$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40022edc-7d4c-49da-b461-30d23c93029d.roa File: 40022edc-7d4c-49da-b461-30d23c93029d.roa (raw, json) Hash identifier: 39sNt7sB2LZbaa8G+6UoRCewCUhdIvojyE/Yt/wYReQ= Subject key identifier: 80:FD:6F:DA:BB:C7:14:D5:22:68:12:18:F9:0B:6B:C4:8B:B9:80:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 19582CAAC4EA19DB5C8CE3A8C3AD588D3DE5B1C3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40022edc-7d4c-49da-b461-30d23c93029d.roa Signing time: Fri 30 May 2025 00:22:23 +0000 ROA not before: Fri 30 May 2025 00:22:23 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.79.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:58:2c:aa:c4:ea:19:db:5c:8c:e3:a8:c3:ad:58:8d:3d:e5:b1:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:22:23 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=9ee01386e526a74c7eb2def60c22eb677a2f2bb45f0518bfcf4873f397aedd00, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:1f:d3:57:d4:38:5e:e7:e7:d2:d7:d1:fd:fb: 23:3c:79:70:63:b4:1e:ca:eb:80:d8:a4:e8:a3:6d: c9:a6:e3:a7:e7:ff:52:e0:89:d3:8d:22:cf:4d:35: 79:67:43:fb:ba:88:b3:06:a6:4a:6d:6b:b8:b2:b8: d9:c9:2d:df:76:16:df:41:d1:8b:30:1b:54:5c:9a: a3:cc:5f:62:99:4f:47:74:68:a1:60:fb:a2:a4:0c: 8b:3e:76:b3:48:b4:30:0b:b2:61:32:88:93:17:71: ca:85:1f:12:a1:00:ac:1f:17:09:d3:28:3e:44:da: 97:68:af:e6:40:de:04:83:a2:45:ce:2a:81:2a:29: 05:da:c0:8a:ab:65:73:b8:3b:c6:7b:a4:ec:2b:c0: 59:6e:4d:61:fb:5f:28:59:46:73:83:5d:63:b7:68: da:5c:dd:d1:8b:7a:7c:37:7f:d7:a6:6c:0d:f3:91: cd:ea:37:4f:89:a5:47:6e:c8:ac:15:55:15:16:fa: a7:8b:32:2b:2b:b0:20:19:2c:05:69:8d:1e:30:d6: 94:ce:06:f0:28:9c:7b:7b:69:2b:72:84:19:ae:b9: a6:2c:52:ac:f3:3d:a6:5c:56:8c:c8:fd:96:b8:cc: dc:cb:be:39:af:b4:18:b0:65:b3:be:49:cd:95:e6: 76:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:FD:6F:DA:BB:C7:14:D5:22:68:12:18:F9:0B:6B:C4:8B:B9:80:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40022edc-7d4c-49da-b461-30d23c93029d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.79.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1f:4b:7e:f1:3d:d5:f7:1d:37:50:60:61:bc:2d:22:f9:0d:88: 81:4a:2f:12:bf:64:49:a6:9f:47:64:ca:b2:91:f5:16:91:61: 44:46:f2:2a:77:3c:f0:99:4b:2f:d2:5a:fc:a6:08:64:4c:e0: 43:db:8d:c1:67:35:b5:f0:28:b7:34:79:a6:e0:a1:68:5e:79: 1e:1c:25:1d:d0:4e:a6:42:2f:91:05:9c:d9:b0:ce:30:a8:90: e7:7c:f8:1d:b1:33:d4:62:9d:01:4b:cc:cf:b2:5a:19:74:9e: 62:d1:6e:51:69:ea:59:49:3e:9f:e8:e9:0b:1d:c8:3a:04:fa: d2:0b:60:8e:0c:09:45:0c:31:45:09:00:13:39:6a:95:ce:63: c4:d5:19:96:bc:99:29:59:f1:28:d9:35:cc:82:92:65:ac:68: 6e:24:26:9a:5c:63:29:87:f2:ce:07:af:ff:7b:37:6c:5d:07: f6:9c:e5:72:f2:10:73:c0:ac:a2:86:24:83:1b:db:44:22:ae: a4:99:f6:b5:e4:3e:cc:67:eb:5e:0b:38:93:c5:16:da:f3:53: eb:40:b0:f9:34:53:a7:3f:3a:61:d3:1c:40:b1:5e:6b:65:3d: 86:9c:7e:17:1d:67:98:c8:b9:3e:b6:44:cd:14:c6:74:d3:6d: 48:76:89:ca -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGVgsqsTqGdtcjOOow61YjT3lscMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAyMjIzWhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZWUwMTM4NmU1MjZhNzRjN2ViMmRlZjYwYzIyZWI2Nzdh MmYyYmI0NWYwNTE4YmZjZjQ4NzNmMzk3YWVkZDAwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNH9NX1Dhe5+fS19H9+yM8eXBjtB7K64DYpOijbcmm46fn /1LgidONIs9NNXlnQ/u6iLMGpkpta7iyuNnJLd92Ft9B0YswG1RcmqPMX2KZT0d0 aKFg+6KkDIs+drNItDALsmEyiJMXccqFHxKhAKwfFwnTKD5E2pdor+ZA3gSDokXO KoEqKQXawIqrZXO4O8Z7pOwrwFluTWH7XyhZRnODXWO3aNpc3dGLenw3f9embA3z kc3qN0+JpUduyKwVVRUW+qeLMisrsCAZLAVpjR4w1pTOBvAonHt7aStyhBmuuaYs UqzzPaZcVozI/Za4zNzLvjmvtBiwZbO+Sc2V5natAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUgP1v2rvHFNUiaBIY+QtrxIu5gIEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwMDIyZWRjLTdkNGMtNDlkYS1iNDYxLTMwZDIzYzkzMDI5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4TzANBgkqhkiG9w0BAQsFAAOCAQEAH0t+8T3V9x03UGBhvC0i+Q2IgUov Er9kSaafR2TKspH1FpFhREbyKnc88JlLL9Ja/KYIZEzgQ9uNwWc1tfAotzR5puCh aF55HhwlHdBOpkIvkQWc2bDOMKiQ53z4HbEz1GKdAUvMz7JaGXSeYtFuUWnqWUk+ n+jpCx3IOgT60gtgjgwJRQwxRQkAEzlqlc5jxNUZlryZKVnxKNk1zIKSZaxobiQm mlxjKYfyzgev/3s3bF0H9pzlcvIQc8CsooYkgxvbRCKupJn2teQ+zGfrXgs4k8UW 2vNT60Cw+TRTpz86YdMcQLFea2U9hpx+Fx1nmMi5PrZEzRTGdNNtSHaJyg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:58:11 2025 by rpki-client