$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ace3d51c-13c6-430f-888f-9ebf032c0bb9.roa File: ace3d51c-13c6-430f-888f-9ebf032c0bb9.roa (raw, json) Hash identifier: 3JnD1oIMPk1sm9O2SFnL8CAEwpvg6UAgjIVx5kELhpQ= Subject key identifier: 4B:99:96:20:8D:B5:9A:D9:33:4A:F7:D0:C9:90:C5:42:57:81:84:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 168812606D20BA4389304E346B2CDB95279C22A7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ace3d51c-13c6-430f-888f-9ebf032c0bb9.roa Signing time: Fri 23 May 2025 00:10:50 +0000 ROA not before: Fri 23 May 2025 00:10:50 +0000 ROA not after: Fri 27 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 149.164.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:88:12:60:6d:20:ba:43:89:30:4e:34:6b:2c:db:95:27:9c:22:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 23 00:10:50 2025 GMT Not After : Jun 27 23:59:59 2025 GMT Subject: serialNumber=2ac41083e74962318a743324c4c894c391cf0705af1ad9f5d53fcd06eaadc30f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1c:ef:85:08:b8:16:c8:1a:b8:4c:06:61:c8: 5b:e5:16:db:b7:27:77:d9:ee:d2:0c:d6:fd:42:39: 23:2c:7f:30:8a:e0:63:0d:60:92:7a:da:d5:61:e6: 93:68:fc:57:93:62:70:c1:bd:9e:bf:5b:db:61:89: 2a:51:c8:2b:77:83:78:05:f5:f8:ed:68:91:17:81: 2a:0b:85:8c:57:b0:fe:ea:e8:a0:86:cc:cd:43:c3: 44:c6:b4:6d:3f:b9:4f:8b:95:7d:21:15:86:3a:f8: 70:50:33:79:47:e4:8b:93:68:94:ee:bc:a5:1c:7b: b9:7c:3e:fa:f1:75:7f:f6:fc:93:37:0e:20:38:97: a0:ad:1a:8e:46:58:86:95:a7:74:03:2e:bd:f1:a9: 12:3b:93:05:28:ed:2f:78:3f:99:01:2d:b1:5c:cd: c3:12:f9:47:d9:45:ea:d6:2f:87:e1:c4:5f:dc:21: 38:6b:a3:8b:8f:13:20:3b:e7:d1:e8:56:4c:c6:cd: ba:0f:3c:df:d6:38:e1:bc:6e:0b:df:b3:5d:a4:5b: 40:3e:6b:de:9e:00:8a:d9:00:0c:1b:78:18:ea:10: cc:8d:8c:47:ad:be:87:1f:f3:fc:3c:8c:6a:7d:1c: 48:4c:c1:57:b0:3c:c6:a2:69:0f:02:e5:7a:c1:cb: 30:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:99:96:20:8D:B5:9A:D9:33:4A:F7:D0:C9:90:C5:42:57:81:84:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ace3d51c-13c6-430f-888f-9ebf032c0bb9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.164.0.0/16 Signature Algorithm: sha256WithRSAEncryption 16:65:2d:45:81:54:20:f4:84:31:3a:73:69:8d:98:0f:94:d0: 09:c1:5b:dd:3a:6f:5b:be:13:f6:a6:90:34:66:9b:2c:49:9b: c5:11:02:11:9b:ff:85:ec:81:54:fa:e6:38:c9:8a:e2:3d:df: 26:df:c9:7c:ed:c0:39:a4:9c:16:40:c2:c3:95:70:a5:f1:d2: 75:08:20:2f:0c:4c:8e:a4:b9:91:75:b1:2c:3c:50:c2:3e:e5: b4:45:6d:a7:51:0c:6f:c1:5f:7b:ee:dd:a1:52:ce:25:3b:96: 25:a8:f5:11:0d:7e:b2:55:ea:eb:a7:0a:39:2d:f3:51:25:eb: fd:01:be:3c:62:b5:26:44:4c:62:b8:6a:8d:3e:a2:37:50:b5: 83:89:8d:cc:67:f3:3f:7f:21:d1:6d:f3:87:88:46:d3:9d:31: 76:f9:68:07:60:af:1d:1e:0b:8d:7c:16:77:bc:66:bc:a1:4c: d8:4c:ee:60:3c:6b:76:96:ef:02:08:b8:d9:f6:c8:f7:9e:c5: 89:52:7f:96:5e:f8:21:39:8a:8c:09:df:a6:26:ca:53:7c:38: 2b:1a:de:b5:2f:13:ce:56:be:c9:58:d6:58:6a:0d:32:eb:53: 49:fd:e9:65:7d:5d:8d:a2:19:c7:13:ba:6e:26:ae:f9:ad:b0: 1e:e8:7b:8a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFogSYG0gukOJME40ayzblSecIqcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIzMDAxMDUwWhcNMjUwNjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYWM0MTA4M2U3NDk2MjMxOGE3NDMzMjRjNGM4OTRjMzkx Y2YwNzA1YWYxYWQ5ZjVkNTNmY2QwNmVhYWRjMzBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzHO+FCLgWyBq4TAZhyFvlFtu3J3fZ7tIM1v1COSMsfzCK 4GMNYJJ62tVh5pNo/FeTYnDBvZ6/W9thiSpRyCt3g3gF9fjtaJEXgSoLhYxXsP7q 6KCGzM1Dw0TGtG0/uU+LlX0hFYY6+HBQM3lH5IuTaJTuvKUce7l8PvrxdX/2/JM3 DiA4l6CtGo5GWIaVp3QDLr3xqRI7kwUo7S94P5kBLbFczcMS+UfZRerWL4fhxF/c IThro4uPEyA759HoVkzGzboPPN/WOOG8bgvfs12kW0A+a96eAIrZAAwbeBjqEMyN jEetvocf8/w8jGp9HEhMwVewPMaiaQ8C5XrByzBnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUS5mWII21mtkzSvfQyZDFQleBhMgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjZTNkNTFjLTEzYzYtNDMwZi04ODhmLTllYmYwMzJjMGJiOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCVpDANBgkqhkiG9w0BAQsFAAOCAQEAFmUtRYFUIPSEMTpzaY2YD5TQCcFb 3TpvW74T9qaQNGabLEmbxRECEZv/heyBVPrmOMmK4j3fJt/JfO3AOaScFkDCw5Vw pfHSdQggLwxMjqS5kXWxLDxQwj7ltEVtp1EMb8Ffe+7doVLOJTuWJaj1EQ1+slXq 66cKOS3zUSXr/QG+PGK1JkRMYrhqjT6iN1C1g4mNzGfzP38h0W3zh4hG050xdvlo B2CvHR4LjXwWd7xmvKFM2EzuYDxrdpbvAgi42fbI957FiVJ/ll74ITmKjAnfpibK U3w4KxretS8Tzla+yVjWWGoNMutTSf3pZX1djaIZxxO6biau+a2wHuh7ig== -----END CERTIFICATE-----Generated at Sun Jun 1 04:28:38 2025 by rpki-client