$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e648563-7077-488e-a1d5-b03f10f986ce.roa File: 6e648563-7077-488e-a1d5-b03f10f986ce.roa (raw, json) Hash identifier: M1LT+lGaJe11SoCwQxFR8/STNOI7xn2kPDgg54ankD4= Subject key identifier: DA:BE:C1:90:2F:65:9D:93:02:A1:95:7A:A4:C1:36:1E:85:F1:06:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 159038CE8696FB8FF6AE9CEEB665C3E944B180E6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e648563-7077-488e-a1d5-b03f10f986ce.roa Signing time: Tue 20 May 2025 00:40:27 +0000 ROA not before: Tue 20 May 2025 00:40:27 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 40.193.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:90:38:ce:86:96:fb:8f:f6:ae:9c:ee:b6:65:c3:e9:44:b1:80:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:40:27 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=6e93f9c2e061c141970fbbc753db22d21e10bd63d23e9dd04e0961cb8bffa665, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6e:33:b3:ab:9e:d3:c9:1d:95:0f:04:89:18: ba:73:44:4f:5e:ee:cf:c7:f7:ff:70:d1:b5:aa:63: a1:d1:47:1d:7c:36:31:78:8e:aa:62:39:68:a6:69: 93:2e:77:be:63:0a:95:25:a5:ef:80:2d:09:b3:7d: d8:5e:38:26:68:3a:33:40:b3:a9:27:a2:b5:5c:dc: 46:9e:fc:d2:ab:9b:c9:8c:b8:4b:73:86:f5:34:a9: 85:c1:36:08:9b:88:46:2d:82:f6:0e:36:a7:d6:1f: 45:0c:8b:b6:75:9c:80:c7:3d:4f:d0:36:d6:c9:fc: ee:c7:b7:54:f7:78:a5:e2:9f:28:22:70:6f:dc:d3: 5d:a0:4a:f3:de:5a:ad:1e:d2:59:7b:0d:42:1e:8d: ba:81:da:d9:22:61:64:34:d1:42:25:da:4b:13:12: c9:ca:67:74:d7:e7:03:6d:1e:13:db:91:d9:ba:64: 9c:b2:da:09:0e:36:78:78:05:fe:dd:de:2d:c1:d6: 46:d1:c7:39:31:2a:24:67:a2:b6:07:35:bf:05:4d: 2b:4e:15:e5:c9:01:f3:80:43:68:66:df:c6:b6:d9: af:7f:5a:35:75:74:1c:9d:a7:89:50:7f:f5:5f:ba: aa:b2:a4:93:ae:42:cb:ca:a6:9e:0f:e3:68:1d:3c: 36:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:BE:C1:90:2F:65:9D:93:02:A1:95:7A:A4:C1:36:1E:85:F1:06:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e648563-7077-488e-a1d5-b03f10f986ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.193.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7e:30:e5:17:48:c8:95:8f:e1:b8:d5:d1:db:5f:bc:55:ad:8c: 2b:8e:08:e5:6e:12:20:fd:35:19:51:af:c9:b4:98:5c:d5:fc: c5:ff:52:0c:e4:09:a5:0a:81:30:99:42:2c:32:0a:49:2f:02: 3c:ca:67:87:d2:c9:ac:b0:b4:a2:f7:a1:84:48:16:dc:89:aa: c3:f0:52:59:c9:6b:86:03:9a:68:4c:f8:1b:12:1c:97:50:7c: f0:32:20:aa:ed:fe:85:8f:99:58:bf:53:b0:a0:47:10:f2:f1: 12:e2:36:99:2e:8f:4e:40:e9:13:b0:d9:20:b1:c2:54:f9:a9: 48:e7:07:96:c3:d7:5f:a3:67:f1:e4:8d:e7:9f:60:4f:51:85: af:79:af:77:43:34:7e:bc:6e:44:16:75:29:c8:1a:88:d6:41: 0c:22:26:3d:4e:a9:0b:df:34:aa:20:20:39:61:0b:46:06:84: 62:d2:3e:3c:37:45:df:83:0e:b4:36:58:5d:91:18:01:6b:3c: 35:50:53:5a:37:8e:5a:e6:e2:c4:ef:bb:6b:51:67:1b:6f:0a: cf:5a:16:66:3e:93:58:17:6e:a9:54:46:f1:93:bd:52:52:2b: 4a:e9:d9:e9:22:cc:6f:aa:6d:51:11:2e:99:00:d0:44:2c:d8: 70:55:f2:8a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFZA4zoaW+4/2rpzutmXD6USxgOYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDA0MDI3WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTkzZjljMmUwNjFjMTQxOTcwZmJiYzc1M2RiMjJkMjFl MTBiZDYzZDIzZTlkZDA0ZTA5NjFjYjhiZmZhNjY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwbjOzq57TyR2VDwSJGLpzRE9e7s/H9/9w0bWqY6HRRx18 NjF4jqpiOWimaZMud75jCpUlpe+ALQmzfdheOCZoOjNAs6knorVc3Eae/NKrm8mM uEtzhvU0qYXBNgibiEYtgvYONqfWH0UMi7Z1nIDHPU/QNtbJ/O7Ht1T3eKXinygi cG/c012gSvPeWq0e0ll7DUIejbqB2tkiYWQ00UIl2ksTEsnKZ3TX5wNtHhPbkdm6 ZJyy2gkONnh4Bf7d3i3B1kbRxzkxKiRnorYHNb8FTStOFeXJAfOAQ2hm38a22a9/ WjV1dBydp4lQf/VfuqqypJOuQsvKpp4P42gdPDahAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2r7BkC9lnZMCoZV6pME2HoXxBsAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZlNjQ4NTYzLTcwNzctNDg4ZS1hMWQ1LWIwM2YxMGY5ODZjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAowTANBgkqhkiG9w0BAQsFAAOCAQEAfjDlF0jIlY/huNXR21+8Va2MK44I 5W4SIP01GVGvybSYXNX8xf9SDOQJpQqBMJlCLDIKSS8CPMpnh9LJrLC0ovehhEgW 3Imqw/BSWclrhgOaaEz4GxIcl1B88DIgqu3+hY+ZWL9TsKBHEPLxEuI2mS6PTkDp E7DZILHCVPmpSOcHlsPXX6Nn8eSN559gT1GFr3mvd0M0frxuRBZ1KcgaiNZBDCIm PU6pC980qiAgOWELRgaEYtI+PDdF34MOtDZYXZEYAWs8NVBTWjeOWubixO+7a1Fn G28Kz1oWZj6TWBduqVRG8ZO9UlIrSunZ6SLMb6ptUREumQDQRCzYcFXyig== -----END CERTIFICATE-----Generated at Sun Jun 1 04:57:13 2025 by rpki-client