$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee072b22-d511-4e36-bf63-9dea3fed9955.roa File: ee072b22-d511-4e36-bf63-9dea3fed9955.roa (raw, json) Hash identifier: cnoVJZeYzv3zF7mdS4WMDgry7aGTWlqa8udmDiTdmzU= Subject key identifier: D4:00:0A:7B:2D:9E:78:16:E3:B0:D7:11:6B:91:E8:6B:13:A1:23:C9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A7443FD73CEF995E3D4A7A530680EBE442D5580 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee072b22-d511-4e36-bf63-9dea3fed9955.roa Signing time: Fri 23 May 2025 00:22:19 +0000 ROA not before: Fri 23 May 2025 00:22:19 +0000 ROA not after: Fri 27 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.40.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:74:43:fd:73:ce:f9:95:e3:d4:a7:a5:30:68:0e:be:44:2d:55:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 23 00:22:19 2025 GMT Not After : Jun 27 23:59:59 2025 GMT Subject: serialNumber=b6e7fb5de80a87e650f93bef6859121716e24a2b138561f465afbc2beede73aa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:66:e5:55:1f:9b:a1:de:ad:8d:29:1a:3d:94: c5:31:40:d6:0f:94:f9:53:82:27:16:17:09:72:7b: f5:b9:e2:a8:c8:6c:a1:13:c8:ee:5f:48:2a:18:40: 8c:ef:73:99:62:3d:75:be:66:f6:51:48:77:02:32: 78:ad:b7:08:4c:75:f3:48:60:8c:66:d0:92:70:38: f1:df:c9:f3:77:4b:3d:c7:4f:38:ce:68:50:94:9e: be:0b:98:62:82:31:27:e6:3b:36:ff:02:6c:e5:d8: 4e:36:84:e8:aa:9c:bc:15:36:ce:69:95:68:70:25: 71:23:78:7c:05:65:f2:c7:48:8e:35:f6:90:f9:39: 30:e2:e3:64:97:fe:2a:22:b2:ab:0a:69:e6:ab:fb: ca:5e:c7:81:6c:a8:82:07:c0:da:3e:50:fc:2c:fc: 42:9f:3e:d8:f9:62:0a:ac:78:00:cc:15:ce:51:19: a2:82:8a:85:21:94:26:09:d0:77:b0:98:35:11:77: 63:d7:f9:45:c9:63:90:47:a8:03:e9:5d:31:66:d0: f0:9a:09:47:f4:11:44:2a:bc:e0:99:c2:48:b5:b0: 10:e9:c5:25:4f:79:00:22:5c:21:c9:e6:33:37:4b: da:60:0d:18:b8:b9:55:62:77:02:6a:0f:66:c7:67: 5b:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:00:0A:7B:2D:9E:78:16:E3:B0:D7:11:6B:91:E8:6B:13:A1:23:C9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ee072b22-d511-4e36-bf63-9dea3fed9955.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.40.0.0/16 Signature Algorithm: sha256WithRSAEncryption be:58:76:a9:54:79:c4:56:e5:ff:a2:92:67:27:f1:93:8f:e5: f9:ce:a0:41:a6:7f:03:81:d3:25:1a:77:5c:8c:bc:70:3e:05: 86:f2:9a:81:36:e8:c5:9f:aa:c0:fc:4b:46:b9:3e:30:be:88: 47:cd:5e:cf:ea:a9:7b:6e:f9:6e:1c:24:7f:a5:e9:de:04:1e: f3:3e:d6:5e:57:a5:4b:da:f2:42:bf:c0:18:bc:c1:f6:30:2b: 89:f1:f9:b2:87:94:da:69:a7:64:d9:a3:e9:b2:23:19:96:92: 58:62:2a:20:65:56:11:f9:a5:0e:0e:5a:97:bc:5b:b5:57:c7: 46:d0:10:86:8a:a5:17:ac:e1:0a:2b:fa:cc:c7:ba:37:2c:f7: c7:cd:19:e3:5d:27:e7:3e:6b:6b:c3:e7:ac:47:ad:70:d5:e4: 44:42:73:c6:6f:7e:33:c3:d0:61:c1:b8:1c:b3:2a:6a:ad:5b: 18:6c:1c:96:bf:13:d7:30:59:7f:56:d0:ff:a2:9a:a1:54:e7: d2:eb:ec:48:f5:94:09:1c:57:15:d9:74:07:9b:e0:ea:72:84: f0:b5:28:7b:54:6d:8a:8d:39:8f:14:ac:89:ee:43:cf:c4:a4: c6:95:c2:1e:8e:2d:1a:2c:d7:2d:83:ec:d0:f9:7a:2b:dc:e9: fc:3c:83:fb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOnRD/XPO+ZXj1KelMGgOvkQtVYAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIzMDAyMjE5WhcNMjUwNjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNmU3ZmI1ZGU4MGE4N2U2NTBmOTNiZWY2ODU5MTIxNzE2 ZTI0YTJiMTM4NTYxZjQ2NWFmYmMyYmVlZGU3M2FhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXZuVVH5uh3q2NKRo9lMUxQNYPlPlTgicWFwlye/W54qjI bKETyO5fSCoYQIzvc5liPXW+ZvZRSHcCMnittwhMdfNIYIxm0JJwOPHfyfN3Sz3H TzjOaFCUnr4LmGKCMSfmOzb/Amzl2E42hOiqnLwVNs5plWhwJXEjeHwFZfLHSI41 9pD5OTDi42SX/ioisqsKaear+8pex4FsqIIHwNo+UPws/EKfPtj5YgqseADMFc5R GaKCioUhlCYJ0HewmDURd2PX+UXJY5BHqAPpXTFm0PCaCUf0EUQqvOCZwki1sBDp xSVPeQAiXCHJ5jM3S9pgDRi4uVVidwJqD2bHZ1vRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU1AAKey2eeBbjsNcRa5HoaxOhI8kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VlMDcyYjIyLWQ1MTEtNGUzNi1iZjYzLTlkZWEzZmVkOTk1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4KDANBgkqhkiG9w0BAQsFAAOCAQEAvlh2qVR5xFbl/6KSZyfxk4/l+c6g QaZ/A4HTJRp3XIy8cD4FhvKagTboxZ+qwPxLRrk+ML6IR81ez+qpe275bhwkf6Xp 3gQe8z7WXlelS9ryQr/AGLzB9jArifH5soeU2mmnZNmj6bIjGZaSWGIqIGVWEfml Dg5al7xbtVfHRtAQhoqlF6zhCiv6zMe6Nyz3x80Z410n5z5ra8PnrEetcNXkREJz xm9+M8PQYcG4HLMqaq1bGGwclr8T1zBZf1bQ/6KaoVTn0uvsSPWUCRxXFdl0B5vg 6nKE8LUoe1Rtio05jxSsie5Dz8SkxpXCHo4tGizXLYPs0Pl6K9zp/DyD+w== -----END CERTIFICATE-----Generated at Sun Jun 1 04:56:21 2025 by rpki-client