$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3189a3e-1053-49b0-891d-b315bf3a899d.roa File: a3189a3e-1053-49b0-891d-b315bf3a899d.roa (raw, json) Hash identifier: iCo42j/JS0N23vIU+hsEiXWZ/5n4G7crs1d/JKExEUk= Subject key identifier: A8:DD:02:16:D4:84:ED:FC:CC:B3:72:4F:61:7A:E2:0F:23:35:36:60 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C069CFE43B971302E3E5E6820641BCA60D773CD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3189a3e-1053-49b0-891d-b315bf3a899d.roa Signing time: Wed 28 May 2025 00:20:22 +0000 ROA not before: Wed 28 May 2025 00:20:22 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.109.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:06:9c:fe:43:b9:71:30:2e:3e:5e:68:20:64:1b:ca:60:d7:73:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:20:22 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=a5d34e1bfa80c872b8178706c7557d70a469ab46800977d0e230f39fa25f226f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:19:73:7f:e7:cd:74:73:9a:83:11:52:02:ce: 94:8b:3d:b7:c2:96:c5:81:de:50:bb:de:6e:b1:e5: d9:82:f3:d0:52:6f:25:56:46:3e:f9:0d:40:c3:3b: 15:8e:ce:ff:5f:6c:ef:cf:0a:db:9f:ed:bb:83:9a: 15:0f:fe:5d:7e:bc:3e:31:3d:42:58:ac:7b:b5:2d: 35:bd:ad:84:a4:0f:f3:ee:f1:35:4c:7e:c7:2c:06: 41:b5:7a:eb:ab:4f:32:c3:86:94:47:be:38:9f:e2: d1:51:53:f2:e0:4c:d3:72:ac:42:b8:8b:6d:92:30: f5:a7:1f:bb:f2:ca:58:04:c8:2c:f5:e9:cd:4b:e6: a2:bf:7c:d9:20:56:66:e4:b5:90:74:91:88:46:19: a2:2e:42:94:92:8c:b6:d4:7b:12:2f:60:24:11:51: c3:4d:57:56:76:11:a8:ea:7d:66:19:0b:e1:31:db: 04:ee:82:57:ae:ce:dc:f7:10:97:c2:12:0e:45:66: 93:f9:11:00:fb:ac:d0:09:4b:18:17:2a:52:fd:f9: e5:68:a7:ba:db:e5:d2:23:fb:1e:e0:70:35:42:0a: e6:14:90:bf:f8:90:65:a9:01:e3:a9:24:94:5d:ac: 28:37:89:8f:4f:ca:f5:22:36:14:cf:73:0a:ce:8c: 3d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:DD:02:16:D4:84:ED:FC:CC:B3:72:4F:61:7A:E2:0F:23:35:36:60 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3189a3e-1053-49b0-891d-b315bf3a899d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.109.0.0/16 Signature Algorithm: sha256WithRSAEncryption 18:6f:64:5a:64:bd:0a:0a:e5:b1:e1:d7:05:3d:d9:db:e5:e5: bd:72:85:d9:16:43:ee:05:a7:c2:be:34:a2:e3:92:24:3c:7e: aa:cf:8a:ac:58:9a:b2:74:d7:19:c4:ad:7f:b2:5f:c9:5e:98: 6b:c7:36:b4:4a:7a:de:c3:1b:b3:6b:f1:b9:83:86:e0:e1:60: a3:38:28:ce:b8:8a:2b:55:0d:bd:08:ba:ad:50:e0:1c:84:83: 9e:2b:f0:92:59:d8:9f:ab:ee:a7:41:08:84:87:4d:4e:51:cd: 47:54:31:de:4c:09:9b:3d:c9:3f:33:b9:c8:bb:ae:74:84:39: b8:47:77:64:71:ef:bf:47:b9:06:fe:f7:8f:0b:cf:86:70:ab: 01:f8:ee:38:c6:fc:c9:05:fb:2b:98:10:40:fa:9d:2b:fe:4d: 9e:05:81:3b:9a:14:85:f6:54:c0:42:63:38:ae:8e:17:c0:0a: 0b:b0:a6:43:31:a0:b9:b9:9f:c4:32:21:05:e3:a9:a0:66:a3: 74:11:79:2f:7b:7d:1b:58:0f:84:61:2d:6f:9f:b5:51:b8:1f: 1e:e6:f1:d7:14:3f:ba:e9:6d:37:0d:68:27:c0:e2:e3:b9:26: f2:cd:f6:c3:b7:5f:9f:b8:07:80:34:ff:19:5d:72:04:66:0c: 0d:45:c8:2c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfAac/kO5cTAuPl5oIGQbymDXc80wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAyMDIyWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNWQzNGUxYmZhODBjODcyYjgxNzg3MDZjNzU1N2Q3MGE0 NjlhYjQ2ODAwOTc3ZDBlMjMwZjM5ZmEyNWYyMjZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbGXN/5810c5qDEVICzpSLPbfClsWB3lC73m6x5dmC89BS byVWRj75DUDDOxWOzv9fbO/PCtuf7buDmhUP/l1+vD4xPUJYrHu1LTW9rYSkD/Pu 8TVMfscsBkG1euurTzLDhpRHvjif4tFRU/LgTNNyrEK4i22SMPWnH7vyylgEyCz1 6c1L5qK/fNkgVmbktZB0kYhGGaIuQpSSjLbUexIvYCQRUcNNV1Z2EajqfWYZC+Ex 2wTugleuztz3EJfCEg5FZpP5EQD7rNAJSxgXKlL9+eVop7rb5dIj+x7gcDVCCuYU kL/4kGWpAeOpJJRdrCg3iY9PyvUiNhTPcwrOjD1ZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqN0CFtSE7fzMs3JPYXriDyM1NmAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EzMTg5YTNlLTEwNTMtNDliMC04OTFkLWIzMTViZjNhODk5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2bTANBgkqhkiG9w0BAQsFAAOCAQEAGG9kWmS9CgrlseHXBT3Z2+XlvXKF 2RZD7gWnwr40ouOSJDx+qs+KrFiasnTXGcStf7JfyV6Ya8c2tEp63sMbs2vxuYOG 4OFgozgozriKK1UNvQi6rVDgHISDnivwklnYn6vup0EIhIdNTlHNR1Qx3kwJmz3J PzO5yLuudIQ5uEd3ZHHvv0e5Bv73jwvPhnCrAfjuOMb8yQX7K5gQQPqdK/5NngWB O5oUhfZUwEJjOK6OF8AKC7CmQzGgubmfxDIhBeOpoGajdBF5L3t9G1gPhGEtb5+1 UbgfHubx1xQ/uultNw1oJ8Di47km8s32w7dfn7gHgDT/GV1yBGYMDUXILA== -----END CERTIFICATE-----Generated at Sat Jun 14 07:01:50 2025 by rpki-client