$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6560d66-8e98-4546-86ad-c43d86d45125.roa File: a6560d66-8e98-4546-86ad-c43d86d45125.roa (raw, json) Hash identifier: BWhUOjFtgn3mXzABSVC+g+kjZIcq2BkMU2LuLLjMUpE= Subject key identifier: 6F:62:A0:D7:F3:CC:F5:CA:17:05:58:C6:B1:42:83:B2:85:54:A2:4B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 26E9FB0649DFF975188581403775935E59E5B96E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6560d66-8e98-4546-86ad-c43d86d45125.roa Signing time: Mon 26 May 2025 15:02:13 +0000 ROA not before: Mon 26 May 2025 15:02:13 +0000 ROA not after: Mon 30 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:e9:fb:06:49:df:f9:75:18:85:81:40:37:75:93:5e:59:e5:b9:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 26 15:02:13 2025 GMT Not After : Jun 30 23:59:59 2025 GMT Subject: serialNumber=6c87f8e6f6ee79b2541887eff8c8f995d7a6e10a7e9ea59896d2efdc34e068a3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ec:49:df:c9:76:e7:f4:74:e3:60:3d:7b:12: 5c:50:d3:cc:16:b1:34:31:0c:cd:d6:8e:48:02:95: 70:fb:c7:0d:94:33:60:9d:23:2b:04:96:94:b8:7d: 6e:41:6a:8c:f2:42:db:4d:ac:29:39:6d:87:d6:38: 12:4c:5e:58:be:ff:c2:ca:96:3b:4a:4c:29:f5:97: ed:24:17:bb:39:3c:02:16:73:be:7f:ec:30:11:33: cf:89:a4:71:a4:2f:62:f3:df:cb:13:22:1c:90:22: e2:df:df:e7:29:33:a5:af:52:3d:c0:ff:0e:55:62: 4d:d0:bb:f3:80:76:59:d5:5f:07:22:a7:92:0c:8e: 00:1a:39:57:f5:bf:7b:58:d4:a3:f1:00:a4:34:c9: db:80:9e:db:60:12:95:44:96:2c:ad:97:64:3e:83: c9:95:4e:45:c6:8e:ac:42:e4:97:d4:f4:b7:3e:a6: 03:a1:4a:3f:ff:4b:d4:30:fc:23:96:56:1e:c7:f9: fa:3b:16:51:6c:fd:62:79:90:53:73:d4:f0:4c:94: 21:25:dd:09:d4:be:bd:31:bd:fd:70:44:dc:c8:5c: a6:6f:2f:ed:0b:52:f3:4e:4d:fe:e5:a8:c6:f1:29: e9:2b:7f:ea:da:31:38:53:21:61:de:0d:c9:8c:09: b3:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:62:A0:D7:F3:CC:F5:CA:17:05:58:C6:B1:42:83:B2:85:54:A2:4B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a6560d66-8e98-4546-86ad-c43d86d45125.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.36.0/24 Signature Algorithm: sha256WithRSAEncryption 09:07:0d:bc:1f:c9:c9:bd:d2:4f:98:23:28:ea:ac:0a:0a:af: 6c:f1:70:a0:87:4e:ed:0b:45:9b:63:aa:94:b0:ae:6c:2b:cd: aa:d0:e2:be:56:83:60:11:47:06:f9:a6:b0:6d:6a:78:db:ba: e9:2b:a0:8b:42:9a:3e:51:4f:cd:63:5f:f4:4a:a7:32:90:f7: f9:f3:b9:41:b4:be:75:2d:da:88:d3:1a:15:96:84:15:cc:a7: fc:47:8e:3d:b8:f0:c7:51:8a:f7:3e:c1:c3:39:50:94:85:c7: 19:40:ba:47:cf:d0:b3:af:1c:c2:b6:63:db:c8:20:7f:3d:69: e8:25:68:1a:89:67:77:c4:90:f3:05:c7:b8:2b:a4:53:d3:64: f7:1d:05:20:d5:2a:fe:56:56:be:99:06:93:2b:25:cc:fe:88: d1:e0:5c:b8:fe:a9:a7:88:5c:ce:fb:5e:ec:17:91:2e:c2:d6: 9c:2a:2d:c8:77:27:eb:7b:48:7a:6d:2a:5a:4a:71:fd:6e:c2: 8f:8e:4e:03:72:0c:0d:71:d8:91:03:6d:7c:e3:1a:d5:c8:80: a1:62:5f:13:13:39:67:0d:b7:b5:dd:bf:95:64:19:47:e1:60: f0:74:c6:66:53:f6:a8:1f:69:31:eb:bd:dd:59:bf:23:43:6f: 1b:9f:e3:74 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJun7Bknf+XUYhYFAN3WTXlnluW4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI2MTUwMjEzWhcNMjUwNjMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2Yzg3ZjhlNmY2ZWU3OWIyNTQxODg3ZWZmOGM4Zjk5NWQ3 YTZlMTBhN2U5ZWE1OTg5NmQyZWZkYzM0ZTA2OGEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz7EnfyXbn9HTjYD17ElxQ08wWsTQxDM3WjkgClXD7xw2U M2CdIysElpS4fW5BaozyQttNrCk5bYfWOBJMXli+/8LKljtKTCn1l+0kF7s5PAIW c75/7DARM8+JpHGkL2Lz38sTIhyQIuLf3+cpM6WvUj3A/w5VYk3Qu/OAdlnVXwci p5IMjgAaOVf1v3tY1KPxAKQ0yduAnttgEpVEliytl2Q+g8mVTkXGjqxC5JfU9Lc+ pgOhSj//S9Qw/COWVh7H+fo7FlFs/WJ5kFNz1PBMlCEl3QnUvr0xvf1wRNzIXKZv L+0LUvNOTf7lqMbxKekrf+raMThTIWHeDcmMCbOBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUb2Kg1/PM9coXBVjGsUKDsoVUokswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E2NTYwZDY2LThlOTgtNDU0Ni04NmFkLWM0M2Q4NmQ0NTEyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACXlCQwDQYJKoZIhvcNAQELBQADggEBAAkHDbwfycm90k+YIyjqrAoKr2zx cKCHTu0LRZtjqpSwrmwrzarQ4r5Wg2ARRwb5prBtanjbuukroItCmj5RT81jX/RK pzKQ9/nzuUG0vnUt2ojTGhWWhBXMp/xHjj248MdRivc+wcM5UJSFxxlAukfP0LOv HMK2Y9vIIH89aeglaBqJZ3fEkPMFx7grpFPTZPcdBSDVKv5WVr6ZBpMrJcz+iNHg XLj+qaeIXM77XuwXkS7C1pwqLch3J+t7SHptKlpKcf1uwo+OTgNyDA1x2JEDbXzj GtXIgKFiXxMTOWcNt7Xdv5VkGUfhYPB0xmZT9qgfaTHrvd1ZvyNDbxuf43Q= -----END CERTIFICATE-----Generated at Sun Jun 1 04:52:22 2025 by rpki-client