$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2e4d4a7d-c1f7-4655-87ba-3956e2f6bad4.roa File: 2e4d4a7d-c1f7-4655-87ba-3956e2f6bad4.roa (raw, json) Hash identifier: IyD4KdHhrPIxisHpzVMZ6paRCY/lJqZNRDBsdIxIKUA= Subject key identifier: 37:93:27:90:E5:29:47:D1:48:A8:A8:D2:A6:48:83:90:2D:C6:B4:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 07A17A184D39925027F4DC1E393ACDEE71B72098 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2e4d4a7d-c1f7-4655-87ba-3956e2f6bad4.roa Signing time: Tue 24 Jun 2025 00:00:56 +0000 ROA not before: Tue 24 Jun 2025 00:00:56 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 104.153.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:a1:7a:18:4d:39:92:50:27:f4:dc:1e:39:3a:cd:ee:71:b7:20:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:00:56 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=c16ca7fe67f56c8136eb1ee74a2e82605d27998b7966152a8c0a1c07e308f168, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:41:7a:53:43:21:13:44:c9:64:87:2c:c5:0d: f1:2b:69:5a:0e:8f:fd:af:4d:c5:bc:2a:12:5f:2b: ff:45:56:70:db:ad:5e:c6:ea:86:c1:03:a4:e5:67: d7:43:22:ec:4a:3e:28:4d:ef:68:db:68:de:3d:90: 1d:96:c9:7b:68:ae:88:50:87:b2:0e:20:9c:da:04: c6:65:a9:c0:03:6c:f5:0b:3d:e3:b8:1f:98:16:63: c8:ae:b3:5f:8d:21:15:d6:a6:0d:c5:ea:29:1a:c2: 2b:33:42:ee:dd:ee:c3:be:93:d1:a1:60:f2:30:0b: 2d:28:de:75:c5:a1:08:95:5b:15:96:82:41:9e:0d: 39:3a:96:e6:2b:98:c7:bc:05:4b:8e:76:8e:ec:3a: e9:84:16:de:72:57:96:aa:7c:65:40:9d:b1:c4:3f: 5e:a4:aa:d6:15:55:a7:cf:a0:6e:9d:80:25:f3:d7: a9:28:e0:69:ed:da:c5:d0:ee:ba:f1:ed:a6:8b:1f: 75:2d:cc:8b:0e:20:d8:31:2e:e5:a1:44:a1:e3:4e: 7b:43:d8:6f:73:c8:eb:6a:b7:55:02:cd:a8:94:1c: 44:7a:d2:cc:49:32:cb:4a:c5:b3:e7:af:d7:f2:f5: ed:a1:74:46:7a:7a:3e:94:7c:af:4f:ff:40:c9:9b: 59:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:93:27:90:E5:29:47:D1:48:A8:A8:D2:A6:48:83:90:2D:C6:B4:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2e4d4a7d-c1f7-4655-87ba-3956e2f6bad4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.115.0/24 Signature Algorithm: sha256WithRSAEncryption d1:97:ba:b2:79:a1:f4:53:63:c3:f1:4d:e5:92:7d:4f:ce:b2: 2a:bb:eb:99:74:86:d3:10:0e:76:2f:f4:33:55:4e:68:e4:23: 98:44:5f:37:76:05:26:78:cb:54:aa:45:fe:31:fd:50:ac:16: db:7e:ad:db:75:84:48:b8:1f:5e:8e:9e:d6:42:4d:83:58:45: 4f:a2:1a:80:12:0e:75:6c:85:4d:11:4a:ea:25:70:b6:70:b9: ed:06:0d:56:4d:03:9e:7b:b2:e6:b3:76:b6:01:52:3f:8f:d8: 2f:e9:e7:9d:31:4a:9b:2f:b2:b8:ec:a4:83:de:a6:f7:af:b0: 09:93:07:79:56:86:5a:e5:6b:5c:ac:f3:2a:e0:63:62:c8:75: 9e:a4:7d:07:75:ad:78:ac:b9:f5:5e:04:9b:ba:e2:aa:c2:5c: 6e:86:c9:b6:e8:59:41:11:8a:e7:8d:34:9e:74:d1:91:3b:1d: ad:75:d7:93:2b:d9:6b:32:b8:78:a5:48:ef:87:e5:79:39:a6: 0d:67:e1:9d:22:15:78:36:2e:27:81:ca:2c:60:33:99:d0:19: ad:ec:7c:fb:f6:d3:11:0e:73:0c:71:ab:90:21:9c:f3:1c:49: dd:96:02:37:d7:cc:e5:5f:37:eb:01:ff:4d:80:be:49:95:e5: f9:e6:43:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUB6F6GE05klAn9NweOTrN7nG3IJgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAwMDU2WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTZjYTdmZTY3ZjU2YzgxMzZlYjFlZTc0YTJlODI2MDVk Mjc5OThiNzk2NjE1MmE4YzBhMWMwN2UzMDhmMTY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvQXpTQyETRMlkhyzFDfEraVoOj/2vTcW8KhJfK/9FVnDb rV7G6obBA6TlZ9dDIuxKPihN72jbaN49kB2WyXtorohQh7IOIJzaBMZlqcADbPUL PeO4H5gWY8ius1+NIRXWpg3F6ikawiszQu7d7sO+k9GhYPIwCy0o3nXFoQiVWxWW gkGeDTk6luYrmMe8BUuOdo7sOumEFt5yV5aqfGVAnbHEP16kqtYVVafPoG6dgCXz 16ko4Gnt2sXQ7rrx7aaLH3UtzIsOINgxLuWhRKHjTntD2G9zyOtqt1UCzaiUHER6 0sxJMstKxbPnr9fy9e2hdEZ6ej6UfK9P/0DJm1nxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUN5MnkOUpR9FIqKjSpkiDkC3GtIgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJlNGQ0YTdkLWMxZjctNDY1NS04N2JhLTM5NTZlMmY2YmFkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXMwDQYJKoZIhvcNAQELBQADggEBANGXurJ5ofRTY8PxTeWSfU/Osiq7 65l0htMQDnYv9DNVTmjkI5hEXzd2BSZ4y1SqRf4x/VCsFtt+rdt1hEi4H16OntZC TYNYRU+iGoASDnVshU0RSuolcLZwue0GDVZNA557suazdrYBUj+P2C/p550xSpsv srjspIPepvevsAmTB3lWhlrla1ys8yrgY2LIdZ6kfQd1rXisufVeBJu64qrCXG6G ybboWUERiueNNJ500ZE7Ha1115Mr2WsyuHilSO+H5Xk5pg1n4Z0iFXg2LieByixg M5nQGa3sfPv20xEOcwxxq5AhnPMcSd2WAjfXzOVfN+sB/02AvkmV5fnmQ5U= -----END CERTIFICATE-----Generated at Sun Jun 29 21:09:30 2025 by rpki-client