$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5753e2d3-4442-467a-b1d8-3c38c62f910c.roa File: 5753e2d3-4442-467a-b1d8-3c38c62f910c.roa (raw, json) Hash identifier: HbjyVcbBNoyjb6jBE0J38dVDfPJSmSenGURwazHN7uo= Subject key identifier: 39:85:89:16:4E:2C:79:B6:59:D4:2B:CD:8E:6A:72:B0:9B:D5:E8:C2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 45B128119A913DDF0F398ABE553C106EC719DD97 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5753e2d3-4442-467a-b1d8-3c38c62f910c.roa Signing time: Tue 27 May 2025 00:10:19 +0000 ROA not before: Tue 27 May 2025 00:10:19 +0000 ROA not after: Tue 01 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 161.228.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:b1:28:11:9a:91:3d:df:0f:39:8a:be:55:3c:10:6e:c7:19:dd:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 27 00:10:19 2025 GMT Not After : Jul 1 23:59:59 2025 GMT Subject: serialNumber=73617b92827aefeb4d47017cc024cc5d6e26d250a418debb018d2eefcfd8a543, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:0b:79:d2:5f:e1:24:f8:cc:d4:03:d3:c6:7d: 91:b4:b4:1e:b8:1f:6a:68:98:d1:f9:75:be:a4:ad: 8a:5c:cc:71:4e:d8:2c:41:00:81:91:47:55:9c:74: cd:ee:d4:09:9b:19:36:31:e2:37:6a:55:52:d3:d5: aa:7f:82:1a:6a:7a:f9:3a:bb:98:a3:db:ba:4e:ce: f6:b5:10:3c:cf:ce:d5:aa:25:24:b4:9f:45:d2:6f: f0:43:b5:21:98:3b:00:10:ee:85:7a:de:c4:c3:83: 4b:83:33:ab:e2:fc:ac:05:5a:00:ac:3e:84:58:c8: 5a:da:4f:63:35:fd:8f:ae:52:4a:88:d1:ed:d7:1c: 9a:f5:b2:03:3d:01:13:29:f4:e0:76:5e:a9:30:2b: 3d:45:8b:1d:0a:df:61:d6:59:35:81:80:7a:84:76: e1:cb:5d:80:1a:b0:55:56:48:3b:93:80:97:0f:ae: c8:f2:bb:60:52:bc:5f:5d:ad:49:2d:2b:e9:ef:c2: 06:7a:7d:7c:07:70:c6:db:f5:15:56:6b:91:35:ca: 5f:37:4e:ba:12:db:18:90:19:19:26:a5:35:41:82: 0f:76:b2:9e:ac:4b:16:c8:80:fe:2b:7c:bf:8e:0c: 5f:08:8b:fb:71:54:0a:00:cc:c0:f0:d2:c7:8e:bd: 15:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:85:89:16:4E:2C:79:B6:59:D4:2B:CD:8E:6A:72:B0:9B:D5:E8:C2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5753e2d3-4442-467a-b1d8-3c38c62f910c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.228.192.0/18 Signature Algorithm: sha256WithRSAEncryption 3f:ba:2a:cc:1a:68:ef:e5:87:e3:4d:7f:2c:48:3d:c6:c8:8e: 2e:40:16:90:b4:91:e3:84:c3:9e:0d:8d:8c:90:1c:a7:87:eb: c2:24:94:66:87:8b:5c:f2:7b:2e:74:09:45:08:f2:df:84:da: e9:30:34:b2:67:7f:87:94:2c:91:48:57:6b:0a:79:c8:d6:4c: 3f:b8:fc:9e:83:4b:9e:5b:b7:c4:37:b2:16:0f:e1:0c:9d:ed: 7b:0b:cd:f3:54:84:6b:81:7a:d0:38:de:66:30:6b:a2:07:f1: 64:fc:48:7e:92:4b:c1:27:e8:0c:47:44:8b:f0:c6:61:ee:39: f1:17:37:17:d6:c3:bb:47:2a:97:78:2c:17:ed:a3:14:be:d3: 24:4c:db:53:be:76:d7:ca:c6:df:b0:f9:76:09:e6:8d:9a:23: a4:5d:41:fc:00:f7:66:aa:ec:d6:cc:4e:59:39:81:83:0a:24: 65:04:3f:6f:6a:e8:9b:fc:c1:e3:e3:51:ea:46:f8:ec:ad:06: ab:20:6f:a8:03:33:91:92:fe:6c:50:be:74:25:39:f0:c8:21: 33:c7:08:8f:59:dd:04:6a:5e:8f:87:fa:ba:1a:a7:be:87:2a: ea:34:ac:74:23:5e:e4:44:7b:01:af:c9:19:7e:48:d8:0a:57: 61:f2:8a:bb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURbEoEZqRPd8POYq+VTwQbscZ3ZcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI3MDAxMDE5WhcNMjUwNzAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzYxN2I5MjgyN2FlZmViNGQ0NzAxN2NjMDI0Y2M1ZDZl MjZkMjUwYTQxOGRlYmIwMThkMmVlZmNmZDhhNTQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdC3nSX+Ek+MzUA9PGfZG0tB64H2pomNH5db6krYpczHFO 2CxBAIGRR1WcdM3u1AmbGTYx4jdqVVLT1ap/ghpqevk6u5ij27pOzva1EDzPztWq JSS0n0XSb/BDtSGYOwAQ7oV63sTDg0uDM6vi/KwFWgCsPoRYyFraT2M1/Y+uUkqI 0e3XHJr1sgM9ARMp9OB2XqkwKz1Fix0K32HWWTWBgHqEduHLXYAasFVWSDuTgJcP rsjyu2BSvF9drUktK+nvwgZ6fXwHcMbb9RVWa5E1yl83TroS2xiQGRkmpTVBgg92 sp6sSxbIgP4rfL+ODF8Ii/txVAoAzMDw0seOvRVNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOYWJFk4sebZZ1CvNjmpysJvV6MIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3NTNlMmQzLTQ0NDItNDY3YS1iMWQ4LTNjMzhjNjJmOTEwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAah5MAwDQYJKoZIhvcNAQELBQADggEBAD+6KswaaO/lh+NNfyxIPcbIji5A FpC0keOEw54NjYyQHKeH68IklGaHi1zyey50CUUI8t+E2ukwNLJnf4eULJFIV2sK ecjWTD+4/J6DS55bt8Q3shYP4Qyd7XsLzfNUhGuBetA43mYwa6IH8WT8SH6SS8En 6AxHRIvwxmHuOfEXNxfWw7tHKpd4LBftoxS+0yRM21O+dtfKxt+w+XYJ5o2aI6Rd QfwA92aq7NbMTlk5gYMKJGUEP29q6Jv8wePjUepG+OytBqsgb6gDM5GS/mxQvnQl OfDIITPHCI9Z3QRqXo+H+roap76HKuo0rHQjXuREewGvyRl+SNgKV2Hyirs= -----END CERTIFICATE-----Generated at Sun Jun 1 05:04:13 2025 by rpki-client