$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65258b34-5141-4495-8461-b0210b9b4965.roa File: 65258b34-5141-4495-8461-b0210b9b4965.roa (raw, json) Hash identifier: mu8QmYpXIytaemCJOWDWBXC+nrBdiYxQEymsw4IZUUQ= Subject key identifier: 6B:40:2F:95:0B:20:3E:2A:28:F1:24:C4:CC:47:05:BB:E2:81:C3:FD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 07B85F32FC72388AB6E8C80CAAAE1F4E1F5EA924 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65258b34-5141-4495-8461-b0210b9b4965.roa Signing time: Sat 24 May 2025 00:11:12 +0000 ROA not before: Sat 24 May 2025 00:11:12 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.164.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:b8:5f:32:fc:72:38:8a:b6:e8:c8:0c:aa:ae:1f:4e:1f:5e:a9:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 24 00:11:12 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=3b6c131fe0090fbd84c3be9880383ee41fa2472832ff10782a011a91a73dd6b7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3a:5d:c1:c4:e6:70:01:d9:c6:f8:b9:04:08: 6e:f6:96:f2:83:3a:2d:24:7a:47:5c:b7:a7:7c:ad: 55:7c:31:c9:1f:a7:c4:06:7c:b6:05:4a:a6:78:a6: 78:9a:de:aa:b1:d4:d9:2f:c2:a7:2a:9c:75:b7:5c: 1c:fc:28:dd:9b:f6:ad:8f:9e:c4:8c:07:52:f4:50: 89:c9:7c:5e:1f:4b:2b:ec:17:e8:b3:89:d1:33:e5: 86:4b:ba:49:0f:dd:c2:05:d1:74:c8:06:28:0e:29: c2:74:33:dd:d9:c9:e3:79:79:61:49:3b:1c:e4:d1: 2f:b7:ac:bc:ff:cb:1f:be:a5:ca:be:3a:78:dc:6d: 68:55:7c:46:f9:5f:32:5f:b9:d5:8d:be:74:3b:47: 97:a3:76:33:c6:c8:fe:93:b8:aa:e4:7a:5a:f0:25: c1:8a:8b:75:b2:4a:c5:ce:6a:77:5e:d5:a7:cf:84: 10:f2:37:17:f2:46:2e:19:2e:d5:49:1c:bf:10:76: 0f:36:7a:9e:7c:26:41:6c:f8:07:50:c1:68:38:45: 9c:86:f6:e8:db:27:24:aa:fe:5e:b8:bd:35:cd:92: d3:c4:9b:fb:43:df:a2:36:11:f4:74:35:17:27:9b: 2a:8a:86:56:49:b9:11:5e:ba:c2:04:da:1b:1c:15: a7:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:40:2F:95:0B:20:3E:2A:28:F1:24:C4:CC:47:05:BB:E2:81:C3:FD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65258b34-5141-4495-8461-b0210b9b4965.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.164.0.0/16 Signature Algorithm: sha256WithRSAEncryption 29:3d:b0:5c:42:59:2a:e3:05:24:73:b2:4d:7f:cb:3e:08:d7: b8:c0:2e:8e:27:7f:d9:0e:86:82:7e:8a:31:1b:92:5f:78:e4: e3:0c:cc:1d:66:06:54:89:d5:73:65:0c:6d:a4:91:79:ec:4b: 49:a7:b0:5a:f9:6e:db:fa:11:6c:e2:4f:2d:78:65:cc:9e:85: 1c:08:8b:fb:58:f5:8f:ad:1d:00:fe:8d:74:7e:e0:a7:70:d7: 8f:04:f5:ae:63:91:4f:d2:27:bd:ce:b2:27:1e:7c:4f:bb:02: 1e:e0:79:89:67:f9:b0:6a:fc:f0:90:3e:34:bc:95:8c:22:cc: ac:4a:a1:96:26:db:91:4d:5b:3a:f1:9d:c8:d9:67:03:b8:83: f3:c3:b2:5e:80:10:3f:d0:20:ec:3a:b0:4b:13:a8:0b:c5:d4: 93:90:20:6e:c7:11:95:d0:3e:8e:15:eb:d0:ad:17:3e:f9:f9: fd:b6:41:60:c8:8c:29:25:05:8b:76:53:2e:9a:d2:6c:dc:66: 69:b3:61:0c:f8:72:1c:23:7b:17:32:dd:38:69:ae:a7:d2:ee: ce:95:44:14:29:43:82:55:e6:c1:2a:41:24:6b:fb:ec:76:dc: 7f:f9:f6:45:e9:dc:5a:19:c3:22:be:05:ef:9e:56:ae:80:06: a5:b7:89:b1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUB7hfMvxyOIq26MgMqq4fTh9eqSQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI0MDAxMTEyWhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYjZjMTMxZmUwMDkwZmJkODRjM2JlOTg4MDM4M2VlNDFm YTI0NzI4MzJmZjEwNzgyYTAxMWE5MWE3M2RkNmI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVOl3BxOZwAdnG+LkECG72lvKDOi0kekdct6d8rVV8Mckf p8QGfLYFSqZ4pnia3qqx1NkvwqcqnHW3XBz8KN2b9q2PnsSMB1L0UInJfF4fSyvs F+izidEz5YZLukkP3cIF0XTIBigOKcJ0M93ZyeN5eWFJOxzk0S+3rLz/yx++pcq+ OnjcbWhVfEb5XzJfudWNvnQ7R5ejdjPGyP6TuKrkelrwJcGKi3WySsXOande1afP hBDyNxfyRi4ZLtVJHL8Qdg82ep58JkFs+AdQwWg4RZyG9ujbJySq/l64vTXNktPE m/tD36I2EfR0NRcnmyqKhlZJuRFeusIE2hscFafJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUa0AvlQsgPioo8STEzEcFu+KBw/0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1MjU4YjM0LTUxNDEtNDQ5NS04NDYxLWIwMjEwYjliNDk2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4pDANBgkqhkiG9w0BAQsFAAOCAQEAKT2wXEJZKuMFJHOyTX/LPgjXuMAu jid/2Q6Ggn6KMRuSX3jk4wzMHWYGVInVc2UMbaSReexLSaewWvlu2/oRbOJPLXhl zJ6FHAiL+1j1j60dAP6NdH7gp3DXjwT1rmORT9Invc6yJx58T7sCHuB5iWf5sGr8 8JA+NLyVjCLMrEqhlibbkU1bOvGdyNlnA7iD88OyXoAQP9Ag7DqwSxOoC8XUk5Ag bscRldA+jhXr0K0XPvn5/bZBYMiMKSUFi3ZTLprSbNxmabNhDPhyHCN7FzLdOGmu p9LuzpVEFClDglXmwSpBJGv77Hbcf/n2RencWhnDIr4F755WroAGpbeJsQ== -----END CERTIFICATE-----Generated at Sun Jun 1 05:31:21 2025 by rpki-client