$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ffa0a55-65ab-4aba-af4c-8b8ce167f61a.roa File: 9ffa0a55-65ab-4aba-af4c-8b8ce167f61a.roa (raw, json) Hash identifier: 7PW6fdK4F35akRNplahS46/68ksxGL8ccXb0i2rZb6M= Subject key identifier: 7B:83:9C:7D:2E:64:9B:25:6D:4D:F0:B2:03:5D:AF:AA:0C:49:09:D2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2DCBBDE595CE69571C0FF7F610FF510A7DC76899 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ffa0a55-65ab-4aba-af4c-8b8ce167f61a.roa Signing time: Wed 28 May 2025 00:02:03 +0000 ROA not before: Wed 28 May 2025 00:02:03 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 138.90.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:cb:bd:e5:95:ce:69:57:1c:0f:f7:f6:10:ff:51:0a:7d:c7:68:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:02:03 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=80449ab840d8b6e244f9668f8dca09a0ae3b53d7225535d8797a8d1d2dd45b0b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:fb:66:2d:c5:87:aa:81:a2:02:75:8a:95:d4: 03:09:6d:e3:b0:73:6f:cf:57:28:c7:5f:46:92:81: c0:a5:a5:f6:1a:de:c0:a3:b9:13:44:6e:8a:6f:37: eb:f9:00:d7:ef:b4:e3:10:4c:83:f6:64:81:0e:41: c9:61:df:1b:a9:fd:22:a2:ba:22:27:91:65:ac:be: 50:5e:0f:ee:0d:4a:4f:f4:b3:27:c8:b6:2c:9f:f2: 3f:32:d3:5f:16:ea:a9:0b:f7:7c:5e:08:0a:65:fa: 91:4a:f3:89:ff:21:10:b0:ad:f2:e1:da:0c:6a:63: 76:11:1b:8a:a3:94:50:52:51:03:42:03:d8:f9:1c: df:e5:ff:59:76:ec:b1:86:31:c0:51:30:ad:d1:13: cc:80:cc:09:86:32:9d:0d:52:a7:3d:0c:ec:fb:bb: 1a:6c:1a:2d:43:ef:0b:99:36:60:68:2b:61:12:61: e7:8a:8f:d3:2f:e9:25:23:70:70:29:b1:79:f3:ce: d1:1d:8d:50:32:a4:65:b4:ff:48:1c:96:e6:af:ce: 13:99:ff:5f:06:37:bf:f0:81:fd:c8:d7:93:5b:eb: 15:2b:09:d9:0e:b3:42:19:f1:f2:84:84:d8:a2:a4: 32:86:9f:a0:9f:0f:9d:4f:47:61:7b:55:1c:27:6a: d3:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:83:9C:7D:2E:64:9B:25:6D:4D:F0:B2:03:5D:AF:AA:0C:49:09:D2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ffa0a55-65ab-4aba-af4c-8b8ce167f61a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.90.0.0/16 Signature Algorithm: sha256WithRSAEncryption d8:ba:87:bd:7b:10:f5:34:d2:cf:bc:1a:96:eb:2f:d9:79:d8: 35:f4:b2:e2:f2:59:eb:30:7a:27:c8:2e:b8:83:b2:6f:96:25: ff:45:fd:6a:97:08:96:a9:b2:10:95:2f:74:85:e7:a0:c1:88: ed:a9:b9:df:0c:92:d8:d4:3e:24:66:52:7c:81:d4:dc:70:88: 76:42:4a:b7:34:31:0c:7d:4b:2d:78:fc:43:a3:0f:6d:be:ed: ec:50:9d:bd:3b:ae:41:a8:82:ba:5b:74:a3:30:86:43:4c:87: d8:74:a9:e1:1b:be:20:98:65:27:34:6d:b9:a8:1e:76:97:2c: 43:5f:c3:f7:27:b7:af:ff:44:8a:fa:b4:b3:c2:e3:b6:93:bf: 69:bb:ce:bf:98:f9:c5:93:08:fa:97:01:83:1a:8e:57:3f:37: eb:42:06:bd:33:00:46:85:cc:66:23:fe:46:e4:1a:34:bd:6e: 54:3d:00:af:e6:f7:1e:13:5d:63:c0:33:f0:48:ea:97:cd:ec: 17:e3:75:d1:1f:b5:7c:8e:14:63:6e:41:c4:1a:ca:d2:14:20: 32:1a:15:44:11:d1:06:d8:98:bb:74:c1:59:64:33:32:be:e4: 73:9e:c1:19:85:23:72:b5:b8:d6:62:c3:27:a0:03:1c:f0:11: 3f:41:b0:b0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULcu95ZXOaVccD/f2EP9RCn3HaJkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAwMjAzWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDQ0OWFiODQwZDhiNmUyNDRmOTY2OGY4ZGNhMDlhMGFl M2I1M2Q3MjI1NTM1ZDg3OTdhOGQxZDJkZDQ1YjBiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDR+2YtxYeqgaICdYqV1AMJbeOwc2/PVyjHX0aSgcClpfYa 3sCjuRNEbopvN+v5ANfvtOMQTIP2ZIEOQclh3xup/SKiuiInkWWsvlBeD+4NSk/0 syfItiyf8j8y018W6qkL93xeCApl+pFK84n/IRCwrfLh2gxqY3YRG4qjlFBSUQNC A9j5HN/l/1l27LGGMcBRMK3RE8yAzAmGMp0NUqc9DOz7uxpsGi1D7wuZNmBoK2ES YeeKj9Mv6SUjcHApsXnzztEdjVAypGW0/0gcluavzhOZ/18GN7/wgf3I15Nb6xUr CdkOs0IZ8fKEhNiipDKGn6CfD51PR2F7VRwnatNPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUe4OcfS5kmyVtTfCyA12vqgxJCdIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmZmEwYTU1LTY1YWItNGFiYS1hZjRjLThiOGNlMTY3ZjYxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCKWjANBgkqhkiG9w0BAQsFAAOCAQEA2LqHvXsQ9TTSz7walusv2XnYNfSy 4vJZ6zB6J8guuIOyb5Yl/0X9apcIlqmyEJUvdIXnoMGI7am53wyS2NQ+JGZSfIHU 3HCIdkJKtzQxDH1LLXj8Q6MPbb7t7FCdvTuuQaiCult0ozCGQ0yH2HSp4Ru+IJhl JzRtuagedpcsQ1/D9ye3r/9Eivq0s8LjtpO/abvOv5j5xZMI+pcBgxqOVz8360IG vTMARoXMZiP+RuQaNL1uVD0Ar+b3HhNdY8Az8Ejql83sF+N10R+1fI4UY25BxBrK 0hQgMhoVRBHRBtiYu3TBWWQzMr7kc57BGYUjcrW41mLDJ6ADHPARP0GwsA== -----END CERTIFICATE-----Generated at Sun Jun 1 04:38:22 2025 by rpki-client