$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa File: e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa (raw, json) Hash identifier: cI23hjHr9BlgHNh22TLoiGHngMsGw1Y863Zf21gBwu8= Subject key identifier: A8:56:C2:8E:57:4F:D5:1D:69:80:EA:16:09:9E:44:C3:10:F7:7E:DC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 636719C8EC06DD6C3CE2BC1E648E30DFFB1A61E8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa Signing time: Sat 24 May 2025 00:10:20 +0000 ROA not before: Sat 24 May 2025 00:10:20 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.41.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:67:19:c8:ec:06:dd:6c:3c:e2:bc:1e:64:8e:30:df:fb:1a:61:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 24 00:10:20 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=de6918b40c5909333dcced72e9aa0eb99d5a75a17d7b475210f31e6ae0bb8671, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:40:ba:8f:3b:9c:cc:0f:01:c7:3e:73:01:ed: 10:92:74:7c:cc:02:75:5d:12:5f:88:eb:21:42:9b: 5a:54:7e:d8:00:99:28:67:9d:c2:22:9a:3d:07:ea: b8:e4:44:60:43:82:f5:d0:aa:b1:f2:72:8a:52:93: 88:41:05:b3:46:c3:a6:fc:a0:20:b7:43:e3:c0:28: 3d:ce:bb:15:ae:7e:79:0b:5e:6d:f4:a4:a7:0b:22: 5f:a9:1f:ad:0e:5a:f3:56:1e:d5:77:3e:b0:8a:7e: 35:b7:9a:c1:b4:c6:aa:7b:43:72:d9:32:ed:d3:73: fe:3d:f3:f1:c5:2e:e7:68:0b:88:e4:f5:18:4d:96: 4e:d2:84:0c:80:1c:87:7e:0a:8e:31:df:45:8a:6f: 00:d4:f7:6b:8f:92:29:76:03:b5:d2:f0:f7:95:40: 8c:3a:f3:93:2d:06:9e:a5:f2:be:15:bd:37:b4:6c: 60:39:bf:a2:57:62:a9:15:6f:e5:8f:49:2f:0b:84: 2a:36:4b:87:f1:f1:f2:f0:a4:52:33:8a:e0:09:1f: 12:aa:66:41:f4:ac:39:55:ff:46:aa:17:db:96:e4: 19:85:1d:aa:eb:1a:34:65:f1:65:f6:0f:cc:ae:b4: cf:75:98:7d:4a:3c:86:56:cd:07:41:8a:98:da:61: 26:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:56:C2:8E:57:4F:D5:1D:69:80:EA:16:09:9E:44:C3:10:F7:7E:DC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.41.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2c:ff:4a:50:76:8e:2f:99:4b:c8:27:76:79:ea:da:80:b3:60: 22:56:cd:56:c2:ed:73:d2:3d:ad:1b:b9:60:bf:18:68:4d:58: 3f:b1:d8:fb:7e:5b:37:08:57:66:f7:cc:a3:99:fc:95:f5:bc: a4:1f:d7:ed:26:21:09:53:2b:f3:ac:64:93:de:af:cf:cf:45: 54:c4:fb:5f:65:1d:49:4d:ec:bb:73:d4:06:43:ef:ca:ac:90: c9:7c:87:ff:8f:5c:28:51:ec:e5:1d:fb:95:3e:47:7d:09:f1: f2:47:3c:27:2b:2e:7c:26:bc:0c:57:f0:c5:6e:e7:1e:5e:f1: aa:8e:9d:fa:ed:6d:96:04:49:b2:8f:da:22:7b:92:98:da:bf: af:2c:da:69:17:03:c7:85:2f:bb:1e:ed:45:01:15:7c:2e:14: ee:b0:88:af:bd:3b:6c:a3:4b:a1:e0:08:09:bf:7e:7d:7a:bf: f3:dd:49:20:c5:41:c5:f3:16:bc:e8:96:2c:0e:b8:48:5a:03: 02:e0:8b:e2:9b:31:4e:cf:19:b0:bf:9e:99:f5:e0:d4:c4:ba: d6:9e:2a:ed:31:4e:95:ed:a7:cb:e5:33:0d:42:ae:8b:55:48: b0:b9:d7:eb:18:14:2b:be:27:f1:44:12:1a:2c:9f:25:44:ce: 72:e7:86:3a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUY2cZyOwG3Ww84rweZI4w3/saYegwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI0MDAxMDIwWhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZTY5MThiNDBjNTkwOTMzM2RjY2VkNzJlOWFhMGViOTlk NWE3NWExN2Q3YjQ3NTIxMGYzMWU2YWUwYmI4NjcxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzQLqPO5zMDwHHPnMB7RCSdHzMAnVdEl+I6yFCm1pUftgA mShnncIimj0H6rjkRGBDgvXQqrHycopSk4hBBbNGw6b8oCC3Q+PAKD3OuxWufnkL Xm30pKcLIl+pH60OWvNWHtV3PrCKfjW3msG0xqp7Q3LZMu3Tc/498/HFLudoC4jk 9RhNlk7ShAyAHId+Co4x30WKbwDU92uPkil2A7XS8PeVQIw685MtBp6l8r4VvTe0 bGA5v6JXYqkVb+WPSS8LhCo2S4fx8fLwpFIziuAJHxKqZkH0rDlV/0aqF9uW5BmF HarrGjRl8WX2D8yutM91mH1KPIZWzQdBipjaYSahAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqFbCjldP1R1pgOoWCZ5EwxD3ftwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5OTgwMWViLTJhZDYtNDhlYS04ODI3LTBmMmFkYTA3YjBiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjKTANBgkqhkiG9w0BAQsFAAOCAQEALP9KUHaOL5lLyCd2eeragLNgIlbN VsLtc9I9rRu5YL8YaE1YP7HY+35bNwhXZvfMo5n8lfW8pB/X7SYhCVMr86xkk96v z89FVMT7X2UdSU3su3PUBkPvyqyQyXyH/49cKFHs5R37lT5HfQnx8kc8JysufCa8 DFfwxW7nHl7xqo6d+u1tlgRJso/aInuSmNq/ryzaaRcDx4Uvux7tRQEVfC4U7rCI r707bKNLoeAICb9+fXq/891JIMVBxfMWvOiWLA64SFoDAuCL4psxTs8ZsL+emfXg 1MS61p4q7TFOle2ny+UzDUKui1VIsLnX6xgUK74n8UQSGiyfJUTOcueGOg== -----END CERTIFICATE-----Generated at Sun Jun 1 05:06:36 2025 by rpki-client