$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a894a0df-a7bc-4945-b877-55f4b5cfab38.roa File: a894a0df-a7bc-4945-b877-55f4b5cfab38.roa (raw, json) Hash identifier: CFMn5IojUZ66HPevhxwJsdunupzxYNdUkMv7hkJUZNE= Subject key identifier: 36:9F:C0:E3:02:B7:BE:85:A5:64:40:49:CE:B8:2E:C2:28:BD:F9:60 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E9E946823102C14CBC94E1548A36284EF024B74 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a894a0df-a7bc-4945-b877-55f4b5cfab38.roa Signing time: Tue 13 May 2025 00:41:03 +0000 ROA not before: Tue 13 May 2025 00:41:03 +0000 ROA not after: Tue 17 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 46.235.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:9e:94:68:23:10:2c:14:cb:c9:4e:15:48:a3:62:84:ef:02:4b:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 13 00:41:03 2025 GMT Not After : Jun 17 23:59:59 2025 GMT Subject: serialNumber=534a1044a4811b875dc36ae5568f6a576d52c8348a2971b024434fe36d93977a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:24:6b:a0:b6:77:39:cb:10:a8:c7:17:a9:90: e4:db:f1:29:f5:46:ff:24:b1:2e:dc:fb:70:ce:25: 1d:71:70:9c:ad:d7:3d:df:18:f2:42:0f:d3:dc:23: d2:da:78:c6:75:d5:dd:43:f9:db:7b:18:ec:bf:e0: 16:1b:b2:49:b5:b1:2c:97:3e:5d:02:97:5e:f4:94: 46:d3:c9:c7:0d:1f:9b:7a:4e:dc:eb:ed:6c:c4:43: bc:05:d8:20:91:bc:79:aa:b3:29:9e:4f:76:d2:bd: 5d:29:08:d7:2c:03:c8:93:23:e2:d1:27:59:9e:ea: 6c:14:7d:f8:41:66:f1:23:77:70:d6:a3:66:bb:46: 09:6f:8c:ad:7b:9f:6a:e9:84:0b:a9:f9:95:2b:b9: 12:71:83:58:f0:34:9d:8d:5d:f4:7b:f3:7b:35:12: d7:9d:67:94:dd:d5:64:ca:3c:d6:02:40:1c:fd:73: 1e:94:be:c6:ec:e2:06:38:04:42:02:a4:70:d2:f9: 70:22:d3:f1:30:ec:39:86:10:a7:4f:75:5d:ab:a8: f0:90:ba:84:77:06:a0:4a:81:86:97:fe:5c:74:5c: 41:b5:ec:89:62:9d:4f:ee:65:6e:e3:6d:39:0d:68: 0e:65:51:90:3b:77:94:a4:20:23:a8:04:79:5d:10: 75:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:9F:C0:E3:02:B7:BE:85:A5:64:40:49:CE:B8:2E:C2:28:BD:F9:60 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a894a0df-a7bc-4945-b877-55f4b5cfab38.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.235.1.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:16:f3:11:c9:32:a5:7b:b9:cf:c6:b9:c5:b7:06:f2:7d:6c: 37:3e:ab:44:b1:b5:00:fb:5d:6d:ae:a7:fd:98:7b:62:02:08: a6:d9:52:6d:27:e9:87:93:1d:4a:8d:20:11:3d:c5:14:59:07: 60:a7:d9:0b:f4:a6:5c:b8:e5:ff:30:fb:eb:5e:8a:c9:d1:df: 02:a8:06:56:98:52:a2:6a:16:5e:84:6f:ae:f8:67:c5:02:53: a0:7b:e4:f3:ee:a8:1e:6c:7b:c7:d3:cb:b3:bc:f8:b1:45:76: 78:fa:c6:20:27:03:3a:fe:91:ba:4f:d5:5c:b2:a5:a3:cc:95: 4d:4a:4a:f5:a3:8f:ef:a3:48:0c:f1:a4:11:cc:ac:ce:cb:52: ab:e5:06:61:10:35:10:5a:b1:4a:a4:80:56:98:be:54:80:cf: 60:7e:28:eb:e5:8f:74:d4:56:6f:d3:12:a5:8f:fe:bc:ce:d4: e0:2e:40:07:c3:82:8e:20:ad:d5:85:2b:40:35:cb:8b:1a:af: 23:8e:4f:55:36:4d:f1:d8:72:52:38:fd:55:5c:0b:d0:c5:7f: 16:38:2a:4d:a3:3b:63:65:ee:1e:8a:f6:77:10:84:db:41:55: fb:99:98:17:f5:89:de:6a:90:0b:25:c6:cd:c2:e6:48:9c:87: 83:99:ec:c9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXp6UaCMQLBTLyU4VSKNihO8CS3QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEzMDA0MTAzWhcNMjUwNjE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MzRhMTA0NGE0ODExYjg3NWRjMzZhZTU1NjhmNmE1NzZk NTJjODM0OGEyOTcxYjAyNDQzNGZlMzZkOTM5NzdhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtJGugtnc5yxCoxxepkOTb8Sn1Rv8ksS7c+3DOJR1xcJyt 1z3fGPJCD9PcI9LaeMZ11d1D+dt7GOy/4BYbskm1sSyXPl0Cl170lEbTyccNH5t6 Ttzr7WzEQ7wF2CCRvHmqsymeT3bSvV0pCNcsA8iTI+LRJ1me6mwUffhBZvEjd3DW o2a7RglvjK17n2rphAup+ZUruRJxg1jwNJ2NXfR783s1EtedZ5Td1WTKPNYCQBz9 cx6Uvsbs4gY4BEICpHDS+XAi0/Ew7DmGEKdPdV2rqPCQuoR3BqBKgYaX/lx0XEG1 7IlinU/uZW7jbTkNaA5lUZA7d5SkICOoBHldEHWZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNp/A4wK3voWlZEBJzrguwii9+WAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E4OTRhMGRmLWE3YmMtNDk0NS1iODc3LTU1ZjRiNWNmYWIzOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAu6wEwDQYJKoZIhvcNAQELBQADggEBAEsW8xHJMqV7uc/GucW3BvJ9bDc+ q0SxtQD7XW2up/2Ye2ICCKbZUm0n6YeTHUqNIBE9xRRZB2Cn2Qv0ply45f8w++te isnR3wKoBlaYUqJqFl6Eb674Z8UCU6B75PPuqB5se8fTy7O8+LFFdnj6xiAnAzr+ kbpP1VyypaPMlU1KSvWjj++jSAzxpBHMrM7LUqvlBmEQNRBasUqkgFaYvlSAz2B+ KOvlj3TUVm/TEqWP/rzO1OAuQAfDgo4grdWFK0A1y4saryOOT1U2TfHYclI4/VVc C9DFfxY4Kk2jO2Nl7h6K9ncQhNtBVfuZmBf1id5qkAslxs3C5kich4OZ7Mk= -----END CERTIFICATE-----Generated at Wed Jun 4 11:25:05 2025 by rpki-client