$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75652e67-aa05-4a61-9462-1afe249dde47.roa File: 75652e67-aa05-4a61-9462-1afe249dde47.roa (raw, json) Hash identifier: X/Xh8NJ1qbEETSg6akaAU/H3faY6a1N1lsdN0jyWOrY= Subject key identifier: 7B:96:D3:0B:DE:5D:EE:73:0C:DC:48:9A:7E:12:D2:B4:17:B5:5E:FF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2905E6262835F5BFADEF84464CFB013F12986D5B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75652e67-aa05-4a61-9462-1afe249dde47.roa Signing time: Wed 28 May 2025 00:01:16 +0000 ROA not before: Wed 28 May 2025 00:01:16 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 205.147.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:05:e6:26:28:35:f5:bf:ad:ef:84:46:4c:fb:01:3f:12:98:6d:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:01:16 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=96163bd296fc70dbceb8f9e99f8ccd7ee1277874f1c8aca59062c643b676a4cd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:c2:30:2a:f3:85:f3:0d:b7:47:b0:90:d3:88: cd:a1:70:d8:10:d7:71:2c:f9:fd:b3:68:f9:e2:c7: 7c:a5:8e:61:e1:1c:d6:18:0d:a3:b6:38:26:80:d9: 64:be:88:73:19:05:79:e5:83:24:89:14:6a:9d:8c: 04:f5:7d:1a:6b:0b:d6:90:8f:cd:97:b8:b9:ad:67: 40:b7:34:46:87:02:5d:5f:a8:bd:e7:de:63:e1:f9: 10:86:45:33:d5:9a:e8:2e:d9:52:1e:ae:ef:43:15: 03:c1:96:74:7a:ae:6b:7b:77:20:43:5f:c4:72:09: b3:dd:a8:a4:11:9a:ed:0b:87:4a:00:65:a8:6b:dd: ce:ee:eb:c1:69:00:bb:7c:85:26:63:47:a8:fa:c5: 2b:f0:5b:e4:d3:8a:97:0f:18:ca:80:30:af:95:f1: 84:aa:e6:f8:ad:b6:49:a2:b3:73:d4:9b:1d:56:46: b3:8e:ce:8a:53:86:76:c7:63:8c:51:f2:85:49:11: 9d:50:e2:e3:e4:bc:56:75:d1:3a:35:fc:e6:9f:30: 8d:97:26:c8:fb:fa:73:de:dc:b9:d5:41:87:f7:33: fd:35:57:3d:3d:8b:8c:11:58:6c:6c:8f:7a:c1:f1: e1:48:69:d2:88:e0:e0:52:65:a6:a3:70:d5:e5:e3: 36:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:96:D3:0B:DE:5D:EE:73:0C:DC:48:9A:7E:12:D2:B4:17:B5:5E:FF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/75652e67-aa05-4a61-9462-1afe249dde47.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.147.212.0/22 Signature Algorithm: sha256WithRSAEncryption b4:8c:31:13:a8:0c:07:3c:7c:87:f4:c3:f6:00:fc:17:15:cf: be:6c:d1:d4:56:5d:ac:a0:cb:e4:b5:a4:33:0d:92:c3:80:ab: ed:0c:9e:48:2c:f3:8d:e3:89:f8:4c:72:f5:9f:01:9d:de:de: af:f1:ec:29:95:c2:aa:17:76:bd:a6:4c:86:ec:26:0d:34:aa: 8e:07:6b:e4:46:d2:8f:e9:10:2b:20:f1:02:7e:9d:ab:69:f8: e7:17:26:02:59:d7:0c:0b:2d:7f:de:6f:30:1d:81:15:da:31: 74:80:a4:47:31:48:c7:04:23:12:e8:81:cc:0f:d1:b1:76:06: 77:79:5d:54:fd:77:03:70:ad:4f:2b:3e:fc:ad:e1:37:03:4f: 97:80:5c:79:24:c7:fb:0f:6b:71:cb:e8:71:12:a9:d7:09:a9: c7:a6:0b:16:a9:ed:e0:be:ed:ab:bf:96:ba:ef:83:48:ac:1d: 6b:b7:79:26:be:25:f2:12:34:9e:9e:31:13:ad:c0:11:cc:44: 19:e5:27:04:a6:fd:55:3f:92:fa:1d:0e:85:c7:6c:d7:63:35: 33:eb:d3:f2:2c:2a:c5:60:31:49:e2:c9:61:d5:07:d7:ce:75: f0:62:32:a1:3e:30:e4:7f:cc:76:4a:e0:3f:a3:06:83:56:2e: 15:26:7b:7e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKQXmJig19b+t74RGTPsBPxKYbVswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAwMTE2WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjE2M2JkMjk2ZmM3MGRiY2ViOGY5ZTk5ZjhjY2Q3ZWUx Mjc3ODc0ZjFjOGFjYTU5MDYyYzY0M2I2NzZhNGNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSwjAq84XzDbdHsJDTiM2hcNgQ13Es+f2zaPnix3yljmHh HNYYDaO2OCaA2WS+iHMZBXnlgySJFGqdjAT1fRprC9aQj82XuLmtZ0C3NEaHAl1f qL3n3mPh+RCGRTPVmugu2VIeru9DFQPBlnR6rmt7dyBDX8RyCbPdqKQRmu0Lh0oA Zahr3c7u68FpALt8hSZjR6j6xSvwW+TTipcPGMqAMK+V8YSq5vittkmis3PUmx1W RrOOzopThnbHY4xR8oVJEZ1Q4uPkvFZ10To1/OafMI2XJsj7+nPe3LnVQYf3M/01 Vz09i4wRWGxsj3rB8eFIadKI4OBSZaajcNXl4zanAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUe5bTC95d7nMM3EiafhLStBe1Xv8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc1NjUyZTY3LWFhMDUtNGE2MS05NDYyLTFhZmUyNDlkZGU0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALNk9QwDQYJKoZIhvcNAQELBQADggEBALSMMROoDAc8fIf0w/YA/BcVz75s 0dRWXaygy+S1pDMNksOAq+0Mnkgs843jifhMcvWfAZ3e3q/x7CmVwqoXdr2mTIbs Jg00qo4Ha+RG0o/pECsg8QJ+natp+OcXJgJZ1wwLLX/ebzAdgRXaMXSApEcxSMcE IxLogcwP0bF2Bnd5XVT9dwNwrU8rPvyt4TcDT5eAXHkkx/sPa3HL6HESqdcJqcem Cxap7eC+7au/lrrvg0isHWu3eSa+JfISNJ6eMROtwBHMRBnlJwSm/VU/kvodDoXH bNdjNTPr0/IsKsVgMUniyWHVB9fOdfBiMqE+MOR/zHZK4D+jBoNWLhUme34= -----END CERTIFICATE-----Generated at Sun Jun 1 04:51:30 2025 by rpki-client