfbqN9TzS0sl3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIxyoD9IdNxpYcCjrwmgSbPsX0+gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzNDM1MzRiLWY2NzMtNDgyMC1hMzVjLTc2MTk1M2RkODEzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPYSdAwDQYJKoZIhvcNAQELBQADggEBANkC97dP1zuZnOS7Bc5SuF3bBQBc 9XYmlWyHRh/3oYtC9lwNDkU/NHRQzdO9YebdwZsB9WrpuUGA19Zh4B6POvRV1xJt Smi4n7emZsYqaVvNrOR2xNLrXPhfCopScl4554vB2ij7eqRtY8EUHKqMlsXz43ea WEPVHpMXMX8uxT8QpOF8rcG0hlnk3utEOKJ52Bd7wxf9NZDKI6L7Dn3027RXPe1s 2XAg7MOWL4llpTWmxYRalu/RsLNiuytajd614MEoZMY9QiwC5/6N1YZQ2GQjAX33 hlaxICDWxAqrWHARRJF2Zh6loMFp1pp5sLWGQFDNHOcXufkTk8MWNBXOi9s= -----END CERTIFICATE-----Generated at Sun Jun 1 04:58:51 2025 by rpki-client