$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fcb89e7-3cc6-4700-a44c-4dac06779d65.roa File: 5fcb89e7-3cc6-4700-a44c-4dac06779d65.roa (raw, json) Hash identifier: A83J+Q+N7Lz+4qYkfcQ1li2oY6wfwdA02QD0hllESqY= Subject key identifier: 9F:DA:19:1A:CD:0A:81:A7:D1:5D:95:E9:4A:60:6A:E6:18:09:60:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30E37DBFF4B1BFD579370E40DB44BBCE0F97609D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fcb89e7-3cc6-4700-a44c-4dac06779d65.roa Signing time: Sat 31 May 2025 00:11:03 +0000 ROA not before: Sat 31 May 2025 00:11:03 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.56.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:e3:7d:bf:f4:b1:bf:d5:79:37:0e:40:db:44:bb:ce:0f:97:60:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 31 00:11:03 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=0085c7347e65983bb8d642eb875239bee8a3346f8fad9aa1ffcd478b0327e262, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f7:d7:ca:b1:41:ec:a1:5b:99:38:53:7f:08: df:2e:8b:4e:63:7f:bc:1b:06:fd:b4:6f:ed:3b:ca: a2:44:f3:c7:07:b1:b6:26:e1:53:fe:44:52:b0:10: b5:b1:52:97:b0:a7:d5:fd:56:87:4e:73:d7:0f:3d: b0:1d:22:53:98:09:96:44:20:a0:68:82:eb:02:d2: b1:31:26:f3:d6:84:17:cf:e3:38:d8:b0:6e:6e:a6: 4c:f1:41:51:bf:4a:79:fe:d8:95:8b:de:e5:3c:6e: 2c:f7:db:df:10:ed:b4:09:30:de:d0:3f:61:53:10: f8:a4:e9:17:81:88:77:11:b3:ba:16:73:fc:54:8e: f8:c6:0c:a5:17:3f:94:57:0e:4d:1f:0f:71:a5:49: f6:00:3f:9c:be:29:bc:c9:e2:f6:f4:7a:16:0c:dc: 94:52:9b:86:e9:a3:18:d0:db:d0:f2:b5:a8:85:70: 72:e7:6e:90:b4:da:fe:4a:e7:f4:03:b8:d0:69:43: bf:04:8b:39:d8:c2:c8:f6:48:e0:11:8f:64:4f:0d: 97:e7:95:23:2d:08:a4:b4:00:f6:8a:c0:ff:11:7d: b9:20:29:50:02:cd:43:e3:bf:8c:36:5a:7e:6f:17: ad:35:d8:ed:10:54:df:59:d9:d1:3d:14:dc:6f:db: fa:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:DA:19:1A:CD:0A:81:A7:D1:5D:95:E9:4A:60:6A:E6:18:09:60:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5fcb89e7-3cc6-4700-a44c-4dac06779d65.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.56.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8b:6b:54:42:6e:7e:a8:b0:fe:a8:64:0b:f7:27:c9:6e:87:f3: 47:5d:84:73:8d:2f:3d:35:eb:d7:1d:ed:0a:ae:66:ed:e0:04: 95:31:1e:71:d4:05:95:ce:ac:d4:90:81:e3:eb:73:d0:6e:03: 8f:37:8c:16:ba:48:50:8b:c9:52:15:f8:7f:30:db:8f:ed:e2: ea:16:8c:a0:d0:72:02:dd:f4:51:a1:13:2e:50:c7:43:22:15: a6:e9:96:d6:c2:03:55:7b:8e:85:7a:43:42:9f:d3:64:bf:b1: 8f:0a:be:d7:16:48:be:05:32:83:43:86:15:82:1a:13:8c:63: 05:5a:72:da:4a:e5:65:20:db:78:0b:38:8e:85:74:9c:4a:8d: 6e:4f:15:52:ca:31:bd:d0:e7:a9:c4:54:2a:cb:f7:37:cd:f0: 5e:92:31:4c:ef:ba:98:44:98:52:20:c8:2b:fc:75:7a:12:0f: d7:26:b6:c7:4e:b9:6b:17:c1:dd:99:56:85:63:b3:9b:6c:25: fd:40:39:9f:17:9d:62:de:8a:cc:60:0f:fd:8e:e0:79:4e:3c: ce:c9:e0:22:0d:bd:9d:1c:8b:4d:06:52:29:2c:5f:02:56:8f: 4a:7e:72:7c:c0:19:96:e7:2d:22:3c:d0:73:82:86:4d:93:2a: 04:c2:22:9f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMON9v/Sxv9V5Nw5A20S7zg+XYJ0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMxMDAxMTAzWhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMDg1YzczNDdlNjU5ODNiYjhkNjQyZWI4NzUyMzliZWU4 YTMzNDZmOGZhZDlhYTFmZmNkNDc4YjAzMjdlMjYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx99fKsUHsoVuZOFN/CN8ui05jf7wbBv20b+07yqJE88cH sbYm4VP+RFKwELWxUpewp9X9VodOc9cPPbAdIlOYCZZEIKBogusC0rExJvPWhBfP 4zjYsG5upkzxQVG/Snn+2JWL3uU8biz3298Q7bQJMN7QP2FTEPik6ReBiHcRs7oW c/xUjvjGDKUXP5RXDk0fD3GlSfYAP5y+KbzJ4vb0ehYM3JRSm4bpoxjQ29DytaiF cHLnbpC02v5K5/QDuNBpQ78EiznYwsj2SOARj2RPDZfnlSMtCKS0APaKwP8Rfbkg KVACzUPjv4w2Wn5vF6012O0QVN9Z2dE9FNxv2/rFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUn9oZGs0KgafRXZXpSmBq5hgJYNQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVmY2I4OWU3LTNjYzYtNDcwMC1hNDRjLTRkYWMwNjc3OWQ2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQODANBgkqhkiG9w0BAQsFAAOCAQEAi2tUQm5+qLD+qGQL9yfJbofzR12E c40vPTXr1x3tCq5m7eAElTEecdQFlc6s1JCB4+tz0G4DjzeMFrpIUIvJUhX4fzDb j+3i6haMoNByAt30UaETLlDHQyIVpumW1sIDVXuOhXpDQp/TZL+xjwq+1xZIvgUy g0OGFYIaE4xjBVpy2krlZSDbeAs4joV0nEqNbk8VUsoxvdDnqcRUKsv3N83wXpIx TO+6mESYUiDIK/x1ehIP1ya2x065axfB3ZlWhWOzm2wl/UA5nxedYt6KzGAP/Y7g eU48zsngIg29nRyLTQZSKSxfAlaPSn5yfMAZluctIjzQc4KGTZMqBMIinw== -----END CERTIFICATE-----Generated at Sun Jun 1 04:32:49 2025 by rpki-client