$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1a5f9bd-ede4-4387-85bf-7fdfd794a298.roa File: d1a5f9bd-ede4-4387-85bf-7fdfd794a298.roa (raw, json) Hash identifier: lBqkklAt75V3KzjdeqNDz0/+lm158nMsKG2LAPkVcXA= Subject key identifier: A5:10:BD:E1:42:77:00:DD:D5:71:80:47:7D:3E:99:76:7D:48:FB:35 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36E4093FF7CCC65A7DD85B086A06487DDADC9F06 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1a5f9bd-ede4-4387-85bf-7fdfd794a298.roa Signing time: Tue 20 May 2025 00:51:04 +0000 ROA not before: Tue 20 May 2025 00:51:04 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.26.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:e4:09:3f:f7:cc:c6:5a:7d:d8:5b:08:6a:06:48:7d:da:dc:9f:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:51:04 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=498c2a0f3df6752b1dac8a9572d4035cca60fa5a6af2ff6ce571d0d81478a5ab, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6d:1c:a2:4c:49:5d:e3:fd:21:23:2a:40:39: 8e:f5:91:c5:1a:91:f6:db:d7:65:7f:fd:d0:72:5f: 9a:b3:5a:22:c2:f4:b3:12:1b:d3:23:0d:17:16:64: 85:5b:4d:40:20:63:4a:33:43:07:22:9f:80:36:3d: fd:9d:4f:8d:34:45:a1:a6:4b:e8:ef:d6:5f:91:5e: fb:51:9a:f5:56:a8:22:20:ef:c9:4c:65:e4:af:68: 5b:78:c6:e4:13:5e:f8:d1:26:3c:92:da:65:d9:c6: 7b:5a:63:f8:5f:38:ab:fa:5d:d3:d1:91:a8:e2:8e: f5:5c:37:e8:df:02:f3:91:84:17:ab:5b:41:dc:91: eb:19:5e:bf:2b:f8:77:86:f4:4a:fb:61:cc:b5:21: c1:08:6a:d2:f6:71:bc:e9:6a:35:b8:13:1c:dc:fc: 44:80:69:3c:c8:71:36:94:39:95:62:4e:17:86:9e: 33:c2:39:c2:89:51:33:d8:fd:61:5c:4c:e5:aa:7d: 3a:f4:53:ac:ff:69:03:0c:ab:8f:f0:9d:60:04:e9: 29:44:48:6e:86:f2:db:b3:74:11:ae:8c:12:5f:57: dc:e7:16:5d:4d:f1:32:93:14:28:ab:be:33:5c:ee: 91:84:e1:66:f8:4c:bf:55:c6:33:61:45:60:78:29: 27:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:10:BD:E1:42:77:00:DD:D5:71:80:47:7D:3E:99:76:7D:48:FB:35 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1a5f9bd-ede4-4387-85bf-7fdfd794a298.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.26.0.0/16 Signature Algorithm: sha256WithRSAEncryption cd:b0:dc:1c:3d:80:35:48:e9:67:9f:bc:5f:0f:7e:15:09:c3: 89:22:4f:23:71:54:cd:b5:ec:f2:e5:b2:a4:6b:34:14:b3:2c: ee:50:5c:e7:17:90:bd:57:a1:9b:ef:8a:35:8d:73:8d:dc:7a: fa:c3:f2:1c:66:9c:69:56:0e:90:ad:ff:0a:5c:3f:35:bc:35: e9:b9:ab:4e:3d:a4:4d:35:5c:03:25:bd:77:30:be:ae:2d:ce: df:37:3f:79:62:8a:29:3f:97:b8:c7:8b:d3:c1:46:a7:0e:dc: 93:ec:ba:50:d3:ee:5d:41:9d:ee:11:fa:1c:f7:32:8f:00:bf: 74:27:a3:8c:f4:f4:5b:12:48:59:70:8c:11:20:57:9a:a9:f4: d9:88:0d:02:c5:29:8f:e4:ed:77:03:e0:21:02:36:ce:02:88: c6:40:c2:7a:27:ca:ea:17:95:4f:8e:0a:09:34:87:cd:64:f4: 92:4a:2b:c6:60:b7:3c:fe:b4:1a:55:a8:18:84:06:5b:ff:ac: 9f:dc:12:db:f8:ca:1d:dc:01:aa:78:07:c3:37:90:b0:73:44: df:a4:b8:3b:2f:a7:1d:cb:f3:8b:41:97:14:c0:5e:f9:6b:a1: de:eb:2e:eb:06:e0:3e:7f:40:13:d7:31:d3:74:70:65:7d:88: 4c:79:fb:b9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNuQJP/fMxlp92FsIagZIfdrcnwYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDA1MTA0WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OThjMmEwZjNkZjY3NTJiMWRhYzhhOTU3MmQ0MDM1Y2Nh NjBmYTVhNmFmMmZmNmNlNTcxZDBkODE0NzhhNWFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdbRyiTEld4/0hIypAOY71kcUakfbb12V//dByX5qzWiLC 9LMSG9MjDRcWZIVbTUAgY0ozQwcin4A2Pf2dT400RaGmS+jv1l+RXvtRmvVWqCIg 78lMZeSvaFt4xuQTXvjRJjyS2mXZxntaY/hfOKv6XdPRkajijvVcN+jfAvORhBer W0HckesZXr8r+HeG9Er7Ycy1IcEIatL2cbzpajW4Exzc/ESAaTzIcTaUOZViTheG njPCOcKJUTPY/WFcTOWqfTr0U6z/aQMMq4/wnWAE6SlESG6G8tuzdBGujBJfV9zn Fl1N8TKTFCirvjNc7pGE4Wb4TL9VxjNhRWB4KSdLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUpRC94UJ3AN3VcYBHfT6Zdn1I+zUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QxYTVmOWJkLWVkZTQtNDM4Ny04NWJmLTdmZGZkNzk0YTI5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2GjANBgkqhkiG9w0BAQsFAAOCAQEAzbDcHD2ANUjpZ5+8Xw9+FQnDiSJP I3FUzbXs8uWypGs0FLMs7lBc5xeQvVehm++KNY1zjdx6+sPyHGacaVYOkK3/Clw/ Nbw16bmrTj2kTTVcAyW9dzC+ri3O3zc/eWKKKT+XuMeL08FGpw7ck+y6UNPuXUGd 7hH6HPcyjwC/dCejjPT0WxJIWXCMESBXmqn02YgNAsUpj+TtdwPgIQI2zgKIxkDC eifK6heVT44KCTSHzWT0kkorxmC3PP60GlWoGIQGW/+sn9wS2/jKHdwBqngHwzeQ sHNE36S4Oy+nHcvzi0GXFMBe+Wuh3usu6wbgPn9AE9cx03RwZX2ITHn7uQ== -----END CERTIFICATE-----Generated at Mon Jun 2 16:56:50 2025 by rpki-client