$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05ae7013-1fbb-4d48-8f95-be150236ce6c.roa File: 05ae7013-1fbb-4d48-8f95-be150236ce6c.roa (raw, json) Hash identifier: p4mVZbsMgdwrC4xzOGVP68nqg7SRzQfEHQA7vieByJc= Subject key identifier: E0:5F:88:35:9A:6B:19:AF:F7:17:8E:3E:A7:E0:B1:9F:08:A0:F9:95 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 173711E3E5E0640AE3DE0C45416264EB247DFA88 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05ae7013-1fbb-4d48-8f95-be150236ce6c.roa Signing time: Mon 26 May 2025 15:02:13 +0000 ROA not before: Mon 26 May 2025 15:02:13 +0000 ROA not after: Mon 30 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 151.148.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:37:11:e3:e5:e0:64:0a:e3:de:0c:45:41:62:64:eb:24:7d:fa:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 26 15:02:13 2025 GMT Not After : Jun 30 23:59:59 2025 GMT Subject: serialNumber=2a971c9aadbfc51ad72b454b86a53d90b7de314779e9441938fc5a5f0cdd6e78, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6b:80:87:45:fd:e9:69:27:75:a0:15:15:f7: 67:91:98:11:09:f3:fd:0e:c4:ce:f4:6b:6a:3f:84: 50:ec:a8:aa:5c:49:3b:90:46:ec:24:93:39:b5:85: c2:40:cf:87:0a:b0:b9:2d:54:9a:92:ef:e8:94:3f: 6d:a2:47:ed:2d:f4:75:80:08:f5:ac:1c:72:48:ba: a4:93:ef:ee:3e:b1:c7:22:5b:bd:b4:db:7e:22:c8: 77:96:4d:31:cf:d8:38:c0:78:f9:d1:bb:4e:17:3b: 38:64:7d:e7:26:2b:ef:e8:3b:22:88:61:7e:50:3c: 64:aa:e8:22:2e:00:53:03:eb:dc:8d:0a:44:63:91: 73:d3:98:85:94:38:21:0c:b4:16:82:70:36:75:7e: 05:cb:44:af:b0:ab:d4:7f:70:62:08:d2:0a:95:6c: 71:73:a7:08:bb:1a:01:f2:94:98:92:10:95:b6:c5: 23:ba:0f:cc:f5:51:e5:89:ca:4e:d9:1f:cd:82:bb: c4:24:3d:02:16:2f:c2:a3:a7:db:01:07:68:fa:38: 6f:e5:d0:37:ba:66:d1:d3:83:53:41:3d:ed:7b:5b: 71:7c:69:85:dd:d1:2b:d4:68:2e:55:e7:93:60:2d: 36:ea:2e:86:eb:05:ef:6d:52:33:e4:97:df:c3:a0: 4a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:5F:88:35:9A:6B:19:AF:F7:17:8E:3E:A7:E0:B1:9F:08:A0:F9:95 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05ae7013-1fbb-4d48-8f95-be150236ce6c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.36.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:75:9b:77:a1:5b:eb:7d:4e:45:92:f3:c7:b9:82:9b:76:fd: 56:ba:cc:91:2b:a2:d0:ee:98:9d:71:b1:70:ad:7c:ee:0c:79: 22:9c:2d:09:8c:7d:98:c5:f7:47:73:e9:f4:e7:fe:d4:b0:9b: a7:b8:49:67:6a:01:9c:00:fd:ac:57:9b:1d:45:89:7f:0b:dc: 9a:de:29:2d:76:ab:d6:cb:0f:34:eb:e8:47:54:0e:59:7a:02: 89:b1:a5:6b:6a:f0:07:27:b0:b0:76:2b:08:48:57:0c:17:e2: 5d:1c:8d:61:ba:f3:04:46:ff:a2:be:5b:48:9d:e6:dc:4e:7a: 38:12:59:c2:ab:d7:d2:ab:72:ee:1b:f3:7f:36:e0:a6:6a:7e: 8c:5e:45:1a:45:77:35:79:66:4c:9c:76:3b:3d:a7:8d:41:53: 22:21:75:0e:8d:69:5b:6e:28:68:40:06:27:9a:9e:9b:cb:35: 9e:d8:84:18:fe:7c:8c:7d:07:2a:ca:35:50:40:0e:f3:f9:92: 9b:f5:b3:1b:a5:62:c1:22:a3:67:25:90:bb:8b:eb:17:ff:fa: 67:78:cc:b4:24:b5:fb:c6:45:0e:ba:f1:35:87:60:fd:57:8d: 5d:d1:f0:95:05:0b:94:1f:78:a8:5e:cf:c7:27:64:7e:98:de: 13:d5:76:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFzcR4+XgZArj3gxFQWJk6yR9+ogwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI2MTUwMjEzWhcNMjUwNjMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYTk3MWM5YWFkYmZjNTFhZDcyYjQ1NGI4NmE1M2Q5MGI3 ZGUzMTQ3NzllOTQ0MTkzOGZjNWE1ZjBjZGQ2ZTc4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGa4CHRf3paSd1oBUV92eRmBEJ8/0OxM70a2o/hFDsqKpc STuQRuwkkzm1hcJAz4cKsLktVJqS7+iUP22iR+0t9HWACPWsHHJIuqST7+4+scci W720234iyHeWTTHP2DjAePnRu04XOzhkfecmK+/oOyKIYX5QPGSq6CIuAFMD69yN CkRjkXPTmIWUOCEMtBaCcDZ1fgXLRK+wq9R/cGII0gqVbHFzpwi7GgHylJiSEJW2 xSO6D8z1UeWJyk7ZH82Cu8QkPQIWL8Kjp9sBB2j6OG/l0De6ZtHTg1NBPe17W3F8 aYXd0SvUaC5V55NgLTbqLobrBe9tUjPkl9/DoEobAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4F+INZprGa/3F44+p+Cxnwig+ZUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA1YWU3MDEzLTFmYmItNGQ0OC04Zjk1LWJlMTUwMjM2Y2U2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACXlCQwDQYJKoZIhvcNAQELBQADggEBAG91m3ehW+t9TkWS88e5gpt2/Va6 zJErotDumJ1xsXCtfO4MeSKcLQmMfZjF90dz6fTn/tSwm6e4SWdqAZwA/axXmx1F iX8L3JreKS12q9bLDzTr6EdUDll6AomxpWtq8AcnsLB2KwhIVwwX4l0cjWG68wRG /6K+W0id5txOejgSWcKr19Krcu4b83824KZqfoxeRRpFdzV5Zkycdjs9p41BUyIh dQ6NaVtuKGhABieanpvLNZ7YhBj+fIx9ByrKNVBADvP5kpv1sxulYsEio2clkLuL 6xf/+md4zLQktfvGRQ668TWHYP1XjV3R8JUFC5QfeKhez8cnZH6Y3hPVdp0= -----END CERTIFICATE-----Generated at Wed Jun 4 11:17:22 2025 by rpki-client