$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f0ed130-c978-4135-ae3e-448821f3a86f.roa File: 3f0ed130-c978-4135-ae3e-448821f3a86f.roa (raw, json) Hash identifier: UJzm2EbjTVgkUpaqXk8EoA/j2OoEtuErHgESn4P9RJY= Subject key identifier: 29:9E:4E:7A:92:62:04:35:9C:C2:23:71:1B:52:57:6C:2D:2C:67:66 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7CFFF90636A3F7FC1C31B33FFB84A6A7D5ED8894 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f0ed130-c978-4135-ae3e-448821f3a86f.roa Signing time: Fri 30 May 2025 00:22:26 +0000 ROA not before: Fri 30 May 2025 00:22:26 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 57.196.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:ff:f9:06:36:a3:f7:fc:1c:31:b3:3f:fb:84:a6:a7:d5:ed:88:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:22:26 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=b193587b5fa7970e16c6b03108c5bd7c7c480a167681786fa7a660d3342a23ed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5d:2e:43:a2:e6:3f:f8:a2:b3:dc:a0:52:66: 37:e4:d7:78:75:e9:2b:2b:d7:2f:d1:00:db:5d:81: 18:77:dd:1d:82:c1:01:d0:98:de:72:6a:58:6c:41: 9e:f6:90:0b:fb:91:18:7c:eb:38:4f:e2:9f:15:55: a6:1f:9c:d2:f4:3c:8f:f7:3c:be:55:81:16:dc:15: d5:b9:b7:90:ba:93:c1:11:4f:25:da:4b:ad:ec:8e: 5a:ad:59:46:3e:c0:56:b4:3b:76:b9:74:3c:86:76: 08:15:53:6f:12:54:50:f5:6d:82:f7:74:87:94:46: e5:b4:a8:7c:80:e6:ff:58:c0:59:72:c2:f7:c3:31: 02:54:b2:d4:e4:56:d3:cf:2f:db:c4:c1:35:cc:88: bf:f3:60:d7:c5:de:1e:af:4c:5b:3d:d3:48:35:9d: 29:cf:10:06:6e:91:30:e7:31:29:71:33:02:bd:47: 3b:2d:51:9a:2e:7a:42:72:5d:7f:a1:a8:41:78:81: 4b:93:5a:e0:da:13:a3:59:81:e6:0a:96:eb:cb:13: be:48:70:cf:9c:2c:ff:0a:8e:f6:18:f5:87:9b:6f: 03:d9:8f:30:95:7b:6b:fa:c5:b1:41:1b:b7:f0:10: 1f:39:41:16:1d:10:5a:56:9f:97:28:c4:a6:14:78: 1c:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:9E:4E:7A:92:62:04:35:9C:C2:23:71:1B:52:57:6C:2D:2C:67:66 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f0ed130-c978-4135-ae3e-448821f3a86f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.196.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6e:9b:25:ec:30:fb:f3:d7:6b:b6:57:d2:47:73:22:34:66:c8: 91:77:3d:02:e1:9c:31:4c:df:1d:f4:bb:65:c0:db:64:64:86: d5:2c:fb:9e:38:74:95:21:84:2f:80:b3:9a:fc:b4:93:cf:37: 42:9f:a9:e1:cc:c6:62:fb:7a:20:eb:cb:9c:fc:44:cb:9e:5e: 36:f5:df:ed:87:3a:ac:e7:62:a6:25:41:db:70:ef:82:53:f2: c3:88:a4:91:63:7a:7e:0c:1a:51:ef:4c:eb:14:a8:33:12:ce: 26:79:2f:4f:c8:1d:0c:3b:d9:70:84:d5:12:b5:a5:f7:14:cd: a4:33:13:c9:b0:6e:95:40:08:09:cd:9e:8f:e7:51:a4:00:97: a8:68:48:d1:f1:69:53:b3:33:b6:3f:25:d6:99:ff:57:86:db: c5:0e:e0:1c:20:f8:65:f3:92:55:fb:5e:28:63:80:3b:8c:b6: 39:bd:ac:88:74:e9:3e:f6:49:b7:28:38:6c:31:55:ee:c9:28: 49:75:56:f7:d5:4e:1b:6b:43:ff:b7:5b:3a:16:5e:0c:90:c7: 5a:33:89:3a:29:48:96:07:09:75:ca:e7:33:73:ce:64:e6:1f: 14:e8:a4:53:3d:f1:a0:65:00:e3:84:6d:37:61:2f:f5:35:2a: 51:7f:7e:fb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfP/5Bjaj9/wcMbM/+4Smp9XtiJQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAyMjI2WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTkzNTg3YjVmYTc5NzBlMTZjNmIwMzEwOGM1YmQ3Yzdj NDgwYTE2NzY4MTc4NmZhN2E2NjBkMzM0MmEyM2VkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCXS5DouY/+KKz3KBSZjfk13h16Ssr1y/RANtdgRh33R2C wQHQmN5yalhsQZ72kAv7kRh86zhP4p8VVaYfnNL0PI/3PL5VgRbcFdW5t5C6k8ER TyXaS63sjlqtWUY+wFa0O3a5dDyGdggVU28SVFD1bYL3dIeURuW0qHyA5v9YwFly wvfDMQJUstTkVtPPL9vEwTXMiL/zYNfF3h6vTFs900g1nSnPEAZukTDnMSlxMwK9 RzstUZouekJyXX+hqEF4gUuTWuDaE6NZgeYKluvLE75IcM+cLP8KjvYY9YebbwPZ jzCVe2v6xbFBG7fwEB85QRYdEFpWn5coxKYUeByPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKZ5OepJiBDWcwiNxG1JXbC0sZ2YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNmMGVkMTMwLWM5NzgtNDEzNS1hZTNlLTQ0ODgyMWYzYTg2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5xDANBgkqhkiG9w0BAQsFAAOCAQEAbpsl7DD789drtlfSR3MiNGbIkXc9 AuGcMUzfHfS7ZcDbZGSG1Sz7njh0lSGEL4Czmvy0k883Qp+p4czGYvt6IOvLnPxE y55eNvXf7Yc6rOdipiVB23DvglPyw4ikkWN6fgwaUe9M6xSoMxLOJnkvT8gdDDvZ cITVErWl9xTNpDMTybBulUAICc2ej+dRpACXqGhI0fFpU7Mztj8l1pn/V4bbxQ7g HCD4ZfOSVfteKGOAO4y2Ob2siHTpPvZJtyg4bDFV7skoSXVW99VOG2tD/7dbOhZe DJDHWjOJOilIlgcJdcrnM3POZOYfFOikUz3xoGUA44RtN2Ev9TUqUX9++w== -----END CERTIFICATE-----Generated at Sun Jun 1 05:01:21 2025 by rpki-client