$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0103940-c8dc-4a4c-aa6b-d83e680f8abf.roa File: f0103940-c8dc-4a4c-aa6b-d83e680f8abf.roa (raw, json) Hash identifier: 38sBOnwStqIOTMtL+FJWpJJLBRFyoHQtiyqyZ4q78rQ= Subject key identifier: B3:B6:F2:F3:0B:6D:3E:82:12:D0:33:08:07:E4:00:AD:62:54:CB:54 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D9C638AD5F02CC74D0C743C964805147863CC72 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0103940-c8dc-4a4c-aa6b-d83e680f8abf.roa Signing time: Tue 20 May 2025 15:20:32 +0000 ROA not before: Tue 20 May 2025 15:20:32 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 88.106.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:9c:63:8a:d5:f0:2c:c7:4d:0c:74:3c:96:48:05:14:78:63:cc:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 15:20:32 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=3f04f1788b715811cd97456a8c2e63ee9064eddc6607a0a3488b6935aceeaa94, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f9:e0:e3:2f:7c:37:94:88:ca:c9:57:25:51: da:6a:3e:da:d2:f0:d0:b2:81:66:14:58:7e:84:ce: b7:07:2b:18:10:10:66:24:d9:1c:05:26:2a:86:71: cf:47:a7:00:d8:f9:73:64:cd:26:81:89:fd:b5:a3: 8c:62:b8:23:64:a4:b8:37:60:4c:df:20:96:9b:11: d6:ee:c1:ee:e6:67:3a:e4:9a:3f:ef:c6:44:e2:81: 07:2f:0a:87:73:09:ec:1a:ca:5a:2c:47:95:d6:fb: e1:cf:18:8c:69:e2:a8:97:f2:8e:4b:56:d4:03:8e: 33:3b:30:1b:77:92:cd:d6:f9:1f:d2:77:d2:06:10: 89:74:0e:ae:52:b1:ff:b9:e8:19:a1:ae:e9:c0:fc: 49:69:3a:02:5f:cb:f2:5a:e2:25:be:b1:d4:0a:4e: d8:52:88:02:16:8c:79:79:fe:4d:69:b1:fb:aa:95: e6:bf:bf:19:2e:d8:58:d1:27:6c:e1:06:e7:77:38: ce:73:17:25:1f:bb:d0:43:f4:e2:e5:ad:3c:50:89: d4:8a:04:69:30:ae:55:8c:aa:ee:da:85:16:3f:76: d5:0d:36:58:31:0b:0f:11:03:9e:2d:7e:f8:0f:b4: a9:7c:87:b4:4f:6b:be:9f:1c:3d:10:ff:5d:54:f2: 99:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:B6:F2:F3:0B:6D:3E:82:12:D0:33:08:07:E4:00:AD:62:54:CB:54 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0103940-c8dc-4a4c-aa6b-d83e680f8abf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.106.0.0/15 Signature Algorithm: sha256WithRSAEncryption a6:ae:55:fa:ba:31:cb:e9:12:54:4d:1e:e9:34:59:bc:fe:e7: 70:89:62:8f:51:c2:bd:e7:3d:f0:1f:9a:71:d8:8a:3b:ce:a2: c2:09:c0:8e:a0:f0:a8:89:4d:e0:5c:27:87:5c:a3:71:24:6a: 0e:8b:e0:3c:5b:55:9a:e4:9a:8e:70:7e:16:c5:16:89:74:0f: 9f:fa:04:16:82:40:1b:46:a1:7e:9b:30:df:34:40:77:fd:b7: 90:e6:68:ae:bb:9c:b1:ce:69:43:41:e4:c6:a7:e1:9b:20:f7: 91:e5:cc:4f:d8:c8:0f:76:a7:fc:18:e0:99:32:cf:d2:9e:05: cb:4e:63:0b:59:cd:b8:a8:ac:4e:17:29:46:e0:65:a7:9b:cc: d2:9b:18:f5:56:5b:57:e0:58:84:22:28:17:b3:fe:a3:99:84: cf:9b:01:43:9e:ef:7c:64:82:2b:b7:71:b0:5c:fa:0f:62:78: 22:ee:55:7a:df:38:25:52:4f:40:9f:19:5d:d3:ce:5d:6a:35: 34:26:9e:e5:f3:fb:c5:a0:b5:4e:6c:f5:a7:8b:9e:91:18:db: 1f:92:29:6d:66:55:42:89:a4:68:fd:c2:ca:f5:0b:50:28:01: d0:04:27:a3:d1:e7:fc:03:d6:2f:e2:95:a7:b5:08:93:13:31: 47:e0:68:ff -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHZxjitXwLMdNDHQ8lkgFFHhjzHIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMTUyMDMyWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjA0ZjE3ODhiNzE1ODExY2Q5NzQ1NmE4YzJlNjNlZTkw NjRlZGRjNjYwN2EwYTM0ODhiNjkzNWFjZWVhYTk0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl+eDjL3w3lIjKyVclUdpqPtrS8NCygWYUWH6EzrcHKxgQ EGYk2RwFJiqGcc9HpwDY+XNkzSaBif21o4xiuCNkpLg3YEzfIJabEdbuwe7mZzrk mj/vxkTigQcvCodzCewaylosR5XW++HPGIxp4qiX8o5LVtQDjjM7MBt3ks3W+R/S d9IGEIl0Dq5Ssf+56BmhrunA/ElpOgJfy/Ja4iW+sdQKTthSiAIWjHl5/k1psfuq lea/vxku2FjRJ2zhBud3OM5zFyUfu9BD9OLlrTxQidSKBGkwrlWMqu7ahRY/dtUN NlgxCw8RA54tfvgPtKl8h7RPa76fHD0Q/11U8plfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUs7by8wttPoIS0DMIB+QArWJUy1QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YwMTAzOTQwLWM4ZGMtNGE0Yy1hYTZiLWQ4M2U2ODBmOGFiZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFYajANBgkqhkiG9w0BAQsFAAOCAQEApq5V+roxy+kSVE0e6TRZvP7ncIli j1HCvec98B+acdiKO86iwgnAjqDwqIlN4Fwnh1yjcSRqDovgPFtVmuSajnB+FsUW iXQPn/oEFoJAG0ahfpsw3zRAd/23kOZorrucsc5pQ0HkxqfhmyD3keXMT9jID3an /BjgmTLP0p4Fy05jC1nNuKisThcpRuBlp5vM0psY9VZbV+BYhCIoF7P+o5mEz5sB Q57vfGSCK7dxsFz6D2J4Iu5Vet84JVJPQJ8ZXdPOXWo1NCae5fP7xaC1Tmz1p4ue kRjbH5IpbWZVQomkaP3CyvULUCgB0AQno9Hn/APWL+KVp7UIkxMxR+Bo/w== -----END CERTIFICATE-----Generated at Sun Jun 1 04:25:10 2025 by rpki-client