$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85e2573-73cc-4d70-be6b-4b61dd0f34b7.roa File: e85e2573-73cc-4d70-be6b-4b61dd0f34b7.roa (raw, json) Hash identifier: 7wILELdGlzwDS/j5SZP6KrMN8hU27HzYt8YzlodlZzs= Subject key identifier: 95:EE:0C:19:BD:C3:DB:10:46:9E:88:DB:D3:F3:11:92:1A:11:0B:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 562125051C4C4A165B458630F4643E42BA001939 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85e2573-73cc-4d70-be6b-4b61dd0f34b7.roa Signing time: Fri 30 May 2025 00:31:35 +0000 ROA not before: Fri 30 May 2025 00:31:35 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 68.217.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:21:25:05:1c:4c:4a:16:5b:45:86:30:f4:64:3e:42:ba:00:19:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:31:35 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=6433ff03e3298e08d7b6554ea1978c7932d4a0f72bb6ec9000b9353da7620a6b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:b8:02:b0:70:6c:3d:e7:9b:a5:91:01:6d:22: 4a:d5:04:ee:14:6e:7c:3d:ec:03:f0:83:bb:57:96: 5e:a5:5e:b4:ea:9d:0a:38:72:3a:5c:9a:70:fe:c2: 58:8d:cd:b2:58:52:51:6a:86:51:16:de:c2:77:6e: b5:4d:89:1f:2e:70:1f:9d:4e:ff:c7:e9:06:6d:05: a3:49:dc:ad:37:f6:b8:4a:c6:3f:0c:25:ba:bc:ef: 5e:63:16:ef:d7:64:64:f7:f9:2f:91:6e:60:23:1d: ed:ec:65:de:53:21:44:a2:81:08:19:50:8b:29:dc: 5e:cc:a4:c4:ab:31:a5:fc:53:83:9d:45:99:3f:e9: 29:c9:c1:c5:9f:27:12:e1:89:88:2d:57:2c:3a:12: a6:b5:63:4b:4b:24:83:ba:97:93:47:bb:66:4d:38: c7:bd:ed:39:45:b0:14:ae:68:1a:1f:fe:0b:5e:9f: fe:ae:08:e2:3a:af:d4:86:39:4c:f6:af:3d:34:bd: a6:06:3b:cc:58:1b:fb:b1:1a:a5:d5:b6:75:87:bc: e3:28:c5:81:07:b2:e9:84:5b:17:01:54:20:d1:07: 07:02:70:be:68:c7:d6:57:7c:9e:00:17:ba:c5:71: ad:ba:16:ce:96:1b:d0:15:22:73:f2:8e:ff:87:f8: 79:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:EE:0C:19:BD:C3:DB:10:46:9E:88:DB:D3:F3:11:92:1A:11:0B:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e85e2573-73cc-4d70-be6b-4b61dd0f34b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 68.217.0.0/16 Signature Algorithm: sha256WithRSAEncryption 08:a2:84:4b:4e:21:1c:5e:b0:cd:d2:56:dc:fd:cc:d1:df:3e: 61:dc:0f:f1:bf:80:80:34:f3:44:4d:17:b1:16:7c:79:1b:66: d8:3f:87:20:6a:a0:1b:b0:a3:10:bb:6d:77:0e:52:29:28:c9: c4:fd:5d:a0:d4:f5:df:9e:da:91:fa:bb:25:b6:6d:a6:13:4d: e5:1c:52:4b:e2:59:97:34:51:23:62:e9:44:23:cf:89:95:9e: 63:0b:4b:50:20:31:a9:d8:0b:fd:27:1e:99:f8:bb:71:b7:bb: 65:60:d5:69:42:db:ee:6e:04:52:d5:ac:44:40:2a:44:1f:af: 5b:d5:a4:be:9f:0c:f8:c3:e9:32:05:9b:e5:ff:d3:ca:a6:7a: 98:86:00:54:e8:8a:56:56:ee:8c:a3:62:e6:29:87:5d:53:a4: 80:7e:d3:a0:00:0b:78:d6:c5:41:b3:ed:f9:85:51:e3:a3:18: bf:cb:9e:5e:49:8a:9f:af:32:ea:41:7f:b5:98:f6:bb:98:6d: 6d:cf:75:52:4d:8f:20:da:a7:27:5a:89:24:25:d5:cf:18:44: 80:3b:f2:39:7e:84:b7:6c:c9:66:3d:0d:b6:c4:75:3f:4e:53: c7:0b:41:a8:ab:dd:d5:dc:9a:c5:23:7c:7f:e4:04:7e:2a:f5: 30:00:d5:8d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUViElBRxMShZbRYYw9GQ+QroAGTkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAzMTM1WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDMzZmYwM2UzMjk4ZTA4ZDdiNjU1NGVhMTk3OGM3OTMy ZDRhMGY3MmJiNmVjOTAwMGI5MzUzZGE3NjIwYTZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTuAKwcGw955ulkQFtIkrVBO4Ubnw97APwg7tXll6lXrTq nQo4cjpcmnD+wliNzbJYUlFqhlEW3sJ3brVNiR8ucB+dTv/H6QZtBaNJ3K039rhK xj8MJbq8715jFu/XZGT3+S+RbmAjHe3sZd5TIUSigQgZUIsp3F7MpMSrMaX8U4Od RZk/6SnJwcWfJxLhiYgtVyw6Eqa1Y0tLJIO6l5NHu2ZNOMe97TlFsBSuaBof/gte n/6uCOI6r9SGOUz2rz00vaYGO8xYG/uxGqXVtnWHvOMoxYEHsumEWxcBVCDRBwcC cL5ox9ZXfJ4AF7rFca26Fs6WG9AVInPyjv+H+HljAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUle4MGb3D2xBGnojb0/MRkhoRC08wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4NWUyNTczLTczY2MtNGQ3MC1iZTZiLTRiNjFkZDBmMzRiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBE2TANBgkqhkiG9w0BAQsFAAOCAQEACKKES04hHF6wzdJW3P3M0d8+YdwP 8b+AgDTzRE0XsRZ8eRtm2D+HIGqgG7CjELttdw5SKSjJxP1doNT1357akfq7JbZt phNN5RxSS+JZlzRRI2LpRCPPiZWeYwtLUCAxqdgL/Scemfi7cbe7ZWDVaULb7m4E UtWsREAqRB+vW9Wkvp8M+MPpMgWb5f/TyqZ6mIYAVOiKVlbujKNi5imHXVOkgH7T oAALeNbFQbPt+YVR46MYv8ueXkmKn68y6kF/tZj2u5htbc91Uk2PINqnJ1qJJCXV zxhEgDvyOX6Et2zJZj0NtsR1P05TxwtBqKvd1dyaxSN8f+QEfir1MADVjQ== -----END CERTIFICATE-----Generated at Sun Jun 1 04:47:01 2025 by rpki-client