$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04e57552-1dfb-41ee-9dd2-f14d4faacbb3.roa File: 04e57552-1dfb-41ee-9dd2-f14d4faacbb3.roa (raw, json) Hash identifier: uPxrToXrEQlzsv83oCcSUVWZ7RsanOkkTh84TwTyWoM= Subject key identifier: C5:40:35:F5:EF:24:71:CD:AE:F6:95:04:0B:BB:4B:FA:60:A9:8B:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 645331033BC8B37F859AD8079A1D26B7ECB8DA79 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04e57552-1dfb-41ee-9dd2-f14d4faacbb3.roa Signing time: Wed 28 May 2025 00:20:24 +0000 ROA not before: Wed 28 May 2025 00:20:24 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.138.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:53:31:03:3b:c8:b3:7f:85:9a:d8:07:9a:1d:26:b7:ec:b8:da:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:20:24 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=d43fa2fa4852442dd4b37f498fc6daaf48759e61cc6beae04791f81e08039a5d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:07:b9:64:11:52:b0:bf:46:44:5d:01:a6:7f: 1d:89:74:00:56:2c:33:32:ab:77:3a:70:9e:88:48: 9e:7e:9a:df:17:0d:e8:93:96:d2:8f:85:7e:10:89: d4:44:d1:49:3a:21:51:80:fc:c0:57:cb:34:75:15: 14:2f:cb:8a:23:b6:01:fc:52:23:db:01:b9:e5:e4: 44:1b:d6:5b:f2:b6:42:02:6a:d8:46:fd:5e:63:5e: 57:85:31:d5:d7:c5:ff:f0:cf:b8:58:c7:0e:92:6f: 49:1a:5f:f5:9f:bc:bb:66:e3:70:ff:bf:24:0d:e4: 8d:9f:4c:d0:cb:65:3f:38:88:7e:28:97:9e:ea:6d: c7:ff:08:20:e0:a6:cf:4d:e1:d0:98:92:a6:48:59: 04:1e:45:1b:f6:91:b3:d3:ed:e8:29:90:a1:3f:75: 06:11:59:7e:bf:20:4e:72:4e:7f:fc:9a:43:94:7c: fc:b0:ea:6c:14:49:5a:fd:26:82:13:25:60:7b:b7: 05:90:45:4e:1b:f6:e1:76:58:53:eb:ee:35:1a:24: 04:9d:e8:64:e9:ac:43:5d:9b:5e:17:0c:98:69:bb: 3a:48:5c:ef:61:46:79:8d:7e:69:bd:e1:d8:49:53: a1:c3:dc:0d:3c:7d:15:7f:51:2e:4f:c3:88:63:86: 20:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:40:35:F5:EF:24:71:CD:AE:F6:95:04:0B:BB:4B:FA:60:A9:8B:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04e57552-1dfb-41ee-9dd2-f14d4faacbb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.138.0.0/16 Signature Algorithm: sha256WithRSAEncryption 05:1a:e8:e3:c1:56:33:c1:30:40:53:52:1a:35:4e:f0:54:53: 43:1a:58:9b:21:d1:26:a4:a1:1e:86:d0:7d:30:f2:ea:ef:09: 90:57:85:54:36:5a:2d:f8:d6:42:3f:e0:69:22:e1:43:dc:86: 9d:98:b3:33:a6:82:ab:f5:5f:ee:b2:d7:ab:af:2f:14:b5:db: 5e:eb:5f:c3:70:e2:48:6b:a7:a7:44:99:53:a3:89:c2:16:6a: 9b:3b:7f:e9:9f:55:a9:52:7d:78:e0:2d:84:ef:aa:40:51:b1: 59:bc:2d:48:2b:58:1d:88:a7:a3:bb:7e:3c:17:56:e4:3c:43: 8a:08:6b:89:58:af:89:bb:31:4b:e0:bb:c7:66:d0:4a:d8:8d: 47:16:3a:b3:0a:19:e7:ca:19:10:0a:4d:5c:a4:0b:e3:fb:ce: cc:cb:e8:f7:d0:86:af:db:83:64:1b:28:fd:4b:7b:da:05:6b: bb:06:fb:41:54:1c:57:f7:e9:88:d6:ff:a5:c0:22:ab:10:65: 04:bd:12:d7:66:15:4e:ce:3b:ad:44:e5:da:1d:7d:1f:3e:19: 32:79:d6:f6:ba:30:f8:bf:96:8f:a8:2a:73:ad:bb:6f:6f:6d: 0e:69:91:ef:27:bd:00:4a:d8:84:fd:61:f6:e4:1e:8e:30:37: 92:e7:df:27 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZFMxAzvIs3+FmtgHmh0mt+y42nkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAyMDI0WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDNmYTJmYTQ4NTI0NDJkZDRiMzdmNDk4ZmM2ZGFhZjQ4 NzU5ZTYxY2M2YmVhZTA0NzkxZjgxZTA4MDM5YTVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4B7lkEVKwv0ZEXQGmfx2JdABWLDMyq3c6cJ6ISJ5+mt8X DeiTltKPhX4QidRE0Uk6IVGA/MBXyzR1FRQvy4ojtgH8UiPbAbnl5EQb1lvytkIC athG/V5jXleFMdXXxf/wz7hYxw6Sb0kaX/WfvLtm43D/vyQN5I2fTNDLZT84iH4o l57qbcf/CCDgps9N4dCYkqZIWQQeRRv2kbPT7egpkKE/dQYRWX6/IE5yTn/8mkOU fPyw6mwUSVr9JoITJWB7twWQRU4b9uF2WFPr7jUaJASd6GTprENdm14XDJhpuzpI XO9hRnmNfmm94dhJU6HD3A08fRV/US5Pw4hjhiCPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxUA19e8kcc2u9pUEC7tL+mCpiwAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA0ZTU3NTUyLTFkZmItNDFlZS05ZGQyLWYxNGQ0ZmFhY2JiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2ijANBgkqhkiG9w0BAQsFAAOCAQEABRro48FWM8EwQFNSGjVO8FRTQxpY myHRJqShHobQfTDy6u8JkFeFVDZaLfjWQj/gaSLhQ9yGnZizM6aCq/Vf7rLXq68v FLXbXutfw3DiSGunp0SZU6OJwhZqmzt/6Z9VqVJ9eOAthO+qQFGxWbwtSCtYHYin o7t+PBdW5DxDighriVivibsxS+C7x2bQStiNRxY6swoZ58oZEApNXKQL4/vOzMvo 99CGr9uDZBso/Ut72gVruwb7QVQcV/fpiNb/pcAiqxBlBL0S12YVTs47rUTl2h19 Hz4ZMnnW9row+L+Wj6gqc627b29tDmmR7ye9AErYhP1h9uQejjA3kuffJw== -----END CERTIFICATE-----Generated at Sun Jun 1 04:38:27 2025 by rpki-client