$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b6e15d2-9bc0-465a-abc0-9a96615bc918.roa File: 2b6e15d2-9bc0-465a-abc0-9a96615bc918.roa (raw, json) Hash identifier: YJ1TozEIjUfUrJJNVl8qByrrYLJvtO3DC1dU9Cdw9oc= Subject key identifier: DD:26:33:38:CF:5C:E0:F7:28:D8:F0:96:78:61:23:23:DB:61:11:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B034B086C98E81EC75F941F74004A967D79D52E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b6e15d2-9bc0-465a-abc0-9a96615bc918.roa Signing time: Wed 07 May 2025 00:20:52 +0000 ROA not before: Wed 07 May 2025 00:20:52 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 45.34.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 10 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:03:4b:08:6c:98:e8:1e:c7:5f:94:1f:74:00:4a:96:7d:79:d5:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:20:52 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=8973126ff05957fd711b29c3dc79fe4098d40c81e8d84808179e5de4b9d1f7f2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:eb:75:00:cd:11:d9:34:32:ed:77:9f:b8:90: 88:6a:92:4c:5b:22:01:9a:90:ca:0f:eb:ca:22:a8: 9a:f0:a3:74:fd:db:cc:0a:be:7e:97:13:e6:ec:ca: 4b:9b:2d:e9:5d:5a:88:b8:b4:cf:3d:53:05:ce:fa: 44:63:68:fc:03:05:e9:ba:bf:4b:19:9d:bd:ad:e1: 4c:6f:3e:ba:d8:b0:b9:2e:27:1f:1c:dd:59:b4:03: c0:7c:20:4d:a4:47:74:4e:cd:13:9d:5b:de:50:0f: d4:0c:0d:c4:0f:18:3e:16:56:9e:c2:0a:75:63:d3: 83:38:a8:a6:cf:3c:9b:d9:d9:92:7f:9a:81:ad:91: 5f:15:7b:a6:98:39:c7:f4:ee:2b:27:21:29:00:81: c5:a6:ef:fb:80:93:40:10:87:54:c5:c6:0d:51:ed: 5f:67:74:0d:00:c8:f6:86:88:d7:67:ed:21:b3:c3: bf:b3:7e:c3:c6:c5:d5:3d:30:f7:e8:da:61:ab:2b: 9c:81:81:a8:a1:54:6c:29:9d:40:5e:2d:ce:5e:ec: c9:de:81:f0:d9:d9:f2:39:b3:1a:26:5a:dc:16:90: 4c:e6:b7:99:d8:74:e6:49:3c:22:16:0c:11:34:b3: 17:33:e8:d9:3d:d1:6d:6a:f0:62:e2:e9:e6:38:3b: 0a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:26:33:38:CF:5C:E0:F7:28:D8:F0:96:78:61:23:23:DB:61:11:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b6e15d2-9bc0-465a-abc0-9a96615bc918.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.34.0.0/15 Signature Algorithm: sha256WithRSAEncryption c1:81:3e:e2:28:2f:2f:1d:53:04:b9:c7:4c:f2:94:57:99:3e: 58:1e:2e:64:a8:8b:f5:46:14:57:96:9c:fc:4e:1c:db:79:53: 37:92:36:6d:df:d9:6e:95:62:0d:f3:ec:5f:7f:72:6f:43:26: 66:64:b3:54:37:b2:55:bf:10:95:31:23:19:c6:c1:6a:e4:16: 41:30:20:50:e6:3e:cb:65:95:98:6a:03:77:6f:61:88:aa:be: ee:21:ab:6b:1a:17:8e:e6:5c:4d:f7:6b:0f:28:11:b8:f2:7b: b5:89:0f:63:3d:25:7e:2b:05:d1:e7:b4:0a:9d:ec:a6:ef:aa: 12:d4:35:0a:ef:a4:d7:cc:82:be:08:e7:70:85:35:1a:e7:c5: 2b:ee:87:9c:72:aa:d3:a3:d0:e0:e7:80:13:32:b1:ae:7d:5d: b1:c9:f5:14:14:7c:b9:ce:5f:bf:55:b5:77:1d:a6:5e:14:c0: 8c:20:46:ca:14:1e:82:a5:55:e3:32:b2:06:5c:91:12:e1:b3: d5:c2:ee:01:02:1f:f7:7f:52:a2:2c:9a:69:8c:a9:82:6b:2d: e8:07:cf:92:85:26:80:2a:8f:c0:ba:6a:8b:83:63:78:0b:67: 7c:3d:b6:9c:1e:4e:6f:f3:49:c9:26:1e:61:53:f7:3e:ae:fd: 3d:1f:1e:3b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGwNLCGyY6B7HX5QfdABKln151S4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDAyMDUyWhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTczMTI2ZmYwNTk1N2ZkNzExYjI5YzNkYzc5ZmU0MDk4 ZDQwYzgxZThkODQ4MDgxNzllNWRlNGI5ZDFmN2YyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDf63UAzRHZNDLtd5+4kIhqkkxbIgGakMoP68oiqJrwo3T9 28wKvn6XE+bsykubLeldWoi4tM89UwXO+kRjaPwDBem6v0sZnb2t4UxvPrrYsLku Jx8c3Vm0A8B8IE2kR3ROzROdW95QD9QMDcQPGD4WVp7CCnVj04M4qKbPPJvZ2ZJ/ moGtkV8Ve6aYOcf07isnISkAgcWm7/uAk0AQh1TFxg1R7V9ndA0AyPaGiNdn7SGz w7+zfsPGxdU9MPfo2mGrK5yBgaihVGwpnUBeLc5e7MnegfDZ2fI5sxomWtwWkEzm t5nYdOZJPCIWDBE0sxcz6Nk90W1q8GLi6eY4OwpDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3SYzOM9c4Pco2PCWeGEjI9thERYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJiNmUxNWQyLTliYzAtNDY1YS1hYmMwLTlhOTY2MTViYzkxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEtIjANBgkqhkiG9w0BAQsFAAOCAQEAwYE+4igvLx1TBLnHTPKUV5k+WB4u ZKiL9UYUV5ac/E4c23lTN5I2bd/ZbpViDfPsX39yb0MmZmSzVDeyVb8QlTEjGcbB auQWQTAgUOY+y2WVmGoDd29hiKq+7iGraxoXjuZcTfdrDygRuPJ7tYkPYz0lfisF 0ee0Cp3spu+qEtQ1Cu+k18yCvgjncIU1GufFK+6HnHKq06PQ4OeAEzKxrn1dscn1 FBR8uc5fv1W1dx2mXhTAjCBGyhQegqVV4zKyBlyREuGz1cLuAQIf939SoiyaaYyp gmst6AfPkoUmgCqPwLpqi4NjeAtnfD22nB5Ob/NJySYeYVP3Pq79PR8eOw== -----END CERTIFICATE-----Generated at Fri May 9 07:58:55 2025 by rpki-client