$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1c690ab-01a2-4561-af12-0e15ab9bfd60.roa File: f1c690ab-01a2-4561-af12-0e15ab9bfd60.roa (raw, json) Hash identifier: 4C3jGexIJ+4/ID7g6hSBnYk9UBj9gnNPF9g8obf4eJ0= Subject key identifier: AC:3B:C1:48:C0:ED:6F:5B:02:F3:3B:E4:2F:4F:4C:57:FA:53:49:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 76CDF2C5D04B52528797C87A30DF9C35A88D6199 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1c690ab-01a2-4561-af12-0e15ab9bfd60.roa Signing time: Wed 28 May 2025 00:30:59 +0000 ROA not before: Wed 28 May 2025 00:30:59 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.36.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:cd:f2:c5:d0:4b:52:52:87:97:c8:7a:30:df:9c:35:a8:8d:61:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:30:59 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=ce2074a8cde6b75234a5d0650dd6f4cc088c4f1fdadd96d71cfe48b0aa1bfd45, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:75:3c:7d:10:7e:c1:b4:21:2f:35:c4:eb:b3: ce:0f:ab:d0:37:66:3e:35:d2:f4:7b:9a:4f:f4:b8: 23:30:12:35:d3:64:b3:bb:ad:d2:d3:7a:7e:12:85: 7e:ac:ad:1f:f9:b4:df:0d:c5:a4:ef:5b:48:21:bd: 69:79:41:a8:0c:4a:7c:a2:37:18:c4:86:00:30:2a: c6:8f:bb:a0:44:d8:6c:60:0c:d2:32:7b:e6:cf:70: c4:0a:da:a7:a9:70:c8:5c:a2:e9:a1:94:eb:8e:cf: 5e:5a:a1:eb:a3:b8:69:54:5d:59:8c:a7:8c:f9:66: 2b:99:22:f0:a7:cf:48:e5:a2:54:24:80:4a:c5:da: 41:b9:23:16:6d:a1:c4:b6:b0:a1:76:d4:bb:83:ba: 9d:96:9e:d3:f9:14:ff:5b:28:84:e2:e2:ca:a7:10: f3:8c:91:47:62:52:9e:06:94:86:4b:84:56:02:8c: 51:a1:94:0d:74:7b:db:0e:e1:bc:8f:fe:19:03:80: 19:1c:07:b5:89:04:55:76:76:52:f2:ae:86:12:35: 8a:1d:a3:62:20:6d:b7:e8:c0:d1:39:8a:97:79:8d: 53:df:57:a7:41:c1:a2:29:05:0d:de:2a:69:0b:ee: 45:46:d0:ae:2a:da:90:ce:52:47:b4:27:4a:ee:1a: 20:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:3B:C1:48:C0:ED:6F:5B:02:F3:3B:E4:2F:4F:4C:57:FA:53:49:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1c690ab-01a2-4561-af12-0e15ab9bfd60.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.36.0.0/16 Signature Algorithm: sha256WithRSAEncryption 45:60:ac:89:9d:9b:d7:be:1d:9b:12:67:27:32:67:7f:ad:73: b3:4e:22:98:5f:2e:62:75:48:69:bb:c1:8f:5e:9e:7a:df:a0: 2e:38:5b:93:36:fd:53:cc:62:7e:da:56:46:36:ea:6c:33:f8: 74:1c:57:31:d7:63:08:0e:df:ca:7a:8e:21:8e:92:10:b8:07: f6:fd:d2:9d:2a:49:0c:f4:25:3f:d4:99:70:50:34:67:6a:9d: 12:51:a8:79:dd:09:68:75:b9:74:18:d4:bb:38:7f:35:c6:16: 0c:ba:9c:90:6a:e8:97:c5:12:ea:b5:05:f4:db:67:77:36:12: c3:38:72:af:4a:9d:f7:20:72:88:63:49:91:08:85:40:67:b9: 55:7a:8e:89:59:7f:3d:66:40:0c:3c:b9:cb:69:28:eb:2f:f4: ea:ca:fb:67:fd:b5:e6:bd:f9:c8:d8:fc:ca:69:e1:cb:98:96: 17:c7:1e:c7:8e:33:33:a8:c0:15:e7:94:9d:a0:f7:a7:2b:22: bf:54:bb:5f:e9:5e:c5:3e:e7:12:11:18:64:c4:a2:79:e8:63: 2c:7c:3f:c9:03:9d:c3:52:b7:c9:ee:fb:e8:19:fb:70:36:a6: 7f:58:f3:c5:8d:d2:8b:b5:7b:04:5b:02:d7:6d:db:9c:9a:44: 4c:dd:62:fb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUds3yxdBLUlKHl8h6MN+cNaiNYZkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAzMDU5WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTIwNzRhOGNkZTZiNzUyMzRhNWQwNjUwZGQ2ZjRjYzA4 OGM0ZjFmZGFkZDk2ZDcxY2ZlNDhiMGFhMWJmZDQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRdTx9EH7BtCEvNcTrs84Pq9A3Zj410vR7mk/0uCMwEjXT ZLO7rdLTen4ShX6srR/5tN8NxaTvW0ghvWl5QagMSnyiNxjEhgAwKsaPu6BE2Gxg DNIye+bPcMQK2qepcMhcoumhlOuOz15aoeujuGlUXVmMp4z5ZiuZIvCnz0jlolQk gErF2kG5IxZtocS2sKF21LuDup2WntP5FP9bKITi4sqnEPOMkUdiUp4GlIZLhFYC jFGhlA10e9sO4byP/hkDgBkcB7WJBFV2dlLyroYSNYodo2IgbbfowNE5ipd5jVPf V6dBwaIpBQ3eKmkL7kVG0K4q2pDOUke0J0ruGiBvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUrDvBSMDtb1sC8zvkL09MV/pTSdQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxYzY5MGFiLTAxYTItNDU2MS1hZjEyLTBlMTVhYjliZmQ2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4JDANBgkqhkiG9w0BAQsFAAOCAQEARWCsiZ2b174dmxJnJzJnf61zs04i mF8uYnVIabvBj16eet+gLjhbkzb9U8xiftpWRjbqbDP4dBxXMddjCA7fynqOIY6S ELgH9v3SnSpJDPQlP9SZcFA0Z2qdElGoed0JaHW5dBjUuzh/NcYWDLqckGrol8US 6rUF9NtndzYSwzhyr0qd9yByiGNJkQiFQGe5VXqOiVl/PWZADDy5y2ko6y/06sr7 Z/215r35yNj8ymnhy5iWF8cex44zM6jAFeeUnaD3pysiv1S7X+lexT7nEhEYZMSi eehjLHw/yQOdw1K3ye776Bn7cDamf1jzxY3Si7V7BFsC123bnJpETN1i+w== -----END CERTIFICATE-----Generated at Sun Jun 1 04:52:14 2025 by rpki-client