$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/566fa31f-a900-45ea-bf4f-117836ffe61b.roa File: 566fa31f-a900-45ea-bf4f-117836ffe61b.roa (raw, json) Hash identifier: p5PDrS4rHPEGfIasoGgmWYwhaGqeEbHeo+YM3hZMX8w= Subject key identifier: 83:ED:21:0B:B8:20:A0:22:7B:28:12:C6:C9:15:BE:95:49:4E:28:F8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1054E4DEDA7E79B87DA1711949C5E239DFF3243F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/566fa31f-a900-45ea-bf4f-117836ffe61b.roa Signing time: Fri 30 May 2025 00:31:47 +0000 ROA not before: Fri 30 May 2025 00:31:47 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.136.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:54:e4:de:da:7e:79:b8:7d:a1:71:19:49:c5:e2:39:df:f3:24:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:31:47 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=b4cb49eeabbff21a869637d70bb60cc5d80399ae6360f15e965ea2e402366ff4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:25:5d:5e:a9:f2:d2:53:72:b3:7e:75:8a:8a: 9b:fb:fa:f5:95:a7:a7:16:ec:2d:66:b5:7c:ed:7c: 92:e0:3b:59:47:1d:ca:0c:73:38:b7:a0:7a:49:53: 55:cb:84:23:f3:6e:a6:e3:d7:51:18:9e:ad:8d:9d: b9:ab:a9:59:ec:68:3c:36:22:57:5e:c2:a5:f4:70: ea:2f:97:3b:10:93:ba:c3:98:37:93:9c:0e:c8:79: 91:db:aa:83:70:26:55:d8:60:2f:ca:9b:69:a8:c8: 37:fc:17:0b:ba:67:ef:fa:b6:4f:92:e9:cf:2c:18: 56:3b:70:71:a8:8a:d9:2a:41:b0:91:c5:2b:eb:d4: cc:e3:41:53:c5:3e:cf:42:83:f8:8c:fd:dd:cb:cb: d9:02:62:31:98:ca:b8:33:a9:9a:60:e3:30:86:d6: 90:36:a0:f0:e1:e1:55:48:41:80:46:ea:b0:1b:e1: 51:c9:99:38:2b:54:49:8c:bf:da:22:a4:69:9b:17: ff:f7:62:35:3f:50:a2:8e:6b:c7:40:45:68:c6:20: 04:8a:d6:3a:49:c4:15:37:d3:12:da:5b:03:25:13: 18:ff:cc:8b:d8:7f:e2:44:b3:66:45:fb:fa:fb:5a: b8:7e:b7:13:a6:f0:2a:f8:61:e1:6f:ca:f4:4a:89: f5:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:ED:21:0B:B8:20:A0:22:7B:28:12:C6:C9:15:BE:95:49:4E:28:F8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/566fa31f-a900-45ea-bf4f-117836ffe61b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.136.0/21 Signature Algorithm: sha256WithRSAEncryption 7a:d5:07:a7:e8:c0:c1:ba:68:de:90:a5:75:b5:14:df:60:d7: 90:d1:a9:e4:dd:93:94:08:af:bf:1f:ed:3d:30:4c:fa:24:fc: 7c:9c:5b:3b:30:04:93:cc:0b:b9:79:49:8d:d7:ec:1a:64:b3: 45:e3:8e:24:91:af:5d:18:de:7d:39:bc:ff:bd:fa:62:7a:4d: 8d:4f:c5:f7:85:4f:5a:07:23:31:ae:7f:8a:7a:78:39:dc:d5: 06:7e:fc:4c:bd:f3:8f:0d:41:4f:87:28:95:f4:95:d4:6a:df: 07:23:3e:df:59:dc:55:1d:f4:30:47:53:7e:de:14:6f:0a:4d: 37:aa:61:29:70:c7:44:d7:d0:1e:ac:bd:3c:a4:00:0d:13:52: 66:a8:2c:0a:88:67:2a:de:de:13:6d:0e:4f:32:62:f7:f4:06: f4:68:f7:af:1f:47:52:57:6c:9d:a1:9b:b1:72:76:94:ab:9d: da:d2:60:bc:87:3a:c0:3b:82:41:fd:05:df:65:d8:85:c6:41: e8:1e:b0:f9:bf:1b:44:79:ec:00:e5:4c:f7:a0:05:13:b4:3b: 2d:62:ae:d2:b1:b2:a6:ea:cd:0a:2a:5a:ca:b7:60:93:8b:bb: f9:46:be:bd:a7:db:af:74:09:0d:08:be:d6:d8:63:9b:2f:f2: ea:b3:ad:3d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEFTk3tp+ebh9oXEZScXiOd/zJD8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAzMTQ3WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNGNiNDllZWFiYmZmMjFhODY5NjM3ZDcwYmI2MGNjNWQ4 MDM5OWFlNjM2MGYxNWU5NjVlYTJlNDAyMzY2ZmY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHJV1eqfLSU3KzfnWKipv7+vWVp6cW7C1mtXztfJLgO1lH HcoMczi3oHpJU1XLhCPzbqbj11EYnq2NnbmrqVnsaDw2IldewqX0cOovlzsQk7rD mDeTnA7IeZHbqoNwJlXYYC/Km2moyDf8Fwu6Z+/6tk+S6c8sGFY7cHGoitkqQbCR xSvr1MzjQVPFPs9Cg/iM/d3Ly9kCYjGYyrgzqZpg4zCG1pA2oPDh4VVIQYBG6rAb 4VHJmTgrVEmMv9oipGmbF//3YjU/UKKOa8dARWjGIASK1jpJxBU30xLaWwMlExj/ zIvYf+JEs2ZF+/r7Wrh+txOm8Cr4YeFvyvRKifWzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUg+0hC7ggoCJ7KBLGyRW+lUlOKPgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU2NmZhMzFmLWE5MDAtNDVlYS1iZjRmLTExNzgzNmZmZTYxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANM34gwDQYJKoZIhvcNAQELBQADggEBAHrVB6fowMG6aN6QpXW1FN9g15DR qeTdk5QIr78f7T0wTPok/HycWzswBJPMC7l5SY3X7Bpks0XjjiSRr10Y3n05vP+9 +mJ6TY1PxfeFT1oHIzGuf4p6eDnc1QZ+/Ey9848NQU+HKJX0ldRq3wcjPt9Z3FUd 9DBHU37eFG8KTTeqYSlwx0TX0B6svTykAA0TUmaoLAqIZyre3hNtDk8yYvf0BvRo 968fR1JXbJ2hm7FydpSrndrSYLyHOsA7gkH9Bd9l2IXGQegesPm/G0R57ADlTPeg BRO0Oy1irtKxsqbqzQoqWsq3YJOLu/lGvr2n2690CQ0IvtbYY5sv8uqzrT0= -----END CERTIFICATE-----Generated at Sun Jun 1 04:50:37 2025 by rpki-client