$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ebef51e-47ae-436f-9739-68c19a9c1707.roa File: 2ebef51e-47ae-436f-9739-68c19a9c1707.roa (raw, json) Hash identifier: UD+NKX+oa9ZfhnhWxlSIeup3FJRPFL3LU2m0rPCz5sA= Subject key identifier: EB:0E:C6:CE:C8:03:DB:73:74:0F:3F:AD:10:E6:17:E3:01:81:67:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6A43AE1AB66F88E098845DB6E001A60447E75E16 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ebef51e-47ae-436f-9739-68c19a9c1707.roa Signing time: Mon 02 Jun 2025 15:31:38 +0000 ROA not before: Mon 02 Jun 2025 15:31:38 +0000 ROA not after: Mon 07 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 44.213.78.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:43:ae:1a:b6:6f:88:e0:98:84:5d:b6:e0:01:a6:04:47:e7:5e:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 2 15:31:38 2025 GMT Not After : Jul 7 23:59:59 2025 GMT Subject: serialNumber=a82db827f494ba6c38c5e75dfd5f8b961cae9a648f7a0238250dcd746daf2c1e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ef:f9:fd:cd:31:4a:10:7a:f6:80:03:06:57: 76:c6:05:49:8e:7f:39:76:82:da:9a:18:3a:b7:39: f6:eb:0a:95:a2:f4:b1:f9:28:58:3d:e5:7c:d4:b2: 3a:75:5f:4a:0c:6c:58:36:0d:88:f1:1f:f6:bb:4d: 5e:8f:81:05:cd:dd:a6:9f:e1:ab:0e:e8:27:d5:5c: 48:38:33:ac:c4:f0:5f:dd:1a:12:ee:17:4e:8f:57: 68:25:7c:62:c1:6a:89:f2:4c:07:b4:dd:b8:23:63: ae:c9:31:a9:a9:70:b7:9d:a4:f8:91:49:57:30:42: ee:f3:5a:0f:9c:e8:ec:5f:20:8d:da:fc:73:4b:9a: c9:ac:2f:65:a7:e2:b5:64:a4:5f:be:f7:31:be:c8: 56:0f:b0:60:7b:0b:8f:ae:2d:de:0a:72:7b:93:d3: ca:4e:4d:a1:b6:60:b2:cd:cb:c7:50:84:2a:80:4e: 13:1f:cc:bc:d3:d8:56:49:13:29:3c:0c:6b:9d:da: 92:31:fc:4d:68:32:e9:0f:0f:e3:4b:56:f6:d8:b6: 0d:a1:c3:be:09:b4:74:cb:1c:bd:ce:c0:23:2c:9e: 93:dd:3a:26:9a:8c:ca:89:dd:40:92:7a:e4:68:ff: 69:d5:72:42:66:93:05:ff:53:d5:42:5a:5b:8f:16: 87:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:0E:C6:CE:C8:03:DB:73:74:0F:3F:AD:10:E6:17:E3:01:81:67:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ebef51e-47ae-436f-9739-68c19a9c1707.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.213.78.0/23 Signature Algorithm: sha256WithRSAEncryption a4:4a:e6:31:ef:f7:99:19:17:b1:b7:62:0b:0a:1c:45:cb:ad: 70:89:d7:f7:24:e1:06:bf:72:90:66:7c:8c:ed:49:76:83:a6: f2:b3:58:57:25:55:5f:e7:cc:8e:a4:a9:28:62:23:89:c0:94: 70:af:dd:5b:1a:53:29:86:a1:9f:75:96:2e:85:31:07:26:7c: f6:76:69:1f:1d:41:04:5b:3e:a9:2d:23:3c:79:fc:3f:2a:0a: 21:05:72:3c:64:ae:26:a0:01:d9:b8:80:9a:fa:70:11:a1:51: 57:94:ab:0e:1d:58:a9:9c:8a:70:a5:8b:60:6a:19:67:28:ec: 4c:c7:c0:aa:f8:48:55:d4:17:a7:a2:af:d9:bd:35:98:cb:f7: de:58:58:4c:67:a0:9a:37:bf:b5:5b:ab:ba:1e:80:09:86:68: fd:dd:5d:84:5f:4d:66:b1:4f:75:dc:7d:10:05:a7:d3:16:e0: 1a:0d:5a:2c:4f:0d:90:0d:8c:54:77:ba:50:60:e9:73:19:b7: 95:71:fa:dd:09:33:04:d5:d4:3d:8a:81:d6:31:db:4b:63:e7: be:a0:85:73:5e:73:53:40:b3:80:d1:36:90:7d:3d:64:2b:b8: 01:8a:9e:74:4a:4d:04:a3:f0:ee:0d:eb:02:a0:1f:cc:4f:fd: cb:00:fc:34 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUakOuGrZviOCYhF224AGmBEfnXhYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAyMTUzMTM4WhcNMjUwNzA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhODJkYjgyN2Y0OTRiYTZjMzhjNWU3NWRmZDVmOGI5NjFj YWU5YTY0OGY3YTAyMzgyNTBkY2Q3NDZkYWYyYzFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD7/n9zTFKEHr2gAMGV3bGBUmOfzl2gtqaGDq3OfbrCpWi 9LH5KFg95XzUsjp1X0oMbFg2DYjxH/a7TV6PgQXN3aaf4asO6CfVXEg4M6zE8F/d GhLuF06PV2glfGLBaonyTAe03bgjY67JMampcLedpPiRSVcwQu7zWg+c6OxfII3a /HNLmsmsL2Wn4rVkpF++9zG+yFYPsGB7C4+uLd4KcnuT08pOTaG2YLLNy8dQhCqA ThMfzLzT2FZJEyk8DGud2pIx/E1oMukPD+NLVvbYtg2hw74JtHTLHL3OwCMsnpPd OiaajMqJ3UCSeuRo/2nVckJmkwX/U9VCWluPFodrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6w7GzsgD23N0Dz+tEOYX4wGBZ6YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJlYmVmNTFlLTQ3YWUtNDM2Zi05NzM5LTY4YzE5YTljMTcwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAEs1U4wDQYJKoZIhvcNAQELBQADggEBAKRK5jHv95kZF7G3YgsKHEXLrXCJ 1/ck4Qa/cpBmfIztSXaDpvKzWFclVV/nzI6kqShiI4nAlHCv3VsaUymGoZ91li6F MQcmfPZ2aR8dQQRbPqktIzx5/D8qCiEFcjxkriagAdm4gJr6cBGhUVeUqw4dWKmc inCli2BqGWco7EzHwKr4SFXUF6eir9m9NZjL995YWExnoJo3v7Vbq7oegAmGaP3d XYRfTWaxT3XcfRAFp9MW4BoNWixPDZANjFR3ulBg6XMZt5Vx+t0JMwTV1D2KgdYx 20tj576ghXNec1NAs4DRNpB9PWQruAGKnnRKTQSj8O4N6wKgH8xP/csA/DQ= -----END CERTIFICATE-----Generated at Sat Jun 14 06:51:46 2025 by rpki-client