$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2587f55-6fda-4e04-9968-9e4e95d6fce3.roa File: d2587f55-6fda-4e04-9968-9e4e95d6fce3.roa (raw, json) Hash identifier: JeFmdcfm0Hf2dkz3UJWom99zeurEgBBy7TF9jO17WHk= Subject key identifier: E9:0C:DC:49:0A:7E:D4:A6:22:0D:1C:6F:7A:37:16:6D:D5:86:76:19 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0EA1AAFF8FE0C599849FA8A502182AE7E85264EB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2587f55-6fda-4e04-9968-9e4e95d6fce3.roa Signing time: Wed 28 May 2025 00:02:12 +0000 ROA not before: Wed 28 May 2025 00:02:12 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 158.56.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:a1:aa:ff:8f:e0:c5:99:84:9f:a8:a5:02:18:2a:e7:e8:52:64:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:02:12 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=f51994e77b5cdacf91e41f02f06b6a0ec727297093d65594e4cda186448bbe33, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f0:d4:7f:80:f7:dc:5d:3d:58:f3:e3:10:7c: e0:72:df:04:c1:5b:ee:35:cd:08:64:c3:62:b5:6c: bc:b5:ef:0c:4e:2a:8f:3b:cb:9c:b1:71:17:8d:38: 2e:d7:66:f3:81:d3:a5:9d:05:92:a0:50:67:9b:58: 80:20:57:1b:c7:42:62:98:89:2c:6b:14:be:b4:86: d1:43:b8:69:2a:de:30:7b:e0:5e:19:dd:ba:23:02: 9e:e9:5d:8b:2d:40:9b:ae:ab:a1:19:b1:47:44:aa: f5:ba:65:93:e6:a5:2a:15:b9:74:c9:13:38:63:fd: 3e:22:db:31:43:11:75:d4:53:c4:cf:9a:df:6e:2f: 3e:0c:30:fb:03:52:0a:4d:e3:9a:e6:26:d0:2f:98: f6:aa:e9:fb:17:ce:c6:4f:56:f6:c6:ac:74:fc:4f: a3:cc:a7:5d:1b:b3:f4:4d:19:df:c3:78:bd:91:2a: 1b:ff:8f:b6:4d:47:16:51:4f:27:12:9a:76:c4:58: ad:8d:e2:c2:26:37:ff:06:75:e2:42:b5:e0:e8:ef: 14:8b:b7:23:9f:fa:a2:24:58:ad:c2:2f:25:f7:ca: 2f:cb:b0:e7:35:bc:00:c6:39:a2:ad:be:ce:6f:d1: e2:a7:02:f8:ef:e9:8b:a9:88:b4:c6:3b:43:3c:35: 42:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:0C:DC:49:0A:7E:D4:A6:22:0D:1C:6F:7A:37:16:6D:D5:86:76:19 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2587f55-6fda-4e04-9968-9e4e95d6fce3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.56.0.0/16 Signature Algorithm: sha256WithRSAEncryption 25:26:45:d2:d9:d6:9c:6c:66:c8:1d:c7:82:a6:36:bc:28:3a: e3:5d:58:d4:fc:02:eb:e5:dd:40:68:8b:8e:96:7d:c9:93:c2: 7c:f6:b2:e9:66:cf:aa:52:1a:e0:54:0b:bc:0a:eb:58:8d:e8: e6:09:ef:e6:e9:b7:c9:fe:f2:34:03:12:42:99:32:ba:51:46: 24:c7:88:9a:28:ce:c2:9c:45:00:84:6a:70:a0:83:ee:21:57: e3:a0:b5:db:e2:f0:0b:89:03:8d:a3:f9:c2:00:c0:a6:b9:b2: 41:52:6b:0c:d8:84:42:5a:e0:29:1c:07:92:80:46:6e:07:bb: 1e:7b:ef:11:12:43:0c:f8:80:15:45:c4:36:0b:fd:3c:b3:63: e3:00:dc:a0:09:4b:82:f6:aa:c3:7f:ac:5d:99:97:69:d4:46: a6:97:95:0d:76:93:6a:04:42:46:e1:53:87:b3:6a:3a:bd:bb: b8:be:9d:15:ca:c1:0a:63:dc:b8:14:0c:bf:ec:3b:07:07:73: 2d:12:e4:31:9a:65:31:98:66:82:37:90:e5:f4:5a:88:bc:19: 53:29:c8:c7:d8:fa:f2:cc:2a:2a:3b:3b:56:fb:38:34:ee:37: 30:ff:cd:a6:96:c1:d2:8b:ce:c7:cb:b7:ce:03:cd:02:1e:f3: bb:c7:30:92 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDqGq/4/gxZmEn6ilAhgq5+hSZOswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAwMjEyWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNTE5OTRlNzdiNWNkYWNmOTFlNDFmMDJmMDZiNmEwZWM3 MjcyOTcwOTNkNjU1OTRlNGNkYTE4NjQ0OGJiZTMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCb8NR/gPfcXT1Y8+MQfOBy3wTBW+41zQhkw2K1bLy17wxO Ko87y5yxcReNOC7XZvOB06WdBZKgUGebWIAgVxvHQmKYiSxrFL60htFDuGkq3jB7 4F4Z3bojAp7pXYstQJuuq6EZsUdEqvW6ZZPmpSoVuXTJEzhj/T4i2zFDEXXUU8TP mt9uLz4MMPsDUgpN45rmJtAvmPaq6fsXzsZPVvbGrHT8T6PMp10bs/RNGd/DeL2R Khv/j7ZNRxZRTycSmnbEWK2N4sImN/8GdeJCteDo7xSLtyOf+qIkWK3CLyX3yi/L sOc1vADGOaKtvs5v0eKnAvjv6YupiLTGO0M8NUKLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6QzcSQp+1KYiDRxvejcWbdWGdhkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyNTg3ZjU1LTZmZGEtNGUwNC05OTY4LTllNGU5NWQ2ZmNlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCeODANBgkqhkiG9w0BAQsFAAOCAQEAJSZF0tnWnGxmyB3HgqY2vCg6411Y 1PwC6+XdQGiLjpZ9yZPCfPay6WbPqlIa4FQLvArrWI3o5gnv5um3yf7yNAMSQpky ulFGJMeImijOwpxFAIRqcKCD7iFX46C12+LwC4kDjaP5wgDAprmyQVJrDNiEQlrg KRwHkoBGbge7HnvvERJDDPiAFUXENgv9PLNj4wDcoAlLgvaqw3+sXZmXadRGppeV DXaTagRCRuFTh7NqOr27uL6dFcrBCmPcuBQMv+w7BwdzLRLkMZplMZhmgjeQ5fRa iLwZUynIx9j68swqKjs7Vvs4NO43MP/NppbB0ovOx8u3zgPNAh7zu8cwkg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:24:19 2025 by rpki-client