$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d8a1b36-3855-4b0a-8d07-ec0c2baf4fe8.roa File: 6d8a1b36-3855-4b0a-8d07-ec0c2baf4fe8.roa (raw, json) Hash identifier: r6TDKiM2j/geclDSv+fkKkTsYoz8S9brd2bA8Y4ihng= Subject key identifier: 7E:4C:29:71:7E:77:33:36:9A:76:4E:53:11:A8:42:84:2E:DE:62:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 53135D5507ACD5C890E6C396B8E2A2A5C93CDEF2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d8a1b36-3855-4b0a-8d07-ec0c2baf4fe8.roa Signing time: Tue 29 Apr 2025 00:10:17 +0000 ROA not before: Tue 29 Apr 2025 00:10:17 +0000 ROA not after: Tue 03 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 35.28.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 06 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:13:5d:55:07:ac:d5:c8:90:e6:c3:96:b8:e2:a2:a5:c9:3c:de:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:10:17 2025 GMT Not After : Jun 3 23:59:59 2025 GMT Subject: serialNumber=7656b33a6aef876dcd08911c3a21eae2ed37e893fc7b3a25c829ff43b82d265b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:22:ba:be:7e:8b:01:07:02:da:69:19:16:55: 16:cd:2b:c5:01:bb:b5:84:20:84:26:a6:df:e7:80: 0c:90:ab:2e:d1:66:0b:32:3c:05:38:62:d2:14:20: 3f:18:b1:7c:9e:b4:60:3a:fc:f8:5b:77:e4:09:9f: c3:28:40:df:2b:3e:5f:18:8d:d5:d8:b5:9e:57:e1: e4:e2:de:bf:64:70:9c:3a:c9:5a:c2:87:e4:c7:ca: 5c:9f:ee:db:de:db:12:7e:5e:79:d8:62:d1:23:27: 37:25:98:d9:b6:f9:26:e7:8e:e8:4a:a5:89:65:8c: 8b:f7:bb:c7:8a:ec:05:fd:e4:1b:e5:e5:f1:8a:bf: 5a:a3:53:b0:e2:8a:25:16:13:44:bb:c7:a3:b1:ef: 48:5c:ab:60:af:1a:44:a9:b4:98:e7:fc:fb:03:79: 55:51:11:e7:2e:58:6a:56:16:31:c3:98:98:78:fc: 95:d8:06:0f:64:55:d1:e5:dc:f1:fa:e2:11:51:a9: 22:58:3e:6d:01:a1:84:1c:f8:79:f7:69:19:7f:3b: 80:ae:39:a2:f3:fc:1f:3e:68:2d:67:ad:fc:79:c2: 4c:3e:0e:69:43:3d:b5:fb:da:8c:68:64:b0:b4:c2: bb:b6:c1:e6:30:d6:8f:8e:cd:f3:c2:6b:c7:20:ce: d8:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:4C:29:71:7E:77:33:36:9A:76:4E:53:11:A8:42:84:2E:DE:62:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d8a1b36-3855-4b0a-8d07-ec0c2baf4fe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.28.0.0/15 Signature Algorithm: sha256WithRSAEncryption 4e:5b:0b:1f:70:45:6a:2b:c6:76:95:92:c1:9f:67:25:37:50: ea:0f:9d:87:56:3b:d0:8f:85:f5:66:c0:1d:0c:87:12:eb:93: a9:1d:dc:5e:97:df:0d:bf:62:4b:c2:86:db:7f:5a:df:9e:d6: 97:8a:e3:ee:f7:73:c1:e9:89:31:54:e2:4b:ab:da:d3:85:e2: df:72:19:d8:ba:3f:fc:a6:7c:23:7b:70:02:c6:90:60:d5:5a: a9:d3:a4:f6:34:6c:dd:21:43:4b:ba:c8:06:ae:a9:24:78:39: 84:2c:9d:d9:15:7a:70:fc:99:e9:6c:07:b3:b5:cd:96:19:f0: 87:eb:8a:42:f5:d6:12:96:8a:bf:6d:98:dd:4f:c4:da:22:78: 2d:8e:fe:e2:e7:13:75:91:23:ef:8f:29:ca:f4:48:3f:73:f2: 66:65:c6:69:84:c6:b5:8d:bf:04:94:c6:4e:0f:5b:b0:fa:1f: cf:6a:44:f8:e2:d6:cd:f8:ec:44:0b:db:48:cc:18:7f:9d:e7: f9:02:fb:26:02:fc:d4:14:ec:64:90:b2:00:1b:cf:c3:d7:bc: 60:6c:33:7c:05:ab:95:95:19:c5:bc:dc:ef:11:be:0a:2e:6b: bb:17:81:48:0c:52:cc:a4:5b:ae:78:b8:1d:22:de:6a:6b:06: 74:f0:4f:19 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUxNdVQes1ciQ5sOWuOKipck83vIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDI5MDAxMDE3WhcNMjUwNjAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NjU2YjMzYTZhZWY4NzZkY2QwODkxMWMzYTIxZWFlMmVk MzdlODkzZmM3YjNhMjVjODI5ZmY0M2I4MmQyNjViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNIrq+fosBBwLaaRkWVRbNK8UBu7WEIIQmpt/ngAyQqy7R ZgsyPAU4YtIUID8YsXyetGA6/Phbd+QJn8MoQN8rPl8YjdXYtZ5X4eTi3r9kcJw6 yVrCh+THylyf7tve2xJ+XnnYYtEjJzclmNm2+SbnjuhKpYlljIv3u8eK7AX95Bvl 5fGKv1qjU7DiiiUWE0S7x6Ox70hcq2CvGkSptJjn/PsDeVVREecuWGpWFjHDmJh4 /JXYBg9kVdHl3PH64hFRqSJYPm0BoYQc+Hn3aRl/O4CuOaLz/B8+aC1nrfx5wkw+ DmlDPbX72oxoZLC0wru2weYw1o+OzfPCa8cgztgVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUfkwpcX53Mzaadk5TEahChC7eYmkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZkOGExYjM2LTM4NTUtNGIwYS04ZDA3LWVjMGMyYmFmNGZlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEjHDANBgkqhkiG9w0BAQsFAAOCAQEATlsLH3BFaivGdpWSwZ9nJTdQ6g+d h1Y70I+F9WbAHQyHEuuTqR3cXpffDb9iS8KG239a357Wl4rj7vdzwemJMVTiS6va 04Xi33IZ2Lo//KZ8I3twAsaQYNVaqdOk9jRs3SFDS7rIBq6pJHg5hCyd2RV6cPyZ 6WwHs7XNlhnwh+uKQvXWEpaKv22Y3U/E2iJ4LY7+4ucTdZEj748pyvRIP3PyZmXG aYTGtY2/BJTGTg9bsPofz2pE+OLWzfjsRAvbSMwYf53n+QL7JgL81BTsZJCyABvP w9e8YGwzfAWrlZUZxbzc7xG+Ci5ruxeBSAxSzKRbrni4HSLeamsGdPBPGQ== -----END CERTIFICATE-----Generated at Mon May 5 05:47:52 2025 by rpki-client