$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/371b2f91-2743-40f8-9fcb-85c3287a3b0b.roa File: 371b2f91-2743-40f8-9fcb-85c3287a3b0b.roa (raw, json) Hash identifier: jUjBo1u2E+XRlMdMMN41V5cpGHxLSjGa5z+PzbwYjT8= Subject key identifier: 89:AA:C6:F3:AB:F3:F1:9E:16:E0:9D:A3:C3:32:03:3F:D8:30:63:8F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 455FA01F96195AEDE5186C0211267A47480E0DB1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/371b2f91-2743-40f8-9fcb-85c3287a3b0b.roa Signing time: Sat 31 May 2025 00:10:29 +0000 ROA not before: Sat 31 May 2025 00:10:29 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.186.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:5f:a0:1f:96:19:5a:ed:e5:18:6c:02:11:26:7a:47:48:0e:0d:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 31 00:10:29 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=e44043eaab0b6f5313b6e48350e7732f9e7b861b4af0bcd2183da5de4b4a27ce, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:93:0a:1f:02:3b:a5:51:59:f0:89:2c:f0:54: 3b:a5:dc:2d:83:38:b7:2f:a0:93:4d:10:67:bc:ee: 02:fe:df:50:d6:9b:87:ee:8b:cf:2a:6c:97:a8:fc: e8:19:bf:07:bc:08:cb:03:6c:ed:4d:d5:16:76:8a: 70:5e:d7:e6:5c:d9:04:95:99:ad:1a:a5:ee:43:f1: e6:72:b6:3a:8d:e9:26:f6:b9:f5:77:5b:8e:a4:f1: c7:5e:01:a1:2e:9d:32:ce:c7:31:52:9c:e9:1b:67: c0:7f:eb:6e:83:1d:f7:47:d7:47:e1:8e:30:fd:59: 57:53:36:35:f2:22:c8:ba:4a:cc:57:ac:4a:34:f4: 70:6e:6a:92:c7:04:0a:21:ef:8b:76:5a:cb:c2:7e: 68:1c:6e:c3:f7:49:f2:44:69:0d:b3:15:e2:87:16: 47:19:30:0d:7c:b7:48:90:31:c8:e5:b2:15:75:e1: 75:c7:51:b5:e7:46:51:6f:9a:15:e9:28:0c:e9:87: 21:7c:bc:2a:d7:1f:c6:5b:4c:ea:b7:de:33:1d:f2: 0f:a7:13:de:e6:5e:9a:c2:09:27:65:7a:db:77:74: 44:74:1d:f3:f8:cb:3a:c5:6c:83:28:14:65:0c:54: a1:75:1e:c9:a5:6d:d7:40:8f:e1:01:3e:52:cb:a2: b9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:AA:C6:F3:AB:F3:F1:9E:16:E0:9D:A3:C3:32:03:3F:D8:30:63:8F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/371b2f91-2743-40f8-9fcb-85c3287a3b0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.186.0.0/16 Signature Algorithm: sha256WithRSAEncryption 34:13:d2:74:b6:7c:ce:53:95:f3:7d:05:35:a8:9f:3d:f7:58: 90:d1:24:2a:fd:2b:f7:ee:43:94:0f:cd:65:40:44:9f:34:63: f9:27:91:af:1d:a4:a9:be:fe:03:00:f6:3a:ab:79:41:ac:92: 04:00:b7:b7:16:d2:6a:b2:e2:16:6c:a3:5d:56:21:42:8d:66: f8:8a:86:3d:b9:52:1f:a5:e2:00:0b:a3:8e:f1:8b:71:9d:b7: 57:ac:49:6e:1c:e8:74:3a:26:4a:6c:e8:eb:18:85:e8:46:15: 9a:77:d7:f8:43:7d:ab:85:73:36:d3:c5:0c:4f:53:ca:d5:92: e0:94:f6:bb:83:52:b6:f5:2f:0d:ae:cc:ee:d4:29:18:42:b0: ab:89:25:4f:13:00:1e:6f:59:08:0a:4b:22:22:40:25:98:82: 8a:3a:3d:b6:b7:46:95:7f:dd:96:1f:c9:39:36:1d:c9:77:41: 08:00:a4:bd:0b:08:18:98:81:76:8c:ea:8a:a9:fa:59:31:8c: c7:d3:2d:c3:e3:b8:44:30:21:a4:cd:42:1a:4e:a9:8a:7c:d8: c4:05:03:c9:e7:9f:78:c0:fb:10:6a:3c:7a:0d:72:3d:93:23: 99:85:50:da:c5:ac:2f:57:92:3e:7c:07:91:27:15:54:e2:98: b0:17:02:20 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURV+gH5YZWu3lGGwCESZ6R0gODbEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMxMDAxMDI5WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNDQwNDNlYWFiMGI2ZjUzMTNiNmU0ODM1MGU3NzMyZjll N2I4NjFiNGFmMGJjZDIxODNkYTVkZTRiNGEyN2NlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMkwofAjulUVnwiSzwVDul3C2DOLcvoJNNEGe87gL+31DW m4fui88qbJeo/OgZvwe8CMsDbO1N1RZ2inBe1+Zc2QSVma0ape5D8eZytjqN6Sb2 ufV3W46k8cdeAaEunTLOxzFSnOkbZ8B/626DHfdH10fhjjD9WVdTNjXyIsi6SsxX rEo09HBuapLHBAoh74t2WsvCfmgcbsP3SfJEaQ2zFeKHFkcZMA18t0iQMcjlshV1 4XXHUbXnRlFvmhXpKAzphyF8vCrXH8ZbTOq33jMd8g+nE97mXprCCSdlett3dER0 HfP4yzrFbIMoFGUMVKF1HsmlbddAj+EBPlLLorlbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUiarG86vz8Z4W4J2jwzIDP9gwY48wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3MWIyZjkxLTI3NDMtNDBmOC05ZmNiLTg1YzMyODdhM2IwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoujANBgkqhkiG9w0BAQsFAAOCAQEANBPSdLZ8zlOV830FNaifPfdYkNEk Kv0r9+5DlA/NZUBEnzRj+SeRrx2kqb7+AwD2Oqt5QaySBAC3txbSarLiFmyjXVYh Qo1m+IqGPblSH6XiAAujjvGLcZ23V6xJbhzodDomSmzo6xiF6EYVmnfX+EN9q4Vz NtPFDE9TytWS4JT2u4NStvUvDa7M7tQpGEKwq4klTxMAHm9ZCApLIiJAJZiCijo9 trdGlX/dlh/JOTYdyXdBCACkvQsIGJiBdozqiqn6WTGMx9Mtw+O4RDAhpM1CGk6p inzYxAUDyeefeMD7EGo8eg1yPZMjmYVQ2sWsL1eSPnwHkScVVOKYsBcCIA== -----END CERTIFICATE-----Generated at Sun Jun 1 05:06:53 2025 by rpki-client