$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa File: 9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa (raw, json) Hash identifier: WLm1M5kRc8LAq4cQaCsO//1Xfg0ZGS2CyrSXnnZ0AQQ= Subject key identifier: 53:FF:04:F1:DC:21:46:AF:33:DD:E5:58:2D:25:D9:C6:AC:12:7F:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 484EC40FE6C0DD99E7C8E6902A2ADE8EFF01F0BD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa Signing time: Sat 24 May 2025 00:21:36 +0000 ROA not before: Sat 24 May 2025 00:21:36 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 57.251.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:4e:c4:0f:e6:c0:dd:99:e7:c8:e6:90:2a:2a:de:8e:ff:01:f0:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 24 00:21:36 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=8064ba6d4669e087240264c229cbfeb03a4122e062d3bac6a83400c9a5753e13, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:32:20:b7:94:14:c9:2b:69:52:b9:e6:4f:4f: d0:1f:25:b7:06:34:76:1b:e4:a6:30:fa:a5:93:7e: dd:77:43:2c:d9:d7:07:ba:15:55:a7:f5:f7:fd:fd: 78:c0:74:90:0b:61:1d:95:56:1e:3c:3c:6b:09:b0: dd:29:c8:54:6c:68:5e:c6:40:4a:2b:08:47:0d:0e: 54:ed:ef:40:4d:01:c6:e0:c6:b7:d9:6c:bf:a9:d4: 0d:69:20:01:03:6c:05:12:8b:5e:01:2e:60:8e:8b: 94:ba:13:c4:4e:ae:af:f3:f9:a5:06:b6:35:54:7e: 58:22:76:40:b8:e5:99:87:86:c1:06:ad:0f:e9:8c: 64:ed:02:40:96:04:9e:c5:da:15:68:b4:00:d3:92: 36:a8:a4:11:18:4d:57:49:14:99:b2:ad:62:18:18: ce:8b:27:28:9f:4c:b8:e8:19:3c:5d:98:e8:1d:45: c4:84:b9:4e:36:40:07:e6:cd:e2:55:3f:92:e6:ee: 03:5b:69:d6:4b:f5:f8:aa:ce:e8:98:99:ac:ec:d0: ac:27:92:bd:d8:91:ef:bb:01:e8:a9:ca:34:75:5b: a3:cd:49:b0:fa:8a:32:e2:cd:51:7a:17:8e:db:8a: f5:d0:87:78:d1:d6:72:d3:e0:3a:50:99:57:51:39: 17:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:FF:04:F1:DC:21:46:AF:33:DD:E5:58:2D:25:D9:C6:AC:12:7F:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.251.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1f:f2:06:6d:af:31:00:eb:46:ed:af:3b:8c:a1:7e:f1:0e:d7: 5e:61:7d:78:9a:a3:cf:84:f0:63:9c:37:7f:6f:b8:a2:83:05: 9e:38:1e:29:a3:3c:ee:fc:f0:8c:cd:d2:a6:43:0e:68:8c:5f: 9f:15:6b:1c:3a:41:f0:9b:96:78:4c:1a:8b:e1:ba:2a:cb:cc: 5b:34:d3:fc:84:0f:3a:93:93:4a:eb:f8:15:f4:29:d6:62:fa: e1:f7:f4:67:0d:9e:d6:4d:02:87:1b:de:74:27:8d:71:2d:8d: 71:b0:44:73:47:09:21:b1:da:af:a2:b9:c7:aa:ec:bf:11:5f: bb:50:62:69:9d:57:d6:22:7e:5e:23:73:88:2e:22:bc:c5:ee: 08:80:52:23:1c:dc:44:ec:a6:0a:5e:6e:17:bd:84:ad:07:02: f9:28:e0:f5:ea:9a:7f:51:fc:49:58:74:1a:aa:7c:06:df:d2: 6c:fb:4c:03:96:4c:63:35:f1:59:5b:7f:fa:43:fa:16:3f:70: 05:1f:f4:c5:52:82:c0:2e:c0:08:88:d1:eb:e7:16:c6:2b:48: dc:36:31:f4:d4:18:72:92:79:eb:e1:a1:89:09:23:2c:a6:65: ca:fd:92:d2:24:6d:b9:d9:b4:6c:de:a0:3b:50:f7:05:14:75: 05:b3:c7:4a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSE7ED+bA3ZnnyOaQKirejv8B8L0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI0MDAyMTM2WhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDY0YmE2ZDQ2NjllMDg3MjQwMjY0YzIyOWNiZmViMDNh NDEyMmUwNjJkM2JhYzZhODM0MDBjOWE1NzUzZTEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWMiC3lBTJK2lSueZPT9AfJbcGNHYb5KYw+qWTft13QyzZ 1we6FVWn9ff9/XjAdJALYR2VVh48PGsJsN0pyFRsaF7GQEorCEcNDlTt70BNAcbg xrfZbL+p1A1pIAEDbAUSi14BLmCOi5S6E8ROrq/z+aUGtjVUflgidkC45ZmHhsEG rQ/pjGTtAkCWBJ7F2hVotADTkjaopBEYTVdJFJmyrWIYGM6LJyifTLjoGTxdmOgd RcSEuU42QAfmzeJVP5Lm7gNbadZL9fiqzuiYmazs0Kwnkr3Yke+7AeipyjR1W6PN SbD6ijLizVF6F47bivXQh3jR1nLT4DpQmVdRORfbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUU/8E8dwhRq8z3eVYLSXZxqwSf+UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhOGQ1ZGI0LWU1N2EtNDNkNC1iMzdiLWY3NTk3MWM0YTg1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5+zANBgkqhkiG9w0BAQsFAAOCAQEAH/IGba8xAOtG7a87jKF+8Q7XXmF9 eJqjz4TwY5w3f2+4ooMFnjgeKaM87vzwjM3SpkMOaIxfnxVrHDpB8JuWeEwai+G6 KsvMWzTT/IQPOpOTSuv4FfQp1mL64ff0Zw2e1k0ChxvedCeNcS2NcbBEc0cJIbHa r6K5x6rsvxFfu1BiaZ1X1iJ+XiNziC4ivMXuCIBSIxzcROymCl5uF72ErQcC+Sjg 9eqaf1H8SVh0Gqp8Bt/SbPtMA5ZMYzXxWVt/+kP6Fj9wBR/0xVKCwC7ACIjR6+cW xitI3DYx9NQYcpJ56+GhiQkjLKZlyv2S0iRtudm0bN6gO1D3BRR1BbPHSg== -----END CERTIFICATE-----Generated at Sat Jun 14 06:20:25 2025 by rpki-client