$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa File: 8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa (raw, json) Hash identifier: p+Y1czjB3UJR2v2V1mBo+WBkyEE5NgGp1wekwqPcQSY= Subject key identifier: 32:E4:25:BF:CD:2F:55:84:1D:26:24:9C:13:F4:16:B3:8D:A7:F9:4B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 749BFBAE333F7D11212964E510325EA924CD27EB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa Signing time: Wed 28 May 2025 00:20:29 +0000 ROA not before: Wed 28 May 2025 00:20:29 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.22.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:9b:fb:ae:33:3f:7d:11:21:29:64:e5:10:32:5e:a9:24:cd:27:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:20:29 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=7627cb9bae63672587b5ad7d0f9c55a89c951c35f87ba27c91377085edac5f7d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d2:37:5d:d6:a7:0f:fa:11:bd:18:07:21:10: 83:cc:03:77:e6:c5:df:a5:eb:92:3c:a5:42:50:5f: 6d:67:63:cf:14:62:86:03:f8:a3:3a:e0:e9:48:29: a2:f6:d4:ab:1d:1d:db:2a:5f:38:3b:30:ef:87:cf: fb:f8:12:d3:2a:1b:3c:3e:65:13:f4:cd:f8:71:7a: 2f:de:4f:7d:b9:64:f8:ab:9c:e8:c4:4f:66:2e:0d: da:95:b8:58:03:56:2b:02:ae:dc:c3:09:7f:cd:41: b7:8c:2b:20:4f:42:4e:b6:98:29:ad:d0:0f:bb:fb: 05:c4:3c:94:9f:7e:aa:d9:a3:36:8e:7f:dc:f2:f9: 0c:90:ee:86:29:47:f7:41:27:3f:1e:cc:bd:ee:d5: 81:eb:04:cb:cb:32:9d:7b:8c:36:a6:0f:53:7e:32: 57:72:da:ef:4d:03:9c:16:a4:bd:5b:2b:c3:65:5c: da:ea:7b:f7:a2:29:b2:3e:0f:ba:e2:54:1d:5e:2d: b9:4d:99:5d:bb:5d:fa:f6:ba:a4:74:b9:3c:cf:1f: 55:05:41:79:28:73:23:a1:b5:be:a3:75:96:9a:bb: 0f:21:26:03:6f:d3:fb:7f:1d:17:34:49:87:ba:d7: 4b:97:0c:45:ce:ad:53:b2:7e:96:46:aa:27:fa:af: 42:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:E4:25:BF:CD:2F:55:84:1D:26:24:9C:13:F4:16:B3:8D:A7:F9:4B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption 11:db:04:88:ad:bd:91:2c:9b:43:fc:2d:4f:be:62:fd:e1:a2: 48:d1:d7:32:5f:cb:61:94:a0:5a:78:30:4f:ff:3d:cd:ba:46: a1:92:c5:5d:bc:ea:e8:d2:5e:a3:7e:6f:81:3d:b9:5d:7d:4b: 7a:fd:a9:c3:91:71:d9:f3:97:82:73:2c:f0:c6:c6:31:74:6d: a3:82:67:c7:16:94:ff:0d:25:94:53:25:6f:53:42:50:4c:67: b1:14:69:d3:96:10:86:8f:71:7e:6a:34:01:fa:60:93:e4:4a: f5:3f:0c:8b:d2:d5:4c:7c:64:6d:bc:22:ea:91:51:fc:c0:9d: ef:a2:73:a5:b5:dd:46:3c:89:47:c3:46:41:83:85:da:60:00: d5:ee:df:92:e1:2c:98:57:b7:20:bc:6c:4b:57:72:d9:67:b8: 1a:71:41:76:cb:42:3d:4c:da:f3:3c:6d:59:f1:0e:d5:af:9c: c8:d4:30:7b:00:3d:2c:9b:ea:7e:ab:f9:13:d6:0e:11:5d:6b: cf:b6:2a:7e:89:e0:bf:4a:ad:9c:f9:98:d1:c0:64:12:1e:74: 77:76:b9:7b:a7:65:e6:ea:69:5e:72:11:e7:97:1e:6c:aa:87: 6b:89:5b:e7:36:9f:4c:2c:c5:cb:09:90:4d:27:3f:b6:ed:80: 28:09:c3:85 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdJv7rjM/fREhKWTlEDJeqSTNJ+swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAyMDI5WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NjI3Y2I5YmFlNjM2NzI1ODdiNWFkN2QwZjljNTVhODlj OTUxYzM1Zjg3YmEyN2M5MTM3NzA4NWVkYWM1ZjdkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK0jdd1qcP+hG9GAchEIPMA3fmxd+l65I8pUJQX21nY88U YoYD+KM64OlIKaL21KsdHdsqXzg7MO+Hz/v4EtMqGzw+ZRP0zfhxei/eT325ZPir nOjET2YuDdqVuFgDVisCrtzDCX/NQbeMKyBPQk62mCmt0A+7+wXEPJSffqrZozaO f9zy+QyQ7oYpR/dBJz8ezL3u1YHrBMvLMp17jDamD1N+Mldy2u9NA5wWpL1bK8Nl XNrqe/eiKbI+D7riVB1eLblNmV27Xfr2uqR0uTzPH1UFQXkocyOhtb6jdZaauw8h JgNv0/t/HRc0SYe610uXDEXOrVOyfpZGqif6r0IXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUMuQlv80vVYQdJiScE/QWs42n+UswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhiNDJjYjVmLTdiNWYtNGI5OS1hNWM0LWQ0MGYzZWUzMzU2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2FjANBgkqhkiG9w0BAQsFAAOCAQEAEdsEiK29kSybQ/wtT75i/eGiSNHX Ml/LYZSgWngwT/89zbpGoZLFXbzq6NJeo35vgT25XX1Lev2pw5Fx2fOXgnMs8MbG MXRto4JnxxaU/w0llFMlb1NCUExnsRRp05YQho9xfmo0Afpgk+RK9T8Mi9LVTHxk bbwi6pFR/MCd76JzpbXdRjyJR8NGQYOF2mAA1e7fkuEsmFe3ILxsS1dy2We4GnFB dstCPUza8zxtWfEO1a+cyNQwewA9LJvqfqv5E9YOEV1rz7Yqfongv0qtnPmY0cBk Eh50d3a5e6dl5uppXnIR55cebKqHa4lb5zafTCzFywmQTSc/tu2AKAnDhQ== -----END CERTIFICATE-----Generated at Sun Jun 1 04:27:39 2025 by rpki-client