$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/95e22508-19cf-4432-8b3a-79d513cb62d8.roa File: 95e22508-19cf-4432-8b3a-79d513cb62d8.roa (raw, json) Hash identifier: k7QilhNifdik+2BbQM5OLygTdJ/d3ijLox0y1eGvBXM= Subject key identifier: 03:5B:EA:C0:8E:7C:CB:EC:D0:3F:7C:9B:0E:51:6C:04:4A:75:A5:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42F0C2B4CA333A289389BB92D2FA5C2532DAEC90 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/95e22508-19cf-4432-8b3a-79d513cb62d8.roa Signing time: Sat 03 May 2025 00:31:05 +0000 ROA not before: Sat 03 May 2025 00:31:05 +0000 ROA not after: Sat 07 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 56.254.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 14 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:f0:c2:b4:ca:33:3a:28:93:89:bb:92:d2:fa:5c:25:32:da:ec:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 00:31:05 2025 GMT Not After : Jun 7 23:59:59 2025 GMT Subject: serialNumber=fb24ef5c828d73cbc74a44017cf111ccc7929b979887384a9c1af354ead4a7bc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:26:f9:d2:6e:04:08:bb:22:fd:93:9b:04:79: ea:e1:00:9b:d8:c8:f4:b1:ed:4d:15:8f:13:e8:6c: 20:6e:8e:58:a9:81:65:53:0a:12:09:f4:78:5a:e3: 0d:d0:20:24:75:99:d2:0a:99:89:c5:63:74:03:ee: a1:8c:21:b6:4c:d0:2a:9d:79:8d:86:a0:fa:0e:d5: 72:fc:78:b7:07:b7:54:72:46:84:55:9b:5a:f4:98: ce:7a:e9:00:77:0a:67:92:74:e9:41:dd:51:e8:27: c2:2c:5f:90:a2:a7:c9:bb:6a:ca:01:0b:8d:e2:a7: 72:8a:e4:3c:bb:37:10:b7:09:10:cb:58:dc:94:2d: da:63:38:65:2e:51:38:0c:48:17:2d:88:e3:01:5c: 87:5e:41:6a:c6:c9:d8:98:ca:20:13:7f:bd:7a:7e: 70:c0:81:eb:3f:29:e3:fd:c8:32:09:22:84:21:56: 58:4d:8e:55:e4:a5:79:85:a9:ba:cb:15:49:9f:77: ff:a5:b4:77:a0:9c:19:e7:4c:4d:c4:51:6c:a0:9a: de:2b:34:43:be:39:23:56:76:ed:a0:34:20:b7:1f: ff:2c:c5:51:42:1b:e4:bf:08:13:42:66:bd:58:75: 14:4d:88:2f:57:0a:6e:bd:d3:ef:34:28:c6:af:a7: e2:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:5B:EA:C0:8E:7C:CB:EC:D0:3F:7C:9B:0E:51:6C:04:4A:75:A5:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/95e22508-19cf-4432-8b3a-79d513cb62d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.254.0.0/16 Signature Algorithm: sha256WithRSAEncryption 62:e7:36:81:38:cf:05:6c:cb:d8:82:89:f9:3b:7c:13:8d:df: c7:fc:f5:89:5d:d9:cd:3c:85:eb:9e:5c:aa:5e:4c:f8:19:db: be:63:18:e1:51:cc:ca:8d:a5:c0:03:71:8f:e0:43:c7:99:35: d2:11:82:35:fa:7a:4e:5d:bd:b9:95:8f:0d:71:b4:97:17:28: 02:93:5f:91:7d:2b:5e:7c:c1:6a:bd:dd:af:e1:b1:c7:d5:7c: 0b:24:8e:89:10:f4:48:56:9c:db:5a:fd:ed:e3:b8:5a:14:91: c1:f5:94:fc:d1:0a:31:83:27:59:eb:44:26:61:fb:48:26:22: 77:27:1d:73:55:96:f3:10:17:55:e2:7e:34:a5:6b:5f:7a:b3: 40:1f:c2:27:38:6e:9e:da:b4:28:7a:c2:9c:24:e5:c1:b0:47: bb:4c:71:c3:19:2d:6c:a3:35:06:42:6c:06:49:a5:84:8b:fe: 9d:5c:84:e3:c5:0b:70:60:c5:0d:81:05:d7:d8:97:a1:ec:cc: 0f:42:e3:d6:4b:96:0a:14:47:f4:be:1f:db:2d:0c:8c:25:14: d7:9b:90:51:0f:39:76:3c:50:f5:d9:d5:1a:dd:6a:09:84:24: 9b:3c:95:ee:1c:95:23:2d:52:3a:f3:64:47:e3:a9:24:fe:2b: 96:2c:9f:0f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQvDCtMozOiiTibuS0vpcJTLa7JAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTAzMDAzMTA1WhcNMjUwNjA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjI0ZWY1YzgyOGQ3M2NiYzc0YTQ0MDE3Y2YxMTFjY2M3 OTI5Yjk3OTg4NzM4NGE5YzFhZjM1NGVhZDRhN2JjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6JvnSbgQIuyL9k5sEeerhAJvYyPSx7U0VjxPobCBujlip gWVTChIJ9Hha4w3QICR1mdIKmYnFY3QD7qGMIbZM0CqdeY2GoPoO1XL8eLcHt1Ry RoRVm1r0mM566QB3CmeSdOlB3VHoJ8IsX5Cip8m7asoBC43ip3KK5Dy7NxC3CRDL WNyULdpjOGUuUTgMSBctiOMBXIdeQWrGydiYyiATf716fnDAges/KeP9yDIJIoQh VlhNjlXkpXmFqbrLFUmfd/+ltHegnBnnTE3EUWygmt4rNEO+OSNWdu2gNCC3H/8s xVFCG+S/CBNCZr1YdRRNiC9XCm690+80KMavp+I1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUA1vqwI58y+zQP3ybDlFsBEp1pYkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1ZTIyNTA4LTE5Y2YtNDQzMi04YjNhLTc5ZDUxM2NiNjJkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4/jANBgkqhkiG9w0BAQsFAAOCAQEAYuc2gTjPBWzL2IKJ+Tt8E43fx/z1 iV3ZzTyF655cql5M+BnbvmMY4VHMyo2lwANxj+BDx5k10hGCNfp6Tl29uZWPDXG0 lxcoApNfkX0rXnzBar3dr+Gxx9V8CySOiRD0SFac21r97eO4WhSRwfWU/NEKMYMn WetEJmH7SCYidycdc1WW8xAXVeJ+NKVrX3qzQB/CJzhuntq0KHrCnCTlwbBHu0xx wxktbKM1BkJsBkmlhIv+nVyE48ULcGDFDYEF19iXoezMD0Lj1kuWChRH9L4f2y0M jCUU15uQUQ85djxQ9dnVGt1qCYQkmzyV7hyVIy1SOvNkR+OpJP4rliyfDw== -----END CERTIFICATE-----Generated at Tue May 13 04:18:12 2025 by rpki-client