$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cf5f416-8b16-485d-b4ee-307762770eef.roa File: 3cf5f416-8b16-485d-b4ee-307762770eef.roa (raw, json) Hash identifier: oBzkXAtk7NhKISaBsR8sD21eg4R9qoijDj6T5OtnXL0= Subject key identifier: 98:15:CF:6B:75:42:BF:B8:07:E5:FE:2C:49:45:53:C3:64:55:33:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 65FFD4B081A36E2DBAEE5B6C27286BDA1C302B2F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cf5f416-8b16-485d-b4ee-307762770eef.roa Signing time: Wed 28 May 2025 00:52:22 +0000 ROA not before: Wed 28 May 2025 00:52:22 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 99.156.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ff:d4:b0:81:a3:6e:2d:ba:ee:5b:6c:27:28:6b:da:1c:30:2b:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:52:22 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=acf6b6ae255d1c9db460817f3d3bb1aca2076e1b4bc6894b00496378d604ae8c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9f:1a:88:af:d8:b1:44:b5:3e:80:83:4e:12: 42:6b:e1:0f:36:9c:14:a2:45:a3:d3:03:13:a7:1f: 57:0c:c1:b6:0f:5c:70:78:27:d6:11:88:3d:10:b3: 06:e5:ff:0b:d5:97:e4:80:a6:ab:a9:31:6c:86:d0: a1:ef:04:5c:e8:16:d7:89:c1:1a:82:eb:06:03:62: 08:fa:1c:5a:23:4c:53:ff:48:7d:a5:6a:53:93:9b: a1:d7:f1:74:0e:6d:37:5f:0a:b6:92:38:9f:0f:56: a6:07:ec:25:43:16:e1:2b:e4:b8:c9:4b:f3:76:e6: 2c:6b:51:22:fc:b6:f3:e6:70:a4:9c:d9:57:c0:a7: 21:97:82:6d:82:7c:2b:d1:b3:73:b9:f1:21:f3:b6: 9c:a5:64:b1:ab:fb:1f:21:d1:12:d3:24:2d:4b:03: bf:35:57:1f:29:eb:45:6d:7f:6b:a3:8a:4f:81:c5: 0c:88:0f:08:92:21:e1:47:81:17:9d:0c:23:66:05: 2b:f3:63:7f:18:d2:92:23:43:17:07:98:6d:ad:79: 1f:e4:67:b0:5f:f7:4e:25:86:7c:c8:22:69:05:33: 92:c6:ac:87:ef:56:95:7b:e8:22:34:aa:73:41:ef: 5c:18:ff:fe:12:b4:9b:7f:7e:ed:8b:22:97:47:c1: 07:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:15:CF:6B:75:42:BF:B8:07:E5:FE:2C:49:45:53:C3:64:55:33:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cf5f416-8b16-485d-b4ee-307762770eef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.156.192.0/18 Signature Algorithm: sha256WithRSAEncryption 4c:fb:be:1a:ac:da:64:85:91:58:6c:9e:b4:3a:1d:9f:b9:e5: d7:10:05:38:94:13:22:87:31:da:e0:a8:ea:58:10:bf:71:36: fa:c0:c8:14:65:42:e8:5c:fb:f4:e3:76:03:bc:c8:47:9f:8d: d0:38:39:a6:27:b9:0c:29:61:61:7f:cb:a3:bf:74:d4:a6:de: 39:ed:42:60:c6:8f:1e:59:94:be:50:67:9a:2d:de:76:37:47: 22:6b:cb:e0:cb:68:1c:7f:70:97:ed:70:e4:14:17:f8:66:8d: 0f:b5:09:a2:4b:3d:9a:04:3a:70:6f:e9:04:e8:5a:24:31:f0: 82:db:47:bf:7f:a5:47:f0:55:79:27:f4:99:fc:16:45:2b:5c: 1f:34:08:de:bb:10:5d:b6:c3:45:89:67:5d:ba:94:34:b3:7f: 34:ad:75:8c:71:41:2f:8d:82:ce:fc:f3:81:60:3a:8c:63:cc: 51:6e:8a:b5:c5:33:3d:82:c4:96:1f:ea:b9:78:03:a9:d0:d1: 1c:29:6d:cb:80:17:d9:9b:56:8b:b8:99:84:90:1b:5c:97:66: 09:3d:76:a1:32:1d:6a:cf:68:7f:96:99:4f:8d:3b:f6:b6:4d: 20:b8:f8:3e:b2:ce:fd:60:79:27:d4:ec:2e:c4:27:85:d8:12: 71:c9:14:91 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZf/UsIGjbi267ltsJyhr2hwwKy8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDA1MjIyWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhY2Y2YjZhZTI1NWQxYzlkYjQ2MDgxN2YzZDNiYjFhY2Ey MDc2ZTFiNGJjNjg5NGIwMDQ5NjM3OGQ2MDRhZThjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHnxqIr9ixRLU+gINOEkJr4Q82nBSiRaPTAxOnH1cMwbYP XHB4J9YRiD0Qswbl/wvVl+SApqupMWyG0KHvBFzoFteJwRqC6wYDYgj6HFojTFP/ SH2lalOTm6HX8XQObTdfCraSOJ8PVqYH7CVDFuEr5LjJS/N25ixrUSL8tvPmcKSc 2VfApyGXgm2CfCvRs3O58SHztpylZLGr+x8h0RLTJC1LA781Vx8p60Vtf2ujik+B xQyIDwiSIeFHgRedDCNmBSvzY38Y0pIjQxcHmG2teR/kZ7Bf904lhnzIImkFM5LG rIfvVpV76CI0qnNB71wY//4StJt/fu2LIpdHwQfTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmBXPa3VCv7gH5f4sSUVTw2RVM1owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjZjVmNDE2LThiMTYtNDg1ZC1iNGVlLTMwNzc2Mjc3MGVlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjnMAwDQYJKoZIhvcNAQELBQADggEBAEz7vhqs2mSFkVhsnrQ6HZ+55dcQ BTiUEyKHMdrgqOpYEL9xNvrAyBRlQuhc+/TjdgO8yEefjdA4OaYnuQwpYWF/y6O/ dNSm3jntQmDGjx5ZlL5QZ5ot3nY3RyJry+DLaBx/cJftcOQUF/hmjQ+1CaJLPZoE OnBv6QToWiQx8ILbR79/pUfwVXkn9Jn8FkUrXB80CN67EF22w0WJZ126lDSzfzSt dYxxQS+Ngs7884FgOoxjzFFuirXFMz2CxJYf6rl4A6nQ0RwpbcuAF9mbVou4mYSQ G1yXZgk9dqEyHWrPaH+WmU+NO/a2TSC4+D6yzv1geSfU7C7EJ4XYEnHJFJE= -----END CERTIFICATE-----Generated at Sun Jun 1 05:28:35 2025 by rpki-client