$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/929a3b2b-92c7-45f2-905b-1ffb4708fcf7.roa File: 929a3b2b-92c7-45f2-905b-1ffb4708fcf7.roa (raw, json) Hash identifier: EssFF/gqD/coE1ZzeLcVq4GUCW4xpk3Uz495wsHQ7cQ= Subject key identifier: 75:0C:CA:64:96:47:4C:F5:8D:DD:DB:7C:41:03:2A:EE:6D:93:25:6D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 61B2E221BCE9820AC31BA1585DF0D1C4A17FCC41 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/929a3b2b-92c7-45f2-905b-1ffb4708fcf7.roa Signing time: Wed 28 May 2025 00:31:55 +0000 ROA not before: Wed 28 May 2025 00:31:55 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.249.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:b2:e2:21:bc:e9:82:0a:c3:1b:a1:58:5d:f0:d1:c4:a1:7f:cc:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:31:55 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=90b928f5c92f47db82e036612e092b8b983552ec2d9f736064b3ea1c52e7c676, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ca:05:45:77:06:67:71:33:8f:04:cf:de:60: 4e:f6:50:d7:b1:39:a4:f2:2e:2e:07:e4:3a:cd:e3: 1a:2e:0f:20:48:ab:eb:36:b1:25:78:d8:6d:9a:c8: 0d:9a:c1:4d:64:ef:c5:6d:88:c0:87:c2:78:68:3e: 56:8f:cc:c2:1c:d8:80:41:ff:25:64:b9:79:a4:3d: a9:31:99:fe:c0:bc:72:b7:2e:e4:d9:b8:b8:ee:61: 3a:b8:93:8d:94:01:2b:0b:5f:cd:dd:88:4a:8f:ba: f1:18:c1:64:6b:4a:e5:6e:df:e3:6b:ca:c4:4c:37: 9b:10:12:19:0d:7d:26:87:81:11:19:6f:23:65:5b: d9:63:2a:e9:81:be:6c:84:f5:a6:1f:90:f3:64:0d: c8:76:4d:e5:e0:c5:6b:dd:82:7d:23:71:25:a5:b6: 14:f7:74:1f:23:7a:68:6d:0d:43:41:c7:bf:05:43: 5d:5a:6c:b9:1e:ff:bc:58:09:3d:04:2a:a4:d0:09: 40:23:3a:e3:98:c2:4f:ac:64:f5:33:17:f7:33:52: 1c:9b:30:d4:87:dc:98:47:33:00:de:bf:f6:b7:ee: f3:76:fa:ba:61:25:10:59:55:fd:04:bd:38:3b:86: 40:b7:0c:1a:35:e4:9a:35:6c:4d:65:e3:95:cd:ed: d6:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:0C:CA:64:96:47:4C:F5:8D:DD:DB:7C:41:03:2A:EE:6D:93:25:6D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/929a3b2b-92c7-45f2-905b-1ffb4708fcf7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.249.0.0/16 Signature Algorithm: sha256WithRSAEncryption ae:59:e9:70:ba:a7:91:a1:2c:29:31:91:08:8d:59:0c:22:3f: 84:1f:a3:6e:9e:b7:c0:6b:8b:df:6e:3e:e7:c6:bc:99:88:8b: a7:e1:aa:42:ee:5e:76:8f:3b:89:8e:89:7c:51:21:c0:ff:3f: 66:cf:47:8d:aa:d2:53:14:47:f5:5d:c9:2b:86:b6:1c:fa:a1: a5:4d:c5:f2:83:e9:21:a7:e1:71:d3:f2:3e:11:ed:06:cb:d7: d1:d7:1a:80:0f:f8:c4:46:a5:09:0a:b3:b9:ce:3e:6e:ab:d4: 68:96:6a:d9:23:d7:71:86:00:dc:62:22:07:bf:0e:c3:52:1a: 07:e7:5f:d7:6e:41:24:63:59:63:47:d2:d2:9c:88:0c:2f:a9: 3c:6a:5d:be:ec:01:98:8f:40:4c:0d:06:be:31:17:a2:fa:4d: 35:58:2e:55:92:da:36:14:20:06:be:1e:4e:a0:ce:fa:be:75: 7e:91:a3:26:3d:57:e8:73:5c:6e:a7:bb:18:b6:6e:75:1f:c8: b2:f3:ab:a4:8b:91:09:74:42:22:99:27:20:a4:b9:8e:95:c2: c3:ae:28:ad:a3:45:b0:e5:df:00:33:c9:31:2c:27:53:47:90: a6:ec:b6:91:01:bc:a0:35:7d:75:79:b2:67:88:d5:31:45:4b: 81:ce:a1:7a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYbLiIbzpggrDG6FYXfDRxKF/zEEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAzMTU1WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MGI5MjhmNWM5MmY0N2RiODJlMDM2NjEyZTA5MmI4Yjk4 MzU1MmVjMmQ5ZjczNjA2NGIzZWExYzUyZTdjNjc2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyygVFdwZncTOPBM/eYE72UNexOaTyLi4H5DrN4xouDyBI q+s2sSV42G2ayA2awU1k78VtiMCHwnhoPlaPzMIc2IBB/yVkuXmkPakxmf7AvHK3 LuTZuLjuYTq4k42UASsLX83diEqPuvEYwWRrSuVu3+NrysRMN5sQEhkNfSaHgREZ byNlW9ljKumBvmyE9aYfkPNkDch2TeXgxWvdgn0jcSWlthT3dB8jemhtDUNBx78F Q11abLke/7xYCT0EKqTQCUAjOuOYwk+sZPUzF/czUhybMNSH3JhHMwDev/a37vN2 +rphJRBZVf0EvTg7hkC3DBo15Jo1bE1l45XN7dZlAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUdQzKZJZHTPWN3dt8QQMq7m2TJW0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkyOWEzYjJiLTkyYzctNDVmMi05MDViLTFmZmI0NzA4ZmNmNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4+TANBgkqhkiG9w0BAQsFAAOCAQEArlnpcLqnkaEsKTGRCI1ZDCI/hB+j bp63wGuL324+58a8mYiLp+GqQu5edo87iY6JfFEhwP8/Zs9HjarSUxRH9V3JK4a2 HPqhpU3F8oPpIafhcdPyPhHtBsvX0dcagA/4xEalCQqzuc4+bqvUaJZq2SPXcYYA 3GIiB78Ow1IaB+df125BJGNZY0fS0pyIDC+pPGpdvuwBmI9ATA0GvjEXovpNNVgu VZLaNhQgBr4eTqDO+r51fpGjJj1X6HNcbqe7GLZudR/IsvOrpIuRCXRCIpknIKS5 jpXCw64oraNFsOXfADPJMSwnU0eQpuy2kQG8oDV9dXmyZ4jVMUVLgc6heg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:43:55 2025 by rpki-client