$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05102ffa-6c72-4fc1-9ad8-e881f3c1974e.roa File: 05102ffa-6c72-4fc1-9ad8-e881f3c1974e.roa (raw, json) Hash identifier: 2pdsL8D+EcwodQye+Jk+XhW0aIbLmBhuZah0opT3iXE= Subject key identifier: 64:98:34:75:C4:DE:44:B3:03:66:4F:2D:95:17:7A:11:41:CB:AD:19 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35F9B9AB53E7023BBFEAF443E854BD80793656A2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05102ffa-6c72-4fc1-9ad8-e881f3c1974e.roa Signing time: Mon 19 May 2025 18:41:03 +0000 ROA not before: Mon 19 May 2025 18:41:03 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 56.137.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:f9:b9:ab:53:e7:02:3b:bf:ea:f4:43:e8:54:bd:80:79:36:56:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 18:41:03 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=25dec1797437ed5a06cccea0cecb76fd79ef967836e6592447235c8f2c743ecc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d4:9f:fe:18:ba:37:da:f3:5a:70:dc:9a:4d: 89:12:16:60:be:ef:40:30:d9:2f:32:83:90:2f:5e: 99:30:c4:57:77:92:70:45:a1:7a:a1:27:02:ed:f8: 03:3a:92:35:ac:76:8f:ea:7d:e5:7e:2d:03:f5:30: 52:2d:00:0d:8b:88:8e:23:b5:35:33:80:4c:b6:39: 44:1e:c7:6d:b0:1b:10:47:1f:a9:3d:22:bd:8a:2a: 28:79:ef:3d:79:d3:b8:7d:58:c3:66:dd:dd:00:c2: 43:94:be:a4:b1:79:ef:c1:ef:6f:43:55:dd:0a:1d: d2:70:f7:3d:99:50:39:77:74:69:94:9b:e7:66:65: 39:8a:0a:39:28:50:12:f8:98:b6:90:9f:30:4c:5b: 1a:46:16:4a:56:eb:38:88:f3:ad:f8:db:80:53:9d: 13:9c:5a:23:c9:d6:a2:11:7d:97:dd:6f:d3:af:9d: 30:be:c3:0a:76:c3:f5:a8:31:c7:2b:88:fc:94:ee: eb:86:74:a0:f0:9e:9f:73:c8:e3:1b:eb:48:75:03: fb:65:35:d0:9a:8b:d6:28:8d:3b:41:0d:14:a4:4f: fb:19:2b:12:25:b9:da:11:f4:e7:c5:fb:ae:7c:93: 99:e2:d5:66:fc:b4:9e:f5:40:32:7f:e1:fd:55:45: 41:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:98:34:75:C4:DE:44:B3:03:66:4F:2D:95:17:7A:11:41:CB:AD:19 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05102ffa-6c72-4fc1-9ad8-e881f3c1974e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.137.0.0/16 Signature Algorithm: sha256WithRSAEncryption 43:c4:25:17:81:a8:e6:49:d8:bc:d6:57:6c:53:e9:4d:f4:81: 88:31:6c:09:2e:7c:2b:7a:2f:ee:c2:6b:f6:16:25:06:1a:42: a5:fa:f6:a7:04:a2:a8:18:b9:aa:43:65:dd:b4:f7:74:06:68: 30:65:54:b3:11:72:97:ce:d2:bb:cd:e9:d3:4b:5f:52:2a:f7: 47:30:48:b2:19:cd:fa:72:55:f5:a5:bf:a6:e2:20:8e:a8:49: 8e:ce:23:56:19:ad:a3:e4:da:40:96:3e:5a:6e:2e:bd:7d:ab: 50:01:d4:90:80:5c:b9:a6:d2:e9:a6:a0:1e:72:ca:6f:8e:d4: f8:2d:b7:d4:e5:4e:5a:39:ad:17:b4:c3:21:9d:25:87:06:8f: 1d:83:91:a3:76:50:14:37:80:f6:37:a8:f8:ad:dd:3b:cf:86: 06:06:0b:6f:53:5c:d1:78:79:79:4b:1f:74:8e:56:ba:5c:78: 25:40:c4:c8:b3:d7:1c:61:91:40:8e:af:53:5d:df:56:1f:91: 99:dd:6a:0e:97:39:44:89:86:d9:a6:05:19:3d:05:2b:92:3f: 0b:49:b5:8f:32:ec:15:0c:a3:aa:2c:43:0a:b6:d8:65:5b:73: 4e:e6:cb:83:3b:8e:e0:72:80:9c:77:d0:c7:4a:04:45:ce:b7: 20:b4:ca:8a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNfm5q1PnAju/6vRD6FS9gHk2VqIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTg0MTAzWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNWRlYzE3OTc0MzdlZDVhMDZjY2NlYTBjZWNiNzZmZDc5 ZWY5Njc4MzZlNjU5MjQ0NzIzNWM4ZjJjNzQzZWNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC91J/+GLo32vNacNyaTYkSFmC+70Aw2S8yg5AvXpkwxFd3 knBFoXqhJwLt+AM6kjWsdo/qfeV+LQP1MFItAA2LiI4jtTUzgEy2OUQex22wGxBH H6k9Ir2KKih57z1507h9WMNm3d0AwkOUvqSxee/B729DVd0KHdJw9z2ZUDl3dGmU m+dmZTmKCjkoUBL4mLaQnzBMWxpGFkpW6ziI863424BTnROcWiPJ1qIRfZfdb9Ov nTC+wwp2w/WoMccriPyU7uuGdKDwnp9zyOMb60h1A/tlNdCai9YojTtBDRSkT/sZ KxIludoR9OfF+658k5ni1Wb8tJ71QDJ/4f1VRUG7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUZJg0dcTeRLMDZk8tlRd6EUHLrRkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA1MTAyZmZhLTZjNzItNGZjMS05YWQ4LWU4ODFmM2MxOTc0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4iTANBgkqhkiG9w0BAQsFAAOCAQEAQ8QlF4Go5knYvNZXbFPpTfSBiDFs CS58K3ov7sJr9hYlBhpCpfr2pwSiqBi5qkNl3bT3dAZoMGVUsxFyl87Su83p00tf Uir3RzBIshnN+nJV9aW/puIgjqhJjs4jVhmto+TaQJY+Wm4uvX2rUAHUkIBcuabS 6aagHnLKb47U+C231OVOWjmtF7TDIZ0lhwaPHYORo3ZQFDeA9jeo+K3dO8+GBgYL b1Nc0Xh5eUsfdI5Wulx4JUDEyLPXHGGRQI6vU13fVh+Rmd1qDpc5RImG2aYFGT0F K5I/C0m1jzLsFQyjqixDCrbYZVtzTubLgzuO4HKAnHfQx0oERc63ILTKig== -----END CERTIFICATE-----Generated at Sun Jun 1 05:02:16 2025 by rpki-client