$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1bc806e-2572-403e-b1e0-48367c6289fe.roa File: e1bc806e-2572-403e-b1e0-48367c6289fe.roa (raw, json) Hash identifier: LQGzCZB4ZmwYdWR5u0cLXeIW5otc7hcmeiCLYecvFtU= Subject key identifier: 86:EF:07:48:F1:DB:E5:57:BF:34:0C:E8:63:65:99:2E:40:D2:6A:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 37A7707B65C484B0F5CFBE20975ADF897F676985 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1bc806e-2572-403e-b1e0-48367c6289fe.roa Signing time: Mon 26 May 2025 15:01:56 +0000 ROA not before: Mon 26 May 2025 15:01:56 +0000 ROA not after: Mon 30 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 134.43.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:a7:70:7b:65:c4:84:b0:f5:cf:be:20:97:5a:df:89:7f:67:69:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 26 15:01:56 2025 GMT Not After : Jun 30 23:59:59 2025 GMT Subject: serialNumber=81a8fbf1da8a97875028b26ead834692a85ebf227b0cf02c6741ebd498a37b4d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:48:6a:cd:0b:62:c1:9d:24:b1:5c:6c:d2:12: 4d:43:c4:45:be:39:c1:80:9f:74:0f:17:68:9f:fa: 9e:62:2f:3d:a2:eb:6c:cd:0d:4f:00:e9:2d:4a:e1: 7a:8d:7d:c0:a7:20:70:a4:85:52:6c:1c:1d:26:44: 6a:a1:26:b3:4a:4b:b2:a9:d0:68:01:a6:87:cc:b9: 93:66:4e:3e:75:45:f5:50:23:40:d3:49:00:bc:69: 60:dd:a8:c0:3b:a7:9d:ec:96:78:2c:33:f3:cf:5a: d5:34:aa:0e:27:1b:e9:6a:0a:38:6c:3c:ad:89:5e: 4b:6d:5b:05:46:84:45:00:c4:b7:23:3e:fd:03:0e: ba:d2:79:45:ff:8f:29:9d:7e:f8:1b:fe:7c:e0:81: 43:20:62:67:99:ca:8e:11:b2:8f:a3:95:ad:04:42: 06:29:5e:82:5b:92:7e:bc:14:c1:af:8f:19:77:52: f8:4f:dc:9a:41:fe:18:bf:ce:a3:bd:b2:c6:ff:73: 42:af:3f:e6:b9:6e:93:2a:e3:e7:25:48:5d:a9:f7: fd:5f:7a:9e:bd:5b:66:ba:b0:1e:0e:93:59:4a:a7: 84:4a:36:64:13:8f:8b:1c:ec:83:27:ff:d1:69:45: cd:a4:7c:aa:1b:27:44:72:5d:db:c4:c5:c3:24:b1: bf:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:EF:07:48:F1:DB:E5:57:BF:34:0C:E8:63:65:99:2E:40:D2:6A:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1bc806e-2572-403e-b1e0-48367c6289fe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 134.43.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5d:e9:cd:c5:b5:8d:be:03:32:08:3c:03:61:ae:a2:23:b2:3c: a3:f5:9a:bf:35:63:b2:45:2b:79:56:c4:89:99:35:b7:e3:ec: 6e:4c:12:fd:95:33:af:4e:32:f5:22:14:ea:be:ee:a6:9e:f1: ca:ff:81:14:ed:04:22:98:e4:18:a9:50:5c:4e:a2:ce:b7:7d: 60:e2:c1:5e:ed:43:8b:1a:4e:a5:c5:c6:63:0c:bf:e1:f0:f5: 0e:23:9a:fb:c8:99:23:ad:a8:43:dd:2b:b9:92:23:8b:99:47: f3:c5:ff:93:03:ac:f0:3d:35:99:af:a6:3f:95:c7:05:40:f9: 54:61:ec:7f:f3:06:52:3d:20:a0:db:2b:d7:61:4a:4b:e1:a2: 14:75:6c:01:72:23:61:d1:c5:04:1e:17:53:f0:92:e3:70:0e: 7a:69:18:08:87:5b:55:b4:84:09:a6:8a:5d:97:09:51:f6:69: 9d:67:e6:7e:09:05:76:e8:f7:0d:7e:b4:46:6a:c5:0c:d3:9c: 11:96:1e:23:c4:e3:9e:7c:4d:20:fe:ac:91:d4:b4:ea:8f:eb: 5d:dc:ad:ce:c0:f7:a5:24:12:6b:4b:53:f1:fc:ba:c2:77:11: 06:a5:14:dc:94:58:19:b2:f5:0f:35:86:68:3c:4b:fa:35:c3: 40:dd:34:bb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUN6dwe2XEhLD1z74gl1rfiX9naYUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI2MTUwMTU2WhcNMjUwNjMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MWE4ZmJmMWRhOGE5Nzg3NTAyOGIyNmVhZDgzNDY5MmE4 NWViZjIyN2IwY2YwMmM2NzQxZWJkNDk4YTM3YjRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDESGrNC2LBnSSxXGzSEk1DxEW+OcGAn3QPF2if+p5iLz2i 62zNDU8A6S1K4XqNfcCnIHCkhVJsHB0mRGqhJrNKS7Kp0GgBpofMuZNmTj51RfVQ I0DTSQC8aWDdqMA7p53slngsM/PPWtU0qg4nG+lqCjhsPK2JXkttWwVGhEUAxLcj Pv0DDrrSeUX/jymdfvgb/nzggUMgYmeZyo4Rso+jla0EQgYpXoJbkn68FMGvjxl3 UvhP3JpB/hi/zqO9ssb/c0KvP+a5bpMq4+clSF2p9/1fep69W2a6sB4Ok1lKp4RK NmQTj4sc7IMn/9FpRc2kfKobJ0RyXdvExcMksb9FAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhu8HSPHb5Ve/NAzoY2WZLkDSagAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UxYmM4MDZlLTI1NzItNDAzZS1iMWUwLTQ4MzY3YzYyODlmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCGKzANBgkqhkiG9w0BAQsFAAOCAQEAXenNxbWNvgMyCDwDYa6iI7I8o/Wa vzVjskUreVbEiZk1t+PsbkwS/ZUzr04y9SIU6r7upp7xyv+BFO0EIpjkGKlQXE6i zrd9YOLBXu1DixpOpcXGYwy/4fD1DiOa+8iZI62oQ90ruZIji5lH88X/kwOs8D01 ma+mP5XHBUD5VGHsf/MGUj0goNsr12FKS+GiFHVsAXIjYdHFBB4XU/CS43AOemkY CIdbVbSECaaKXZcJUfZpnWfmfgkFduj3DX60RmrFDNOcEZYeI8TjnnxNIP6skdS0 6o/rXdytzsD3pSQSa0tT8fy6wncRBqUU3JRYGbL1DzWGaDxL+jXDQN00uw== -----END CERTIFICATE-----Generated at Sat Jun 14 07:13:49 2025 by rpki-client