$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acee793e-e4d8-4c60-8711-8877a8378aa0.roa File: acee793e-e4d8-4c60-8711-8877a8378aa0.roa (raw, json) Hash identifier: V+7ebrordZtcl1gOXGGJ3hHjZe1MXEDyXB3SOGtRABc= Subject key identifier: 3B:36:1A:F2:5E:45:9F:07:25:D0:4A:F8:A3:31:59:D4:76:C0:90:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C2102215F99156CE8FB4997BD19EAB0C705B7DC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acee793e-e4d8-4c60-8711-8877a8378aa0.roa Signing time: Wed 07 May 2025 00:20:07 +0000 ROA not before: Wed 07 May 2025 00:20:07 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 44.216.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:21:02:21:5f:99:15:6c:e8:fb:49:97:bd:19:ea:b0:c7:05:b7:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:20:07 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=5f1089377627f4088d685cd7ec77daeecbf3cd5d6bb40bda0be474720cad790d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:73:73:8b:7f:8d:8d:7b:9a:8d:fe:51:45:cd: e3:6f:b2:33:72:44:c9:95:e0:7d:c1:ac:2e:59:cd: ce:89:7e:50:76:13:57:b5:3b:6a:93:f0:2a:92:6e: 64:33:b6:03:93:48:9e:61:45:91:e2:69:68:29:5f: 01:71:c3:8c:2f:80:17:ac:02:c0:eb:ab:b4:db:bb: f4:dd:7b:43:48:05:b1:cf:b2:45:e4:19:ae:ee:30: 6b:de:79:5f:27:07:ac:9a:50:16:55:f0:fe:83:1f: 62:71:97:04:50:fd:40:57:e3:57:3b:b9:e1:51:5d: 18:a7:94:d4:a5:fc:87:49:16:92:13:7c:d4:f8:65: 2c:39:6d:b5:be:88:13:a5:d8:78:fb:d3:e0:b8:61: a2:52:d5:35:97:ac:67:31:03:cf:22:9b:c4:3c:c4: 64:f4:01:16:b2:7a:6c:d4:ed:81:a3:a5:05:da:df: 22:e5:50:30:14:57:b3:96:36:5e:89:78:6c:41:e2: 73:e3:fe:b2:10:8f:00:64:2a:08:0b:e6:86:6c:0d: 36:40:f0:fd:db:ff:c5:65:fc:ef:43:48:5b:83:c0: c1:09:c8:db:de:8c:f2:89:ba:d9:7e:f2:2b:a9:43: 48:7d:c7:4b:e9:55:f8:fd:9c:88:05:12:05:2b:0f: cd:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:36:1A:F2:5E:45:9F:07:25:D0:4A:F8:A3:31:59:D4:76:C0:90:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acee793e-e4d8-4c60-8711-8877a8378aa0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.216.188.0/22 Signature Algorithm: sha256WithRSAEncryption 74:08:f7:3d:01:57:e9:68:59:39:c2:5f:b7:12:fe:0f:ff:37: bb:2d:f1:ce:6a:29:0a:f0:2c:f8:b4:25:9d:cc:2b:9b:69:47: d4:c6:e5:cc:16:b0:00:39:75:73:90:5d:cd:00:f1:ef:93:c6: 66:af:d9:a6:1f:25:b6:22:65:fa:ba:da:89:95:8c:71:c1:b3: 7b:5d:f7:b3:f8:b2:cf:af:9c:31:22:80:32:e7:17:2c:d7:78: c7:13:70:32:1f:db:1a:79:0b:6d:a7:65:50:2d:96:4f:ec:f4: d2:b9:15:b5:d2:41:e8:db:76:55:52:49:11:97:15:69:56:83: b8:81:38:5a:6e:af:0b:b5:1d:d9:6c:b4:2f:b7:65:dc:ec:c4: e4:db:bf:ec:74:40:4e:d7:10:b2:03:93:e5:02:b4:5d:45:c9: bf:ba:e3:8c:2a:b8:c3:70:e9:38:91:32:55:fd:cf:2c:04:45: dd:57:9f:b1:26:e2:a6:00:4d:89:72:7a:7b:44:8f:8b:a3:16: cb:eb:5a:e9:07:f4:c6:df:e8:3c:31:a9:c7:3d:dd:28:24:90: 6e:8e:7d:01:02:23:4d:ea:e3:fb:ca:a6:a0:0b:0e:85:a2:41: 04:f2:df:43:07:2c:f4:12:b3:c0:57:56:07:58:2d:a9:c3:8f: 60:98:75:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfCECIV+ZFWzo+0mXvRnqsMcFt9wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDAyMDA3WhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZjEwODkzNzc2MjdmNDA4OGQ2ODVjZDdlYzc3ZGFlZWNi ZjNjZDVkNmJiNDBiZGEwYmU0NzQ3MjBjYWQ3OTBkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSc3OLf42Ne5qN/lFFzeNvsjNyRMmV4H3BrC5Zzc6JflB2 E1e1O2qT8CqSbmQztgOTSJ5hRZHiaWgpXwFxw4wvgBesAsDrq7Tbu/Tde0NIBbHP skXkGa7uMGveeV8nB6yaUBZV8P6DH2JxlwRQ/UBX41c7ueFRXRinlNSl/IdJFpIT fNT4ZSw5bbW+iBOl2Hj70+C4YaJS1TWXrGcxA88im8Q8xGT0ARayemzU7YGjpQXa 3yLlUDAUV7OWNl6JeGxB4nPj/rIQjwBkKggL5oZsDTZA8P3b/8Vl/O9DSFuDwMEJ yNvejPKJutl+8iupQ0h9x0vpVfj9nIgFEgUrD82LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOzYa8l5Fnwcl0Er4ozFZ1HbAkC8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjZWU3OTNlLWU0ZDgtNGM2MC04NzExLTg4NzdhODM3OGFhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIs2LwwDQYJKoZIhvcNAQELBQADggEBAHQI9z0BV+loWTnCX7cS/g//N7st 8c5qKQrwLPi0JZ3MK5tpR9TG5cwWsAA5dXOQXc0A8e+Txmav2aYfJbYiZfq62omV jHHBs3td97P4ss+vnDEigDLnFyzXeMcTcDIf2xp5C22nZVAtlk/s9NK5FbXSQejb dlVSSRGXFWlWg7iBOFpurwu1HdlstC+3ZdzsxOTbv+x0QE7XELIDk+UCtF1Fyb+6 44wquMNw6TiRMlX9zywERd1Xn7Em4qYATYlyentEj4ujFsvrWukH9Mbf6Dwxqcc9 3SgkkG6OfQECI03q4/vKpqALDoWiQQTy30MHLPQSs8BXVgdYLanDj2CYdao= -----END CERTIFICATE-----Generated at Sun Jun 1 04:43:09 2025 by rpki-client