$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eae82c23-ee5e-45d3-86ca-6380321381d0.roa File: eae82c23-ee5e-45d3-86ca-6380321381d0.roa (raw, json) Hash identifier: Di4kpWjxtqFmBzr/F97GcCSoT6vSrU0BNlzS0zX70MQ= Subject key identifier: DD:3C:97:E5:3B:8C:5E:F0:37:C5:D2:A6:E8:27:30:8D:A3:48:AE:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0EC6955A8A0A843233C404A07A298F107F4D05DF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eae82c23-ee5e-45d3-86ca-6380321381d0.roa Signing time: Mon 19 May 2025 17:10:51 +0000 ROA not before: Mon 19 May 2025 17:10:51 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 16.56.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:c6:95:5a:8a:0a:84:32:33:c4:04:a0:7a:29:8f:10:7f:4d:05:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 17:10:51 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=845f7a7b5a9bab7ff2023d81baffb5edd97d6e97b8f0ca813df0727b02455a4a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:51:51:30:be:73:9e:fe:eb:f5:de:43:95:df: 4d:8e:f2:89:44:6a:0d:25:ef:bc:8c:ba:61:5d:0a: 4a:d1:5d:49:54:e1:bd:af:bf:c3:c6:80:aa:d6:3e: e6:a8:a5:71:14:73:87:9f:7e:25:b2:0b:e8:2e:4f: 5b:c8:37:8d:7d:e8:42:ec:f9:c5:c5:7b:58:85:97: ee:d1:97:20:48:f9:87:e2:9c:0f:96:cd:f7:98:e9: 91:4b:3f:3e:90:e7:0f:20:5d:95:97:23:14:64:5e: 3b:ab:30:33:63:05:6d:9a:a8:f2:a4:3e:07:2a:37: 6e:26:9f:c1:0d:83:0b:5e:80:98:55:a5:19:5b:89: 33:36:0c:d0:08:d7:22:16:5b:93:c5:56:72:37:3b: 6b:84:b8:f4:62:4d:0a:bb:db:48:1b:5c:48:55:6e: bc:2a:2f:b5:0b:99:a2:50:8d:0a:c3:82:8b:0c:2f: a9:ae:58:41:76:3c:c2:ee:f3:d3:1e:c5:c8:ea:23: 1d:e4:b1:ba:e2:13:f9:77:ed:cf:58:ab:b7:cc:53: a0:3b:d5:de:2b:4a:ac:84:52:fb:52:d7:6d:1b:9f: 54:a1:d3:81:a5:b6:af:21:1a:53:6c:40:68:1a:70: 2b:fb:86:f6:9e:9f:8a:64:55:80:3a:32:2c:09:2e: a4:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:3C:97:E5:3B:8C:5E:F0:37:C5:D2:A6:E8:27:30:8D:A3:48:AE:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eae82c23-ee5e-45d3-86ca-6380321381d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.56.128.0/19 Signature Algorithm: sha256WithRSAEncryption b7:69:4b:ab:eb:6e:8b:5a:47:14:ec:b2:31:ef:f2:21:ce:51: 86:78:c5:78:91:7f:29:a2:ff:b0:67:65:b9:e7:58:e7:8c:46: ea:21:93:4c:6b:b4:d9:18:8d:cf:61:3f:8b:a2:e2:fa:11:27: dc:c7:09:77:f7:55:5c:df:29:35:50:92:6b:9c:4b:98:bd:f1: bb:eb:de:ea:c5:73:25:0a:2b:ee:c2:88:4f:8e:70:57:6f:36: d5:64:f2:fc:60:d6:f9:80:89:bd:09:79:fe:79:c8:1c:df:4b: ad:de:f4:7e:f3:f8:fd:6f:3f:d8:b4:29:fc:d9:09:61:3d:b7: 0e:c2:ac:8a:ba:79:d7:b9:f0:ae:51:58:63:d0:b5:65:69:66: 8d:58:87:39:cd:63:51:a0:03:9f:11:be:46:56:85:12:cb:20: 56:d1:57:f9:76:6d:8c:79:4a:f7:ec:ce:67:ce:67:f7:9d:ff: 1f:77:f7:18:da:ca:db:01:ae:47:68:92:99:d3:92:05:8c:23: 50:40:60:b4:e4:d7:fd:a6:a2:be:c2:e1:9b:3c:36:0c:97:8b: 9c:f8:c1:f3:ab:c7:7e:d9:13:7c:8b:9c:97:c0:f8:01:89:23: 67:94:c1:e4:de:99:d6:00:4a:17:2d:52:5c:7e:57:15:e9:2e: 50:1f:01:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDsaVWooKhDIzxASgeimPEH9NBd8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTcxMDUxWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NDVmN2E3YjVhOWJhYjdmZjIwMjNkODFiYWZmYjVlZGQ5 N2Q2ZTk3YjhmMGNhODEzZGYwNzI3YjAyNDU1YTRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqUVEwvnOe/uv13kOV302O8olEag0l77yMumFdCkrRXUlU 4b2vv8PGgKrWPuaopXEUc4effiWyC+guT1vIN4196ELs+cXFe1iFl+7RlyBI+Yfi nA+WzfeY6ZFLPz6Q5w8gXZWXIxRkXjurMDNjBW2aqPKkPgcqN24mn8ENgwtegJhV pRlbiTM2DNAI1yIWW5PFVnI3O2uEuPRiTQq720gbXEhVbrwqL7ULmaJQjQrDgosM L6muWEF2PMLu89MexcjqIx3ksbriE/l37c9Yq7fMU6A71d4rSqyEUvtS120bn1Sh 04Gltq8hGlNsQGgacCv7hvaen4pkVYA6MiwJLqS/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3TyX5TuMXvA3xdKm6CcwjaNIrokwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhZTgyYzIzLWVlNWUtNDVkMy04NmNhLTYzODAzMjEzODFkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUQOIAwDQYJKoZIhvcNAQELBQADggEBALdpS6vrbotaRxTssjHv8iHOUYZ4 xXiRfymi/7BnZbnnWOeMRuohk0xrtNkYjc9hP4ui4voRJ9zHCXf3VVzfKTVQkmuc S5i98bvr3urFcyUKK+7CiE+OcFdvNtVk8vxg1vmAib0Jef55yBzfS63e9H7z+P1v P9i0KfzZCWE9tw7CrIq6ede58K5RWGPQtWVpZo1YhznNY1GgA58RvkZWhRLLIFbR V/l2bYx5SvfszmfOZ/ed/x939xjaytsBrkdokpnTkgWMI1BAYLTk1/2mor7C4Zs8 NgyXi5z4wfOrx37ZE3yLnJfA+AGJI2eUweTemdYAShctUlx+VxXpLlAfAcM= -----END CERTIFICATE-----Generated at Sun Jun 1 04:57:13 2025 by rpki-client