$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a25bcb3-ce57-48d7-9a9f-e68a5b2943a6.roa File: 2a25bcb3-ce57-48d7-9a9f-e68a5b2943a6.roa (raw, json) Hash identifier: 0ksrr3Zpr6zNEf0ktj5zGqqoLS4NlWriG1HqhOxXc1I= Subject key identifier: CC:90:D5:80:4C:E2:CD:1F:B9:5A:5B:B8:52:F9:3D:02:96:07:ED:77 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35C3A4B70E3008B2FFA35805A820ABB8B50E206B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a25bcb3-ce57-48d7-9a9f-e68a5b2943a6.roa Signing time: Tue 20 May 2025 15:10:14 +0000 ROA not before: Tue 20 May 2025 15:10:14 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.63.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:c3:a4:b7:0e:30:08:b2:ff:a3:58:05:a8:20:ab:b8:b5:0e:20:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 15:10:14 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=a08b29d72407baef7deab2711b3ff4b7d2563265b2d60b53f188b49c9c8a6c97, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:cc:a4:94:dc:93:fd:77:3d:30:18:0d:03:5d: 19:65:59:6c:19:52:11:1c:cf:b3:3d:f2:4c:24:88: 8d:42:33:28:bd:d2:5f:37:93:9e:4d:da:ab:1a:43: d0:00:24:b7:f0:4a:84:8a:aa:70:53:c3:39:95:e3: b1:bc:b7:d8:e1:fa:b9:7c:2a:b5:ad:18:87:65:f4: 8a:d7:5f:e7:18:ff:f1:97:ca:63:63:5f:71:41:af: 3d:d2:72:4f:a3:28:8c:28:e2:75:d3:36:77:6b:d2: e0:0f:9a:d7:77:38:e4:1b:94:c4:d4:c7:d7:82:53: f9:b5:99:f0:0d:9c:b3:47:a2:3f:dd:b4:04:48:b5: 96:09:66:44:b8:82:4b:9a:f0:7d:12:07:be:de:51: 14:d3:08:ba:59:2b:29:91:2a:19:d6:1a:0a:d3:e4: fe:c9:45:70:04:4a:19:ed:7c:4c:1d:ee:39:e0:5a: 89:e2:44:3c:46:f1:be:36:31:88:06:1e:2b:f5:ca: 6e:89:04:a1:15:0b:ce:eb:8b:dd:1e:ca:9b:87:44: dd:32:0c:83:fd:2d:06:f0:54:a1:52:5a:cf:57:a6: 62:2d:4f:10:4a:aa:56:fa:12:bc:ff:a0:66:4d:af: aa:d9:76:42:27:11:39:30:d4:d3:92:57:06:99:8e: ee:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:90:D5:80:4C:E2:CD:1F:B9:5A:5B:B8:52:F9:3D:02:96:07:ED:77 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a25bcb3-ce57-48d7-9a9f-e68a5b2943a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.63.0.0/16 Signature Algorithm: sha256WithRSAEncryption 28:cb:48:d2:6b:65:7d:c7:46:d9:39:ba:3b:dd:eb:f3:05:5f: 88:d4:1e:87:7b:ec:85:98:7e:68:02:fa:3c:08:57:98:ae:83: 90:68:e6:13:08:f9:fd:10:fc:3e:eb:67:47:5a:e8:f7:45:14: a4:fd:86:1c:8d:59:30:19:cc:c8:e2:56:74:3e:cc:04:5b:72: 24:7b:b6:e6:ae:e2:af:22:2e:2f:82:df:65:85:94:ef:13:59: dc:bf:a2:9a:dd:66:fe:90:97:c1:40:a1:d6:d2:25:e3:0a:1f: e8:98:b2:20:98:7e:b0:fe:47:ae:57:ab:6f:3c:4a:86:fb:87: fe:7c:e1:df:e1:87:50:98:24:6b:de:74:bb:2f:e0:60:43:51: be:2b:c7:f2:ec:b5:e8:2c:70:ca:a3:78:15:75:59:99:21:39: d5:a9:79:85:5d:ec:88:1e:83:be:b4:bb:23:0a:18:81:73:5e: 6f:84:64:ae:a7:06:d5:f9:bc:1b:8b:ce:f7:e1:31:58:fc:23: f5:86:b7:87:aa:a0:5b:07:50:c9:04:31:53:33:8a:4e:d4:1a: 01:53:d8:4e:b5:f4:37:ec:5c:db:5f:78:9c:09:a8:ff:57:06: 1e:50:f2:49:09:c2:3d:7f:12:c3:8f:e2:ff:40:d3:74:0e:f6: ae:36:3b:02 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNcOktw4wCLL/o1gFqCCruLUOIGswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMTUxMDE0WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMDhiMjlkNzI0MDdiYWVmN2RlYWIyNzExYjNmZjRiN2Qy NTYzMjY1YjJkNjBiNTNmMTg4YjQ5YzljOGE2Yzk3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5zKSU3JP9dz0wGA0DXRllWWwZUhEcz7M98kwkiI1CMyi9 0l83k55N2qsaQ9AAJLfwSoSKqnBTwzmV47G8t9jh+rl8KrWtGIdl9IrXX+cY//GX ymNjX3FBrz3Sck+jKIwo4nXTNndr0uAPmtd3OOQblMTUx9eCU/m1mfANnLNHoj/d tARItZYJZkS4gkua8H0SB77eURTTCLpZKymRKhnWGgrT5P7JRXAEShntfEwd7jng WoniRDxG8b42MYgGHiv1ym6JBKEVC87ri90eypuHRN0yDIP9LQbwVKFSWs9XpmIt TxBKqlb6Erz/oGZNr6rZdkInETkw1NOSVwaZju4jAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzJDVgEzizR+5Wlu4Uvk9ApYH7XcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhMjViY2IzLWNlNTctNDhkNy05YTlmLWU2OGE1YjI5NDNhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4PzANBgkqhkiG9w0BAQsFAAOCAQEAKMtI0mtlfcdG2Tm6O93r8wVfiNQe h3vshZh+aAL6PAhXmK6DkGjmEwj5/RD8PutnR1ro90UUpP2GHI1ZMBnMyOJWdD7M BFtyJHu25q7iryIuL4LfZYWU7xNZ3L+imt1m/pCXwUCh1tIl4wof6JiyIJh+sP5H rlerbzxKhvuH/nzh3+GHUJgka950uy/gYENRvivH8uy16CxwyqN4FXVZmSE51al5 hV3siB6DvrS7IwoYgXNeb4RkrqcG1fm8G4vO9+ExWPwj9Ya3h6qgWwdQyQQxUzOK TtQaAVPYTrX0N+xc2194nAmo/1cGHlDySQnCPX8Sw4/i/0DTdA72rjY7Ag== -----END CERTIFICATE-----Generated at Sun Jun 1 04:43:08 2025 by rpki-client