$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cd41937-b307-4b78-8756-47c56035ec43.roa File: 2cd41937-b307-4b78-8756-47c56035ec43.roa (raw, json) Hash identifier: JZfKx/jNSySaSh4rqLVJ2c60gdLo8WSzlEZrALDQIrM= Subject key identifier: 64:A1:F1:89:B8:32:34:E2:9C:4F:A7:DC:3E:A9:EA:9C:4D:00:6A:AC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 10DA078E247E5F345B118B6C46A6D51F44AB7EE0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cd41937-b307-4b78-8756-47c56035ec43.roa Signing time: Sat 24 May 2025 00:10:26 +0000 ROA not before: Sat 24 May 2025 00:10:26 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.54.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:da:07:8e:24:7e:5f:34:5b:11:8b:6c:46:a6:d5:1f:44:ab:7e:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 24 00:10:26 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=248a959f731c2799d583c09ef88c8b59d49b2e52aa9a488154bae413d55b426e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:2b:93:eb:b3:d9:ca:73:80:6c:9c:c1:c7:68: a9:2a:22:ff:0e:3e:05:e3:d0:13:35:b2:5a:ce:f9: 5b:33:fa:ef:17:d2:4b:5a:47:66:50:47:45:7e:0a: 86:1d:f4:47:06:83:c8:a9:38:bc:43:2c:51:1f:f9: c7:0e:7e:57:81:dd:46:28:f4:26:87:de:9c:34:fc: 9d:81:69:ba:f6:a7:e9:4b:31:66:2d:53:ce:be:e0: 0c:1e:92:e0:7e:b5:fa:c4:db:c9:a7:c9:89:2c:c7: a5:75:39:4f:20:d4:7b:25:68:9e:41:76:c0:69:4f: b9:03:03:ad:32:1e:83:11:81:2d:5d:f0:e0:ab:28: 95:2a:92:d6:e8:a2:df:b0:7b:e4:48:c4:ef:66:cd: 2e:50:d3:4f:a3:d2:76:c4:a1:da:bd:88:4f:2a:cf: 88:c9:fa:e8:77:09:ea:87:d7:c0:de:45:f8:71:a0: d3:39:55:99:fb:d8:fb:ed:e4:8d:f7:2c:51:dc:5c: 64:32:69:4e:36:d0:15:39:8e:07:89:4b:9c:ef:c1: 2a:29:04:8c:b0:6a:77:be:26:a5:50:a9:92:7f:3c: 71:22:55:87:e9:5a:bf:3c:cd:57:7e:32:5f:5d:1d: 5c:9f:a3:8c:63:ca:7a:c5:20:c9:39:73:fd:48:c6: 39:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:A1:F1:89:B8:32:34:E2:9C:4F:A7:DC:3E:A9:EA:9C:4D:00:6A:AC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cd41937-b307-4b78-8756-47c56035ec43.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.16.0/20 Signature Algorithm: sha256WithRSAEncryption 22:bb:b5:19:db:8e:d8:05:e6:43:68:ab:ca:be:ba:fa:1a:71: 83:7e:c7:2c:46:21:b8:09:c9:63:10:07:20:d4:14:ff:71:64: 5f:56:4d:65:53:a2:ad:ea:b5:cf:67:23:f9:04:74:f5:88:7d: af:67:d8:65:b4:03:af:8a:44:75:4a:37:90:13:cb:e8:35:11: 96:ac:68:fb:65:ce:4f:40:10:ae:bb:66:6c:eb:d3:88:a6:41: f2:a1:9b:ea:d9:7d:03:6b:a6:48:16:5d:c9:80:0c:ae:34:25: b8:34:9d:62:6c:26:72:65:6e:50:91:3a:28:e3:c0:46:80:67: bf:bb:06:27:1a:26:e0:1f:d5:91:ad:56:24:d9:32:7c:89:b6: 63:13:be:82:b4:60:94:25:72:2b:c9:49:e5:b4:3f:84:aa:7c: 34:a0:eb:8b:39:64:c9:33:80:7a:08:b3:8d:17:fb:c7:7f:cb: 87:ed:dc:d9:90:56:d8:bd:1d:dd:35:5e:d5:7b:ee:75:17:f9: 54:1b:30:dd:a9:3f:c1:47:85:1b:ce:a0:40:60:5d:ca:83:0b: a7:ab:f9:b1:ab:0a:3d:7b:60:00:0a:4d:a3:00:eb:38:7f:af: 97:77:28:9c:58:86:e0:96:d6:db:6b:48:96:f8:e6:57:52:1b: aa:f7:e7:8a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUENoHjiR+XzRbEYtsRqbVH0SrfuAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI0MDAxMDI2WhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDhhOTU5ZjczMWMyNzk5ZDU4M2MwOWVmODhjOGI1OWQ0 OWIyZTUyYWE5YTQ4ODE1NGJhZTQxM2Q1NWI0MjZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQK5Prs9nKc4BsnMHHaKkqIv8OPgXj0BM1slrO+Vsz+u8X 0ktaR2ZQR0V+CoYd9EcGg8ipOLxDLFEf+ccOfleB3UYo9CaH3pw0/J2Babr2p+lL MWYtU86+4AwekuB+tfrE28mnyYksx6V1OU8g1HslaJ5BdsBpT7kDA60yHoMRgS1d 8OCrKJUqktboot+we+RIxO9mzS5Q00+j0nbEodq9iE8qz4jJ+uh3CeqH18DeRfhx oNM5VZn72Pvt5I33LFHcXGQyaU420BU5jgeJS5zvwSopBIywane+JqVQqZJ/PHEi VYfpWr88zVd+Ml9dHVyfo4xjynrFIMk5c/1IxjntAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZKHxibgyNOKcT6fcPqnqnE0AaqwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJjZDQxOTM3LWIzMDctNGI3OC04NzU2LTQ3YzU2MDM1ZWM0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQjNhAwDQYJKoZIhvcNAQELBQADggEBACK7tRnbjtgF5kNoq8q+uvoacYN+ xyxGIbgJyWMQByDUFP9xZF9WTWVToq3qtc9nI/kEdPWIfa9n2GW0A6+KRHVKN5AT y+g1EZasaPtlzk9AEK67Zmzr04imQfKhm+rZfQNrpkgWXcmADK40Jbg0nWJsJnJl blCROijjwEaAZ7+7BicaJuAf1ZGtViTZMnyJtmMTvoK0YJQlcivJSeW0P4SqfDSg 64s5ZMkzgHoIs40X+8d/y4ft3NmQVti9Hd01XtV77nUX+VQbMN2pP8FHhRvOoEBg XcqDC6er+bGrCj17YAAKTaMA6zh/r5d3KJxYhuCW1ttrSJb45ldSG6r354o= -----END CERTIFICATE-----Generated at Sun Jun 1 05:28:33 2025 by rpki-client