$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08f6921c-8b33-46e8-8cbd-ae0d5016bb70.roa File: 08f6921c-8b33-46e8-8cbd-ae0d5016bb70.roa (raw, json) Hash identifier: /X6a8TMw3GAH8szpuzjPsYKrKVHLz5uIgftPECgL5cE= Subject key identifier: C4:6D:A3:E3:9E:BE:F3:88:72:BE:8F:F3:D9:F6:0F:42:57:9A:3A:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6021160A1CB3F4801F1C9293A833E698347FE7CF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08f6921c-8b33-46e8-8cbd-ae0d5016bb70.roa Signing time: Wed 21 May 2025 00:00:54 +0000 ROA not before: Wed 21 May 2025 00:00:54 +0000 ROA not after: Wed 25 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:21:16:0a:1c:b3:f4:80:1f:1c:92:93:a8:33:e6:98:34:7f:e7:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 21 00:00:54 2025 GMT Not After : Jun 25 23:59:59 2025 GMT Subject: serialNumber=a310122881cb08beed51eb05d793808a039d3676c603462cecb6e9807c204b35, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:d9:26:c0:52:8d:dd:58:96:7a:45:06:d4:44: a4:bd:17:7d:6f:e6:e3:c4:ab:1d:fd:51:e4:c2:06: b5:3d:7c:a6:6f:69:5e:e7:e7:36:47:ba:e4:eb:bf: 4b:ae:e3:42:c9:ee:ce:3a:18:d6:6b:42:39:66:3b: b7:12:fa:29:95:49:ad:a4:51:5b:1c:8d:2d:c1:da: 78:b0:79:94:ac:cd:31:ae:83:97:2a:7d:cf:9b:96: b4:e6:06:4e:9a:6c:df:5f:c5:71:28:8d:fc:3d:ab: cb:37:0c:4e:43:0e:a9:6a:3d:fd:25:3b:e8:b1:2a: 24:0c:ce:4d:20:3e:6d:0b:03:94:70:67:59:e0:36: ce:d8:c6:a5:9e:75:76:5b:a2:c9:d4:c6:97:50:43: 4d:30:84:e0:a9:7e:2b:15:5f:39:b1:eb:2f:88:63: 3e:6e:4e:10:cc:bf:02:ce:11:1b:c5:3b:4b:e4:5c: 15:96:b0:c7:07:51:b3:b2:6e:14:83:44:d6:7f:81: f8:c6:5e:f8:bc:ae:01:70:20:71:c0:4d:7d:95:94: f6:cc:9d:60:1f:bc:d6:f2:89:6c:5c:58:6a:5b:2c: 80:08:71:40:59:8a:47:4b:42:b0:30:02:39:52:d5: ef:e9:15:0c:7b:94:e0:9c:35:1f:54:1c:1a:63:17: 26:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:6D:A3:E3:9E:BE:F3:88:72:BE:8F:F3:D9:F6:0F:42:57:9A:3A:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/08f6921c-8b33-46e8-8cbd-ae0d5016bb70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.116.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:ec:6a:b9:77:87:6c:e0:75:31:a4:6c:85:15:c7:ed:40:48: dc:4c:20:0c:8b:cb:1d:1d:1d:ca:c1:87:e4:f8:e9:fd:2d:3d: 43:50:49:85:bd:2e:a1:91:b6:e0:89:7b:04:25:2c:6b:ef:7b: 04:0f:96:15:47:a4:79:90:f7:54:a8:a8:34:61:91:19:43:a5: ee:be:ac:d9:6e:ef:80:1b:1a:5a:d8:be:24:4a:87:a7:ac:f2: 19:78:b8:3a:98:98:5c:ca:a0:c0:63:11:9f:6f:b0:8c:4e:af: 2e:e2:77:57:0a:b5:3f:c6:e3:92:fd:98:43:ec:2d:d9:f7:db: 98:01:85:a7:0b:38:53:a1:e9:ff:6d:1b:12:f6:9b:f9:44:fd: 82:dd:eb:c3:18:cf:d7:17:bd:b2:ab:61:50:b8:e5:85:1f:7d: c8:0b:a0:3f:7e:14:78:95:d7:23:4f:b6:44:f1:e2:9b:86:34: 0a:28:30:93:f3:cb:a1:30:67:59:f8:81:60:c4:1a:dd:8e:5f: ed:ad:07:75:78:09:c4:4d:3f:3b:6f:d9:11:e2:3b:3a:02:1f: fc:44:80:c2:81:f1:51:26:e1:aa:95:1f:6c:6f:0f:2f:c0:9f: c5:7e:01:78:01:38:b3:6c:87:76:e6:b4:0b:bd:3b:29:0c:89: e3:86:3d:e4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYCEWChyz9IAfHJKTqDPmmDR/588wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIxMDAwMDU0WhcNMjUwNjI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzEwMTIyODgxY2IwOGJlZWQ1MWViMDVkNzkzODA4YTAz OWQzNjc2YzYwMzQ2MmNlY2I2ZTk4MDdjMjA0YjM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa2SbAUo3dWJZ6RQbURKS9F31v5uPEqx39UeTCBrU9fKZv aV7n5zZHuuTrv0uu40LJ7s46GNZrQjlmO7cS+imVSa2kUVscjS3B2niweZSszTGu g5cqfc+blrTmBk6abN9fxXEojfw9q8s3DE5DDqlqPf0lO+ixKiQMzk0gPm0LA5Rw Z1ngNs7YxqWedXZbosnUxpdQQ00whOCpfisVXzmx6y+IYz5uThDMvwLOERvFO0vk XBWWsMcHUbOybhSDRNZ/gfjGXvi8rgFwIHHATX2VlPbMnWAfvNbyiWxcWGpbLIAI cUBZikdLQrAwAjlS1e/pFQx7lOCcNR9UHBpjFyZRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxG2j456+84hyvo/z2fYPQleaOoQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA4ZjY5MjFjLThiMzMtNDZlOC04Y2JkLWFlMGQ1MDE2YmI3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXQwDQYJKoZIhvcNAQELBQADggEBAH7sarl3h2zgdTGkbIUVx+1ASNxM IAyLyx0dHcrBh+T46f0tPUNQSYW9LqGRtuCJewQlLGvvewQPlhVHpHmQ91SoqDRh kRlDpe6+rNlu74AbGlrYviRKh6es8hl4uDqYmFzKoMBjEZ9vsIxOry7id1cKtT/G 45L9mEPsLdn325gBhacLOFOh6f9tGxL2m/lE/YLd68MYz9cXvbKrYVC45YUffcgL oD9+FHiV1yNPtkTx4puGNAooMJPzy6EwZ1n4gWDEGt2OX+2tB3V4CcRNPztv2RHi OzoCH/xEgMKB8VEm4aqVH2xvDy/An8V+AXgBOLNsh3bmtAu9OykMieOGPeQ= -----END CERTIFICATE-----Generated at Mon Jun 2 16:50:42 2025 by rpki-client