$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/985b59c8-a923-4d73-afff-2650138ef0c2.roa File: 985b59c8-a923-4d73-afff-2650138ef0c2.roa (raw, json) Hash identifier: mBl10E4qJCwNnmbhxPVaoWRo7AbXqRsY0JU4ZTt+IGE= Subject key identifier: 81:83:DC:A6:F4:F4:69:40:23:27:EA:D7:EA:06:67:F3:F0:B5:89:66 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4DA81C57D86EA8DB6169E5FF0D1A05365E730461 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/985b59c8-a923-4d73-afff-2650138ef0c2.roa Signing time: Fri 09 May 2025 00:00:05 +0000 ROA not before: Fri 09 May 2025 00:00:05 +0000 ROA not after: Fri 13 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 104.216.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:a8:1c:57:d8:6e:a8:db:61:69:e5:ff:0d:1a:05:36:5e:73:04:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:00:05 2025 GMT Not After : Jun 13 23:59:59 2025 GMT Subject: serialNumber=d1ff9a802431e8196d161fa6c74f7090889d4280cab7ef92c74676a1a01167ec, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c0:e6:e1:bb:7c:69:9e:42:52:ad:1d:72:f3: 0e:2b:91:02:25:a7:fe:ea:82:d7:06:ed:63:d6:f4: ad:7d:11:f5:fd:39:bf:ad:ea:26:b3:18:46:b3:4e: b5:c7:4b:c1:f4:db:f7:1f:e5:18:51:f1:8f:5c:8e: 34:9e:92:18:75:d9:2e:de:1b:28:c1:30:ee:bd:d1: 97:c1:b6:d3:b6:a6:c4:dd:83:e8:ff:a3:5c:d1:a6: f2:69:80:da:d5:a2:0b:f3:8b:50:ce:8a:1b:8a:3e: 71:04:0d:45:38:a1:b1:5a:51:b3:2e:a6:16:a9:eb: eb:5e:3c:b2:e3:32:58:20:9a:65:f8:37:c5:ff:85: 36:37:2b:0e:9b:5d:3a:93:25:cd:ff:54:05:f4:a5: 24:df:36:d4:0a:90:8b:7f:0d:d3:64:7d:74:1c:54: f5:db:ca:5d:7f:d3:89:5b:1e:f1:c8:5b:4e:11:7a: 0b:b4:cc:1e:d9:82:5b:99:e7:2d:8b:be:a0:1a:ec: 5c:c5:a9:9d:f9:9b:a2:62:c4:6b:dc:b4:c6:87:b9: 80:28:01:01:ac:d9:a8:8e:94:a3:5b:58:3f:59:14: 85:24:4e:cb:c3:1c:c0:c8:80:bd:cf:fd:51:da:af: ca:ed:75:88:f2:7e:0e:0b:cb:17:6d:49:b0:42:65: c8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:83:DC:A6:F4:F4:69:40:23:27:EA:D7:EA:06:67:F3:F0:B5:89:66 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/985b59c8-a923-4d73-afff-2650138ef0c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.216.0.0/15 Signature Algorithm: sha256WithRSAEncryption 06:5d:5c:f6:de:ea:80:d3:3f:4a:fb:c8:d7:1c:18:60:f1:cd: 41:6a:84:8a:0a:b1:83:60:52:d1:b1:27:ff:12:27:08:81:de: d8:a6:c4:4c:71:62:79:72:9b:3e:71:74:dc:f6:b0:75:e6:d7: af:13:dd:ae:a0:cb:94:c1:7a:cb:99:2c:97:26:b7:ca:08:72: d1:8d:33:93:79:52:5a:09:0f:aa:61:75:2f:83:5a:3d:f3:b7: cf:ec:17:ec:30:d5:fd:0e:40:79:be:85:6f:19:9f:26:bf:14: c1:ce:42:52:57:13:df:27:ab:e9:a3:80:27:81:9d:bd:0b:72: 5e:22:8a:e1:e7:8b:1d:4b:63:8b:02:55:fb:fa:f7:dd:b9:a4: 2a:e8:7f:8a:c2:7a:f2:75:02:3e:43:89:c5:ca:b1:c2:7a:8d: cf:d0:dd:a7:da:41:dc:5f:37:1a:ad:74:8b:6e:43:52:5a:31: 71:b3:1a:14:ca:14:a5:0a:30:71:7e:2b:61:00:64:64:c6:ec: 39:6c:88:73:e7:2a:56:99:73:f5:39:02:6f:0e:6a:95:38:1e: 44:c7:c1:f2:6f:0e:f6:4a:f8:3e:02:ea:ea:a7:20:2b:05:60: ff:9d:1a:cc:de:c7:14:23:4a:57:a5:50:aa:f4:e8:47:82:30: 0b:d5:9a:02 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTagcV9huqNthaeX/DRoFNl5zBGEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA5MDAwMDA1WhcNMjUwNjEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWZmOWE4MDI0MzFlODE5NmQxNjFmYTZjNzRmNzA5MDg4 OWQ0MjgwY2FiN2VmOTJjNzQ2NzZhMWEwMTE2N2VjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCawObhu3xpnkJSrR1y8w4rkQIlp/7qgtcG7WPW9K19EfX9 Ob+t6iazGEazTrXHS8H02/cf5RhR8Y9cjjSekhh12S7eGyjBMO690ZfBttO2psTd g+j/o1zRpvJpgNrVogvzi1DOihuKPnEEDUU4obFaUbMuphap6+tePLLjMlggmmX4 N8X/hTY3Kw6bXTqTJc3/VAX0pSTfNtQKkIt/DdNkfXQcVPXbyl1/04lbHvHIW04R egu0zB7ZgluZ5y2LvqAa7FzFqZ35m6JixGvctMaHuYAoAQGs2aiOlKNbWD9ZFIUk TsvDHMDIgL3P/VHar8rtdYjyfg4LyxdtSbBCZchrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUgYPcpvT0aUAjJ+rX6gZn8/C1iWYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4NWI1OWM4LWE5MjMtNGQ3My1hZmZmLTI2NTAxMzhlZjBjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFo2DANBgkqhkiG9w0BAQsFAAOCAQEABl1c9t7qgNM/SvvI1xwYYPHNQWqE igqxg2BS0bEn/xInCIHe2KbETHFieXKbPnF03PawdebXrxPdrqDLlMF6y5kslya3 yghy0Y0zk3lSWgkPqmF1L4NaPfO3z+wX7DDV/Q5Aeb6FbxmfJr8Uwc5CUlcT3yer 6aOAJ4GdvQtyXiKK4eeLHUtjiwJV+/r33bmkKuh/isJ68nUCPkOJxcqxwnqNz9Dd p9pB3F83Gq10i25DUloxcbMaFMoUpQowcX4rYQBkZMbsOWyIc+cqVplz9TkCbw5q lTgeRMfB8m8O9kr4PgLq6qcgKwVg/50azN7HFCNKV6VQqvToR4IwC9WaAg== -----END CERTIFICATE-----Generated at Sat May 10 07:14:43 2025 by rpki-client