$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07362990-fdea-4902-8ba4-3d2db0e1c1a4.roa File: 07362990-fdea-4902-8ba4-3d2db0e1c1a4.roa (raw, json) Hash identifier: ezy3XzeUnE+hr+yvPgYkSOOuRZkyxgJE09P5HViIaCE= Subject key identifier: 25:1B:3B:65:28:57:41:B9:20:50:C5:C8:F5:7F:20:A5:EE:80:BB:FA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72DD04D471F76E9BB6337E0BAAE14A7682DD586D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07362990-fdea-4902-8ba4-3d2db0e1c1a4.roa Signing time: Tue 20 May 2025 15:00:48 +0000 ROA not before: Tue 20 May 2025 15:00:48 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.208.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:dd:04:d4:71:f7:6e:9b:b6:33:7e:0b:aa:e1:4a:76:82:dd:58:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 15:00:48 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=aadb2f21413e4648336c7ac36df8f2400b9077ce61effa6feb366286fd64be85, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3c:5c:50:92:ce:6f:38:e9:0f:59:ec:f2:ea: dc:6a:25:c1:d4:ae:65:36:74:b6:04:38:c0:1e:f2: 2e:f7:36:18:d6:b4:82:69:e6:ab:15:94:73:ee:49: 91:a1:17:c4:b2:12:ba:14:fd:d0:75:fa:03:19:3c: e2:6d:c8:5c:30:f3:fa:9b:7f:5c:49:d7:09:b8:1e: d7:b4:5b:18:1a:f2:4c:cd:15:c7:47:e9:39:06:af: 0f:38:18:e0:fc:cb:ae:0e:ba:ef:42:2b:4f:9b:ba: 86:ad:45:1c:bf:68:4a:f3:90:3a:a7:01:4a:f0:7b: 27:50:0b:28:dd:de:12:0b:4d:13:a0:f8:05:76:01: 87:f7:94:80:54:eb:fc:f5:14:b3:13:cc:bf:11:9d: 26:b7:a3:b9:8e:30:b8:93:9f:08:66:39:3c:cb:79: dc:9d:4d:dc:41:d5:96:e0:da:23:62:f0:5f:3c:90: be:6e:54:d0:97:f8:a2:f1:75:3d:e0:ee:a4:f3:77: 1c:23:2c:74:b8:ba:08:be:37:2e:53:6e:a8:d0:97: 50:f3:4e:be:3b:9b:35:a6:a8:8c:b5:bf:c8:50:73: 0e:5c:11:a2:72:f6:74:dd:6f:1e:b9:1e:27:d7:8f: c3:f8:a2:09:bf:70:88:19:39:01:43:8c:8f:15:0f: 1f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:1B:3B:65:28:57:41:B9:20:50:C5:C8:F5:7F:20:A5:EE:80:BB:FA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/07362990-fdea-4902-8ba4-3d2db0e1c1a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.208.0.0/16 Signature Algorithm: sha256WithRSAEncryption ce:f9:05:8b:27:8e:cf:17:82:a4:b3:ad:1d:ea:a5:76:36:16: 17:40:da:28:2a:9f:de:d4:a4:f7:35:3f:a1:fe:d3:de:f4:55: 9d:9f:0a:4b:9b:b7:bd:0e:3c:08:00:c3:eb:cb:3c:87:25:f2: 6c:7c:99:8b:a3:93:8c:db:34:53:07:ca:1f:4a:45:fa:e3:63: 24:95:09:1e:e1:c6:72:31:c6:75:f6:0e:6a:c4:e0:51:bb:db: 3e:f3:26:0d:9f:4d:0d:43:c2:c3:1a:ee:11:af:3e:77:b4:22: 54:d9:58:1b:21:9d:31:08:c0:f0:dc:b3:c2:d8:a4:0f:78:32: 75:d0:3d:af:5e:fb:ba:bc:5f:09:40:0b:fc:c0:1b:18:11:ff: 3a:62:3a:8f:5d:70:30:a4:ec:9f:a7:8a:19:a9:03:39:75:96: 26:8b:a2:64:97:80:43:90:9f:d3:72:d6:ea:28:ef:78:fa:ba: 30:81:1b:3d:bc:02:55:62:06:a4:55:cd:64:cc:d1:66:a6:01: d8:c2:44:3d:ef:54:aa:0c:f3:4a:26:a8:ee:5b:70:48:d5:43: 05:3d:8b:d5:13:11:2a:ed:a9:6a:45:56:69:78:7b:de:30:ae: 76:a8:4d:12:c7:57:81:7b:9d:fb:f4:67:08:f6:cc:6d:97:1f: e7:77:ce:06 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUct0E1HH3bpu2M34LquFKdoLdWG0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMTUwMDQ4WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYWRiMmYyMTQxM2U0NjQ4MzM2YzdhYzM2ZGY4ZjI0MDBi OTA3N2NlNjFlZmZhNmZlYjM2NjI4NmZkNjRiZTg1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxPFxQks5vOOkPWezy6txqJcHUrmU2dLYEOMAe8i73NhjW tIJp5qsVlHPuSZGhF8SyEroU/dB1+gMZPOJtyFww8/qbf1xJ1wm4Hte0Wxga8kzN FcdH6TkGrw84GOD8y64Ouu9CK0+buoatRRy/aErzkDqnAUrweydQCyjd3hILTROg +AV2AYf3lIBU6/z1FLMTzL8RnSa3o7mOMLiTnwhmOTzLedydTdxB1Zbg2iNi8F88 kL5uVNCX+KLxdT3g7qTzdxwjLHS4ugi+Ny5TbqjQl1DzTr47mzWmqIy1v8hQcw5c EaJy9nTdbx65HifXj8P4ogm/cIgZOQFDjI8VDx+FAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJRs7ZShXQbkgUMXI9X8gpe6Au/owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3MzYyOTkwLWZkZWEtNDkwMi04YmE0LTNkMmRiMGUxYzFhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA40DANBgkqhkiG9w0BAQsFAAOCAQEAzvkFiyeOzxeCpLOtHeqldjYWF0Da KCqf3tSk9zU/of7T3vRVnZ8KS5u3vQ48CADD68s8hyXybHyZi6OTjNs0UwfKH0pF +uNjJJUJHuHGcjHGdfYOasTgUbvbPvMmDZ9NDUPCwxruEa8+d7QiVNlYGyGdMQjA 8NyzwtikD3gyddA9r177urxfCUAL/MAbGBH/OmI6j11wMKTsn6eKGakDOXWWJoui ZJeAQ5Cf03LW6ijvePq6MIEbPbwCVWIGpFXNZMzRZqYB2MJEPe9UqgzzSiao7ltw SNVDBT2L1RMRKu2pakVWaXh73jCudqhNEsdXgXud+/RnCPbMbZcf53fOBg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:41:50 2025 by rpki-client