$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ad85cb2e-193f-4cc5-be6e-f69071c9985c.roa File: ad85cb2e-193f-4cc5-be6e-f69071c9985c.roa (raw, json) Hash identifier: vwsdUDL3o8GCXReiTlcfj1IU3jvqo8g+J7Us1zcGY9c= Subject key identifier: ED:88:C1:70:94:86:1E:E0:D9:21:6C:45:19:E5:F6:DF:0D:32:40:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 59D202BAFF090A0B0155A04172E1D38E6DDECEA0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ad85cb2e-193f-4cc5-be6e-f69071c9985c.roa Signing time: Mon 19 May 2025 11:22:07 +0000 ROA not before: Mon 19 May 2025 11:22:07 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 78.13.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:d2:02:ba:ff:09:0a:0b:01:55:a0:41:72:e1:d3:8e:6d:de:ce:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 11:22:07 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=9dcb89f027166cb0b7eccf42e5f46e88909527b605824e62be258ebbc865181f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a6:a6:72:2c:cf:c4:e2:38:3c:08:35:d5:05: 5e:9b:4d:60:98:e9:b5:b6:b6:80:bf:09:34:3c:90: 33:02:8a:b2:54:46:4a:f5:bb:49:93:9b:de:23:5b: 82:a5:39:dd:bb:4c:fd:f9:bb:00:bb:2c:86:a6:e2: 91:47:98:d8:9f:d9:a2:44:67:bc:02:e7:4f:15:29: 2f:10:35:4d:57:f4:5f:a2:65:19:55:a7:fa:e9:64: da:a8:e8:e0:df:45:78:4b:65:f8:a8:ff:19:49:a0: 06:35:b6:3a:ac:4b:ec:98:d0:40:17:3a:47:8f:d5: a3:2b:75:33:14:84:8b:9e:a4:9e:15:4c:02:be:d6: f3:f2:06:8e:d4:00:9e:67:df:06:9f:0b:d9:83:df: fe:f1:80:b9:af:03:2c:f5:1f:df:58:33:4e:63:82: 72:cd:54:de:22:27:0c:af:a0:3b:66:6a:1b:e9:fc: 78:e2:6a:98:8c:b4:e2:6d:a9:61:9d:e8:31:94:54: 14:b1:ce:f3:df:45:f5:92:f6:4b:72:d9:6e:15:2b: 60:cc:35:8a:50:11:9e:b9:db:85:a7:02:fd:9c:7b: dd:0a:fd:cb:ef:d6:7a:cc:7a:6b:1e:0d:4c:b5:92: 08:a6:9d:f1:65:bc:3e:9a:67:be:70:eb:81:36:cd: 9f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:88:C1:70:94:86:1E:E0:D9:21:6C:45:19:E5:F6:DF:0D:32:40:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ad85cb2e-193f-4cc5-be6e-f69071c9985c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.13.88.0/23 Signature Algorithm: sha256WithRSAEncryption 73:3f:f0:90:07:01:07:6c:68:63:6c:2b:39:78:b7:98:00:a4: 4a:7f:64:f4:aa:b8:40:10:e0:6d:e6:87:b8:c2:22:aa:6c:64: 1d:58:33:41:70:66:86:00:76:cd:a1:2e:a7:79:6d:fc:88:6e: 3b:5f:60:73:72:b7:05:ce:8e:5f:6a:87:ac:22:40:1b:64:3d: a6:3c:a3:69:0c:1a:a0:72:e2:1a:18:2e:e6:db:1f:01:f6:74: 65:79:1e:d3:b0:18:f4:c6:25:dd:90:33:dd:87:d6:d0:7c:59: f1:82:c3:6d:14:89:6b:64:bc:44:31:45:5d:6b:e5:5e:76:90: 04:0a:89:49:b5:22:50:ba:23:6d:8d:65:77:f4:b0:7a:05:cc: 97:5a:89:c7:91:81:f0:9c:e4:0b:7e:61:07:f6:2a:28:b2:42: f2:d9:19:ac:1c:30:b6:12:c9:3a:81:1d:d1:52:25:8a:c2:74: 1e:17:01:0a:e4:7a:db:ae:cd:c6:e6:be:1e:9b:a9:ba:15:3e: 8a:dc:3a:92:c9:2d:b4:ae:dd:c5:80:fb:45:50:7b:c5:7c:38: 85:3b:f5:f2:a0:9c:70:bc:66:20:8b:2a:ba:52:7d:ba:34:11: 12:00:95:1a:1b:95:1f:58:d2:7c:64:06:2a:ee:ce:e4:65:32: 6d:a4:ec:2c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWdICuv8JCgsBVaBBcuHTjm3ezqAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTEyMjA3WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZGNiODlmMDI3MTY2Y2IwYjdlY2NmNDJlNWY0NmU4ODkw OTUyN2I2MDU4MjRlNjJiZTI1OGViYmM4NjUxODFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqpqZyLM/E4jg8CDXVBV6bTWCY6bW2toC/CTQ8kDMCirJU Rkr1u0mTm94jW4KlOd27TP35uwC7LIam4pFHmNif2aJEZ7wC508VKS8QNU1X9F+i ZRlVp/rpZNqo6ODfRXhLZfio/xlJoAY1tjqsS+yY0EAXOkeP1aMrdTMUhIuepJ4V TAK+1vPyBo7UAJ5n3wafC9mD3/7xgLmvAyz1H99YM05jgnLNVN4iJwyvoDtmahvp /HjiapiMtOJtqWGd6DGUVBSxzvPfRfWS9kty2W4VK2DMNYpQEZ6524WnAv2ce90K /cvv1nrMemseDUy1kgimnfFlvD6aZ75w64E2zZ/rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7YjBcJSGHuDZIWxFGeX23w0yQJowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FkODVjYjJlLTE5M2YtNGNjNS1iZTZlLWY2OTA3MWM5OTg1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFODVgwDQYJKoZIhvcNAQELBQADggEBAHM/8JAHAQdsaGNsKzl4t5gApEp/ ZPSquEAQ4G3mh7jCIqpsZB1YM0FwZoYAds2hLqd5bfyIbjtfYHNytwXOjl9qh6wi QBtkPaY8o2kMGqBy4hoYLubbHwH2dGV5HtOwGPTGJd2QM92H1tB8WfGCw20UiWtk vEQxRV1r5V52kAQKiUm1IlC6I22NZXf0sHoFzJdaiceRgfCc5At+YQf2KiiyQvLZ GawcMLYSyTqBHdFSJYrCdB4XAQrketuuzcbmvh6bqboVPorcOpLJLbSu3cWA+0VQ e8V8OIU79fKgnHC8ZiCLKrpSfbo0ERIAlRoblR9Y0nxkBiruzuRlMm2k7Cw= -----END CERTIFICATE-----Generated at Sun Jun 1 04:33:49 2025 by rpki-client