$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8ae0d6d-16cf-40c3-9a3e-054480e1b35b.roa File: b8ae0d6d-16cf-40c3-9a3e-054480e1b35b.roa (raw, json) Hash identifier: kn7Ymf9C8NA34z4lpPolPNqT5tQzGgYz9T9CGxKwhSc= Subject key identifier: 40:38:8B:3F:87:31:48:96:C6:A5:E1:0B:4B:B5:BA:0C:0F:55:AD:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 33779C3703DE548A2D424320A948AF6BE1486BC3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8ae0d6d-16cf-40c3-9a3e-054480e1b35b.roa Signing time: Wed 28 May 2025 00:01:18 +0000 ROA not before: Wed 28 May 2025 00:01:18 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 206.134.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:77:9c:37:03:de:54:8a:2d:42:43:20:a9:48:af:6b:e1:48:6b:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:01:18 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=c65649497742f0cf14d4d28da59cf9ef0770b355d8742c360a56f5dd487b24c3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:07:14:06:42:3e:ed:78:a5:48:69:85:e6:d8: 2d:ec:53:5d:34:c7:d9:37:b0:80:68:61:af:4e:f8: 4a:71:ff:fa:26:db:f5:7a:9e:a1:ab:1c:2b:2a:dd: ac:47:41:00:cc:f0:92:47:02:42:f7:ee:bd:e0:e6: b1:41:9d:ea:b8:fe:3d:b6:c7:ba:5f:04:fa:17:b7: 8e:2c:f3:cd:93:ad:b1:2b:6b:5d:c1:8e:96:72:d3: 9e:4a:6c:ab:6f:1b:3e:b2:c4:26:00:a3:c4:ad:bd: 72:71:0f:ab:5b:41:95:22:56:3f:58:3c:a7:f5:4f: 7e:fc:3d:0a:21:b9:5b:45:29:28:b4:0b:8f:8c:08: 38:df:6e:9f:c5:dc:8e:50:27:08:e0:a9:e8:d7:c9: 31:2c:a9:ba:05:eb:7e:d7:ef:93:db:96:12:12:1a: 4e:76:4d:ed:60:7b:df:7d:fc:30:a7:1d:cd:e2:18: b0:c6:e2:28:84:56:17:b3:33:f8:10:26:6e:c6:62: a5:7b:60:67:8b:09:2a:f9:8c:5d:61:96:10:86:be: 54:8f:50:69:c7:d1:2c:85:39:11:a8:18:e4:1c:d9: f6:c3:a8:01:93:95:8b:36:8e:9e:17:57:f8:4c:60: 94:b4:24:90:fe:7d:90:6a:59:d4:88:d7:09:52:1f: 62:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:38:8B:3F:87:31:48:96:C6:A5:E1:0B:4B:B5:BA:0C:0F:55:AD:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8ae0d6d-16cf-40c3-9a3e-054480e1b35b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.134.0.0/16 Signature Algorithm: sha256WithRSAEncryption c0:47:7e:fe:58:69:ce:b2:07:16:ea:7f:6b:12:f1:a1:72:40: f6:9e:84:d1:32:60:0a:1f:79:a5:42:b4:59:8f:26:4a:d2:03: 96:ad:05:fa:78:12:54:fd:b8:f5:60:ca:4e:c7:32:14:bb:93: f0:1a:7b:e7:84:5a:57:d9:fd:16:ba:5d:a4:3e:d5:d9:17:5c: b2:1e:15:1e:03:df:f3:4d:40:9c:07:49:bd:c0:e8:9a:b8:f8: d9:95:c3:9f:73:28:ee:68:3f:f5:3e:6c:a3:e2:0e:19:f4:27: fc:5b:57:e2:90:d7:f5:56:71:27:79:3e:4e:8e:ac:59:89:33: 3f:73:0d:ea:ac:14:f7:d1:4e:37:10:49:e0:2b:c7:3f:4d:c0: 4c:15:b9:78:13:21:af:73:0a:6c:cc:c1:6d:8d:55:0f:2c:d6: a1:00:08:cd:f7:9a:78:bd:a3:e8:60:a5:cd:7e:67:43:13:ff: 91:2e:a6:7b:03:15:e6:70:88:54:78:71:c8:dd:e1:f7:a4:8b: 51:05:d2:a4:e4:27:75:cb:72:b2:71:96:dc:fe:29:61:a5:c3: ce:7a:a5:bf:03:75:17:73:cc:14:29:37:1d:eb:ea:01:d3:21: ac:17:7a:55:59:78:99:c1:db:08:1d:91:e8:c4:ad:7d:55:f1: f7:8b:79:f3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUM3ecNwPeVIotQkMgqUiva+FIa8MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAwMTE4WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjU2NDk0OTc3NDJmMGNmMTRkNGQyOGRhNTljZjllZjA3 NzBiMzU1ZDg3NDJjMzYwYTU2ZjVkZDQ4N2IyNGMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIBxQGQj7teKVIaYXm2C3sU100x9k3sIBoYa9O+Epx//om 2/V6nqGrHCsq3axHQQDM8JJHAkL37r3g5rFBneq4/j22x7pfBPoXt44s882TrbEr a13BjpZy055KbKtvGz6yxCYAo8StvXJxD6tbQZUiVj9YPKf1T378PQohuVtFKSi0 C4+MCDjfbp/F3I5QJwjgqejXyTEsqboF637X75PblhISGk52Te1ge999/DCnHc3i GLDG4iiEVhezM/gQJm7GYqV7YGeLCSr5jF1hlhCGvlSPUGnH0SyFORGoGOQc2fbD qAGTlYs2jp4XV/hMYJS0JJD+fZBqWdSI1wlSH2LBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQDiLP4cxSJbGpeELS7W6DA9VrVAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4YWUwZDZkLTE2Y2YtNDBjMy05YTNlLTA1NDQ4MGUxYjM1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDOhjANBgkqhkiG9w0BAQsFAAOCAQEAwEd+/lhpzrIHFup/axLxoXJA9p6E 0TJgCh95pUK0WY8mStIDlq0F+ngSVP249WDKTscyFLuT8Bp754RaV9n9FrpdpD7V 2Rdcsh4VHgPf801AnAdJvcDomrj42ZXDn3Mo7mg/9T5so+IOGfQn/FtX4pDX9VZx J3k+To6sWYkzP3MN6qwU99FONxBJ4CvHP03ATBW5eBMhr3MKbMzBbY1VDyzWoQAI zfeaeL2j6GClzX5nQxP/kS6mewMV5nCIVHhxyN3h96SLUQXSpOQndctysnGW3P4p YaXDznqlvwN1F3PMFCk3HevqAdMhrBd6VVl4mcHbCB2R6MStfVXx94t58w== -----END CERTIFICATE-----Generated at Sun Jun 1 04:32:49 2025 by rpki-client