$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61d0d1a8-1d1a-4b6a-be79-09198325212d.roa File: 61d0d1a8-1d1a-4b6a-be79-09198325212d.roa (raw, json) Hash identifier: oeQl6gBxg9hf1e3Zhpw56Dtjj9yYVuBcHT/CQX2A6xQ= Subject key identifier: 8B:94:C2:FD:57:5B:AB:D9:CA:23:7C:B6:97:33:1E:13:B4:0D:C7:26 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68884C7AB83FDB0975230FB598900EF79B26D25D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61d0d1a8-1d1a-4b6a-be79-09198325212d.roa Signing time: Wed 28 May 2025 00:40:36 +0000 ROA not before: Wed 28 May 2025 00:40:36 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 65.4.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:88:4c:7a:b8:3f:db:09:75:23:0f:b5:98:90:0e:f7:9b:26:d2:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:40:36 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=24a939a2566e764995f831a27bee0aa2a1d2ad42a02d4f36d089c88605ff3f3d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a5:0c:80:ee:43:4c:59:03:3a:1c:0e:3a:56: 80:12:15:3b:c2:c8:cb:d1:08:0a:42:a2:18:7a:51: d6:ab:0f:43:67:59:d0:95:c9:1f:40:0f:68:05:ad: 69:4c:cb:67:ed:45:38:36:27:bb:15:8f:34:df:dd: 9d:4f:43:ff:36:9d:f3:4b:06:cf:1d:5d:12:ab:b8: 9b:2c:7f:65:57:ba:5e:6b:f2:74:15:d2:bb:c1:92: d3:b3:1e:70:12:5a:c7:84:4a:42:d2:8c:2a:2b:83: 79:b6:7a:d1:e3:94:99:25:3b:0f:0d:dc:60:94:76: 53:31:3a:49:a1:43:e9:1d:c4:91:b3:db:0a:8f:e4: aa:42:4e:1a:74:46:e6:bb:83:29:a2:d0:c2:68:35: e8:2f:67:9a:a3:bc:16:59:9a:bc:4e:44:a9:0c:f5: 55:d7:a9:f5:b6:74:05:76:b6:7b:e2:7c:ea:15:0d: 11:71:b9:25:20:eb:61:be:77:c3:3d:cf:9e:8a:4c: d4:51:75:c3:2e:b9:f8:25:c3:a2:5a:7a:4b:22:bd: 61:ad:17:db:58:de:27:95:4f:65:f5:98:b1:b2:86: c1:43:ab:46:ad:e0:ed:81:f2:37:e7:53:8c:11:cd: f4:63:ca:d4:d1:ed:7b:13:78:1d:28:3f:65:3b:74: 78:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:94:C2:FD:57:5B:AB:D9:CA:23:7C:B6:97:33:1E:13:B4:0D:C7:26 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61d0d1a8-1d1a-4b6a-be79-09198325212d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.4.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2f:c2:7e:34:cc:ff:76:00:9a:4d:b5:3a:7c:12:86:c0:1e:a3: 12:91:36:9d:af:4b:04:7b:e8:da:9d:74:ed:75:80:55:e4:ff: b1:f5:36:48:bb:1e:e5:9f:30:e4:d2:e5:ad:ae:04:74:9a:53: 44:5a:28:fa:d2:e9:35:79:54:ac:71:54:97:a4:5c:3f:41:24: 01:fe:08:62:76:da:12:52:ff:00:ad:25:44:cd:1d:0a:39:af: 3c:88:85:f1:44:db:82:7a:54:54:d1:d6:c8:64:f4:8f:48:70: b2:ff:92:da:64:4f:59:5e:24:98:4d:bd:69:b5:7e:0f:c5:9b: c0:72:a9:b1:01:03:6f:db:0e:b6:a1:39:67:e2:ab:cc:49:4d: 64:dc:6a:78:04:7c:5d:c2:bb:26:aa:32:7d:b9:e5:d9:6e:3f: 72:e4:e1:77:6a:b0:c2:1b:5a:78:a6:7e:52:7d:e7:08:22:c7: 22:6a:94:2f:fe:3b:ec:56:55:e0:5a:62:5b:a9:ff:8c:ce:1f: 39:5c:16:b8:3b:72:50:aa:a9:d0:80:2a:97:9f:f8:9c:6a:04: 63:40:12:64:ec:0a:c0:e9:d1:fc:ef:ca:af:54:ad:5f:d9:08: 1a:d4:ea:a9:89:f1:83:bf:51:aa:19:b9:e6:46:a7:fa:d6:6b: 5f:11:03:15 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUaIhMerg/2wl1Iw+1mJAO95sm0l0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDA0MDM2WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNGE5MzlhMjU2NmU3NjQ5OTVmODMxYTI3YmVlMGFhMmEx ZDJhZDQyYTAyZDRmMzZkMDg5Yzg4NjA1ZmYzZjNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYpQyA7kNMWQM6HA46VoASFTvCyMvRCApCohh6UdarD0Nn WdCVyR9AD2gFrWlMy2ftRTg2J7sVjzTf3Z1PQ/82nfNLBs8dXRKruJssf2VXul5r 8nQV0rvBktOzHnASWseESkLSjCorg3m2etHjlJklOw8N3GCUdlMxOkmhQ+kdxJGz 2wqP5KpCThp0Rua7gymi0MJoNegvZ5qjvBZZmrxORKkM9VXXqfW2dAV2tnvifOoV DRFxuSUg62G+d8M9z56KTNRRdcMuufglw6JaeksivWGtF9tY3ieVT2X1mLGyhsFD q0at4O2B8jfnU4wRzfRjytTR7XsTeB0oP2U7dHjZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUi5TC/Vdbq9nKI3y2lzMeE7QNxyYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxZDBkMWE4LTFkMWEtNGI2YS1iZTc5LTA5MTk4MzI1MjEyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBBBDANBgkqhkiG9w0BAQsFAAOCAQEAL8J+NMz/dgCaTbU6fBKGwB6jEpE2 na9LBHvo2p107XWAVeT/sfU2SLse5Z8w5NLlra4EdJpTRFoo+tLpNXlUrHFUl6Rc P0EkAf4IYnbaElL/AK0lRM0dCjmvPIiF8UTbgnpUVNHWyGT0j0hwsv+S2mRPWV4k mE29abV+D8WbwHKpsQEDb9sOtqE5Z+KrzElNZNxqeAR8XcK7Jqoyfbnl2W4/cuTh d2qwwhtaeKZ+Un3nCCLHImqUL/477FZV4FpiW6n/jM4fOVwWuDtyUKqp0IAql5/4 nGoEY0ASZOwKwOnR/O/Kr1StX9kIGtTqqYnxg79Rqhm55kan+tZrXxEDFQ== -----END CERTIFICATE-----Generated at Sun Jun 1 04:32:00 2025 by rpki-client