$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68a68b32-0643-4d0b-a543-f8916c97493c.roa File: 68a68b32-0643-4d0b-a543-f8916c97493c.roa (raw, json) Hash identifier: 9wGGiZUpx68RtzLjN5G3Q1Wwu9L8F1t4Px3Jt54CKFk= Subject key identifier: 3A:1B:78:C5:C8:C4:3C:FB:B0:0C:74:C4:82:77:F8:84:62:BE:D7:20 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0715B960D6E9E11714D09CFDD496E6C4B4873477 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68a68b32-0643-4d0b-a543-f8916c97493c.roa Signing time: Fri 09 May 2025 00:00:05 +0000 ROA not before: Fri 09 May 2025 00:00:05 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 104.149.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:15:b9:60:d6:e9:e1:17:14:d0:9c:fd:d4:96:e6:c4:b4:87:34:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:00:05 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=b9312147d183c9d4aa5ceff50885d3488451cd2e16b1af77e760979e088677f9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c6:11:84:38:fe:10:46:f5:8c:cb:6f:ef:14: 15:93:79:99:95:ad:15:ca:eb:6b:f5:17:27:dc:88: a9:c4:6d:19:dc:d7:81:36:81:ab:46:ac:98:d2:51: b4:a3:02:f3:b7:27:37:4e:d6:2a:0f:5c:0f:1c:ae: c4:09:fd:fd:f9:a9:22:29:33:8e:05:a5:1f:20:be: 9a:7c:c2:db:9a:e3:5a:1a:23:0e:37:ee:41:8a:45: e4:eb:a9:99:75:1e:79:81:27:32:4a:a4:d4:e3:f8: 2a:ea:a8:9b:fb:11:88:97:ee:19:5d:bb:a6:7e:a9: 6c:7b:7b:6a:38:f5:d0:91:2e:3b:50:9e:10:e3:45: 22:2d:82:0d:3d:8e:a3:da:b5:e2:1d:52:fe:71:3d: 4e:81:a8:20:f6:48:a3:ad:00:bb:e2:30:19:ff:9f: 0f:cd:3a:dd:55:52:a0:96:ed:b3:85:ea:0d:c2:43: 5f:b7:af:d1:a0:cf:42:8d:4d:dc:d0:8f:eb:11:b5: ad:7f:1e:10:38:a1:b9:64:dc:c8:66:22:cb:77:e6: 48:f1:31:41:99:76:81:13:9f:bd:a0:90:51:2b:48: 81:72:7d:88:9d:11:89:ed:f1:04:89:e6:17:53:38: 47:b5:ec:f9:1b:ee:d7:86:ba:3a:10:3c:96:53:7d: 49:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:1B:78:C5:C8:C4:3C:FB:B0:0C:74:C4:82:77:F8:84:62:BE:D7:20 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68a68b32-0643-4d0b-a543-f8916c97493c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.149.0.0/16 Signature Algorithm: sha256WithRSAEncryption d4:37:c4:90:c5:cd:b9:4c:12:66:53:c3:c4:91:f9:cd:a5:1c: 79:2d:e4:70:d0:b3:02:41:b1:34:56:9b:e9:1c:ad:9f:85:57: 72:e9:be:bf:42:34:53:df:c3:11:d4:3e:91:f0:99:bc:9f:c9: 87:2b:9e:5a:aa:bf:40:c6:cc:ff:c7:9d:39:fd:3c:31:4e:c4: 3a:16:fd:ff:d1:bc:34:85:78:4e:4b:ba:34:50:6b:21:14:7f: 25:74:65:e4:3f:d7:17:c8:6e:8b:4d:92:e0:5e:47:19:bf:2f: 0c:1e:94:34:00:dd:43:f7:d5:51:00:23:9d:92:c0:ec:cf:dc: 07:19:15:d7:bd:f5:5d:5a:ba:44:fa:4a:b0:e6:ad:52:ac:ab: d1:27:50:a3:3d:e9:c0:c3:e1:69:7b:a9:99:de:65:b6:f6:39: fb:a3:f1:0d:31:78:ef:bc:3b:23:f0:61:c5:ca:04:f8:30:89: ef:ac:f3:43:b0:1a:59:a5:f5:1e:38:4f:27:21:27:b5:52:1a: 51:a7:f5:fe:83:f7:76:8c:d4:58:3f:8f:ab:85:23:17:59:bc: a0:70:bf:8e:3c:3a:93:82:a8:44:50:8d:d4:fe:2d:38:e6:3c: bf:14:d7:66:bc:ea:09:9c:44:46:81:b9:1e:66:4c:f8:f5:06: 1f:67:ee:ae -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBxW5YNbp4RcU0Jz91JbmxLSHNHcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAwMDA1WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTMxMjE0N2QxODNjOWQ0YWE1Y2VmZjUwODg1ZDM0ODg0 NTFjZDJlMTZiMWFmNzdlNzYwOTc5ZTA4ODY3N2Y5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjxhGEOP4QRvWMy2/vFBWTeZmVrRXK62v1FyfciKnEbRnc 14E2gatGrJjSUbSjAvO3JzdO1ioPXA8crsQJ/f35qSIpM44FpR8gvpp8wtua41oa Iw437kGKReTrqZl1HnmBJzJKpNTj+CrqqJv7EYiX7hldu6Z+qWx7e2o49dCRLjtQ nhDjRSItgg09jqPateIdUv5xPU6BqCD2SKOtALviMBn/nw/NOt1VUqCW7bOF6g3C Q1+3r9Ggz0KNTdzQj+sRta1/HhA4oblk3MhmIst35kjxMUGZdoETn72gkFErSIFy fYidEYnt8QSJ5hdTOEe17Pkb7teGujoQPJZTfUk7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUOht4xcjEPPuwDHTEgnf4hGK+1yAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY4YTY4YjMyLTA2NDMtNGQwYi1hNTQzLWY4OTE2Yzk3NDkzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBolTANBgkqhkiG9w0BAQsFAAOCAQEA1DfEkMXNuUwSZlPDxJH5zaUceS3k cNCzAkGxNFab6Rytn4VXcum+v0I0U9/DEdQ+kfCZvJ/JhyueWqq/QMbM/8edOf08 MU7EOhb9/9G8NIV4Tku6NFBrIRR/JXRl5D/XF8hui02S4F5HGb8vDB6UNADdQ/fV UQAjnZLA7M/cBxkV1731XVq6RPpKsOatUqyr0SdQoz3pwMPhaXupmd5ltvY5+6Px DTF477w7I/BhxcoE+DCJ76zzQ7AaWaX1HjhPJyEntVIaUaf1/oP3dozUWD+Pq4Uj F1m8oHC/jjw6k4KoRFCN1P4tOOY8vxTXZrzqCZxERoG5HmZM+PUGH2furg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:31:00 2025 by rpki-client