$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05767c0c-a51a-4724-8188-24d099c58bd8.roa File: 05767c0c-a51a-4724-8188-24d099c58bd8.roa (raw, json) Hash identifier: 9wGcQSDhZeQEaFAbhol3FRP3jCIpztFDAVb7WMiifVU= Subject key identifier: 13:80:54:45:98:05:78:77:FF:47:5A:7D:2F:E0:B2:5D:CB:11:E0:5F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6306FCD4966DA7811F7562D17B5C03FA5FA3839D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05767c0c-a51a-4724-8188-24d099c58bd8.roa Signing time: Tue 27 May 2025 00:11:26 +0000 ROA not before: Tue 27 May 2025 00:11:26 +0000 ROA not after: Tue 01 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.190.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:06:fc:d4:96:6d:a7:81:1f:75:62:d1:7b:5c:03:fa:5f:a3:83:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 27 00:11:26 2025 GMT Not After : Jul 1 23:59:59 2025 GMT Subject: serialNumber=dfec0289d18a18bc96a5a35febe04133013bf84641ec4c786be4c24dda75d37e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:e8:56:a3:10:18:3f:a5:a9:59:b1:9c:a1:61: af:aa:18:cf:18:c4:57:96:6a:c9:f6:56:59:91:b5: 21:62:c8:82:a9:ac:34:7d:4d:a1:ae:c7:e9:d6:c4: 78:c7:d4:94:d7:31:63:75:d3:f0:07:64:1c:63:10: 76:d5:0c:b3:2b:80:78:25:9c:02:ee:79:9c:20:a6: 47:1a:9a:53:08:ea:9c:d4:97:55:ec:e4:89:27:8b: d5:e2:8c:1a:c6:e8:ee:57:9f:c9:f3:6b:22:e3:8d: 08:d4:33:db:f2:28:f1:d7:53:39:5b:70:22:ca:32: fb:8d:76:20:52:6d:1f:45:1f:3c:69:78:06:e5:cb: 01:53:b9:53:c0:95:44:74:7e:44:29:bf:a4:3f:d8: 89:e9:59:1b:e5:a7:42:45:92:09:aa:5f:29:f5:62: c6:cb:62:63:64:cd:9e:7b:af:74:93:c8:1b:c8:be: 25:fc:11:f0:f6:49:7d:dc:8b:45:31:75:c6:9d:6c: ba:a8:a8:29:e1:9b:96:1b:a0:2b:df:64:34:47:33: 57:0f:8f:cd:6c:f0:44:ad:e4:79:79:04:3f:97:30: 6e:68:1a:32:ee:60:3f:96:97:b5:ce:f5:f1:51:4d: 3a:4f:23:2c:a5:15:d7:32:14:e5:f6:87:da:3b:4c: 3d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:80:54:45:98:05:78:77:FF:47:5A:7D:2F:E0:B2:5D:CB:11:E0:5F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05767c0c-a51a-4724-8188-24d099c58bd8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.190.0.0/16 Signature Algorithm: sha256WithRSAEncryption 40:6b:74:6d:02:f6:b0:9e:89:4a:0e:ff:10:bc:43:99:3e:28: f7:0b:ba:97:ca:a9:34:99:cb:8c:59:20:8f:29:c3:89:0b:ff: 18:44:5e:ee:b5:04:58:7d:88:7b:62:a8:2f:11:d7:c2:fd:f9: 17:af:bc:64:d9:58:73:ca:d1:7c:7c:58:23:fb:5a:09:3f:8d: cb:d6:e2:b3:3b:d0:c1:75:3f:13:f6:66:c7:4e:b5:20:ae:de: a2:3b:9d:de:95:7d:6b:fa:b3:d1:f8:9a:db:af:ba:16:34:7e: 95:97:8b:50:8e:91:bf:58:c2:73:96:76:09:ec:e6:bc:4a:2b: ce:08:8e:09:3d:12:4d:96:46:d9:b4:aa:b9:f5:27:00:59:b4: 4d:5b:f8:d5:bc:0b:16:a6:f3:53:2f:ed:1a:67:7f:ac:a5:fa: b2:b4:d3:cb:71:3a:c7:0e:09:24:9e:0d:c0:ad:71:c8:d6:65: d2:16:f3:0c:56:12:ec:06:20:aa:43:71:a6:d4:14:01:87:b2: 07:51:0f:fd:ff:69:6b:43:78:13:1c:bf:78:55:b4:d1:cb:95: 2d:53:c7:d1:3e:80:4f:72:69:2c:73:ee:6d:ea:f6:68:7f:5a: c0:de:b9:b8:7f:39:a4:f4:0c:fb:a5:91:54:d2:e4:a4:41:86: ec:b2:95:7f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYwb81JZtp4EfdWLRe1wD+l+jg50wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI3MDAxMTI2WhcNMjUwNzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZmVjMDI4OWQxOGExOGJjOTZhNWEzNWZlYmUwNDEzMzAx M2JmODQ2NDFlYzRjNzg2YmU0YzI0ZGRhNzVkMzdlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCU6FajEBg/palZsZyhYa+qGM8YxFeWasn2VlmRtSFiyIKp rDR9TaGux+nWxHjH1JTXMWN10/AHZBxjEHbVDLMrgHglnALueZwgpkcamlMI6pzU l1Xs5Ikni9XijBrG6O5Xn8nzayLjjQjUM9vyKPHXUzlbcCLKMvuNdiBSbR9FHzxp eAblywFTuVPAlUR0fkQpv6Q/2InpWRvlp0JFkgmqXyn1YsbLYmNkzZ57r3STyBvI viX8EfD2SX3ci0UxdcadbLqoqCnhm5YboCvfZDRHM1cPj81s8ESt5Hl5BD+XMG5o GjLuYD+Wl7XO9fFRTTpPIyylFdcyFOX2h9o7TD2PAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUE4BURZgFeHf/R1p9L+CyXcsR4F8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA1NzY3YzBjLWE1MWEtNDcyNC04MTg4LTI0ZDA5OWM1OGJkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQvjANBgkqhkiG9w0BAQsFAAOCAQEAQGt0bQL2sJ6JSg7/ELxDmT4o9wu6 l8qpNJnLjFkgjynDiQv/GERe7rUEWH2Ie2KoLxHXwv35F6+8ZNlYc8rRfHxYI/ta CT+Ny9biszvQwXU/E/Zmx061IK7eojud3pV9a/qz0fia26+6FjR+lZeLUI6Rv1jC c5Z2CezmvEorzgiOCT0STZZG2bSqufUnAFm0TVv41bwLFqbzUy/tGmd/rKX6srTT y3E6xw4JJJ4NwK1xyNZl0hbzDFYS7AYgqkNxptQUAYeyB1EP/f9pa0N4Exy/eFW0 0cuVLVPH0T6AT3JpLHPuber2aH9awN65uH85pPQM+6WRVNLkpEGG7LKVfw== -----END CERTIFICATE-----Generated at Sun Jun 1 04:29:23 2025 by rpki-client