$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9bd43449-a30d-4de9-ac10-41448aff1c4a.roa File: 9bd43449-a30d-4de9-ac10-41448aff1c4a.roa (raw, json) Hash identifier: Kl0GwBmvFgq//VCUhS1eLvlULP5daZr8WnWZ3OaokQ0= Subject key identifier: 33:94:D5:37:BD:88:2A:2B:21:1E:57:04:F6:60:86:9E:65:6C:C5:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6339CD923C5AFC7E9AC5BA87D5C0380E24306AC3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9bd43449-a30d-4de9-ac10-41448aff1c4a.roa Signing time: Tue 20 May 2025 15:20:31 +0000 ROA not before: Tue 20 May 2025 15:20:31 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 88.104.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:39:cd:92:3c:5a:fc:7e:9a:c5:ba:87:d5:c0:38:0e:24:30:6a:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 15:20:31 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=c296aa9b75ca6ef45d2579a150fa2377aa632c126225aed948bc83b9e61b085c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:61:00:26:0f:e5:9c:59:c7:b7:c7:37:0c:48: 5e:fa:94:39:33:ae:62:e9:9d:21:36:08:3d:7e:d0: 32:b0:8f:33:03:c9:23:d3:d5:54:ba:f0:a2:65:c5: 16:29:7d:b4:fd:ab:bb:2a:fa:63:89:b0:2d:91:d9: e0:e2:32:5a:2b:dc:3e:77:8f:f2:eb:3a:67:e1:01: a2:9f:5d:7a:39:7b:bd:34:ff:03:5f:7a:79:05:86: dc:a0:d8:b1:b9:54:a4:67:41:78:9d:f2:09:e8:61: 9a:9b:ac:9c:5b:15:d4:29:0e:20:c7:de:f6:a8:4c: bf:67:fe:f7:34:ac:25:d9:4e:f4:9c:bb:b3:39:bb: 93:81:0d:93:f2:76:6c:79:99:ff:77:14:1d:14:c4: 4d:77:36:2b:9e:62:a7:c3:2d:bc:e0:83:4a:a9:48: 31:67:ef:4f:29:7b:7c:53:2f:37:b2:3d:98:fb:88: e5:0e:44:41:6d:c3:d7:1f:cf:d7:c8:91:21:79:22: a7:b6:bb:e5:73:90:d1:05:80:d6:5c:32:90:37:9b: 3f:94:26:4c:72:98:aa:3e:e0:5e:02:f5:b5:e5:44: 8b:0f:13:89:ce:88:33:1f:b3:7e:56:3f:ea:1c:98: af:17:a6:2c:0b:3a:ff:66:2a:21:36:83:83:17:18: fb:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:94:D5:37:BD:88:2A:2B:21:1E:57:04:F6:60:86:9E:65:6C:C5:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9bd43449-a30d-4de9-ac10-41448aff1c4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.104.0.0/15 Signature Algorithm: sha256WithRSAEncryption 2f:7f:b9:49:0e:96:17:94:7f:bf:a0:20:d5:16:4b:a9:85:94: 17:8e:0d:b8:42:2d:31:e1:26:59:db:8c:4f:95:0b:a5:c3:68: b7:19:7a:e8:e5:0f:23:30:ab:c3:cd:36:9d:a4:ea:c0:e5:b2: b3:41:24:82:4c:ad:20:49:03:08:90:e7:75:a9:93:82:ca:d2: 67:16:f3:c4:e9:52:78:0d:26:0f:59:d5:c2:bd:b0:c9:fe:35: 4f:60:c3:f1:f6:f3:e7:b9:ce:c8:65:78:66:7c:31:c4:59:34: e9:dd:7d:d2:15:b0:20:0b:4d:63:a1:b7:ca:48:43:34:ad:da: cf:f5:fb:7a:c6:4c:1a:fc:95:ad:fe:ef:ea:da:46:21:eb:b6: 2b:e5:75:57:90:4b:68:f6:e5:3f:22:94:6d:3a:dc:0c:da:f7: 8a:30:18:ec:fc:a1:2a:8b:dd:b9:ce:13:f9:12:c8:c4:bc:92: 69:a1:97:c5:89:d2:22:a3:63:d7:01:ca:b6:ca:17:b8:90:b2: dc:d0:2b:c5:1e:97:36:1a:6e:65:21:09:47:6b:b0:23:8f:62: 18:84:18:6b:fa:71:63:91:1d:85:7f:35:f2:a6:2c:17:15:94: 6f:87:02:b7:60:c2:41:f5:75:bf:5c:fe:ff:36:eb:32:cf:14: 7a:20:2c:08 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYznNkjxa/H6axbqH1cA4DiQwasMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMTUyMDMxWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjk2YWE5Yjc1Y2E2ZWY0NWQyNTc5YTE1MGZhMjM3N2Fh NjMyYzEyNjIyNWFlZDk0OGJjODNiOWU2MWIwODVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDyYQAmD+WcWce3xzcMSF76lDkzrmLpnSE2CD1+0DKwjzMD ySPT1VS68KJlxRYpfbT9q7sq+mOJsC2R2eDiMlor3D53j/LrOmfhAaKfXXo5e700 /wNfenkFhtyg2LG5VKRnQXid8gnoYZqbrJxbFdQpDiDH3vaoTL9n/vc0rCXZTvSc u7M5u5OBDZPydmx5mf93FB0UxE13NiueYqfDLbzgg0qpSDFn708pe3xTLzeyPZj7 iOUOREFtw9cfz9fIkSF5Iqe2u+VzkNEFgNZcMpA3mz+UJkxymKo+4F4C9bXlRIsP E4nOiDMfs35WP+ocmK8XpiwLOv9mKiE2g4MXGPtdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUM5TVN72IKishHlcE9mCGnmVsxVowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzliZDQzNDQ5LWEzMGQtNGRlOS1hYzEwLTQxNDQ4YWZmMWM0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFYaDANBgkqhkiG9w0BAQsFAAOCAQEAL3+5SQ6WF5R/v6Ag1RZLqYWUF44N uEItMeEmWduMT5ULpcNotxl66OUPIzCrw802naTqwOWys0EkgkytIEkDCJDndamT gsrSZxbzxOlSeA0mD1nVwr2wyf41T2DD8fbz57nOyGV4ZnwxxFk06d190hWwIAtN Y6G3ykhDNK3az/X7esZMGvyVrf7v6tpGIeu2K+V1V5BLaPblPyKUbTrcDNr3ijAY 7PyhKovduc4T+RLIxLySaaGXxYnSIqNj1wHKtsoXuJCy3NArxR6XNhpuZSEJR2uw I49iGIQYa/pxY5EdhX818qYsFxWUb4cCt2DCQfV1v1z+/zbrMs8UeiAsCA== -----END CERTIFICATE-----Generated at Sun Jun 1 04:46:54 2025 by rpki-client