$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2983c2e1-ba11-40a6-9ad5-b5b22db61183.roa File: 2983c2e1-ba11-40a6-9ad5-b5b22db61183.roa (raw, json) Hash identifier: DJJLjnEa1Eun/yR64sByCQSilmlMURoNMSyDpWW1mEs= Subject key identifier: 2B:30:6F:A6:53:82:6D:DD:C7:34:E5:61:95:39:21:4E:85:B7:E9:C1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 478E62DCD76EC7C36679E42FA7AD7F30ACAF0370 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2983c2e1-ba11-40a6-9ad5-b5b22db61183.roa Signing time: Wed 28 May 2025 00:02:00 +0000 ROA not before: Wed 28 May 2025 00:02:00 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 136.1.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:8e:62:dc:d7:6e:c7:c3:66:79:e4:2f:a7:ad:7f:30:ac:af:03:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:02:00 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=3b4c88653dfce96bf86d8949d1920b0d06aa8977913e1e2d07fa37757c5678d5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:24:40:a2:a9:5d:a5:a0:fe:fb:4c:be:28:00: b7:40:52:3f:ed:04:e3:ac:14:59:70:7e:13:ff:61: 84:0d:8f:14:62:69:7b:37:1c:67:46:1e:b6:aa:d1: 3b:87:45:dd:ad:c3:6f:60:41:8a:1f:7c:bc:69:20: 13:63:bf:1c:cb:55:3c:65:c4:b7:e4:5a:10:e5:15: e4:c4:3b:66:f2:c1:1a:f8:94:c6:82:8c:3a:61:e2: 97:95:ac:ef:90:f3:fb:d7:ee:c7:cd:3d:bb:4e:ea: d7:9a:80:c7:98:64:5f:60:ea:12:be:8c:17:48:10: 3d:d9:c3:e5:30:2a:88:bd:4f:d3:dc:87:8f:8a:7e: 21:70:bd:30:e8:ee:cf:b1:de:37:3c:b6:84:97:89: 2a:01:da:a3:c6:36:69:ef:8b:0e:70:34:a0:66:54: 47:7e:db:55:a1:63:2b:b3:13:d9:f0:59:66:4a:ae: c3:81:49:f9:74:2d:32:d3:3d:2c:ae:a7:92:b6:95: dd:ce:2e:16:32:dc:c4:d6:fa:8a:cb:de:a1:6a:88: 2f:a5:d1:be:ae:fc:72:95:b4:42:3a:51:d9:6e:15: d8:56:1c:78:df:7c:77:62:75:e1:47:8f:f1:75:0b: 66:4c:09:32:21:3c:a0:2a:4d:0a:e3:49:4e:47:09: 5c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:30:6F:A6:53:82:6D:DD:C7:34:E5:61:95:39:21:4E:85:B7:E9:C1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2983c2e1-ba11-40a6-9ad5-b5b22db61183.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.1.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3e:41:b9:ae:b6:04:b3:ba:b9:0c:8c:51:43:bf:eb:a2:f6:52: 98:af:40:d6:dc:3f:4e:4e:99:14:07:0b:cd:2d:85:95:a6:c3: 18:64:2f:04:ed:99:48:66:88:e5:50:ea:0a:a0:ce:e5:18:9f: 4e:81:bd:cb:39:8d:d9:2a:b6:d3:28:e7:df:a2:96:9f:42:f4: 70:dc:f5:26:24:47:de:8d:53:9b:bd:5a:13:f7:c9:c9:e3:a2: e5:52:cf:d2:28:65:90:67:88:81:6c:b0:2d:97:b8:1d:56:32: 9d:76:ed:35:d0:e9:cf:93:39:96:e6:35:27:8d:55:2a:07:06: 64:e2:07:21:ae:10:cf:72:c0:5b:b9:d8:e5:c4:a9:32:dc:c8: 22:19:27:14:db:b6:ce:26:ae:c7:25:cb:c4:ab:c9:c0:a2:e8: 57:98:42:c5:7e:84:61:f4:41:b2:0e:e5:2c:7a:96:d5:f8:4f: 2e:44:db:fd:12:37:2b:c9:13:e6:57:62:74:5e:d0:1b:92:e8: fd:5c:2f:d4:e3:96:5a:d7:ab:c3:4a:25:e4:46:2c:76:67:39: 0e:78:46:0c:fa:01:72:94:c1:af:a2:47:36:5b:b1:9e:c2:33: c4:3b:35:fa:32:f7:4c:08:5a:13:7a:b6:99:23:fa:1c:11:f1: d9:35:dc:ca -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUR45i3Ndux8NmeeQvp61/MKyvA3AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAwMjAwWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYjRjODg2NTNkZmNlOTZiZjg2ZDg5NDlkMTkyMGIwZDA2 YWE4OTc3OTEzZTFlMmQwN2ZhMzc3NTdjNTY3OGQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRJECiqV2loP77TL4oALdAUj/tBOOsFFlwfhP/YYQNjxRi aXs3HGdGHraq0TuHRd2tw29gQYoffLxpIBNjvxzLVTxlxLfkWhDlFeTEO2bywRr4 lMaCjDph4peVrO+Q8/vX7sfNPbtO6teagMeYZF9g6hK+jBdIED3Zw+UwKoi9T9Pc h4+KfiFwvTDo7s+x3jc8toSXiSoB2qPGNmnviw5wNKBmVEd+21WhYyuzE9nwWWZK rsOBSfl0LTLTPSyup5K2ld3OLhYy3MTW+orL3qFqiC+l0b6u/HKVtEI6UdluFdhW HHjffHdideFHj/F1C2ZMCTIhPKAqTQrjSU5HCVz9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKzBvplOCbd3HNOVhlTkhToW36cEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI5ODNjMmUxLWJhMTEtNDBhNi05YWQ1LWI1YjIyZGI2MTE4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCIATANBgkqhkiG9w0BAQsFAAOCAQEAPkG5rrYEs7q5DIxRQ7/rovZSmK9A 1tw/Tk6ZFAcLzS2FlabDGGQvBO2ZSGaI5VDqCqDO5RifToG9yzmN2Sq20yjn36KW n0L0cNz1JiRH3o1Tm71aE/fJyeOi5VLP0ihlkGeIgWywLZe4HVYynXbtNdDpz5M5 luY1J41VKgcGZOIHIa4Qz3LAW7nY5cSpMtzIIhknFNu2ziauxyXLxKvJwKLoV5hC xX6EYfRBsg7lLHqW1fhPLkTb/RI3K8kT5ldidF7QG5Lo/Vwv1OOWWterw0ol5EYs dmc5DnhGDPoBcpTBr6JHNluxnsIzxDs1+jL3TAhaE3q2mSP6HBHx2TXcyg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:55:23 2025 by rpki-client