$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/815964ed-9722-4cc0-98c4-f1d0eb521f6f.roa File: 815964ed-9722-4cc0-98c4-f1d0eb521f6f.roa (raw, json) Hash identifier: j1kY6Qg1nsZKZWPuBCXO0FIxcMRIe83qa9fMT9RR+Nk= Subject key identifier: 87:84:6C:F8:FC:72:72:30:71:8E:8F:C1:DE:AB:27:B1:C3:CD:87:C7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 74C21FA6E2EC843CA9142D08F66236A06F01D38E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/815964ed-9722-4cc0-98c4-f1d0eb521f6f.roa Signing time: Wed 28 May 2025 00:20:20 +0000 ROA not before: Wed 28 May 2025 00:20:20 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.102.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:c2:1f:a6:e2:ec:84:3c:a9:14:2d:08:f6:62:36:a0:6f:01:d3:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:20:20 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=497f297d98e8bb521d79fd496bb3ebcd5643a1644ad4fd4e850bc3c48f22fc38, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f5:2d:a4:9e:7d:dd:c7:e5:f8:f1:02:08:d9: 17:fb:cd:28:46:64:e8:2f:bd:de:1f:51:ef:f5:38: 8c:fe:b0:8e:eb:57:60:a9:21:1a:98:3a:75:8d:fe: 4a:2f:09:d4:c3:bb:97:9e:51:fd:6d:82:b9:3f:af: 67:ca:2b:83:5a:a2:ea:88:47:41:44:c9:42:19:fb: 29:cb:b4:d4:0c:e4:af:74:dc:e5:20:76:f4:68:19: e5:5f:7a:24:0b:22:f1:d9:eb:54:47:45:1b:09:06: e3:cb:ba:98:84:b1:91:51:f5:5f:a7:53:68:4d:6e: 3c:80:0d:ec:e7:88:cd:51:db:2e:6a:d5:ea:2a:b3: 3c:3e:0f:84:0c:b8:a0:17:b7:86:13:2a:92:b8:1d: 86:62:c9:be:f3:c2:93:f6:18:7a:41:46:2f:8b:34: 01:5e:ed:2e:d0:d1:b4:84:67:50:f1:f6:94:4b:96: 37:13:b8:19:59:e9:c4:6f:32:97:6c:36:36:aa:fa: bb:9a:df:41:7d:83:7b:a5:70:a3:2e:6f:f3:35:f8: 6c:2d:b7:2d:6a:78:ad:0f:bc:62:aa:20:f2:b9:c1: 24:e9:fd:a6:e4:09:5b:33:0e:55:12:40:c9:9f:65: 5d:5e:2b:4a:58:c9:5f:7b:2a:ab:e4:99:57:3b:e9: 36:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:84:6C:F8:FC:72:72:30:71:8E:8F:C1:DE:AB:27:B1:C3:CD:87:C7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/815964ed-9722-4cc0-98c4-f1d0eb521f6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.102.0.0/16 Signature Algorithm: sha256WithRSAEncryption 52:20:3d:76:fd:22:26:e1:83:be:4c:60:2c:84:87:0b:0b:77: 86:16:6d:13:00:2b:75:48:c2:3a:bf:5f:26:b1:2b:93:04:ca: ad:97:b5:1c:80:92:ac:f3:0b:cd:48:be:e4:9d:95:a4:a2:52: 00:64:2f:82:25:f7:00:16:69:3b:1e:33:9d:96:18:85:51:01: 5c:a5:93:38:d0:12:25:d7:82:8e:3f:57:94:ab:69:23:25:04: d2:23:f3:67:bb:37:12:52:93:23:b6:4c:cd:42:e8:3f:61:c7: 80:e5:7f:a8:05:87:51:20:c3:b5:ed:d2:ea:db:60:02:be:ee: 59:90:09:14:f0:8f:15:0d:db:43:e3:97:6d:b9:a2:d6:11:b0: bf:d1:15:3b:de:61:4c:de:5c:62:39:d4:5b:da:74:94:3f:75: 4a:6c:27:7e:89:78:6a:08:13:1a:12:9a:4e:50:f8:76:c9:53: 1e:8f:9f:73:67:2d:e5:65:b0:ad:b8:7e:b3:fd:2e:ff:71:44: 2f:be:a8:6f:e9:ce:ef:af:e3:50:52:83:8e:b9:61:bc:9a:d9: cb:15:0f:a7:68:2f:c3:c5:18:11:15:87:3e:da:c1:ce:b4:45: a3:1a:f7:9a:71:79:1b:90:b0:d6:38:32:1a:82:80:69:f3:31: 55:82:77:63 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdMIfpuLshDypFC0I9mI2oG8B044wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAyMDIwWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0OTdmMjk3ZDk4ZThiYjUyMWQ3OWZkNDk2YmIzZWJjZDU2 NDNhMTY0NGFkNGZkNGU4NTBiYzNjNDhmMjJmYzM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJ9S2knn3dx+X48QII2Rf7zShGZOgvvd4fUe/1OIz+sI7r V2CpIRqYOnWN/kovCdTDu5eeUf1tgrk/r2fKK4NaouqIR0FEyUIZ+ynLtNQM5K90 3OUgdvRoGeVfeiQLIvHZ61RHRRsJBuPLupiEsZFR9V+nU2hNbjyADezniM1R2y5q 1eoqszw+D4QMuKAXt4YTKpK4HYZiyb7zwpP2GHpBRi+LNAFe7S7Q0bSEZ1Dx9pRL ljcTuBlZ6cRvMpdsNjaq+rua30F9g3ulcKMub/M1+Gwtty1qeK0PvGKqIPK5wSTp /abkCVszDlUSQMmfZV1eK0pYyV97KqvkmVc76TYXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUh4Rs+PxycjBxjo/B3qsnscPNh8cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgxNTk2NGVkLTk3MjItNGNjMC05OGM0LWYxZDBlYjUyMWY2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2ZjANBgkqhkiG9w0BAQsFAAOCAQEAUiA9dv0iJuGDvkxgLISHCwt3hhZt EwArdUjCOr9fJrErkwTKrZe1HICSrPMLzUi+5J2VpKJSAGQvgiX3ABZpOx4znZYY hVEBXKWTONASJdeCjj9XlKtpIyUE0iPzZ7s3ElKTI7ZMzULoP2HHgOV/qAWHUSDD te3S6ttgAr7uWZAJFPCPFQ3bQ+OXbbmi1hGwv9EVO95hTN5cYjnUW9p0lD91Smwn fol4aggTGhKaTlD4dslTHo+fc2ct5WWwrbh+s/0u/3FEL76ob+nO76/jUFKDjrlh vJrZyxUPp2gvw8UYERWHPtrBzrRFoxr3mnF5G5Cw1jgyGoKAafMxVYJ3Yw== -----END CERTIFICATE-----Generated at Sun Jun 1 04:44:50 2025 by rpki-client