$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65b2ca30-4204-45d1-b5e7-a65a4f605125.roa File: 65b2ca30-4204-45d1-b5e7-a65a4f605125.roa (raw, json) Hash identifier: 86WUAhof9M6Y5/GPHwKq/dhtmE77fY5VmT+hhrxuBDk= Subject key identifier: DD:9D:55:E0:D8:5D:57:17:2A:B1:2A:5C:73:78:77:25:84:6A:4B:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F0FF9A00F09794D3A19442F32DE2446058BD0EE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65b2ca30-4204-45d1-b5e7-a65a4f605125.roa Signing time: Wed 07 May 2025 00:00:21 +0000 ROA not before: Wed 07 May 2025 00:00:21 +0000 ROA not after: Wed 11 Jun 2025 23:59:59 +0000 asID: 22394 IP address blocks: 139.56.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:0f:f9:a0:0f:09:79:4d:3a:19:44:2f:32:de:24:46:05:8b:d0:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 7 00:00:21 2025 GMT Not After : Jun 11 23:59:59 2025 GMT Subject: serialNumber=445d39c0422b72a849112c57b84fcfd49dd85fcb5d899e957a8e7a10de365a83, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:2b:16:cf:36:1f:24:6b:1f:40:0e:ad:0e:1b: 94:b0:37:bc:c5:2e:48:aa:72:45:b5:2c:33:c8:8a: ce:ff:97:fc:39:55:b5:5f:0e:57:51:44:d9:a6:8a: c0:7f:e4:f8:d2:98:0c:42:dd:9e:18:d2:a4:02:42: 05:e0:a2:7f:c4:ad:cc:ee:f5:b5:71:e0:50:78:05: 72:26:4b:c3:ef:4d:ac:d1:ed:d8:72:96:d1:d6:09: 9d:b3:0f:f5:44:4c:88:67:c4:7b:02:62:74:f1:76: e9:40:7e:61:9a:b1:07:fd:4a:75:e0:6d:0b:10:5d: c2:f5:d0:42:e3:fb:be:a0:1b:bf:64:95:f8:00:29: ab:ef:b5:cd:0d:ff:61:24:15:78:96:a5:a7:2b:f6: c3:23:0c:93:6f:02:3a:79:3b:ef:f1:e1:f8:04:c4: 1a:6b:05:a4:63:90:63:51:72:84:17:1f:a0:69:82: 41:37:3d:23:85:56:b8:c5:1e:7a:68:09:0f:5c:91: de:ff:96:ba:8d:d1:98:ca:3c:ac:34:66:11:da:11: 87:0e:3d:b5:64:40:89:4b:45:4c:97:3d:41:97:ab: 79:9c:3b:54:8e:4d:70:09:c3:7b:02:cb:b0:50:76: ee:d8:24:49:b7:4b:7f:74:11:77:82:b8:ce:70:1b: 0c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:9D:55:E0:D8:5D:57:17:2A:B1:2A:5C:73:78:77:25:84:6A:4B:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65b2ca30-4204-45d1-b5e7-a65a4f605125.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.56.0.0/16 Signature Algorithm: sha256WithRSAEncryption d7:9f:25:70:b3:04:fd:54:b7:c5:91:27:ce:bd:1e:d5:99:86: 22:bd:d3:4c:f7:06:b8:9c:98:ef:ec:9f:07:41:fd:b5:bc:14: e5:e7:6e:fa:96:7d:63:6a:ac:de:40:9d:91:49:b7:6a:a7:61: f9:82:10:26:9d:69:dc:1b:97:7a:ea:46:7d:1d:e5:e5:41:b1: 4d:57:7f:a5:03:95:dc:bb:6f:9c:06:c2:f8:a6:2f:ef:27:51: c3:08:2d:3f:8f:d0:fe:06:2a:8a:90:2a:da:19:cd:a8:74:a6: 47:2d:82:ae:04:b5:19:67:5e:5f:d4:28:a7:24:fc:39:bb:c3: 8b:ee:18:62:32:d0:40:16:9d:fd:b5:06:f8:7d:28:9d:d5:6b: 40:cc:23:de:66:2a:8b:1b:fa:79:1e:20:81:02:de:53:02:f5: a3:b6:b3:71:41:40:3a:50:f5:0c:b3:b3:12:74:9c:55:8b:5e: 45:65:83:d1:83:f0:13:1c:30:fc:77:f4:20:11:58:8b:69:59: 3f:56:fb:d3:32:be:fa:21:45:68:0c:42:2c:6f:e2:2c:dc:8c: 35:f9:6a:65:78:27:3a:67:b7:4b:bf:4f:0e:5b:cb:c7:35:9c: 53:35:38:fd:e0:c9:c8:8e:d6:eb:25:cb:7c:d7:1b:5f:45:f0: f9:7a:65:4a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDw/5oA8JeU06GUQvMt4kRgWL0O4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA3MDAwMDIxWhcNMjUwNjExMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDVkMzljMDQyMmI3MmE4NDkxMTJjNTdiODRmY2ZkNDlk ZDg1ZmNiNWQ4OTllOTU3YThlN2ExMGRlMzY1YTgzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSKxbPNh8kax9ADq0OG5SwN7zFLkiqckW1LDPIis7/l/w5 VbVfDldRRNmmisB/5PjSmAxC3Z4Y0qQCQgXgon/Erczu9bVx4FB4BXImS8PvTazR 7dhyltHWCZ2zD/VETIhnxHsCYnTxdulAfmGasQf9SnXgbQsQXcL10ELj+76gG79k lfgAKavvtc0N/2EkFXiWpacr9sMjDJNvAjp5O+/x4fgExBprBaRjkGNRcoQXH6Bp gkE3PSOFVrjFHnpoCQ9ckd7/lrqN0ZjKPKw0ZhHaEYcOPbVkQIlLRUyXPUGXq3mc O1SOTXAJw3sCy7BQdu7YJEm3S390EXeCuM5wGwzxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU3Z1V4NhdVxcqsSpcc3h3JYRqS7AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1YjJjYTMwLTQyMDQtNDVkMS1iNWU3LWE2NWE0ZjYwNTEyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCLODANBgkqhkiG9w0BAQsFAAOCAQEA158lcLME/VS3xZEnzr0e1ZmGIr3T TPcGuJyY7+yfB0H9tbwU5edu+pZ9Y2qs3kCdkUm3aqdh+YIQJp1p3BuXeupGfR3l 5UGxTVd/pQOV3LtvnAbC+KYv7ydRwwgtP4/Q/gYqipAq2hnNqHSmRy2CrgS1GWde X9QopyT8ObvDi+4YYjLQQBad/bUG+H0ondVrQMwj3mYqixv6eR4ggQLeUwL1o7az cUFAOlD1DLOzEnScVYteRWWD0YPwExww/Hf0IBFYi2lZP1b70zK++iFFaAxCLG/i LNyMNflqZXgnOme3S79PDlvLxzWcUzU4/eDJyI7W6yXLfNcbX0Xw+XplSg== -----END CERTIFICATE-----Generated at Sat May 10 19:22:33 2025 by rpki-client