$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1500b9fd-4529-4cd4-8362-2f8b99b9d9aa.roa File: 1500b9fd-4529-4cd4-8362-2f8b99b9d9aa.roa (raw, json) Hash identifier: y3fv8RWS0QoGelHYoiH4DABhubJEp8DMizG3CDG1zuw= Subject key identifier: 34:77:4B:88:19:FF:BA:81:66:25:47:37:10:F8:37:12:39:75:82:CF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 04D569079A87C64B0433B043F99AAA085830D4EE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1500b9fd-4529-4cd4-8362-2f8b99b9d9aa.roa Signing time: Wed 28 May 2025 00:02:06 +0000 ROA not before: Wed 28 May 2025 00:02:06 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 143.191.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:d5:69:07:9a:87:c6:4b:04:33:b0:43:f9:9a:aa:08:58:30:d4:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:02:06 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=b6b0af9a8bc4fc163dfcc1af0e4abe2008dc94941bc329722dd05d8074e96186, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:99:a6:d9:b1:99:e9:e1:3c:53:bd:2f:44:ca: 67:14:72:0d:06:f3:93:67:0c:15:56:42:5e:30:e2: 7f:8a:ca:78:08:50:0a:b8:91:08:4d:95:c1:f5:88: f9:e5:70:d8:42:21:61:07:67:ef:38:87:90:f4:df: 16:d9:8d:90:75:bd:13:fd:94:4d:6e:5e:44:ce:b1: d1:82:1f:6c:1f:3c:1e:69:77:46:90:51:0a:45:6c: c1:c7:67:19:f3:25:28:be:05:1a:f5:80:8c:55:08: c4:f7:cd:8a:5d:ae:8d:47:75:56:48:6a:59:7d:10: 55:b8:33:8e:ec:7c:46:d3:18:94:c2:c3:8b:e4:6f: 2c:ba:ca:c6:a4:fa:af:12:8c:e3:77:77:51:d2:6d: 7c:73:f2:77:c0:93:a8:e3:b0:48:db:a9:9e:64:f5: 9d:ac:90:f9:29:a2:04:a9:8e:66:de:75:5d:56:25: 80:ca:a0:c1:2e:90:9f:0e:da:99:51:3d:7f:f2:c8: 98:32:c6:15:df:0e:b3:c3:5d:b9:a9:66:a9:80:aa: 93:ee:78:27:26:80:21:bf:f5:41:47:8a:f3:be:87: 68:33:30:47:32:97:d1:8b:c3:cb:70:b0:88:db:f1: 88:61:c0:46:6f:5b:e3:2e:92:a3:ef:b1:41:d7:02: 0e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:77:4B:88:19:FF:BA:81:66:25:47:37:10:F8:37:12:39:75:82:CF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1500b9fd-4529-4cd4-8362-2f8b99b9d9aa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 143.191.0.0/16 Signature Algorithm: sha256WithRSAEncryption d7:ba:7d:4e:13:26:8f:4e:d7:7e:4c:2b:cc:ad:a9:fc:93:46: d3:51:78:28:a3:4b:f3:6f:85:2d:7d:f7:97:4e:15:cd:9b:5b: b1:cc:d8:a3:ae:a6:67:75:10:fa:db:65:94:dc:91:c3:d4:e1: 40:96:77:9f:75:b8:13:6c:f6:99:41:11:94:d5:d9:75:f0:39: 8d:a9:31:36:9b:e2:d9:18:b7:d6:95:97:c9:b9:b7:1d:86:d6: 72:c2:1a:7d:16:5a:bc:b0:98:ce:da:de:aa:15:b3:be:8d:bb: 54:6f:23:8b:8e:dc:dd:45:7b:8e:d0:49:ef:f5:62:f0:56:4d: f6:7c:1f:aa:f6:c5:75:30:93:f2:22:c1:ed:99:91:aa:bd:cb: 64:8d:e5:e7:72:db:56:7e:de:40:ae:e0:c7:30:06:5f:5c:01: 90:47:56:2d:5b:9c:66:66:d3:82:7c:44:20:07:73:0b:c1:88: cd:e8:81:24:d2:6e:01:0a:6a:e0:7e:6f:15:7f:62:84:e2:a1: c0:19:11:e9:8c:9d:86:47:9a:45:c9:03:fa:6e:fb:5c:f0:4c: 34:9d:53:2a:28:8c:6d:16:eb:3d:6b:ea:33:13:f9:32:26:16: 92:ea:49:d1:2f:d8:76:9e:c9:88:08:a0:8d:9a:6f:18:a2:ff: e5:ce:d5:de -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBNVpB5qHxksEM7BD+ZqqCFgw1O4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAwMjA2WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNmIwYWY5YThiYzRmYzE2M2RmY2MxYWYwZTRhYmUyMDA4 ZGM5NDk0MWJjMzI5NzIyZGQwNWQ4MDc0ZTk2MTg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClmabZsZnp4TxTvS9EymcUcg0G85NnDBVWQl4w4n+KyngI UAq4kQhNlcH1iPnlcNhCIWEHZ+84h5D03xbZjZB1vRP9lE1uXkTOsdGCH2wfPB5p d0aQUQpFbMHHZxnzJSi+BRr1gIxVCMT3zYpdro1HdVZIall9EFW4M47sfEbTGJTC w4vkbyy6ysak+q8SjON3d1HSbXxz8nfAk6jjsEjbqZ5k9Z2skPkpogSpjmbedV1W JYDKoMEukJ8O2plRPX/yyJgyxhXfDrPDXbmpZqmAqpPueCcmgCG/9UFHivO+h2gz MEcyl9GLw8twsIjb8YhhwEZvW+MukqPvsUHXAg7lAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNHdLiBn/uoFmJUc3EPg3Ejl1gs8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1MDBiOWZkLTQ1MjktNGNkNC04MzYyLTJmOGI5OWI5ZDlhYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCPvzANBgkqhkiG9w0BAQsFAAOCAQEA17p9ThMmj07XfkwrzK2p/JNG01F4 KKNL82+FLX33l04VzZtbsczYo66mZ3UQ+ttllNyRw9ThQJZ3n3W4E2z2mUERlNXZ dfA5jakxNpvi2Ri31pWXybm3HYbWcsIafRZavLCYztreqhWzvo27VG8ji47c3UV7 jtBJ7/Vi8FZN9nwfqvbFdTCT8iLB7ZmRqr3LZI3l53LbVn7eQK7gxzAGX1wBkEdW LVucZmbTgnxEIAdzC8GIzeiBJNJuAQpq4H5vFX9ihOKhwBkR6YydhkeaRckD+m77 XPBMNJ1TKiiMbRbrPWvqMxP5MiYWkupJ0S/Ydp7JiAigjZpvGKL/5c7V3g== -----END CERTIFICATE-----Generated at Sun Jun 1 05:16:33 2025 by rpki-client