$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a459199-d80a-4790-b99e-d7e340b000a0.roa File: 6a459199-d80a-4790-b99e-d7e340b000a0.roa (raw, json) Hash identifier: gHAdEmBtnkAEL4Fa+fnL5AiGKOWQvPM6ZgSQtTFgxUA= Subject key identifier: E1:9C:EC:B5:49:32:77:73:D7:BD:7F:35:48:15:CB:A9:85:13:E4:F2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BAEC9578457329877D633F6477CCCCAFFD24934 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a459199-d80a-4790-b99e-d7e340b000a0.roa Signing time: Wed 28 May 2025 00:31:46 +0000 ROA not before: Wed 28 May 2025 00:31:46 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.184.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:ae:c9:57:84:57:32:98:77:d6:33:f6:47:7c:cc:ca:ff:d2:49:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:31:46 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=17595c486113a937b008b6b68ccb194b0e8593d8ee8641ced69f033a38dfbbb9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1a:19:e9:51:a2:4c:40:ce:81:48:a4:b8:e7: 5b:d1:ee:f9:9d:3f:c1:0d:74:a4:99:6d:20:3b:78: ad:ab:68:f1:66:88:88:9f:6b:af:77:52:23:56:d3: 87:65:fb:96:fa:cd:c4:39:f5:1e:30:b2:aa:a5:ad: 17:fa:72:e8:f8:af:0f:99:d3:09:34:1e:61:87:8d: 1f:be:5c:c2:8a:63:02:a1:8f:c0:44:47:0f:e2:18: e0:4d:5d:c9:cd:5e:33:11:ec:23:a9:aa:25:8c:6b: 02:5c:f3:d9:97:f4:b3:86:48:f2:7d:bb:0f:5a:1c: 14:fc:e9:4f:7f:28:90:90:59:7a:4a:9b:59:43:ef: 7b:89:5c:76:e2:4e:0b:73:07:06:4c:c6:e9:99:72: da:84:ff:fa:c1:48:cc:ce:7c:e2:83:06:c4:fe:f7: f7:55:89:ca:19:7f:b3:5a:aa:5b:52:e4:8a:03:34: ed:54:ce:db:6a:de:31:f9:a8:4a:96:ef:ed:e3:d0: 0a:30:b1:7e:ee:85:4c:78:c3:9b:1c:fd:60:5c:4b: 82:18:01:ea:a2:4e:e0:47:06:f4:9d:4e:5a:d1:89: f6:82:68:f8:c4:45:c7:33:bc:1c:1a:71:4a:30:9f: bc:1e:f9:f6:a1:7f:e6:0c:1b:3b:e2:56:bf:bd:da: 01:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:9C:EC:B5:49:32:77:73:D7:BD:7F:35:48:15:CB:A9:85:13:E4:F2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a459199-d80a-4790-b99e-d7e340b000a0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.184.0.0/16 Signature Algorithm: sha256WithRSAEncryption c3:85:49:a0:24:11:ab:23:ca:9a:2c:ab:c2:ae:0b:2c:d8:b4: 90:f2:75:46:a9:15:76:ed:64:3a:b6:31:1c:f0:7d:06:fd:2e: 62:a2:b1:56:dc:e8:bd:ab:14:f3:b6:ec:97:62:85:c2:34:2a: f5:4b:9a:76:15:af:51:f0:bf:fb:39:c0:4c:ac:9d:78:a5:61: f3:69:46:e7:a0:b6:09:91:36:c4:fc:90:09:cf:6b:7f:b0:ba: 3c:61:37:16:5e:50:85:8a:c9:d2:a3:fb:38:c2:e8:26:a0:81: 2a:cb:ae:f3:e4:36:b3:c7:71:13:ec:1a:14:24:d3:26:5e:b0: 46:1a:b0:74:68:41:29:4d:b3:5c:79:a5:8d:b3:3c:09:1b:82: 7d:0b:c4:d1:e2:54:a3:2d:24:62:ce:4c:0b:a2:6b:b3:8c:cf: 48:1b:61:9d:57:fa:b8:0b:f6:67:79:6b:0b:b2:51:2f:9e:4e: 81:7b:69:20:2b:ae:46:ae:5e:48:19:36:62:80:aa:18:ae:d2: 4f:d2:b7:e9:4f:a9:0c:2d:6c:18:52:c1:27:b9:4a:0f:86:fa: 4b:1d:82:fb:03:86:e5:41:37:c3:d0:c3:14:49:bf:12:a8:1d: e3:2e:77:ac:82:5f:61:b3:9a:40:80:8f:aa:ae:81:80:1d:ab: 0a:5d:bf:ff -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUa67JV4RXMph31jP2R3zMyv/SSTQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAzMTQ2WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzU5NWM0ODYxMTNhOTM3YjAwOGI2YjY4Y2NiMTk0YjBl ODU5M2Q4ZWU4NjQxY2VkNjlmMDMzYTM4ZGZiYmI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwGhnpUaJMQM6BSKS451vR7vmdP8ENdKSZbSA7eK2raPFm iIifa693UiNW04dl+5b6zcQ59R4wsqqlrRf6cuj4rw+Z0wk0HmGHjR++XMKKYwKh j8BERw/iGOBNXcnNXjMR7COpqiWMawJc89mX9LOGSPJ9uw9aHBT86U9/KJCQWXpK m1lD73uJXHbiTgtzBwZMxumZctqE//rBSMzOfOKDBsT+9/dVicoZf7NaqltS5IoD NO1Uzttq3jH5qEqW7+3j0AowsX7uhUx4w5sc/WBcS4IYAeqiTuBHBvSdTlrRifaC aPjERcczvBwacUown7we+fahf+YMGzviVr+92gHJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU4ZzstUkyd3PXvX81SBXLqYUT5PIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhNDU5MTk5LWQ4MGEtNDc5MC1iOTllLWQ3ZTM0MGIwMDBhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4uDANBgkqhkiG9w0BAQsFAAOCAQEAw4VJoCQRqyPKmiyrwq4LLNi0kPJ1 RqkVdu1kOrYxHPB9Bv0uYqKxVtzovasU87bsl2KFwjQq9UuadhWvUfC/+znATKyd eKVh82lG56C2CZE2xPyQCc9rf7C6PGE3Fl5QhYrJ0qP7OMLoJqCBKsuu8+Q2s8dx E+waFCTTJl6wRhqwdGhBKU2zXHmljbM8CRuCfQvE0eJUoy0kYs5MC6Jrs4zPSBth nVf6uAv2Z3lrC7JRL55OgXtpICuuRq5eSBk2YoCqGK7ST9K36U+pDC1sGFLBJ7lK D4b6Sx2C+wOG5UE3w9DDFEm/Eqgd4y53rIJfYbOaQICPqq6BgB2rCl2//w== -----END CERTIFICATE-----Generated at Fri Jun 6 05:30:51 2025 by rpki-client