$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3118f1f1-38c4-427e-acff-1282cc7cb367.roa File: 3118f1f1-38c4-427e-acff-1282cc7cb367.roa (raw, json) Hash identifier: NV7OczgptJmzvxOx/xqJFF02Y6SRD3ei0EoQEmfgKR4= Subject key identifier: 37:E8:2B:C6:44:94:3D:CD:BF:59:04:FD:7A:5B:9D:BA:A0:06:BD:1B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 424280EAE306C2A410D3F362DF685932F1E6D5F3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3118f1f1-38c4-427e-acff-1282cc7cb367.roa Signing time: Tue 20 May 2025 15:21:35 +0000 ROA not before: Tue 20 May 2025 15:21:35 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 75.101.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:42:80:ea:e3:06:c2:a4:10:d3:f3:62:df:68:59:32:f1:e6:d5:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 15:21:35 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=dd86e847fd8a49ef8e4c05293680864b6ef8876df352c16fbffaba9cae8e3f28, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:60:12:3f:bf:8c:73:2f:c0:43:4d:23:e7:22: 1b:70:06:81:f2:3a:23:0d:84:86:28:de:63:e8:5d: 61:61:51:f5:e7:c2:82:c3:3d:5a:89:26:8d:b6:6c: 18:08:44:5f:9a:4d:2e:5d:1a:91:d3:57:da:69:a8: 44:0c:d8:ad:c8:e5:40:2c:44:4b:f7:45:05:3c:e8: 4e:76:cf:83:58:75:2c:38:a2:76:e2:45:af:f1:b0: a1:ce:7b:df:e8:9f:68:89:5d:69:56:a6:c2:67:7f: 68:f8:b2:ba:69:5d:22:aa:36:12:c9:48:b1:22:5b: 2c:06:d6:0f:d6:2c:33:31:93:93:2e:b4:09:c5:30: 97:8d:48:99:97:3e:3f:7a:f5:20:89:6d:8c:30:5b: 30:cf:c4:f4:dc:b6:27:fa:bc:ca:89:aa:91:af:aa: b4:e8:88:fa:e8:e0:0d:4e:55:2b:e3:62:3e:8b:5a: 07:4b:6b:b9:cf:35:9f:16:02:59:38:f1:00:a2:56: be:00:70:b8:86:5a:29:d2:12:d8:73:58:a6:20:57: 05:82:50:86:ba:a9:53:f8:b3:a2:bf:0f:29:99:f8: f8:34:32:57:81:51:e2:47:e2:38:d0:5b:8c:61:d7: b4:8c:80:84:5a:d2:47:20:9c:38:68:c5:72:dc:ef: 31:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:E8:2B:C6:44:94:3D:CD:BF:59:04:FD:7A:5B:9D:BA:A0:06:BD:1B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3118f1f1-38c4-427e-acff-1282cc7cb367.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.101.168.0/21 Signature Algorithm: sha256WithRSAEncryption 74:98:b6:30:97:91:a8:58:f1:fb:92:f1:b1:0e:38:84:84:f9: 1b:29:71:ca:5b:e2:d8:81:b7:05:72:7f:7b:46:46:f3:0d:81: a4:43:0a:80:23:78:a2:af:8e:85:ab:5e:c5:0a:e9:65:05:f0: 4c:7d:c9:72:8a:89:19:5b:e3:9c:46:79:3c:89:d3:a2:70:41: 6d:5f:ab:a4:4f:29:08:5a:31:18:c6:71:92:9e:cb:59:e4:08: 03:43:90:3a:39:28:22:de:b4:ff:96:37:e9:3c:32:fc:6f:21: 3e:52:42:2f:e1:2c:a2:36:30:be:36:0c:9b:34:6a:2b:ee:d6: a1:59:11:34:b3:cd:bf:bc:8b:2a:33:0a:bc:23:d1:07:8c:e8: 44:a2:62:f1:63:81:9a:e2:02:02:12:7e:dc:9b:ab:5f:91:eb: 47:1e:f2:db:0c:f4:6c:1b:4c:e8:d7:56:7e:d1:fc:a4:cb:79: 96:d6:0a:b2:a5:37:39:a6:1a:41:f5:84:25:11:f1:4a:5d:63: e3:66:4e:0b:9d:07:fe:e2:23:b7:7d:14:94:35:49:fd:be:94: 47:e9:07:2c:8e:7a:59:06:c1:d2:85:20:0c:99:8d:c3:c5:5a: c5:c1:22:54:00:0f:ce:d5:5f:8a:06:94:1b:48:32:65:c8:fb: 70:bc:e6:ca -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQkKA6uMGwqQQ0/Ni32hZMvHm1fMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMTUyMTM1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDg2ZTg0N2ZkOGE0OWVmOGU0YzA1MjkzNjgwODY0YjZl Zjg4NzZkZjM1MmMxNmZiZmZhYmE5Y2FlOGUzZjI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyYBI/v4xzL8BDTSPnIhtwBoHyOiMNhIYo3mPoXWFhUfXn woLDPVqJJo22bBgIRF+aTS5dGpHTV9ppqEQM2K3I5UAsREv3RQU86E52z4NYdSw4 onbiRa/xsKHOe9/on2iJXWlWpsJnf2j4srppXSKqNhLJSLEiWywG1g/WLDMxk5Mu tAnFMJeNSJmXPj969SCJbYwwWzDPxPTctif6vMqJqpGvqrToiPro4A1OVSvjYj6L WgdLa7nPNZ8WAlk48QCiVr4AcLiGWinSEthzWKYgVwWCUIa6qVP4s6K/DymZ+Pg0 MleBUeJH4jjQW4xh17SMgIRa0kcgnDhoxXLc7zHTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUN+grxkSUPc2/WQT9eluduqAGvRswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMxMThmMWYxLTM4YzQtNDI3ZS1hY2ZmLTEyODJjYzdjYjM2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANLZagwDQYJKoZIhvcNAQELBQADggEBAHSYtjCXkahY8fuS8bEOOISE+Rsp ccpb4tiBtwVyf3tGRvMNgaRDCoAjeKKvjoWrXsUK6WUF8Ex9yXKKiRlb45xGeTyJ 06JwQW1fq6RPKQhaMRjGcZKey1nkCANDkDo5KCLetP+WN+k8MvxvIT5SQi/hLKI2 ML42DJs0aivu1qFZETSzzb+8iyozCrwj0QeM6ESiYvFjgZriAgISftybq1+R60ce 8tsM9GwbTOjXVn7R/KTLeZbWCrKlNzmmGkH1hCUR8UpdY+NmTgudB/7iI7d9FJQ1 Sf2+lEfpByyOelkGwdKFIAyZjcPFWsXBIlQAD87VX4oGlBtIMmXI+3C85so= -----END CERTIFICATE-----Generated at Sat Jun 14 07:02:19 2025 by rpki-client