$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa File: b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa (raw, json) Hash identifier: oZkcvF7bzYiFRkyQOecAHuBR21d+aR2morMg+EdohWQ= Subject key identifier: FD:DD:2A:03:B8:52:E9:30:8A:F9:CF:AD:25:8F:1F:E6:1B:A3:E8:19 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E5E4731534DBD7F652754D29C2948089E66A327 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa Signing time: Wed 28 May 2025 00:31:06 +0000 ROA not before: Wed 28 May 2025 00:31:06 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.82.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:5e:47:31:53:4d:bd:7f:65:27:54:d2:9c:29:48:08:9e:66:a3:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:31:06 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=f3172fdb271ee8ef53b24ca25fe7b0dd82125cc1890a2be75c4d88ab34fb2207, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:83:ee:20:68:c6:62:7e:c4:95:c0:74:1a:d3: 83:bb:e1:1c:4f:3e:b5:5a:cf:0a:d3:96:02:3d:6e: a0:43:f9:80:bf:c1:ae:35:7c:c6:50:35:b2:44:74: b2:f6:7b:73:81:fd:d4:2b:e8:42:9d:1d:a7:1d:13: 20:3f:97:72:8a:d6:69:c3:29:a4:6d:e7:96:c0:8c: 1a:20:4a:e7:09:fe:71:95:e3:35:b4:9b:38:32:1f: ae:11:96:83:e3:05:fc:09:a1:5f:d7:eb:11:25:50: 25:e4:29:df:74:d6:5a:68:17:e2:a9:b5:cb:1e:b4: 3b:70:6e:f2:db:6c:85:39:77:4a:bf:3d:e2:03:5c: 3d:6d:1b:47:6e:da:63:8f:65:47:d7:2e:c7:9d:48: 2e:8b:dd:66:24:80:ed:55:18:15:d4:95:6d:39:41: 4f:bf:35:f4:d2:4b:b1:ef:2d:b3:fe:01:9e:b0:60: b6:22:72:9d:0f:f2:9d:aa:d8:d9:aa:39:e5:33:d6: 47:d5:c6:3d:ed:69:ab:0f:21:5f:bb:6a:fd:30:7f: 6c:7a:7b:e6:10:e8:e0:1f:aa:3a:3b:5a:e0:34:d0: 60:d2:10:13:8f:93:0b:78:96:8e:28:fc:d8:15:d1: 22:b1:d7:27:f7:09:eb:03:89:5d:0c:32:4c:51:27: 2d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:DD:2A:03:B8:52:E9:30:8A:F9:CF:AD:25:8F:1F:E6:1B:A3:E8:19 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8e867f3-9430-4ec2-8be1-c7406b137e2a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.82.0.0/16 Signature Algorithm: sha256WithRSAEncryption 26:be:15:7b:8a:aa:1f:50:4d:99:75:e8:91:45:42:29:b0:21: d8:2f:aa:6f:87:dd:01:4c:64:17:53:06:9a:cd:22:d0:f2:7e: ba:ba:91:49:ee:3f:c3:c7:e0:d2:24:8b:aa:dc:1c:d5:2b:c7: 49:01:63:a2:34:f7:c9:20:a2:53:dc:fb:92:ab:5d:08:22:59: 72:1d:a6:5c:29:c3:77:5b:92:0f:df:2d:83:e2:71:4e:c3:ab: bc:08:08:aa:d4:d1:9a:5e:e5:b9:10:82:3c:ae:42:df:42:7c: b7:22:7f:6c:8b:db:40:98:ea:92:ef:9d:cb:93:93:10:66:ac: 25:d5:e0:00:df:23:1a:9a:1a:a5:45:1d:95:64:74:e8:25:e0: e3:e6:fb:cb:07:5b:af:03:2b:b6:39:5a:6c:91:df:b9:ee:bc: 2a:a9:76:8b:76:30:14:11:c7:9a:01:d4:82:42:a9:74:0a:8b: 50:a6:d5:c9:90:01:24:36:e9:06:68:77:79:dd:fe:a1:65:57: 31:19:09:1e:1a:c1:4f:2d:d7:d3:8b:83:b3:2c:33:b8:ee:a9: da:7c:ce:6d:12:c9:62:38:0a:c9:af:0a:e0:a3:e7:8c:35:ee: 03:50:a8:1e:96:17:50:f8:49:0d:e0:3d:d1:e7:92:0c:14:36: e9:fc:82:10 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTl5HMVNNvX9lJ1TSnClICJ5moycwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAzMTA2WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzE3MmZkYjI3MWVlOGVmNTNiMjRjYTI1ZmU3YjBkZDgy MTI1Y2MxODkwYTJiZTc1YzRkODhhYjM0ZmIyMjA3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMg+4gaMZifsSVwHQa04O74RxPPrVazwrTlgI9bqBD+YC/ wa41fMZQNbJEdLL2e3OB/dQr6EKdHacdEyA/l3KK1mnDKaRt55bAjBogSucJ/nGV 4zW0mzgyH64RloPjBfwJoV/X6xElUCXkKd901lpoF+KptcsetDtwbvLbbIU5d0q/ PeIDXD1tG0du2mOPZUfXLsedSC6L3WYkgO1VGBXUlW05QU+/NfTSS7HvLbP+AZ6w YLYicp0P8p2q2NmqOeUz1kfVxj3taasPIV+7av0wf2x6e+YQ6OAfqjo7WuA00GDS EBOPkwt4lo4o/NgV0SKx1yf3CesDiV0MMkxRJy0/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/d0qA7hS6TCK+c+tJY8f5huj6BkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4ZTg2N2YzLTk0MzAtNGVjMi04YmUxLWM3NDA2YjEzN2UyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4UjANBgkqhkiG9w0BAQsFAAOCAQEAJr4Ve4qqH1BNmXXokUVCKbAh2C+q b4fdAUxkF1MGms0i0PJ+urqRSe4/w8fg0iSLqtwc1SvHSQFjojT3ySCiU9z7kqtd CCJZch2mXCnDd1uSD98tg+JxTsOrvAgIqtTRml7luRCCPK5C30J8tyJ/bIvbQJjq ku+dy5OTEGasJdXgAN8jGpoapUUdlWR06CXg4+b7ywdbrwMrtjlabJHfue68Kql2 i3YwFBHHmgHUgkKpdAqLUKbVyZABJDbpBmh3ed3+oWVXMRkJHhrBTy3X04uDsywz uO6p2nzObRLJYjgKya8K4KPnjDXuA1CoHpYXUPhJDeA90eeSDBQ26fyCEA== -----END CERTIFICATE-----Generated at Sun Jun 1 04:50:33 2025 by rpki-client