$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aec5606d-b8a4-46f2-b7ce-1d6f75bef390.roa File: aec5606d-b8a4-46f2-b7ce-1d6f75bef390.roa (raw, json) Hash identifier: XLi0mwnIiYXKNTI6/AfEm35qcUj4sbVMBslbccpTgu0= Subject key identifier: 94:F6:54:43:78:2D:57:DF:47:6E:33:89:06:6F:CE:CF:87:61:49:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6EEF2B3B6411D77403E090E741616E4B87C1B73C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aec5606d-b8a4-46f2-b7ce-1d6f75bef390.roa Signing time: Wed 04 Jun 2025 00:10:30 +0000 ROA not before: Wed 04 Jun 2025 00:10:30 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.100.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:ef:2b:3b:64:11:d7:74:03:e0:90:e7:41:61:6e:4b:87:c1:b7:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 4 00:10:30 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=1f9c9fe38755e4ed4c53fc434789a8d4d52602d90e898101ffb68495dc9abad7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:30:71:8a:d4:a0:6a:57:c2:34:34:ee:41:9a: 2c:7e:f8:90:6a:dd:f3:d6:4c:02:1a:72:19:88:a1: 92:d8:f4:e3:5c:3d:b4:bd:86:87:2a:fa:24:fb:3b: b4:4c:a0:05:e7:e0:59:d1:26:90:de:5e:da:22:2f: fc:79:6b:37:cd:5c:74:c6:3d:c7:c1:37:5c:a3:51: d9:77:16:89:a6:61:77:3f:0c:3c:cf:ee:01:f7:d3: 09:b6:7a:94:db:38:36:74:e1:10:61:8d:07:27:84: ad:fa:4b:f0:34:c7:ba:31:5e:4a:e5:42:8d:f3:26: 9e:1f:af:fd:25:78:58:b5:1e:f8:46:9b:a8:b2:f7: 05:ca:ad:e0:23:78:55:59:a2:3a:68:5f:78:2e:67: c7:ab:4d:2c:9f:d5:c5:9a:48:e2:ee:08:39:85:ec: 63:52:63:39:fe:b5:c1:5a:cc:ce:7a:36:a6:95:40: 01:71:67:e7:54:50:b5:3b:0a:99:c7:f4:92:ca:67: 2e:9f:18:08:f9:44:55:04:7e:51:90:a9:36:82:2e: ef:d9:1e:5a:52:83:61:1c:95:2a:35:f2:17:74:32: bb:fe:d6:95:fa:a0:02:03:89:77:17:be:9e:5a:5f: 7c:7e:fd:b6:de:7a:4f:0c:e6:d5:65:11:e7:2a:44: 7f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:F6:54:43:78:2D:57:DF:47:6E:33:89:06:6F:CE:CF:87:61:49:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aec5606d-b8a4-46f2-b7ce-1d6f75bef390.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.100.0.0/16 Signature Algorithm: sha256WithRSAEncryption 65:98:ae:9b:cd:50:63:25:7f:b5:ca:b6:d6:bc:b9:03:fe:89: 94:d3:bd:5c:30:20:f0:c5:dc:95:91:54:c6:a3:f6:bd:6b:8b: 6c:43:53:13:0c:69:fb:9a:b5:2f:31:71:45:c2:3c:e8:36:f9: 7c:ae:57:2a:29:47:b1:57:c2:80:43:15:9d:65:e8:0c:dd:dd: 18:d3:61:14:be:2e:18:8b:59:c2:b8:3d:16:0f:a5:03:ae:b9: 72:42:42:e4:06:68:00:96:7e:57:d1:e4:16:11:fe:af:50:e1: 33:c8:f8:33:ec:01:9c:66:26:c0:b3:fa:92:53:9b:00:21:f6: 03:4c:6e:9f:08:5d:e6:5c:41:0c:45:82:bd:fb:cb:68:e4:27: a1:f2:cc:66:ca:a2:67:2d:3a:1c:73:f8:53:89:8c:cc:e6:b2: 59:7b:d7:ad:d5:18:bb:88:93:f9:c3:9b:03:4b:ed:35:fc:d9: 62:5c:36:ca:5b:a5:84:e7:2a:05:fd:d7:23:81:39:dd:d1:8f: 32:e3:f3:73:7f:f0:12:c4:da:11:31:33:37:1f:02:cc:0c:19: 76:6e:cc:55:8f:b4:6b:0e:fc:23:89:20:e5:2e:20:2b:af:e0: 29:08:da:06:b6:af:e3:84:84:80:14:3e:8e:72:c6:f2:20:be: a9:cc:99:11 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbu8rO2QR13QD4JDnQWFuS4fBtzwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA0MDAxMDMwWhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjljOWZlMzg3NTVlNGVkNGM1M2ZjNDM0Nzg5YThkNGQ1 MjYwMmQ5MGU4OTgxMDFmZmI2ODQ5NWRjOWFiYWQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRMHGK1KBqV8I0NO5Bmix++JBq3fPWTAIachmIoZLY9ONc PbS9hocq+iT7O7RMoAXn4FnRJpDeXtoiL/x5azfNXHTGPcfBN1yjUdl3FommYXc/ DDzP7gH30wm2epTbODZ04RBhjQcnhK36S/A0x7oxXkrlQo3zJp4fr/0leFi1HvhG m6iy9wXKreAjeFVZojpoX3guZ8erTSyf1cWaSOLuCDmF7GNSYzn+tcFazM56NqaV QAFxZ+dUULU7CpnH9JLKZy6fGAj5RFUEflGQqTaCLu/ZHlpSg2EclSo18hd0Mrv+ 1pX6oAIDiXcXvp5aX3x+/bbeek8M5tVlEecqRH/VAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlPZUQ3gtV99HbjOJBm/Oz4dhSZswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlYzU2MDZkLWI4YTQtNDZmMi1iN2NlLTFkNmY3NWJlZjM5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ZDANBgkqhkiG9w0BAQsFAAOCAQEAZZium81QYyV/tcq21ry5A/6JlNO9 XDAg8MXclZFUxqP2vWuLbENTEwxp+5q1LzFxRcI86Db5fK5XKilHsVfCgEMVnWXo DN3dGNNhFL4uGItZwrg9Fg+lA665ckJC5AZoAJZ+V9HkFhH+r1DhM8j4M+wBnGYm wLP6klObACH2A0xunwhd5lxBDEWCvfvLaOQnofLMZsqiZy06HHP4U4mMzOayWXvX rdUYu4iT+cObA0vtNfzZYlw2ylulhOcqBf3XI4E53dGPMuPzc3/wEsTaETEzNx8C zAwZdm7MVY+0aw78I4kg5S4gK6/gKQjaBrav44SEgBQ+jnLG8iC+qcyZEQ== -----END CERTIFICATE-----Generated at Sat Jun 14 06:50:47 2025 by rpki-client