$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d552e3dc-88c8-4d6e-8825-3635c23da3fd.roa File: d552e3dc-88c8-4d6e-8825-3635c23da3fd.roa (raw, json) Hash identifier: 4ffCGWJcijy93WsJLmoXfx0mNlCSvWvxHT7GhCIA3WY= Subject key identifier: 29:A7:C8:C6:31:23:60:12:92:57:3D:78:54:D8:64:15:82:04:6E:0C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5DCB2C2A1570E7A4433D500644259464D98B3515 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d552e3dc-88c8-4d6e-8825-3635c23da3fd.roa Signing time: Fri 30 May 2025 00:00:33 +0000 ROA not before: Fri 30 May 2025 00:00:33 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 148.154.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:cb:2c:2a:15:70:e7:a4:43:3d:50:06:44:25:94:64:d9:8b:35:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:00:33 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=ce9bc971ddf1364c27fb12b243f9a54ee0080537b21e94ac7e36d26141856a92, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1f:dc:ba:d5:ad:24:9d:b2:96:10:c4:eb:da: c9:9b:15:e2:fc:5b:9f:92:2b:97:23:35:f3:17:10: 4e:ee:97:f1:f2:13:82:3a:06:3c:e8:83:2c:d6:b4: dd:4d:2b:15:82:28:93:30:99:19:6a:b7:f2:70:27: 65:75:dd:42:7c:3c:64:93:5a:52:ed:97:58:d3:dc: a0:c7:b7:41:4c:0c:27:2a:14:e2:0b:38:4e:2f:1c: 69:41:2f:f2:37:ba:e5:cb:62:76:5b:93:33:e0:fc: 59:55:c7:30:df:8e:0e:f8:ae:75:22:f0:03:46:c6: 25:84:cd:e4:66:be:65:92:7f:b7:10:fd:0f:ab:a0: b0:24:ad:13:92:42:43:21:67:63:b9:a2:10:c1:dd: 52:12:0c:a9:af:b4:5d:6d:19:fb:ca:fa:6d:b7:68: 45:88:7a:32:1d:c2:e6:dc:e5:5d:2e:51:79:ec:eb: 5f:43:5b:af:e3:c3:69:00:6f:0c:f6:03:0e:cc:ec: 2b:44:48:26:bc:bc:41:cd:ef:c3:bd:24:63:13:50: 4d:7c:69:ba:39:b4:f3:5f:60:3d:75:19:80:c6:4f: f9:05:ce:56:5d:8a:73:62:8b:a1:9f:69:3d:09:e4: 43:ab:56:94:7f:62:ab:bc:d0:53:4b:a3:a1:ae:bc: 56:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:A7:C8:C6:31:23:60:12:92:57:3D:78:54:D8:64:15:82:04:6E:0C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d552e3dc-88c8-4d6e-8825-3635c23da3fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 148.154.0.0/16 Signature Algorithm: sha256WithRSAEncryption d0:97:71:a2:d0:f1:14:17:64:83:62:ed:df:58:69:b8:66:77: 66:86:de:18:3c:f5:3b:88:45:55:09:46:71:45:f8:1b:a6:15: 21:08:1f:fe:c3:bf:09:c1:57:e9:4f:fd:0c:6b:bd:d0:df:10: d0:c7:67:8f:d0:07:4e:59:0c:8e:3c:68:fa:f8:44:b0:df:ed: b8:44:a6:a5:d3:eb:2b:41:e1:0b:b8:34:a3:1d:95:3f:53:d4: 0f:38:ff:2f:cc:56:e3:b3:e1:92:24:4e:a2:e4:1a:72:8d:05: d5:b7:f1:c7:6b:f2:eb:0c:e8:08:18:b8:59:f0:8d:94:a8:23: c5:b5:c7:ae:62:93:50:ba:0d:cb:f1:d4:e2:08:6f:9a:c7:13: 03:e9:8d:e7:6b:f3:34:89:9e:81:85:53:b4:c6:04:71:ff:79: 24:a8:26:66:06:4e:a0:c3:b0:0d:b7:dc:ec:9d:4d:3d:11:8d: aa:29:9b:e0:31:a1:4b:3f:95:20:aa:f9:c9:25:89:17:41:7e: 1d:97:67:cd:b8:73:bd:f5:ca:4b:e8:31:20:b3:34:e7:05:bc: bf:8f:ca:52:34:17:96:b8:67:55:8f:95:da:1b:88:05:c0:3a: ca:a1:45:eb:d3:86:18:13:88:0a:ab:5b:44:51:4a:25:c4:86: a1:72:d9:38 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXcssKhVw56RDPVAGRCWUZNmLNRUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAwMDMzWhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTliYzk3MWRkZjEzNjRjMjdmYjEyYjI0M2Y5YTU0ZWUw MDgwNTM3YjIxZTk0YWM3ZTM2ZDI2MTQxODU2YTkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7H9y61a0knbKWEMTr2smbFeL8W5+SK5cjNfMXEE7ul/Hy E4I6BjzogyzWtN1NKxWCKJMwmRlqt/JwJ2V13UJ8PGSTWlLtl1jT3KDHt0FMDCcq FOILOE4vHGlBL/I3uuXLYnZbkzPg/FlVxzDfjg74rnUi8ANGxiWEzeRmvmWSf7cQ /Q+roLAkrROSQkMhZ2O5ohDB3VISDKmvtF1tGfvK+m23aEWIejIdwubc5V0uUXns 619DW6/jw2kAbwz2Aw7M7CtESCa8vEHN78O9JGMTUE18abo5tPNfYD11GYDGT/kF zlZdinNii6GfaT0J5EOrVpR/Yqu80FNLo6GuvFYRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKafIxjEjYBKSVz14VNhkFYIEbgwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q1NTJlM2RjLTg4YzgtNGQ2ZS04ODI1LTM2MzVjMjNkYTNmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCUmjANBgkqhkiG9w0BAQsFAAOCAQEA0JdxotDxFBdkg2Lt31hpuGZ3Zobe GDz1O4hFVQlGcUX4G6YVIQgf/sO/CcFX6U/9DGu90N8Q0Mdnj9AHTlkMjjxo+vhE sN/tuESmpdPrK0HhC7g0ox2VP1PUDzj/L8xW47PhkiROouQaco0F1bfxx2vy6wzo CBi4WfCNlKgjxbXHrmKTULoNy/HU4ghvmscTA+mN52vzNImegYVTtMYEcf95JKgm ZgZOoMOwDbfc7J1NPRGNqimb4DGhSz+VIKr5ySWJF0F+HZdnzbhzvfXKS+gxILM0 5wW8v4/KUjQXlrhnVY+V2huIBcA6yqFF69OGGBOICqtbRFFKJcSGoXLZOA== -----END CERTIFICATE-----Generated at Sun Jun 1 04:29:25 2025 by rpki-client