$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91d0db83-f7cb-4ba4-8999-90629aaf96d6.roa File: 91d0db83-f7cb-4ba4-8999-90629aaf96d6.roa (raw, json) Hash identifier: 2ISyu0KQ6oRy/C/6t4EYpF4gA/Oj/cHanmXYQFkB5fc= Subject key identifier: FB:1D:42:44:72:63:DF:43:81:02:43:00:27:8F:8A:6D:8D:67:3E:AE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E3D8ED7FD49E2E7A86E0083BCD537E447056911 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91d0db83-f7cb-4ba4-8999-90629aaf96d6.roa Signing time: Sat 17 May 2025 00:40:12 +0000 ROA not before: Sat 17 May 2025 00:40:12 +0000 ROA not after: Sat 21 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 156.153.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:3d:8e:d7:fd:49:e2:e7:a8:6e:00:83:bc:d5:37:e4:47:05:69:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:40:12 2025 GMT Not After : Jun 21 23:59:59 2025 GMT Subject: serialNumber=974aeb17d46f59aaed7951c3238a4917f45d56a8feb843aff66fc8ce309e12a3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:98:38:20:3e:d1:f7:9b:36:9c:56:03:31:ba: bd:46:10:1c:ac:34:83:aa:f1:5b:d0:47:d9:c5:8d: 61:60:c1:d5:34:eb:28:55:63:e9:59:a5:76:93:6a: ee:54:56:c8:c2:e7:8a:95:26:d3:22:c4:20:74:c7: 02:4b:bd:4f:ff:51:6a:12:e0:d9:81:0b:55:1d:ce: 9c:f9:93:28:3b:6c:04:ba:10:20:de:02:8a:b8:29: 72:3d:5b:d4:ad:a3:48:5c:ff:18:b5:53:2f:ff:0a: 01:e1:81:3e:4a:b2:c9:88:69:2f:2c:3c:75:c1:2c: ba:ce:b9:3d:7b:52:00:14:39:06:80:db:16:62:cd: 58:7b:92:4c:a9:49:e1:92:8c:68:63:04:65:64:6c: a8:2a:e6:d8:cd:b4:a8:bf:84:3b:49:43:4f:bc:d0: 0c:a6:fe:1b:80:b8:41:f3:dc:36:a6:ea:ce:ea:b0: 77:81:c6:3e:2e:ed:86:d0:e3:cc:97:43:47:eb:92: 13:3c:e0:21:09:4c:14:55:2c:fc:24:47:c7:44:eb: 3c:b2:e9:ed:7e:e6:17:c3:e4:a3:36:b6:75:05:9b: 08:9f:c4:6a:79:3c:36:59:06:3d:84:ae:09:69:b6: db:71:52:4f:3a:4d:23:6a:f6:ad:aa:8a:f6:87:28: 88:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:1D:42:44:72:63:DF:43:81:02:43:00:27:8F:8A:6D:8D:67:3E:AE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91d0db83-f7cb-4ba4-8999-90629aaf96d6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.153.0.0/16 Signature Algorithm: sha256WithRSAEncryption 08:ee:55:37:86:8c:1e:b9:51:c5:8c:b9:79:68:cc:eb:6c:1e: 3c:57:04:ab:0d:6a:c8:cd:d1:77:cf:38:76:d8:6b:d6:3b:0f: 0e:70:e5:2c:0f:2d:e3:e1:b7:e5:f5:8d:1b:07:3f:19:f8:7f: a4:ba:c9:09:53:6b:ce:7d:87:ca:32:60:e4:a6:30:1e:d2:d5: f2:79:13:3f:c3:db:14:dc:40:cd:8e:75:75:12:5b:35:91:ea: 20:c0:2c:11:d3:91:6f:44:4a:b5:8c:c3:2b:b6:f4:14:eb:ec: c4:05:cc:33:f0:49:d1:05:f8:eb:4f:06:ce:57:61:67:37:91: f6:88:cd:98:57:de:2d:47:54:b5:8e:f1:47:c4:9c:0a:bb:b1: bb:27:55:0f:db:4c:1b:76:54:2d:94:dd:46:24:cb:74:85:94: a3:3e:7c:3e:d3:98:76:24:e4:53:d6:cb:32:77:b8:d0:ef:5b: 89:7d:8a:ae:f3:34:5d:58:50:22:25:d8:90:ef:70:20:88:54: 35:2f:72:6f:cd:b7:42:dd:e0:9c:89:ec:91:5f:3f:72:80:99: 3e:9b:be:12:4d:17:b8:34:fa:c4:8e:23:75:61:d8:7a:6c:f9: 0f:82:ac:14:80:4a:fe:e9:fd:ff:07:26:c3:b5:83:74:e7:0a: 8c:c8:4d:ef -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTj2O1/1J4ueobgCDvNU35EcFaREwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE3MDA0MDEyWhcNMjUwNjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NzRhZWIxN2Q0NmY1OWFhZWQ3OTUxYzMyMzhhNDkxN2Y0 NWQ1NmE4ZmViODQzYWZmNjZmYzhjZTMwOWUxMmEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJmDggPtH3mzacVgMxur1GEBysNIOq8VvQR9nFjWFgwdU0 6yhVY+lZpXaTau5UVsjC54qVJtMixCB0xwJLvU//UWoS4NmBC1Udzpz5kyg7bAS6 ECDeAoq4KXI9W9Sto0hc/xi1Uy//CgHhgT5KssmIaS8sPHXBLLrOuT17UgAUOQaA 2xZizVh7kkypSeGSjGhjBGVkbKgq5tjNtKi/hDtJQ0+80Aym/huAuEHz3Dam6s7q sHeBxj4u7YbQ48yXQ0frkhM84CEJTBRVLPwkR8dE6zyy6e1+5hfD5KM2tnUFmwif xGp5PDZZBj2ErglptttxUk86TSNq9q2qivaHKIhvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU+x1CRHJj30OBAkMAJ4+KbY1nPq4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkxZDBkYjgzLWY3Y2ItNGJhNC04OTk5LTkwNjI5YWFmOTZkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCcmTANBgkqhkiG9w0BAQsFAAOCAQEACO5VN4aMHrlRxYy5eWjM62wePFcE qw1qyM3Rd884dthr1jsPDnDlLA8t4+G35fWNGwc/Gfh/pLrJCVNrzn2HyjJg5KYw HtLV8nkTP8PbFNxAzY51dRJbNZHqIMAsEdORb0RKtYzDK7b0FOvsxAXMM/BJ0QX4 608GzldhZzeR9ojNmFfeLUdUtY7xR8ScCruxuydVD9tMG3ZULZTdRiTLdIWUoz58 PtOYdiTkU9bLMne40O9biX2KrvM0XVhQIiXYkO9wIIhUNS9yb823Qt3gnInskV8/ coCZPpu+Ek0XuDT6xI4jdWHYemz5D4KsFIBK/un9/wcmw7WDdOcKjMhN7w== -----END CERTIFICATE-----Generated at Sun Jun 1 05:08:20 2025 by rpki-client