$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0607a85-59d4-41f8-a27e-6ca35a850925.roa File: f0607a85-59d4-41f8-a27e-6ca35a850925.roa (raw, json) Hash identifier: ETxCvTlrs6ZKmgDbbmzJ7XEaYBPV1VemyVd61sKp0Uc= Subject key identifier: C6:00:4E:6E:CA:8D:7C:C8:E4:5D:87:EC:0D:6F:52:24:76:D8:30:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 50372B81947836A87FC744160D94EF6A83F75707 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0607a85-59d4-41f8-a27e-6ca35a850925.roa Signing time: Sat 10 May 2025 00:10:50 +0000 ROA not before: Sat 10 May 2025 00:10:50 +0000 ROA not after: Sat 14 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.139.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:37:2b:81:94:78:36:a8:7f:c7:44:16:0d:94:ef:6a:83:f7:57:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 10 00:10:50 2025 GMT Not After : Jun 14 23:59:59 2025 GMT Subject: serialNumber=6df4ee52698dcc77c6fd1a03aa961e28084cf1f9084164354054fbe82fa0fe0c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:74:a2:55:f4:24:c6:ac:6a:fe:0d:b7:58:6c: d1:56:02:e9:92:66:76:a5:ac:f1:44:6e:2f:79:0e: f2:f0:77:e6:2c:9a:c7:94:ca:01:b6:ea:74:2a:71: 6f:79:96:d7:d4:70:f2:91:18:d1:73:ef:67:17:26: b2:20:ad:d2:df:e6:54:95:06:12:58:63:a2:ce:53: 26:11:b1:16:3f:a4:04:b4:f5:c3:8a:ff:c5:c8:aa: b0:74:be:ec:11:b4:e5:a5:d8:31:0a:f9:f0:64:4f: 17:f2:f9:31:13:ae:cd:e7:8a:e1:8f:f8:ac:f4:3a: 61:58:41:11:8b:3c:64:bf:c7:32:1f:94:73:c6:af: cc:65:90:18:9e:ab:ee:10:f8:3f:b0:63:98:5b:7f: cf:e1:c9:1f:86:f8:41:af:0b:0b:34:25:4e:e2:3c: da:79:50:bf:8a:c4:e6:7f:c5:28:6e:c4:61:7d:af: 2d:0f:74:d6:03:2e:f0:7d:62:0d:67:92:b2:6c:b6: b8:b8:76:4d:bb:6e:1f:44:c4:98:0c:6f:0b:ef:57: 01:09:fc:0e:06:1c:2a:d1:42:11:27:03:24:7a:cb: 0f:5c:b6:d6:f5:7f:0b:26:79:98:9c:cd:e4:48:84: 3a:57:e9:cb:82:94:07:e4:f7:6c:6f:fc:ca:df:1e: d8:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:00:4E:6E:CA:8D:7C:C8:E4:5D:87:EC:0D:6F:52:24:76:D8:30:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0607a85-59d4-41f8-a27e-6ca35a850925.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.139.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9c:ae:de:cb:88:f5:dd:08:2d:73:b9:8b:fa:35:28:47:8b:20: 51:e4:de:8b:ba:3d:ed:70:66:5c:0d:36:b8:81:42:22:34:bf: ca:80:09:c5:be:55:80:11:d5:06:15:02:ec:5e:04:86:c0:32: 8b:8b:19:b4:8a:0a:91:4f:4c:a1:10:d3:25:31:04:ef:cf:ca: 47:42:d2:db:87:3c:90:c2:ea:37:b1:06:9b:b4:87:26:60:58: cc:2f:1d:cb:2c:25:1a:e1:25:80:65:27:7f:73:05:9c:f6:e4: 98:d1:43:48:48:3e:89:0c:9b:db:98:82:9e:7c:95:0d:a8:61: be:cb:60:9d:40:b0:70:89:5a:23:b5:63:c2:d5:9b:b0:b1:e1: ab:e9:d7:00:64:1f:e6:26:eb:77:90:25:d0:aa:2f:39:57:56: 67:9b:9f:8a:e8:16:7d:5f:4f:cc:62:4e:5f:a4:dd:26:e5:4d: 42:b8:19:70:33:f5:19:f9:79:57:74:02:46:b8:2c:c0:9f:8a: 97:d2:93:78:ff:8d:0b:c5:ab:10:c6:50:eb:29:28:6d:27:ab: b6:34:10:00:5b:50:a4:2d:e4:a2:63:63:b1:0e:be:6c:03:91: e3:e9:49:a6:84:49:93:f3:b4:ed:8c:d9:8c:c8:71:90:1a:c0: d7:3a:e5:61 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUDcrgZR4Nqh/x0QWDZTvaoP3VwcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTEwMDAxMDUwWhcNMjUwNjE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZGY0ZWU1MjY5OGRjYzc3YzZmZDFhMDNhYTk2MWUyODA4 NGNmMWY5MDg0MTY0MzU0MDU0ZmJlODJmYTBmZTBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKdKJV9CTGrGr+DbdYbNFWAumSZnalrPFEbi95DvLwd+Ys mseUygG26nQqcW95ltfUcPKRGNFz72cXJrIgrdLf5lSVBhJYY6LOUyYRsRY/pAS0 9cOK/8XIqrB0vuwRtOWl2DEK+fBkTxfy+TETrs3niuGP+Kz0OmFYQRGLPGS/xzIf lHPGr8xlkBieq+4Q+D+wY5hbf8/hyR+G+EGvCws0JU7iPNp5UL+KxOZ/xShuxGF9 ry0PdNYDLvB9Yg1nkrJstri4dk27bh9ExJgMbwvvVwEJ/A4GHCrRQhEnAyR6yw9c ttb1fwsmeZiczeRIhDpX6cuClAfk92xv/MrfHtgtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxgBObsqNfMjkXYfsDW9SJHbYMJIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YwNjA3YTg1LTU5ZDQtNDFmOC1hMjdlLTZjYTM1YTg1MDkyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4izANBgkqhkiG9w0BAQsFAAOCAQEAnK7ey4j13Qgtc7mL+jUoR4sgUeTe i7o97XBmXA02uIFCIjS/yoAJxb5VgBHVBhUC7F4EhsAyi4sZtIoKkU9MoRDTJTEE 78/KR0LS24c8kMLqN7EGm7SHJmBYzC8dyywlGuElgGUnf3MFnPbkmNFDSEg+iQyb 25iCnnyVDahhvstgnUCwcIlaI7VjwtWbsLHhq+nXAGQf5ibrd5Al0KovOVdWZ5uf iugWfV9PzGJOX6TdJuVNQrgZcDP1Gfl5V3QCRrgswJ+Kl9KTeP+NC8WrEMZQ6yko bSertjQQAFtQpC3komNjsQ6+bAOR4+lJpoRJk/O07YzZjMhxkBrA1zrlYQ== -----END CERTIFICATE-----Generated at Sun Jun 1 04:32:51 2025 by rpki-client